[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world
- Subject: Re: [cobalt-users] Hide version of Apache, PHP, OpenSSL,.... to world
- From: "Brian Curtis" <admin@xxxxxxxxxxx>
- Date: Tue Dec 19 10:25:00 2000
- Organization: Pomfret Computer Technologies
- List-id: Mailing list for users to share thoughts on Cobalt products. <cobalt-users.list.cobalt.com>
> > > Apache/1.3.6 (Unix) PHP/4.0.3pl1 mod_perl/1.21 mod_ssl/2.2.8
> > > OpenSSL/0.9.2b on Linux
> > >
> > > Somebody know how to hide version numbers of this programs ?
> > >
> > > R.Batalla
> >
> > Put the following somewhere in your httpd.conf:
> >
> > ServerTokens OS
> >
> >
> > Which will strip the above output to:
> >
> > Server: Apache/1.3.6 (Unix)
>
> Brian,
> Will this work as well if we put it in the srm.conf instead, since
> httpd.conf gets overwritten each time you change a site through the GUI?
>
> Or is it just that *parts* of the httpd.conf gets overwritten, and we can
> put stuff like this in there at the top, where the info always stays the
> same?
>
> Carrie Bartkowiak
The Apache docs say "configuration file", so I'm assuming it'll work in
httpd.conf only. Try sticking it up towards the top and see if the Cobalt
admin scripts overwrite it. If they do, you can try putting the
ServerTokens string in a separate file, and add an include to the bottom of
your httpd.conf to see if that works. I'm not sure exactly what the Cobalt
scripts overwrite.
Personally, I feel Cobalt should have separated the admin scripts generated
VHOSTS/configs/etc and included them into the original httpd.conf. That way
your own customizations wouldn't be overwritten. Then again, I'm not
Cobalt.
HTH
--
Brian Curtis