• We value your experience with Plesk during 2024
    Plesk strives to perform even better in 2025. To help us improve further, please answer a few questions about your experience with Plesk Obsidian 2024.
    Please take this short survey:
    https://pt-research.typeform.com/to/AmZvSXkx
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Question ServerSignatur turn off

Hi hume1991,

the "ServerSignature" can be turned off for your apache - webserver at the serverwide webserver - configuration file "apache2.conf" ( Debian/Ubuntu - based systems ) or "httpd.conf" ( CentOS/RHEL - based systems ).

Example to add:
Code: 
...
ServerSignature Off
ServerTokens Prod
...
 
I've changed it under /etc/apache2/apache2.conf. I could not see any changes. I have rebooted Apache.
I have added under /etc/apache2/apache2.conf

ServerSignature Off
ServerTokens Prod

Header:

HTTP/1.1 200 OK Date: Tue, 27 Jun 2017 14:39:42 GMT Server: Apache X-Powered-By: PHP/7.0.20 P3P: CP="NOI ADM DEV PSAi COM NAV OUR OTRo STP IND DEM" Expires: Wed, 17 Aug 2005 00:00:00 GMT Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0 Pragma: no-cache Set-Cookie: 9979992104c464a6cf7609dd3f830a86=o22c3k59ohhchujkopl1v21gj1; path=/; HttpOnly Last-Modified: Tue, 27 Jun 2017 14:39:42 GMT Vary: Accept-Encoding Content-Encoding: gzip Content-Length: 8521 Content-Type: text/html; charset=utf-8

I have Ubuntu 14.04.5 LTS
 
Hi hume1991,

could you pls. tell us, WHAT you would like to change/modify? If you desire to change/modify "X-Powered-By: PHP/7.0.20", pls. be aware, that this is a PHP - depending setting, which can be set in your depending "php.ini" .

Examples to find and replace all serverwide "php.ini" - files, with the desire to set "expose_php = Off" ( => PHP: Description of core php.ini directives - Manual )
Code: 
cd /etc/php
find ./ -type f -exec sed -i -e 's/expose_php = On/expose_php = Off/g' {} \;

cd /etc/php5
find ./ -type f -exec sed -i -e 's/expose_php = On/expose_php = Off/g' {} \;

cd /opt/plesk/php
find ./ -type f -exec sed -i -e 's/expose_php = On/expose_php = Off/g' {} \;
 
Hello,

With me stands with all expose_php = off. I would not show the value value: PHP / 7.0.20. I want to hide the ServerSiganture at Apache. I do not know how far this is interest, but most sites use SSL.
 
You must log in or register to reply here.

Similar threads

K
Resolved How to turn off PLESK firewall from CLI
Replies
7
Views
445
Kurt Ludikovsky
K
JohnBee
Question Anyone know how to add SSL certificate for mail subdomains
Replies
1
Views
414
ChristophRo
ChristophRo
andreios
Issue Spam filter is turned off for email address but still mails delivered to spam folder
Replies
6
Views
445
Kaspar@Plesk
Kaspar@Plesk
M
Question How can customers disable WordPress update email notifications in Plesk?
Replies
5
Views
791
TeunieP
T
Jan Bludau
Input For security reasons: Turn off outputting PHP Version and also Webserver Version
Replies
0
Views
855
Jan Bludau
Jan Bludau
Back
Top