Comment on Oops, something went wrong!

ImplyingImplications@lemmy.ca ⁨2⁩ ⁨days⁩ ago

Error messages are a common way for hackers to gain information about a system. Useless error messages are recommended for security.

If you enter your username as Robert’'); DROP TABLE Students;-- giving the error “Oops, something went wrong” is better than “NoSuchTable: ‘Students’ Table doesn’t exist in the database” because now the hacker knows you’re using a database that interprets SQL commands and inputs aren’t being sanitized.

Hacking programs like Burp Suite have functions that spam sites with all kinds of garbage data and uses error messages and delays in response times to highlight potential vulnerabilities.

source
Sort:hotnewtop