Logging and GDPR

itcrowd2357

Junior Member

Join Date: Apr 2021

Posts: 1
- Share
- Tweet
#1

Logging and GDPR

04-12-2021, 08:57 PM

I have come here because a google search for "gdpr compliant docker hosting" brings this site quite high on the rankings, mostly I think because they have "eu gdpr compliant" as the alt tag of this image (which does not link to anything).

Can you actually turn off logging of IP addresses with this hosting? I am quite happy to get turned off if I am DoSed, if that is what the logging is for.

I am trying to host a GDPR compliant site without asking for permission from the user.
Tags: None
eellis

Member

Join Date: Feb 2021

Posts: 40
- Share
- Tweet
#2

07-01-2021, 07:51 PM

Howdy David,

Ill start off by warning Im not a lawyer, so please take this as technical advice and not legal advice. ðŸ˜‰

Most apache servers are logging IP addresses even after the GDPR became law. They get away with doing so with the cookie warning on their website. (yes, thats the one)

If youd like to host w/o that cookie warning, you can tweak apache to log or not log or not log connections using this guide here. https://infosec-handbook.eu/blog/wss...ng-monitoring/

Youre going to use something like they mention:

Code:

CustomLog ${APACHE_LOG_DIR}/access.log [GDPR-compliant-log-format]

Thanks!
Comment

Announcement