Don’t Show Exception Message To Users

Today, I went to a web site to enter time for a contract I’m working on and I got this:









Never, ever, ever display messages like this to your users. Number one it makes no sense to them. Number two it could reveal some information that could be used to hack your site. In ASP.NET sites, like this one, always direct the user to a custom error page and display something that makes more sense to them. It’s easy to set this up, click here for a great article about this.

Also, make sure you log the actual error to make it much easier to figure out what went wrong.


Leave a Reply

Fill in your details below or click an icon to log in: Logo

You are commenting using your account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s