Securing e-Business Site Content and Suppressing Errors

Aptify strongly recommends that you use HTTP over a Secure Socket Layer (SSL) to secure the e-Business site's content that cannot be accessed without logging in first. This will create an HTTPS site for non-public content. Refer to your specific CMS's documentation for information on how to secure content with SSL.

Also, Aptify strongly recommends that you turn on Custom Errors in your web.config before going live with your site. By default, Sitefinity creates a web site with Custom Errors set to Off, which is useful for development purposes but can expose sensitive web site information when left Off on a public site. Refer to ASP.NET documentation for more information the custom Errors web.config property.