Overly Detailed Internal Error Messages

Chong Hwi asked September 10, 2020 6:46am in Rails

Chong Hwi September 10, 2020 6:46am

Errors which previously caused stack traces to be shown now only show the following generic error:
"The page you were looking for doesn't exist." However, the server responded with the response code "500 Internal Server Error". This is dangerous as an attacker can deduce the kind of input that causes the server to behave erratically.

I need help for the configuration to keep the generic error, but respond with response code 2XX or 3XX to close this Finding.

Chong Hwi September 24, 2020 5:04am

I need help please

Join the discussion

Create an account Log in

Courses

Rails for Beginners

Advanced Ruby: Behind the Magic

Payments with Rails Master Class

Refactoring Rails

Apps

Hatchbox.io

Jumpstart Rails SaaS Template

Other

Remote Ruby Podcast

GoRails Open Source

Rails Hackathon

Beginner Bounties

Ruby on Rails Job Board

Notifications

Overly Detailed Internal Error Messages

Want to stay up-to-date with Ruby on Rails?