Archive for November, 2008

Abort, Retry, Ignore?

Posted on November 16 2008 by zemog

abort, retry or ignore computer commands.

Error reporting in PHP

Posted on November 12 2008 by zemog

Error reporting is a good thing, right? It gives you valuable insight into why your application failed. It gives you useful information such as what happened and where it happened. This information is essential in order to fix the bug. However, you might not be the only one who is interested in knowing why your application failed. By giving the user the details from the errors and/or exceptions thrown by PHP you are giving valuable insight into how your application works. Apart from the source itself, this is one of the most valuable intelligence the attacker might gather when looking for vulnerabilities in your application.