Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Now on some sites you can edit the "server" details to only show Apache Webserver. Or anything you want. I wanted to know how do I edit the header response to not show server details?
I checked the httpd.conf file and it was not there, looked manually, and did a few searches... nothing. I also looked in the httpd2.conf for fun and nothing was there either.
Originally posted by Vort3x I checked the httpd.conf file and it was not there, looked manually, and did a few searches... nothing. I also looked in the httpd2.conf for fun and nothing was there either.
Does anyone have any other ideas where I can find how to change the header response?
Look harder. First make sure you are looking at the correct configuration file. If you are 100% sure there is no ServerTokens directive, add the line Capt_Caveman stated above to your config file and restart apache.
I was incorrect, Mandrake adds their own patch to Apache that changes the product name to Apache-AdvancedExtranetServer instead of just Apache, so do you see just Apache or Apache-AdvancedExtranetServer?
Last edited by Capt_Caveman; 12-15-2004 at 06:00 PM.
Originally posted by Capt_Caveman I was incorrect, Mandrake adds their own patch to Apache that changes the product name to Apache-AdvancedExtranetServer instead of just Apache, so do you see just Apache or Apache-AdvancedExtranetServer?
Don't oyu just love vendor-bastardized versions of open-source software?
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.