• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:
    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Resolved Apache TraceEnable off

S

Seba

Basic Pleskian
Following my security path before to submit the system to a penetration test I find that I should disable this feature in Apache

Code: 
TraceEnable off

though I haven't found any article related to Plesk, where should I put this config? in the httpd.conf? or is something that Plesk has already implemented as a default?

What about Nginx?
 
This option is there by default:

# grep -R TraceEnable /etc/httpd/*
/etc/httpd/conf/plesk.conf.d/server.conf:TraceEnable off
 
You must log in or register to reply here.

Similar threads

Jan Bludau
Input For security reasons: Turn off outputting PHP Version and also Webserver Version
Replies
0
Views
855
Jan Bludau
Jan Bludau
H
Question Migrating from Centminmod to Plesk Obsidian on a Dedicated Hetzner Server
Replies
1
Views
696
Kaspar
K
Bitpalast
Resolved Apache web server config files all regenerated nightly since 18.0.48
Replies
7
Views
2K
Peter Debik
P
S
Resolved Plesk penetration test security
Replies
9
Views
4K
Seba
S
B
Issue Nginx add_header not woking inside locations
Replies
1
Views
2K
bernhardh86
B
Back
Top