If you're running a PHP site, please, please turn off display_errors. It's reall... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		Osiris on April 23, 2014 \| parent \| context \| favorite \| on: Odroid-U3: A quad-core 1.7GHz ARM single-board com... If you're running a PHP site, please, please turn off display_errors. It's really bad practice to have your PHP code dumping your query strings to the web when you have a failure.

krapp on April 23, 2014 [–]

If they cared about best practices for PHP they wouldn't be using mysql_real_escape_string().

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact