The file permissions for all files specified by CustomLog directives should be configured appropriately
(1) permissions
(1) via chmod
Rule Title: Log file access must be restricted to System Administrators, Web Administrators or Auditors.
STIG ID: WG250 A22 Rule ID: SV-33033r1_rule Vuln ID: V-2252
Severity: CAT II Class: Unclass
DISA STIG
Apache SITE 2.2 for Unix
Release: 1 Benchmark Date: 23 Nov 2011
DISA
2011-11-23
V1R1
Prose (PDF)