Web applications are designed or configured to provide as little error information as possible about the structure of databases.
Topic
Web application interaction with databases
Applicable to
all
History
Priority
should
Mar 2023
Web applications are designed or configured to provide as little error information as possible about the structure of databases.
An existing control relating to web applications being ‘designed’ to provide as little error information as possible about the structure of databases was amended to being ‘designed or configured’ instead.
Mar 2022
Web applications are designed to provide as little error information as possible about the structure of databases.
Miscellaneous changes were made to rationale and recommendations throughout the publication to clarify content without changing intent. This included a review from the Guidelines for System Hardening chapter through to the Guidelines for Data Transfers chapter.
2015
Web applications should be designed to provide as little error information as possible to usersabout DBMS software and database schemas.