Welcome to FreeSoftwareServers Confluence Wiki

I would love to see comments and tips on this post, I will be updating when ever I find anything new and useful!

Example, you know when you go to a website and try to access a page that does not exists

Example http://thetvdb.com/asdawdasd

Look how much information I get about the server!


Now lets visit  Apache.org/asdawdaw


This is The Desired Not Found Page. This is accomplished by editing

sudo nano /etc/apache2/apache2.conf && sudo service apache2 restart

Go all the way to the bottom and add


ServerSignature Off
ServerTokens Prod

The first one, ServerSignature Off tells Apache not to display the server version on error pages, or other pages it generates.





The second one ServerTokens Prod tells Apache to only return Apache in the Server header, returned on every page request.

Apache-ServerTokens Prod



You want BOTH(For SURE) -- *I THINK* ServerTokens Prod has more to do with what is getting passed in the background via http as well as what is displayed, and ServerSignature Off is purely about what is displayed to user via browser.


sudo rm /var/www/html/index.html && sudo touch /var/www/html/index.php 
  • No labels