Article Topic Learning Download Q&A Programming Dictionary Game Recent Updates

简体中文(ZH-CN) English(EN) 繁体中文(ZH-TW) 日本語(JA) 한국어(KO) Melayu(MS) Français(FR) Deutsch(DE)

Home > Backend Development > PHP Tutorial > body text

隐藏Apache、Nginx和PHP的版本号的配置方法

WBOY

Release： 2016-06-20 12:25:39

Original

936 people have browsed it

最近提示说有漏洞，暴露Apache、Nginx和PHP的版本号。现在整理下，方法如下：

首先说apache

在http.conf文件里添加下面两行，默认是没有的

ServerSignature OffServerTokens Prod

Copy after login

ServerSignature出现在Apache所产生的像404页面、目录列表等页面的底部。ServerTokens目录被用来判断Apache会在Server HTTP响应包的头部填充什么信息。如果把ServerTokens设为Prod，那么HTTP响应包头就会被设置成：Server：Apache

Nginx的版本号隐藏有两地方需要修改

1、nginx.conf 文件里的http内部，主要是加上 server_tokens off;

http {    # ...省略一些配置    server_tokens off;  }

Copy after login

2、修改php-fpm的配置文件，需要查看下包含的文件名，默认是fastcgi.conf 文件。

fastcgi_param SERVER_SOFTWARE nginx/$nginx_version;

Copy after login

修改为

fastcgi_param SERVER_SOFTWARE nginx;

Copy after login

3、重启服务器就可以了

nginx -s reload

Copy after login

最后说下php的版本隐藏

http的版本信息一般是暴露在http头部，一般以类似X-Powered-By: PHP/5.2.11这种形式出现。只需修改php.ini文件的 expose_php = On 为 expose_php = Off;就可以了。

然后重新加载php

phpfpm reload

Copy after login

本文永久更新链接地址： http://www.linuxidc.com/Linux/2016-06/132342.htm

Related labels：

隐藏Apache、Nginx和PHP的版本号的配置方法

source：php.cn

Previous article：php设计模式-代理模式 Next article：Yii2-Redis使用小记

Statement of this Website

The content of this article is voluntarily contributed by netizens, and the copyright belongs to the original author. This site does not assume corresponding legal responsibility. If you find any content suspected of plagiarism or infringement, please contact admin@php.cn

Latest Articles by Author

BlackRock Labels BTC a Unique Diversifier

2024-09-20 15:51:33
Internet Computer (ICP) Price Prediction: Will ICP Price Hit $24?

2024-09-20 15:47:32
Worldcoin (WLD) Price Prediction 2022-23

2024-09-20 15:45:32
Top Meme Coins to Invest In Today

2024-09-20 15:39:32
Floki (FLOKI) Price Prediction: Will the Revamped Marketing Help Floki Catch Up on October Gains?

2024-09-20 15:38:32
Next Cryptocurrency to Explode: 5 Coins to Add to Your Watchlist

2024-09-20 15:27:32
Dogecoin: From an Internet Meme to a Digital Currency with a Billion-Dollar Market Capitalization

2024-09-20 15:26:32
ZChains Unveils a Series of Exciting Updates and Launches to Enhance Its Ecosystem

2024-09-20 15:12:32
How to download the Apple version of Little Fox Payment Platform

2024-09-20 14:53:01
How beginners trade on MetaMask and its advantages and disadvantages

2024-09-20 14:51:01

Latest Issues

function_exists() cannot determine the custom function Function test () {return true;} if (function_exists ('test')) {echo "test is function...

From 2024-04-29 11:01:01

0

2

1514

How to display the mobile version of Google Chrome Hello teacher, how can I change Google Chrome into a mobile version?

From 2024-04-23 00:22:19

0

10

1679

The child window operates the parent window, but the output does not respond. The first two sentences are executable, but the last sentence cannot be implemented.

From 2024-04-19 15:37:47

0

1

1422

There is no output in the parent window document.onclick = function(){ window.opener.document.write('I am the output of the child ...

From 2024-04-18 23:52:34

0

1

1352

Where is the courseware about CSS mind mapping? Courseware

From 2024-04-16 10:10:18

0

0

1402

Related Topics

More>

Popular Recommendations

Popular Tutorials

More>

Related Tutorials

Popular Recommendations

Latest courses

Latest Downloads

More>

Web Effects

Website Source Code

Website Materials

Front End Template

About us Disclaimer Sitemap: php.cn：Public welfare online PHP training，Help PHP learners grow quickly！