Cybersecurity - Memes

2678 readers

1 users here now

Only the hottest memes in Cybersecurity

founded 2 years ago

MODERATORS

Sam1232188@lemmy.world

neurohost@lemmy.world

Alphadef@programming.dev

CannaVet@lemmy.world

565

Uh oh, somebody's not following best practices, that's a paddlin (europe.pub)

submitted 1 week ago by cm0002@lemmy.world to c/cybersecuritymemes@lemmy.world

103 comments fedilink hide all child comments

you are viewing a single comment's thread
view the rest of the comments

[–] grrgyle@slrpnk.net 8 points 1 week ago

Username/password validation should happen entirely server-side, with as little information as possible provided to the client

Yyyup. This is why you also why it's good practice to respond with HTTP 404 if a public user has tried to access user data they shouldn't have access to, whether it exists or not. Don't give them the hint that they hit a path that has forbidden data.

permalink
fedilink
source
parent