Why is printStackTrace() a security risk for mobile (Android) applications? -
i found several places on internet mention using method
throwable.printstacktrace() in android application poses security risk (and bad coding practice.) understand why security risk? attacker using information provided by
e.printstacktrace(); where e of type exception, instance?
well , developer never want end user understand happening @ of application. following points can think of right now.
a stack trace should never visibile end users
generating stack trace relatively tedious process
many logging frameworks available
printing stack trace not constitute error handling. should combined other information logging , exception handling.
i have used same link answer question both related!