I wish to keep domain logs in a separate location for long-term safe-keeping
Last Modified: Apr 15, 2020, 5:07 pm
After several iterations of log ownership in ~/domains/domain.com/logs, the current state (as of August 2019) stores the logs as the User.
Users do have sufficient privileges to accidentally delete their logs.
Managing root-owned data under a User's home directory is very difficult to do securrely, so keeping your long-term root logs in a non-User-writable area is recommended.
We can use the rotate_log_post.sh, which runs just after /var/log/httpd/domains/* logs are copied to ~/domains/domain.com/logs (and compressed to the tar.gz). This is where we'd grab our copy.