Documentation suggesting users should verify that the database driver they end up using doesn't include sensitive data in exception messages is absent.
\end{result}
Documentation suggesting users should verify that the database driver they end up using doesn't include sensitive data in exception messages is absent.
\end{result}
- \item\pass{} Verify that all non-printable symbols and field
+\notapplicable{\item Verify that all non-printable symbols and field
separators are properly encoded in log entries, to
separators are properly encoded in log entries, to
- prevent log injection.
+ prevent log injection.}
- \begin{result}
- \end{result}
-
- \item\pass{} Verify that log fields from trusted and untrusted
- sources are distinguishable in log entries.
-
- \begin{result}
- \end{result}
+\notapplicable{\item Verify that log fields from trusted and untrusted
+ sources are distinguishable in log entries.}
\item\fail{} Verify that an audit log or similar allows for non-repudiation of key transactions.
\item\fail{} Verify that an audit log or similar allows for non-repudiation of key transactions.