This site is the archived OWASP Foundation Wiki and is no longer accepting Account Requests.
To view the new OWASP Foundation website, please visit https://owasp.org

Poor Logging Practice: Multiple Loggers

From OWASP
Revision as of 15:52, 22 May 2009 by Deleted user (talk | contribs)

Jump to: navigation, search

http://www.textallial.com Template:CandidateForDeletion 

#REDIRECT Poor Logging Practice


Last revision (mm/dd/yy): 05/22/2009

Description

It is a poor logging practice to use multiple loggers rather than logging levels in a single class.

Good logging practice dictates the use of a single logger that supports different logging levels for each class.


Risk Factors

TBD

Examples

The following code errantly declares multiple loggers. 

	public class MyClass {
	  private final static Logger good =     
				Logger.getLogger(MyClass.class);
	  private final static Logger bad =     
				Logger.getLogger(MyClass.class);
	  private final static Logger ugly =     
				Logger.getLogger(MyClass.class);
	  ...
	}


Related Attacks


Related Vulnerabilities

Related Controls


Related Technical Impacts


References

Note: A reference to related CWE or CAPEC article should be added when exists. Eg:



Retrieved from "https://wiki.owasp.org/index.php?title=Poor_Logging_Practice:_Multiple_Loggers&oldid=61336"