How to Enable PHP Error Logging via htaccess
by Jeff Starr on Monday, December 17, 2007 – 14 Responses
In this brief tutorial, I will show Apache users how to suppress PHP errors from visitors and enable PHP error logging via htaccess.
Tracking your site’s PHP errors is an excellent way to manage and troubleshoot unexpected issues related to plugins and themes. Even better, monitoring PHP errors behind the scenes via private log is far better than trying to catch them as they appear at random visits. Thanks to the magical powers of htaccess, there is an easy way to implement this effective strategy.
Hide PHP errors from visitors
In our article, , we discuss a technique whereby PHP errors are suppressed via htaccess. This is done by including the following htaccess directives to your domain’s httpd.conf or to your site’s root (or other target directory) htaccess file:
# supress php errors
php_flag display_startup_errors off
php_flag display_errors off
php_flag html_errors offWith that in place, PHP errors will no longer be displayed publicly on your site. This eliminates a potential security risk, and keeps those ugly, unintelligible PHP errors from breaking your site layout and disorienting your visitors. No editing required for this code.
Enable private PHP error logging
Now that we have hidden PHP errors from public view, let’s enable the logging of PHP errors so that we can privately keep track of them. This is done by including the following htaccess directives to your domain’s httpd.conf or to your site’s root (or other target directory) htaccess file:
# enable PHP error logging
php_flag log_errors on
php_value error_log /home/path/public_html/domain/PHP_errors.logFor this to work, you will need to edit the path in the last line to reflect the actual location of your PHP_errors.log file. Of course, you will need to create this file and subsequently set the file permissions to 755 or, if necessary, 777. Finally, you need to secure the log file itself by adding this final line of code to your htaccess file:
# prevent access to PHP error log
<Files PHP_errors.log>
Order allow,deny
Deny from all
Satisfy All
</Files>Then, after everything is in place, check that everything is working by triggering a few PHP errors. You may also want to verify protection of your error log by trying to access it via a browser.
Focused on clean code and quality content, Perishable Press is the online home of Jeff Starr, author, artist, designer, developer, and all-around swell guy. 
14 Responses
jonathan – #1
Yr codes let my .htaccess spoilt…
[ Editor’s note: comment edited to remove the redundant list of PHP errors.. ]
jonathan – #2
Nvm. i think i got it mix up.
Perishable – #3
Hopefully everything worked out for you, jonathan..
Dan – #4
Seems to cause an error 500 - Internal Server Error on my site…..
Perishable – #5
Some hosts disable this feature by default.. If you have not already done so (and aren’t sure about it), I would contact your host and ask them if php error logging is enabled via htaccess. If necessary, use this article as a reference.
Dan – #6
Actually, it looks like they do, as the server is running under CGI:
http://www.danodemano.com/php_info.php
I’m going to contact the host and see what they can do about it. Thanks for the article, and the BLAZING fast response, keep up the great work!!
–
Dan
Perishable – #7
No sweat — let me know how it goes!
JakubG – #8
Works like a charm.. You just saved my day. Thanks a million.
Jeff Starr – #9
@JakubG: My pleasure — glad to be of service! :)
Trackbacks / Pingbacks