• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 157
  • Last Modified:

Error reporting

Hi,
With regard security, I wanted to know wether it's secure to use if .. else to tell the user of my website wether there is a result or not? Is it a good idea to show a blank screen if there are no results or use if...else to show an error message.

Regards,
0
Shopies
Asked:
Shopies
1 Solution
 
CoccoBillCommented:
Error messages should give relevant and helpful information without revealing anything that might compromise the security. Usually internal system error messages should never be shown to the end user, instead use informative messages that are understandable to your users.

For example, "There are problems connecting to the database, please try again later." might be a good error message to the end user, but fairly useless to an admin. "SQLSRV02.domain.com responded with error code 0x800094383." is way too much information for the end user, but might be helpful to an admin.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Get 10% Off Your First Squarespace Website

Ready to showcase your work, publish content or promote your business online? With Squarespace’s award-winning templates and 24/7 customer service, getting started is simple. Head to Squarespace.com and use offer code ‘EXPERTS’ to get 10% off your first purchase.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now