Sending the server signature is unnecessary and might leak some internal information (although ServerTokens is already set to "Prod").

Signed-off-by: Peter Müller peter.mueller@link38.eu --- config/httpd/global.conf | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/httpd/global.conf b/config/httpd/global.conf index 6cc69b55e..cc8000379 100644 --- a/config/httpd/global.conf +++ b/config/httpd/global.conf @@ -1,5 +1,5 @@ Timeout 300 -ServerSignature on +ServerSignature off UseCanonicalName off ServerTokens Prod LogLevel warn