By default, the Payflow Pro CURL logs are stored in a publicly accessible directory. Is this safe? Can this directory be moved, and if so, how?

Or if I chmod the log folder to say 700, would it cause any problems? What would be the minimum permission level needed to prevent public access but preserve normal operation of the module?

I know all the log files have generated numbers and letters attached, which makes it difficult for someone to access the logs directly, but this is still security through obscurity. I'd like to rest easy knowing that the folder and its files definitely can't be accessed even if someone guessed a filename correctly.

I'm using ZenCart 1.3.8a with the updated Payflow Pro module.