Don’t Show Exception Message To Users

Today, I went to a web site to enter time for a contract I’m working on and I got this:

ScreenShot

 

 

 

 

 

 

 

Never, ever, ever display messages like this to your users. Number one it makes no sense to them. Number two it could reveal some information that could be used to hack your site. In ASP.NET sites, like this one, always direct the user to a custom error page and display something that makes more sense to them. It’s easy to set this up, click here for a great article about this.

Also, make sure you log the actual error to make it much easier to figure out what went wrong.