In the actual production environment we need to hide the Apache version of the Web site information to achieve the security of information, to hide the Apache version information is not detected.
Server and Apache version information can also be seen in HTTP header information
650) this.width=650; "Src=" Http://s1.51cto.com/wyfs02/M02/85/73/wKiom1ej8CjB5PSuAABCQkgTD0g668.png-wh_500x0-wm_3 -wmp_4-s_3928622257.png "title=" 1.png "alt=" Wkiom1ej8cjb5psuaabcqkgtd0g668.png-wh_50 "/>
We can modify the file of the path of Apache environment, add the following 2 lines at the end
[[email protected] ~]# vim/usr/local/apache/conf/httpd.confserversignature off# is primarily to allow Apache Web server to hide Apache on all error pages Version information. Servertokens prod# is primarily intended to compress the server tag to a minimum in the HTTP response header, otherwise the Apache server will still contain a detailed server tag in the HTTP response headers, which will leak the Apache version number.
Then restart Apache, so it hides the Apache version information.
650) this.width=650; "Src=" Http://s5.51cto.com/wyfs02/M02/85/73/wKioL1ej8VyQKDB5AABBzZzVkQ8134.png-wh_500x0-wm_3 -wmp_4-s_2531082442.png "title=" 2.png "alt=" Wkiol1ej8vyqkdb5aabbzzzvkq8134.png-wh_50 "/>
There is also a need to clean up the phpinfo files used during site testing to prevent the information being sniffed into PHP
This article is from the "Technical essay" blog, please be sure to keep this source http://jim123.blog.51cto.com/4763600/1834625
Web-Hidden Apache version information in Apache environment