error-handling – Page 2 – WindowsTechs.com

Man in the middle attack error [closed]

Posted on June 20, 2021 by milyjelly 520

(driftnet:2115): WARNING: 13:40:14.085: (../atk adaptor/bridge.c:1018):atk_bridge_adaptor_init: runtime check failed: (root)

Continue reading Man in the middle attack error [closed]→

Why do I keep getting this token error with the cryptography module in python?

Posted on March 30, 2021 by Mr_Westhead

Hello I am making a password manager and I keep getting this token error, this is my first time working with cryptography and working with sqlite in python, I am using the same key to encrypt and decrypt passwords. The user has the option … Continue reading Why do I keep getting this token error with the cryptography module in python?→

Aut2Exe Error kali linux

Posted on January 11, 2021 by bang_jagoet

Error: unable to add resources
c:\users\root\local settings\Application Data\AutoItv3\Aut2Exe\aut2134.tmp.exe

Continue reading Aut2Exe Error kali linux→

Credit card form : Is it neccessary to obscure error messages?

Posted on November 30, 2020 by Christopher Smith

I’m working on designing a credit card payment form whose core functionality is provided by a payment processing company ("upstream").
Upon some transaction errors the upstream returns the detail (*one kind at a time) of the user… Continue reading Credit card form : Is it neccessary to obscure error messages?→

API Returning Java Exception. Safe?

Posted on October 23, 2020 by somexp12

I just wanted to ask if my concerns here are valid.
I am aware that it is unsafe for the API to return a stack trace. I have a similar, but less egregious, situation that I am trying to judge.
Is there also some standard regarding packagin… Continue reading API Returning Java Exception. Safe?→

Pros/Cons for showing a user how many failed login attempts they have remaining before getting blocked?

Posted on August 12, 2020 by Varun S. Ranipeta

For context, my web app will be used by users who don’t have a strong technical background. What are the pros or cons for displaying a message like this?
Something like:

Continue reading Pros/Cons for showing a user how many failed login attempts they have remaining before getting blocked?→

Is there a problem with this approach to handling invalid web probes?

Posted on June 12, 2020 by Quango

Like any other website owner, I get frequent probes for vulnerabilities e.g. .php .sql or .gz pages.

These used to appear in my log files as 404 responses (we host on ASP.NET Core). These also take up server time and processing as it has … Continue reading Is there a problem with this approach to handling invalid web probes?→

XSS Bruteforcing results in 500 internal server error

Posted on June 10, 2020 by Ananda Sai A

I’ve been trying to trigger xss in a website with the following url

https://website.com/login/error?username_or_email=xyz%40gmai.com&redirect_after_login=%2wall

While trying different payloads with Burp Intruder, I noticed that v… Continue reading XSS Bruteforcing results in 500 internal server error→

Does Asp.Net Core exposes too much information for required enums that were not supplied?

Posted on February 14, 2020 by Ilya Chernomordik

I have a simple code for an input model:

public class MyClass
{
[Required]
public MyEnum? Type { get; set; }
}

Now if I do not send Type as a part of json to the request, I get this error from Web.Api:

“The JSON value coul… Continue reading Does Asp.Net Core exposes too much information for required enums that were not supplied?→

Secure error messages from public API

Posted on January 23, 2020 by WendyG

We are writing our first public API.

Now I remember hearing in the past that you shouldn’t give users useful error messages, that allows hackers to learn what your data is.

so if the get is

{
policyNumber: ’43’,
product: ‘car insuranc… Continue reading Secure error messages from public API→