Vulnerabilities/

Apache Version Disclosure

Impact: Informational

Description

A bad configured web server can leak Apache version number in the Server HTTP header or in the body of error pages. Attackers use this information for finding vulnerabilities in Apache web server.

Recommendation

Open the Apache configuration file (httpd.conf or apache2.conf ) and add below lines to it.

ServerTokens Prod
ServerSignature Off

Restart the web server

References

Last updated on June 06, 2022

Use SmartScanner Free version to test for this issue

Download