Univention Bugzilla – Bug 56967
UDM REST should not send tracebacks in error messages by default
Last modified: 2024-01-09 10:33:10 CET
+++ This bug was initially created as a clone of Bug #56035 +++ Revealing details about internal errors via the network is generally bad practice. See OWASP: https://owasp.org/www-community/Improper_Error_Handling IMHO, higher network security trumps reduced support handling time (asking for a log file). So the UCR variable directory/manager/rest/show-tracebacks should be set to 'false' by default.