2.2 Ensure the Log Config Module Is Enabled

Information

The log_config module provides for flexible logging of client requests, and provides for the configuration of the information in each log.

Rationale:

Logging is critical for monitoring usage and potential abuse of your web server. This module is required to configure web server logging using the log_format directive.

Solution

Perform either one of the following:

For source builds with static modules, run the Apache ./configure script without including the --disable-log-config script options.

$ cd $DOWNLOAD_HTTPD
$ ./configure

For dynamically loaded modules, add or modify the LoadModule directive so that it is present in the apache configuration as below and not commented out:

LoadModule log_config_module modules/mod_log_config.so

Default Value:

The log_config module is loaded by default.

See Also

https://workbench.cisecurity.org/files/4548

Item Details

Category: AUDIT AND ACCOUNTABILITY

References: 800-53|AU-2, 800-53|AU-7, 800-53|AU-12, CSCv7|6.2, CSCv7|6.3

Plugin: Unix

Control ID: 2ed9da9ae2d2381f4227655813ce834c4fefc27b2c52450d1a35a9bdcd967f71