Latest TweetsDifference between mod_alias and mod_rewrite perishablepress.com/difference…
Perishable Press

How to Enable PHP Error Logging via htaccess

In this brief tutorial, I will show Apache users how to suppress PHP errors from visitors and enable PHP error logging via htaccess.

Tracking your site’s PHP errors is an excellent way to manage and troubleshoot unexpected issues related to plugins and themes. Even better, monitoring PHP errors behind the scenes via private log is far better than trying to catch them as they appear at random visits. Thanks to the magical powers of htaccess, there is an easy way to implement this effective strategy.

Hide PHP errors from visitors

In our article, , we discuss a technique whereby PHP errors are suppressed via htaccess. This is done by including the following directives to your domain’s httpd.conf or to your site’s root (or other target directory) htaccess file:

# supress php errors
php_flag display_startup_errors off
php_flag display_errors off
php_flag html_errors off

With that in place, PHP errors will no longer be displayed publicly on your site. This eliminates a potential security risk, and keeps those ugly, unintelligible PHP errors from breaking your site layout and disorienting your visitors. No editing required for this code.

Enable private PHP error logging

Now that we have hidden PHP errors from public view, let’s enable the logging of PHP errors so that we can privately keep track of them. This is done by including the following htaccess directives to your domain’s httpd.conf or to your site’s root (or other target directory) htaccess file:

# enable PHP error logging
php_flag  log_errors on
php_value error_log  /home/path/public_html/domain/PHP_errors.log

For this to work, you will need to edit the path in the last line to reflect the actual location of your PHP_errors.log file. Of course, you will need to create this file and subsequently set the file permissions to 755 or, if necessary, 777. Finally, you need to secure the log file itself by adding this final line of code to your htaccess file:

# prevent access to PHP error log
<Files PHP_errors.log>
 Order allow,deny
 Deny from all
 Satisfy All
</Files>

Then, after everything is in place, check that everything is working by triggering a few PHP errors. You may also want to verify protection of your error log by trying to access it via a browser.

Jeff Starr
About the Author Jeff Starr = Creative thinker. Passionate about free and open Web.
Archives
9 responses
  1. Yr codes let my .htaccess spoilt…

    [ Editor’s note: comment edited to remove the redundant list of PHP errors.. ]

  2. Nvm. i think i got it mix up.

  3. Jeff Starr

    Hopefully everything worked out for you, jonathan..

  4. Seems to cause an error 500 – Internal Server Error on my site…..

  5. Actually, it looks like they do, as the server is running under CGI:
    http://www.danodemano.com/php_info.php

    I’m going to contact the host and see what they can do about it. Thanks for the article, and the BLAZING fast response, keep up the great work!!


    Dan

  6. Jeff Starr

    Some hosts disable this feature by default.. If you have not already done so (and aren’t sure about it), I would contact your host and ask them if php error logging is enabled via htaccess. If necessary, use this article as a reference.

  7. Jeff Starr

    No sweat — let me know how it goes!

  8. Works like a charm.. You just saved my day. Thanks a million.

  9. Jeff Starr

    @JakubG: My pleasure — glad to be of service! :)

[ Comments are closed for this post ]