|
#1
09-09-2009, 05:45 AM
|
|||
|
|||
Disable "Server" Header generated by Apache
Hello, i would like to suggest to embrace the disabling of the "server" header generated by apache.
for security reasons i think this information should not be public, right now my server outputs this one: "Server: Apache/2.2.11 (Unix) mod_ssl/2.2.11 OpenSSL/0.9.8i DAV/2 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635" for more information, please visit this article i have found: http://www.graysunderground.com/2008...pache-headers/ I already asked to support if they can disabled it to my baby plan, and it cant, and if you agree in that there is no reason why this header should be public, pls let us know if you plan to disabled it on the servers. 
|
|
#2
09-09-2009, 04:37 PM
|
||||
|
||||
Re: Disable "Server" Header generated by Apache
Things like disabling the header information in apache are known as security through obfuscation. It does nothing to help actually secure the server but it might seem like. Botnets and other automated programs very rarely actually look at the version number that is being shown and just blindly send out the exploit. Companies like Mcaffee routinely scan our servers. They use the information provided to make sure our systems are up to date.
|
 |
| Bookmarks |
«
Previous Thread
|
Next Thread
»
| Thread Tools | |
|
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| "Server Load" in cpanel (is it accurate)? | Apokalupsis | Shared Hosting Support | 11 | 04-02-2008 09:08 PM |
| question about "upgrade server" form | daabomb2002 | Pre-Sales Questions | 2 | 09-25-2007 04:05 PM |
| What is the difference between "Addon Domain" and "Subdomain" | leon | Shared Hosting Support | 11 | 03-17-2007 06:15 AM |
| Unknown Folders Created: ".smileys" & ".x" | chickens | Shared Hosting Support | 6 | 11-22-2006 05:35 PM |
All times are GMT -6. The time now is 05:01 AM.