how to keep mod_jk from logging to stdout.log??

[Russell A. Hatfield]

We're running Apache 1.3.29, Tomcat 4.1.27 with mod_jk 1.3 on Windows 2k Server 
and we're seeing some 'disturbing' activity that we cant get around. It appears 
that every html form post to a servlet that comes thru gets logged in the 
stdout.log file. I've set every logging/debugging setting I can find in tomcat 
to the lowest setting (or off) to no avail.  If there is a way to just completly
disable the stdout.log file (running as a service) I'll settle for that.

This is a snip of the log, as you can see, highly sensitive information can be 
stored here with this happening, the form submitted contained 2 fields, can you 
guess what they were?? :)

12 34 00 24 00 22 75 73 65 72 6e 61 6d 65 3d 31 | .4.$."username=1
32 31 32 31 32 31 26 70 61 73 73 77 6f 72 64 3d | 212121&password=
61 73 61 73 61 73 61 73                         | asasasas
This happens even if the target servlet does not run (i.e. delete it to cause a 
404) so it's nothing in the servlet logging it... Has anyone seen this before?
I've tried all of the various JkLogLevel settings with no luck..

Thanks!



---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]