What sort of privilege on the log file does an application need to log transactions?
- Read, Write
- Read, Write, Append, Delete
- Write, Append
- Append
The correct answer is 4. Append.
Read : Allows you to read entries made to the log file which a log file should not be given.
Write: Allows you to overwrite entries on the log file. An attacker can use this privilege to overwrite log entries
Delete: With this privilege, the application can delete the whole log volume.
Append: Allows an application to append new entries to the log file. It does not however make any changed to the existing logs.
