How to turn off Apache server signature on WHM Cpanel

by Ruchira on January 6, 2013

Showing your Apache version and OS info in the server signature is a bad practice. Specially if you are using WHM CPanel on your server, the signature shows nasty amount of information for outsiders. For example here is the signature from my WHM server

apache/2.2.23 (Unix) mod_ssl/2.2.23 OpenSSL/0.9.8e-fips-rhel5 mod_auth_passthrough/2.1 mod_bwlimited/1.4 FrontPage/5.0.2.2635

So how you can stop this behavior? You just need to log in to WHM and do some changes

Navigate to Service Configuration and then Apache Configuration then choose Global Configuration

 

server tokens whm

 

On this page you can edit the server configuration. Click the little “?” and it will display details about available options

  • Product Only (e.g. “Apache”)
  • Minimal (e.g Apache/2.2.23)
  • OS (e.g Apache/2.2.23 (Unix))
  • Full (e.g Apache/2.2.23 (Unix) MyModX/1.3 MyModY/1.4)

 

Default option is Full hence it displays all the info. Change it according to your choice and click Save button. Then do a Apache restart and that’s it.

For verifying this go to a HTTP Header request site such as http://www.webconfs.com/http-header-check.php

I'm Ruchira Sahan and all posts on this blog are completely my thoughts and writings. I love DIY and Technology. So feel free to contact me for anything about this blog and don't forget to add a comment if this blog helped you! Thanks
Ruchira
View all posts by Ruchira

Last 5 posts by Ruchira

Previous post:

Next post: