My IA department has run a security can on our MVC application and the following error was displayed: Resource Information in code can easily advertise vulnerabilities to unauthorized users. By placing the references into configuration files, the files can
be further protected by the permissions and will be separated for ease of updating.
I am new to IA application security fixes so any recommendations would be great!
Thanks,
Steve Holdorf
↧
Question Resources available to unauthorized users MVC attack
↧