Problem analysis: When the client connects to the Apache server, Apache will generally return server version, non-default module and other information, for example:
Server: Apache/1.3.26 (Unix) mod_perl/1.26
Solution:
You can make the following settings in Apache's configuration file to minimize the information it returns about the server:
ServerTokens Prod
Note:
After this setting, Apache will also return certain server information. , for example:
Server: Apache
But this will not have much impact on server security, because many scanning software ignores the header information returned by your server when scanning. If you want to change the relevant information returned by the server to:
Server: It iS a nOnE-aPaCHe Server
, then you have to modify the source code.