Why do some web servers still provide information on vendor and version in the HTTP response headers

Published: 17/10/2019
Why do some web servers still provide information on vendor and version in the HTTP response headers
Source: SECURITY.STACKEXCHANGE.COM

I think in the security field it is a well-known fact that its not a good idea to let the web server vendor (e.g. Apache) and the version be visible to the outside as this can be used to launch targeted attacks against a specific server implementation. I launched an Apache 2.4 Docker container to see whether that is still the case - and yes, it is. I thought a bit about it. Wouldn't it be great t

Read more
Related news
Comment
FACEBOOK