Thanks for the reply. But i dont want to exclude these entries in log but wanted to mask the values of these credential parameters from the request.by uttam - How to...
I require access logs enabled, but for compliance reasons, cannot log a sensitive GET request parameter's data in the access logs. While I know, I could parse the logs (after-the-fact) and sanitize them, this is not an acceptable solution -- because for compliance reasons logs can't be tampered with. I tried setting if statement in Location directive if ($request_uri~ (.)password=[^&](.*by uttam - How to...
![]() |
![]() |
![]() |
![]() |
|