From b519f97f6a58fc0cc967ba8e60bb65f119f21a2a Mon Sep 17 00:00:00 2001
From: "Dustin C. Hatch" <dustin@hatch.name>
Date: Sat, 26 Dec 2020 11:31:24 -0600
Subject: [PATCH] roles/apache: Disable ssl_request_log

I am not sure the point of having both `ssl_request_log` and
`ssl_access_log`.  The former includes the TLS ciphers used in the
connection, which is not particularly interesting information.  To save
space on the log volume of web servers using Apache, we should just stop
creating this log file.
---
 roles/apache/templates/ssl.include.j2 | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/roles/apache/templates/ssl.include.j2 b/roles/apache/templates/ssl.include.j2
index db516ea..30fed44 100644
--- a/roles/apache/templates/ssl.include.j2
+++ b/roles/apache/templates/ssl.include.j2
@@ -63,5 +63,5 @@ BrowserMatch "MSIE [2-5]" \
 #   Per-Server Logging:
 #   The home of a custom SSL log file. Use this when you want a
 #   compact non-error SSL logfile on a virtual host basis.
-CustomLog logs/ssl_request_log \
-          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"
+#CustomLog logs/ssl_request_log \
+#          "%t %h %{SSL_PROTOCOL}x %{SSL_CIPHER}x \"%r\" %b"