It is surprising to me that openfire does not keep logs of when user logged in and logged out? (or wrong password)
I am sorry if I missed it in logs or somewhere but I searched at many places and could not find it anywhere.
I suppose this should be a must for auditing and security. Atleast there should be a note in info.log, one when user logs in and second when he logs out. Helps in identifying brute force as well.
So please let me know if its already there.
Otherwise if someone can tell me right file location I am willing to write small code which will log these to info.log
thanks.