Linux, FreeBSD, Juniper, Cisco / Network security articles and troubleshooting guides

It is currently Tue Jun 06, 2023 7:26 am

Author Message
Post  Post subject: Php hide/remove X-Powered-By HTTP header  |  Posted: Thu Jan 15, 2015 9:35 pm

Joined: Tue Aug 04, 2009 9:16 am
Posts: 250


Php hide/remove X-Powered-By HTTP header

Inspecting HTTP traffic at layer 7 on a fresh http/php web server yelds some interesting results: A php header that exposes the php version.
Here is http traffic as seen on the network with tcpdump:
Server: nginx
Date: Fri, 16 Jan 2015 00:11:49 GMT
Content-Type: text/html; charset=UTF-8
Transfer-Encoding: chunked
Connection: keep-alive
X-Powered-By: PHP/5.5.20
Cache-Control: private, no-cache="set-cookie"
Expires: 0
Pragma: no-cache
Content-Encoding: gzip

How to configure php from exposing "X-Powered-By" header:. Edit php.ini and change following value:
expose_php = off

Display posts from previous:  Sort by  
E-mail friendPrint view

Topics related to - "Php hide/remove X-Powered-By HTTP header"
 Topics   Author   Replies   Views   Last post 
There are no new unread posts for this topic. Google reCaptcha not showing in phpbb 3 after moving from HTTP to HTTPS




Sat Feb 28, 2015 8:19 am

Abraham12li View the latest post

There are no new unread posts for this topic. PHPBB-SEO sets canonical URL to http when server protocol is set to HTTPS




Mon Feb 16, 2015 3:51 pm

mandrei99 View the latest post


Who is online
Users browsing this forum: No registered users and 0 guests
You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot post attachments in this forum
Jump to:  
cronNews News Site map Site map SitemapIndex SitemapIndex RSS Feed RSS Feed Channel list Channel list

Delete all board cookies | The team | All times are UTC - 5 hours [ DST ]