Why is "AccessLogging" not recommended for production?

1
0
-1

The following comment appears in the standard Bonita server.xml ...

Why is this logger "not advisable"?

Thanks

Chris

Comments

Submitted by Sean McP on Sun, 03/05/2017 - 22:14

Don't you mean?

  1. <!-- AccessLogValve below is commented out as it is not advisable for production environments -->
  2. <!--
  3. <Valve className="org.apache.catalina.valves.AccessLogValve" directory="logs"
  4. prefix="localhost_access_log." suffix=".txt"
  5. pattern="%{yyyy}t-%{MM}t-%{dd}t %{HH}t:%{mm}t:%{ss}t.%{SSS}t %{Z}t %h %l %u "%r" %s %b" />
  6. -->

On searching server.xml I couldn't find any reference to SessionLogging

Can you point it out?

regards
Seán

Submitted by chris.lowth on Mon, 03/06/2017 - 00:43

Sorry - my bad -- yes, that's what I meant.
"AccessLogging" not "SessionLogging".
[post title edited to correct this].

1 answer

1
0
-1

First things first - I don't think Bonitasoft put that comment there - I think that's an Apache default. And having researched the Googl-eb I can't find one good reason.

I guess the reasons are for security and performance, but again I've not actually found anything to say explicitly why not.

Even Apache's documentation for the statement doesn't say why.
http://tomcat.apache.org/tomcat-6.0-doc/config/valve.html#Access_Log_Valve

What i would do is ask this either on Apache's own forum or on more general, but widely accepted forum such as stackoverflow.com

regards
Seán

PS: While I understand this may not be the answer you're hoping for, it does indicate a possible route to the solution, please mark as resolved.

Comments

Submitted by chris.lowth on Mon, 03/06/2017 - 07:56

Interestingly, I it seems it IS a Bonita addition.... you can tell that this is the case by searching google for the phrase "AccessLogValve below is commented out as it is not advisable for production environments" (in quotes). There is only one result, and it's the copy of the Bonita server.xml file on git hub. If it was a tomcat standard, then you'd see a huge number of hits.

But I agree; I find no justification for the comment.

See ..
https://www.google.co.uk/?gws_rd=ssl#q=%22AccessLogValve+below+is+commen...

Submitted by Sean McP on Mon, 03/06/2017 - 09:23

I stand corrected... or sit corrected. :)

What i would do then is submit a bug report asking why specifically it is not advised when it obviously is...put them in their place a bit.:)

regards

Notifications