Hide the Apache version number and other sensitive information

After the installation of Apache is generally the first time to turn off Apache version information and other information, some hackers will be exposed through Apache information targeted intrusion, in order to secure the server this information must be closed in a timely manner, configured as follows

1.Hide Apache Information

1.1 Enable httpd-default.conf in master configuration

# vi/usr/local/apache2/conf/httpd. Conf

Find httpd-default.conf, delete the "#" in front of includes, and change to the following

Includeconf/Extra/httpd-default.conf

servertokens full               

serversignature on

Change into

Servertokens Prod Configuration Server HTTP response header only responds to Apache does not display the version and other information

serversignature if

2. Testing

2.1 Before modification

650) this.width=650; "title=" hides the Apache version number and other sensitive information "alt=" prod "class=" Size-full wp-image-3317 "src="/HTTP/ Www.ttlsa.com/wp-content/uploads/2013/10/%E9%9A%90%E8%97%8Fapache%E4%BF%A1%E6%81%AF-1.jpg "width=" 476 "height=" 274 "style=" border:0px;font-family:inherit;font-style:inherit;margin:0px;padding:0px;vertical-align:middle; Height:auto; "/>

2.2 After hiding

650) this.width=650; "title=" hides the Apache version number and other sensitive information "alt=" prod "class=" Size-full wp-image-3319 "src="/HTTP/ Www.ttlsa.com/wp-content/uploads/2013/10/%E9%9A%90%E8%97%8Fapache%E4%BF%A1%E6%81%AF-3.jpg "width=" 436 "height=" 279 "style=" border:0px;font-family:inherit;font-style:inherit;margin:0px;padding:0px;vertical-align:middle; Height:auto; "/>

3. End

Configuration complete, very simple.

Hide the Apache version number and other sensitive information