The file permissions for all files specified by CustomLog directives should be configured appropriately (1) permissions (1) via chmod Rule Title: Log file access must be restricted to System Administrators, Web Administrators or Auditors. STIG ID: WG250 A22 Rule ID: SV-33033r1_rule Vuln ID: V-2252 Severity: CAT II Class: Unclass DISA STIG Apache SITE 2.2 for Unix Release: 1 Benchmark Date: 23 Nov 2011 DISA 2011-11-23 V1R1 Prose (PDF)