Basic security for Apache
At production environment, it is not wise to show Apache server version.
Edit /etc/httpd/conf/httpd.conf
ServerSignature Off
ServerTokens Prod
TraceEnable off
sed -i -e '/ServerSignature/ s/On/Off/' /etc/httpd/conf/httpd.conf
sed -i -e '/ServerTokens/ s/OS/Prod/' /etc/httpd/conf/httpd.conf
echo "TraceEnable off" >> /etc/httpd/conf/httpd.conf
Comments
Post a Comment