Linux, FreeBSD, Juniper, Cisco / Network security articles and troubleshooting guides

FAQ
It is currently Wed May 24, 2017 1:12 pm


Author Message
mandrei99
Post  Post subject: Php hide/remove X-Powered-By HTTP header  |  Posted: Thu Jan 15, 2015 9:35 pm

Joined: Tue Aug 04, 2009 9:16 am
Posts: 245

Offline
 

Php hide/remove X-Powered-By HTTP header

Inspecting HTTP traffic at layer 7 on a fresh http/php web server yelds some interesting results: A php header that exposes the php version.
Here is http traffic as seen on the network with tcpdump:
Code:
Server: nginx
Date: Fri, 16 Jan 2015 00:11:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.20
Cache-Control: private, no-cache="set-cookie"
Expires: 0
Pragma: no-cache
Content-Encoding: gzip


How to configure php from exposing "X-Powered-By" header:. Edit php.ini and change following value:
Code:
expose_php = off





Top
Display posts from previous:  Sort by  
E-mail friendPrint view

Topics related to - "Php hide/remove X-Powered-By HTTP header"
 Topics   Author   Replies   Views   Last post 
There are no new unread posts for this topic. Google reCaptcha not showing in phpbb 3 after moving from HTTP to HTTPS

mandrei99

4

1532

Sat Feb 28, 2015 8:19 am

Abraham12li View the latest post

There are no new unread posts for this topic. PHPBB-SEO sets canonical URL to http when server protocol is set to HTTPS

mandrei99

0

933

Mon Feb 16, 2015 3:51 pm

mandrei99 View the latest post

 

Who is online
Users browsing this forum: No registered users and 0 guests
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum
Jump to:  
News News Site map Site map SitemapIndex SitemapIndex RSS Feed RSS Feed Channel list Channel list


Delete all board cookies | The team | All times are UTC - 5 hours [ DST ]



phpBB SEO