Difference between revisions of "Poor Logging Practice"

Revision as of 00:05, 18 February 2009

This is a Vulnerability. To view all vulnerabilities, please see the Vulnerability Category page.

This article includes content generously donated to OWASP by

1 Description
2 Risk Factors
3 Examples
4 Related Attacks
5 Related Vulnerabilities
6 Related Controls
7 Related Technical Impacts
8 References

ASDR Table of Contents

Last revision (mm/dd/yy): 02/18/2009

Description

Loggers should be declared to be static and final.

It is good programming practice to share a single logger object between all of the instances of a particular class and to use the same logger for the duration of the program.

Risk Factors

TBD

Examples

The following statement errantly declares a non-static logger.

	private final Logger logger =     
				Logger.getLogger(MyClass.class);

Related Attacks

Related Vulnerabilities

Related Controls

Related Technical Impacts

References

Note: A reference to related CWE or CAPEC article should be added when exists. Eg:

Difference between revisions of "Poor Logging Practice"

Revision as of 00:05, 18 February 2009

Description

Risk Factors

Examples

Related Attacks

Related Vulnerabilities

Related Controls

Related Technical Impacts

References

Navigation menu

Personal tools

Namespaces

Variants

Views

More

Search

Navigation

Reference

Tools

Revision as of 14:58, 5 November 2008 (view source) KirstenS (talk \| contribs) ← Older edit	Revision as of 00:05, 18 February 2009 (view source) KirstenS (talk \| contribs) m (Poor Logging Practice: Logger Not Declared Static Final moved to Poor Logging Practice) Newer edit →
(No difference)