Do you really need a glob to describe them or do they have well-defined names?

No. It's just laziness. I could opendir/readdir/closedir and use three-arg open. But I didn't, because I didn't know -p/-n used two-arg open.

I'll point out the easiest: make the logs directory writable only by root.

It already is, but one little bug in Apache could perhaps allow the names to be user-defined. After all, the logs are full of user input.

Anyhow, it *all* boils down to laziness. I could set up ACLs, of course. It's a matter of convenience. Usually this works out just fine. Too bad this time Perl didn't DWIM.

Juerd # { site => 'juerd.nl', plp_site => 'plp.juerd.nl', do_not_use => 'spamtrap' }