themactep.com

A home of miscellaneous projects by Paul Philippov.

Notes

How to “secure” a HTTP server by obscuring software identity

$ sudo -s
# a2enmod headers
# echo '
ServerTokens Prod
ServerSignature Off
TraceEnable Off
Header always unset X-Powered-By
Header always unset X-Runtime
' > /etc/apache2/conf-enabled/security-override.conf
# apache2ctl -k restart
# exit