Question Show version of plesk in sign in (and html code)?

[Azurel]

Server operating system version

AlmaLinux

Plesk version and microupdate number

18.0.62

Does it really make sense to display the version of Plesk for all visitors/hackers at the top of the browser tab for sign in (and more found in the html source)?
I would classify it as an unnecessary risk. If bugs are known for certain versions, can you attack the server more specifically (without testing for it) or am I overestimating the display of the version?
I posted the topic as a question because I could be wrong. What do others think? Of course, it's no protection to leave it out, but I don't see the benefit of doing so either.

 

[AYamshanov]

Hi @Azurel,

"You can set any custom title in Tools & Settings → Plesk Appearance / Branding → Title of Plesk pages"
(c) Remove the version number from the login page

Branding and Themes

 

[Azurel]

I have tested it. Yes you can remove it for the title with custom text, but its still in the html source:

<script type="text/javascript">
//<!--
require.config({"waitSeconds":0,"baseUrl":"\/cp\/javascript\/","urlArgs":"18.0.62-2","paths":{"modules":"\/modules"}});
define('plesk-ui-library', window.PleskUiLibrary); //-->
</script>

Especially if you can change the title, hackers will check for Javascript integration.

 

[AYamshanov]

Likely, it also should be possible to figure out the used version based on a set of other files and their sizes like html, css, js, etc.
Anyway, I understand your question now better, let's wait for other comments.

 

[Azurel]

You are right, but many updates are internal updates, not for plesk gui files. However, I also don't understand why so many (10) additional files (JS+CSS) have to be loaded for a (simple) login.