Zur Navigation springen Zur Suche springen

To configure Apache for maximum anonymity, set the following options in httpd.conf:

ServerTokens Prod ServerSignature Off ServerAdmin

If you are using PHP, set

expose_php = Off

in the php.ini to remove the X-Powered-By Header field.

TODO: Generated ErrorDocuments, directory indexes and much more can also be used for "fingerprinting" webservers.