The reason I added write-only support to the logs directory in my fork was because I read the recommendation on the OWASP page about Tomcat. After considering the practical limitations of 300 mode on RedHat Linux, it might be better to have a write-only partition somewhere and then be able to configure logging to use that instead via a logging.properties template (Tomcat 8.5) or via whatever the config file is used in other versions.
It's a shame there seem to be no out-of-the-box option to use a syslog server since version 8 apparently.
The reason I added write-only support to the logs directory in my fork was because I read the recommendation on the OWASP page about Tomcat. After considering the practical limitations of 300 mode on RedHat Linux, it might be better to have a write-only partition somewhere and then be able to configure logging to use that instead via a logging.properties template (Tomcat 8.5) or via whatever the config file is used in other versions.
It's a shame there seem to be no out-of-the-box option to use a syslog server since version 8 apparently.