I just executed some test backups.
I wanted to test the web logs. I could see the logs without authenticating on the website. These logs provide a list of all our databases and paths of the DB files. They also contains usernames and IP addresses. I should think this kind of information should not be accessible by any one else then me.
Is this expected behaviour?