For some of our on-premise applications run on a Linux server, a penetration test tool will automatically scan for vulnerabilities in the software. One of the actions it performs is a scan of commonly used files for web applications, such as wp-login.php or cgi-bin/admin.cgi. Logically these files do not exist for Mendix applications. Yet, trying to navigate to this file will yield an error in the log file, such as: Connector: 404 - file not found for file: wp-login.php We will find a lot of these errors on a daily basis, while these errors have actually nothing to do with the application itself. They are not affecting the application in any way, but these list of errors is polluting the log file nevertheless. Is there a way to hide these errors from appearing the log, or at least change the log level from error to something like a trace?
↧