User Tools

Site Tools

Trace: innodb_vs_myisam mysql_maxconnections apache_security_version
apache_security_version

This is an old revision of the document!

Hiding apache version

If you run a curl on your website similar to the curl below, does it return apache versions?
This is NOT secure. We will now make a simple change to the httpd.conf or apache2.conf file to hide this

Example curl:

curl -LIsX GET lukeslinux.co.uk | grep -i apache
To hide the php value, turn the following value Off 
ServerSignature On;
You will also need to change the following value: 
ServerTokens Prod
Restart apache and you are done. Test again by rerunning the curl command.

apache_security_version.1450802503.txt.gz · Last modified: 2024/05/23 07:26 (external edit)
Except where otherwise noted, content on this wiki is licensed under the following license: Public Domain
Public Domain Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki