Let's say something happens in your application, like some exception thrown. As a developer I would like to see it, but I don't want the typical site user to see it too (it exposes paths and stuff).
I noticed that some sites are encrypting the error message, and the users see:
Oh shit something went wrong. Give this code to the site admin:
*&#BFO*&@BF#*&@BH#OGF*@B#(G*O&GBO*@#BG*@#BG*@BO#GO*@B#(GP
*O&QBOF*UB@#GOF*&B@#G*&OGB*@#O&BG*&@#BG(P*@#HNFIO@NW#FKLJ
*@UB#FO@#B*FB*OBF*O&BW#O*FBWO*G#B&*OGB*W#BGLKJWBGLKJBGLKJ
or something like that. Then the developer can decrypt it and see the message.
Is this a good or bad idea?
Are there any better ways?