1. Check the syntax of all of the php files:
localhost:~ $ find $(pwd) -name \*.php -exec php -l '{}' \;
2. Set php.ini for development:
error_reporting=8192 display_errors=On display_startup_errors=On log_errors=On error_log=error_log report_memleaks=On expose_php=On asp_tags=Off
3. Watch out for proper type handling:
$clean_int = (int)$dangerous_int;4. Watch apache/error_log for errors while running a link checker on the site (try also for authenticated user):
tail -f /var/log/apache2/error_logMore resources:
http://blackhatlibrary.net/PHP http://www.phptherightway.com/
No comments:
Post a Comment