Hide Apache Information
To hide the information, add/change the following two apache directives in Apache configuration file /etc/httpd/conf/httpd.conf
ServerTokens ProductOnly
ServerSignature Off
Now you need to restart your web server using the following command
# service httpd restart
Now the output for apache header looks like below
Server: Apache
Hide PHP Version in Apache from remote user’s requests
In your php.ini (the typical path is /etc/php.ini) locate the line containing “expose_php = On” and set it to Off:
expose_php = Off
Now you need to restart your web server using the following command
# service httpd restart
After making this change PHP will no longer add its signature to the web server header. Though, this step in itself will not make your server more secure, it will prevent remote hosts to easily see that you have PHP installed on the system and what version of Apache you are running on your web server.
(No Ratings Yet)
Loading ...
