Tags

, ,

Server signature is one of the easiest way to find what type of  operating system and Apache version is used in a web server. But this is also dangerous when coming to security, whenever a hacker comes to know what type of server and  apache version, hacker can easily track out the information and that leads a way for hacking .

Before server signature is switched off if you type a wrong URL in the browser, the apache server will respond like the requested URL is not found in the server with server signature like operating system and apache version.

Eg.

Not Found

The requested URL /test/test.php was not found on this server.
————————————————————————————————————————————
Apache/2.2.3 (CentOS) Server at localhost Port 80

Steps to disable server signature

1. Navigate to apache configuration and open the httpd.conf file using Vi editor.

2. Find out server signature and turn it off.
ServerSignature OFF

3. Save the configuration and restart the httpd service.

After restarting the httpd service, now you can try opening the wrong URL in the browser. Now the apache server signature will not be shown as follow.

Eg.

Not Found

The requested URL /test/test.php was not found on this server.

I hope this post is very useful for you.

Advertisements