Free CompTIA Security+ SY0-601 Practice Question

A developer is designing a web application and wants to ensure that detailed error messages do not expose sensitive system information to potential attackers. Which approach should the developer take when implementing error handling for the web application to enhance security?

  • Display a generic error message to the user and log the details of the error internally for review by developers.

  • Customize HTTP response codes to indicate the specific type of error that occurred.

  • Provide detailed error messages including system architecture and software version numbers.

  • Redirect the user to the home page whenever an error occurs without displaying any message.

This question's topic:
CompTIA Security+ SY0-601 / 
Attacks, Threats, and Vulnerabilities
Your Score:

Check or uncheck an objective to set which questions you will receive.