https logs/stats

[powdermonster]

I have done a search and can find no simular topic but hopefully someone can help me out.

I have a client who has a secure site on my cPanel 7 box and he is convinced any traffic that enters the site via secure doesn't show up in his cPanel stats.

Currently installed are the following stats tools : Analog, AWStats, webalizer & Urchin.

Is he right does secure traffic appear on some other logs ? If so where do i find them, and is there a way of combining them with the normal web traffic stats.

Cheers

cPanel.net Support Ticket Number:

[casey]

You know what? I think he's correct. I just checked the stats for my secure subdomain and all the hits are from ip addresses of my computers...I hadn't noticed that before.

cPanel.net Support Ticket Number:

[fikse]

same here, not logging of https pages.... whats the solution?

cPanel.net Support Ticket Number:

[powdermonster]

Originally posted by fikse
same here, not logging of https pages.... whats the solution?

cPanel.net Support Ticket Number:

Good question

Hope there is one

cPanel.net Support Ticket Number:

[Jeewhizz]

has anyone figured this out yet?

cPanel.net Support Ticket Number:

[sfield]

Old topic I know, but this seems to still be a problem - any solution?

[PWSowner]

That's because SSL access is logged in a seperate file which apparently isn't included by the stats programs.

Here are my default log settings in httpd.conf for an example.

secure subdomain entry:
CustomLog domlogs/secure.premierwebsitesolutions.com combined

IfDefine SSL entry:
CustomLog /usr/local/apache/domlogs/secure.premierwebsitesolutions.com-ssl_log "%t %{version}c %{cipher}c %{clientcert}c"

You could modify the SSL entry by adding the line in the subdomain entry to the SSL entry. That would cause it to get written to the same file even through https. I haven't done that myself, but it should end up being read by the stats programs.

[cycletourist]

That's because SSL access is logged in a seperate file which apparently isn't included by the stats programs.

Here are my default log settings in httpd.conf for an example.

secure subdomain entry:
CustomLog domlogs/secure.premierwebsitesolutions.com combined

IfDefine SSL entry:
CustomLog /usr/local/apache/domlogs/secure.premierwebsitesolutions.com-ssl_log "%t %{version}c %{cipher}c %{clientcert}c"

You could modify the SSL entry by adding the line in the subdomain entry to the SSL entry. That would cause it to get written to the same file even through https. I haven't done that myself, but it should end up being read by the stats programs.

Okay, so this is really an old topic now.

Does the above "solution" work? Should I forward that to my host's tech support people?

I have a secure site that processes monetary transactions and handles sensitive data. Just today I saw that someone had come to the site with User agent Java/1.4.2_05, from Europe (this is a site that sells discount medical benefits for the US, only), and with a URL that appears to be an attempt at probing for vulnerabilities. I would really like to be able to track this person's actions at the site. The problem is; I can't.

My web host says that the access log files for secure sites on a shared server are all kept in one file, not separately per domain.

Before I create my own access logging system with Php, I want to know if anyone has gotten around this major problem with cPanel based shared hosting. This seems like a major flaw in cPanel? Is there a generic solution I can suggest to my host administrators?

(Does the above post contain a real solution? Are cPanel developers aware what a major shortcoming this is?)

[nadavoid]

I posted this same answer over here:
http://forums.cpanel.net/showthread.php?t=48476

But I'm cross-posting here since it applies directly here too.

I think I've found a pretty good resolution/workaround for this.

at the command-line, do this:

Code:

cd ~/tmp/awstats
ln -s ssl/awstats.www.example.com.conf ./awstats.www.example.com-ssl.conf

That's the one step to get them set up.

Now, to actually SEE the stats, you go to awstats in your browser, as usual, but add -ssl after the domain.

Code:

awstats.pl?config=www.example.com-ssl&lang=en