access logging? - Githubissues

hannesm / tlstunnel-lwt

TLS tunnel -- an alternative to stud / stunnel

BSD 2-Clause "Simplified" License

85 stars 7 forks source link

access logging? #3

Closed avsm closed 9 years ago

avsm commented 9 years ago

Simple access logging to a file for production would be handy

hannesm commented 9 years ago

what kind of access? I'd like to avoid a HTTP dependency in tlstunnel...

avsm commented 9 years ago

oh i just mean open a file for append and write a log entry on every connection accept. Something that gives us useful info (which ciphers got negotiated) would be nice so we can analyse it.

avsm commented 9 years ago

stud has

LOGGING:
  -q  --quiet                Be quiet; emit only error messages
  -s  --syslog               Send log message to syslog in addition to stderr/stdout
  --syslog-facility=FACILITY Syslog facility to use (Default: "daemon")

hannesm commented 9 years ago

this sounds like my -l command line argument... (by default, the output is to stdout) -- having a -q would improve the situation if caring about privacy

avsm commented 9 years ago

ack, will try that later.

hannesm commented 9 years ago

what is logged:

timestamp and source of (client connection)[https://github.com/hannesm/tlstunnel/blob/master/src/tlstunnel.ml#L71]
timestamp of forwarded connection to service
timestamp and bytes read/written on teardown