[OWASP-ESAPI] User Messages and ValidationException
Jim Manico
jim at manico.net
Tue Apr 15 16:15:12 EDT 2008
Jeff,
For my project, I need verbose user-facing messages when a form
submission goes bad. I do not want to divulge security-critical
information, just messages like:
Last Name is required (context + "is required")
Age must be between 1 and 120 (context + " must be between " + min + "
and " + " max")
Do you back this?
--
Jim Manico, Senior Application Security Engineer
jim.manico at aspectsecurity.com | jim at manico.net
(301) 604-4882 (work)
(808) 652-3805 (cell)
Aspect Security™
Securing your applications at the source
http://www.aspectsecurity.com
More information about the OWASP-ESAPI
mailing list