Forwarding certbot logs


#1

Hello everyone!

I have 2 questions regarding certbot logs (certbot v0.21.1).

  1. Is it safe to forward certbot logs to hosted log management applications such as Papertrail? I mean, is there sensitive information stored in these logs at any point of their existence?

  2. Is there a way to reduce verbosity of these logs? Changing DEBUG to INFO would be a great option.

Thanks beforehand!


#2

It’s pretty much safe. The logs will contain your email address, and certificates, but not private keys.

If there’s extremely sensitive information in Apache or Nginx config files, and the Apache or Nginx plugin is in use, it might be possible it would be logged, but I doubt it would happen in any reasonable situation. (You probably shouldn’t set the ServerName to a secret password anyway.)

If you’re using custom hooks or plugins, no guarantees about what they might output or log.

Not that I know of. :slightly_frowning_face:


#3

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.