10.8. Security Audit

Presto can log user, query ID and query SQL for security audit purposes. Log entries are stored in textual format in log files that are automatically compressed and rotated at the end of a day (similarly as Presto server log files). Security audit logging can be configured with the following properties:

Property

Description

security.audit-log.enabled

Specifies whether security audit logging should be enabled. By default security audit is disabled.

security.audit-log.path

Path of the security audit log file. By default it is: /var/log/presto/security.log.

security.audit-log.max-size

Maximum size of a single security audit log file. By default is is 100MB.

security.audit-log.max-history

Maximum number of security audit log files. By default it is 30.