Showing your Apache version and OS info in the server signature is a bad practice. Specially if you are using WHM CPanel on your server, the signature shows nasty amount of information for outsiders. For example here is the signature from my WHM server
apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635
So how you can stop this behavior? You just need to log in to WHM and do some changes
Navigate to Service Configuration and then Apache Configuration then choose Global Configuration
On this page you can edit the server configuration. Click the little “?” and it will display details about available options
- Product Only (e.g. “Apache”)
- Minimal (e.g Apache/2.2.23)
- OS (e.g Apache/2.2.23 (Unix))
- Full (e.g Apache/2.2.23 (Unix) MyModX/1.3 MyModY/1.4)
Default option is Full hence it displays all the info. Change it according to your choice and click Save button. Then do a Apache restart and that’s it.
For verifying this go to a HTTP Header request site such as http://www.webconfs.com/http-header-check.php
{ 0 comments… add one now }