From mboxrd@z Thu Jan  1 00:00:00 1970
From: Peter =?utf-8?q?M=C3=BCller?= <peter.mueller@link38.eu>
To: development@lists.ipfire.org
Subject: [PATCH] disable Apache server signature
Date: Tue, 05 Dec 2017 14:43:17 +0100
Message-ID: <20171205144317.3016dee5.peter.mueller@link38.eu>
MIME-Version: 1.0
Content-Type: multipart/mixed; boundary="===============6846413697060645581=="
List-Id: <development.lists.ipfire.org>

--===============6846413697060645581==
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: 8bit

Sending the server signature is unnecessary and might leak
some internal information (although ServerTokens is already
set to "Prod").

Signed-off-by: Peter Müller <peter.mueller(a)link38.eu>
---
 config/httpd/global.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/httpd/global.conf b/config/httpd/global.conf
index 6cc69b55e..cc8000379 100644
--- a/config/httpd/global.conf
+++ b/config/httpd/global.conf
@@ -1,5 +1,5 @@
 Timeout 300
-ServerSignature on
+ServerSignature off
 UseCanonicalName off
 ServerTokens Prod
 LogLevel warn
-- 
2.13.6



--===============6846413697060645581==--