From patchwork Wed Dec  6 00:43:17 2017
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
X-Patchwork-Submitter: =?utf-8?q?Peter_M=C3=BCller?= <peter.mueller@link38.eu>
X-Patchwork-Id: 1578
Return-Path: <development-bounces@lists.ipfire.org>
Received: from mail01.ipfire.org (unknown [172.28.1.200])
	by web02.ipfire.org (Postfix) with ESMTP id 32D6D60D6C
	for <patchwork@ipfire.org>; Tue,  5 Dec 2017 14:43:29 +0100 (CET)
Received: from mail01.ipfire.org (localhost [IPv6:::1])
	by mail01.ipfire.org (Postfix) with ESMTP id 4A90D34F5;
	Tue,  5 Dec 2017 14:43:27 +0100 (CET)
Received: from mx.link38.eu (mx.link38.eu [188.68.43.123])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256
	bits)) (Client CN "mx.link38.eu",
	Issuer "Let's Encrypt Authority X3" (verified OK))
	by mail01.ipfire.org (Postfix) with ESMTPS id CB12334F5
	for <development@lists.ipfire.org>;
	Tue,  5 Dec 2017 14:43:24 +0100 (CET)
X-Virus-Scanned: ClamAV at mx.link38.eu
Received: from mx-fra.brokers.link38.eu (mx-fra.brokers.link38.eu
	[10.141.75.13])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256
	bits)) (Client did not present a certificate)
	by mx.link38.eu (Postfix) with ESMTPS id E852C4016F
	for <development@lists.ipfire.org>;
	Tue,  5 Dec 2017 14:43:17 +0100 (CET)
Received: from localhost (localhost [127.0.0.1])
	(using TLSv1.2 with cipher ECDHE-ECDSA-AES256-GCM-SHA384 (256/256
	bits)) (Client did not present a certificate)
	by mx-fra.brokers.link38.eu (Postfix) with ESMTPSA id 57AC59F412
	for <development@lists.ipfire.org>;
	Tue,  5 Dec 2017 14:43:17 +0100 (CET)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=link38.eu; s=201711;
	t=1512481397; x=1575553397;
	bh=eTB4aVQYWwgqkZJMJdSxTuxZLkDNb1JrLp7JAKNg6qY=;
	h=Date:From:To:Subject:Message-ID:Content-Type:From:To:Subject:Date:
	Cc;
	b=VLMudRNJj/tkN1rsanciWRGV0V1OOk1RJ17FUlMmHB88D/ixJ9ewbVpvvX7nMFrYc
	XhrsV6EhTKN99uQiRMxVxj6wYwc/KJ6O6GJCnlfz9PKqeRTqYv6ZJyod6f1pyt3WvA
	JOwEClfr4AH8Va0/A56zupx7ejwWA6TEqJJErAyo0DeMx8Z6AsVRrJqs0vEOMYNJwv
	Vz7CLS9XCuWEWlnWr0f7UyzIM/L48QOfZhnjaDIx3JV/vZn3LaW3PvrtsSpqCyp2HD
	x0v1koqO0quEF83egcXuIeKHlSZafEJPcWDnl23B08dbIvkIum579vcMZM4DyI91bY
	gT++Ib6yHN6ag==
Date: Tue, 5 Dec 2017 14:43:17 +0100
From: Peter =?utf-8?q?M=C3=BCller?= <peter.mueller@link38.eu>
To: "development@lists.ipfire.org" <development@lists.ipfire.org>
Subject: [PATCH] disable Apache server signature
Message-ID: <20171205144317.3016dee5.peter.mueller@link38.eu>
Organization: Link38
MIME-Version: 1.0
X-BeenThere: development@lists.ipfire.org
X-Mailman-Version: 2.1.21
Precedence: list
List-Id: IPFire development talk <development.lists.ipfire.org>
List-Unsubscribe: <https://lists.ipfire.org/mailman/options/development>,
	<mailto:development-request@lists.ipfire.org?subject=unsubscribe>
List-Archive: <https://lists.ipfire.org/pipermail/development/>
List-Post: <mailto:development@lists.ipfire.org>
List-Help: <mailto:development-request@lists.ipfire.org?subject=help>
List-Subscribe: <https://lists.ipfire.org/mailman/listinfo/development>,
	<mailto:development-request@lists.ipfire.org?subject=subscribe>
Errors-To: development-bounces@lists.ipfire.org
Sender: "Development" <development-bounces@lists.ipfire.org>

Sending the server signature is unnecessary and might leak
some internal information (although ServerTokens is already
set to "Prod").

Signed-off-by: Peter Müller <peter.mueller@link38.eu>
---
 config/httpd/global.conf | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/httpd/global.conf b/config/httpd/global.conf
index 6cc69b55e..cc8000379 100644
--- a/config/httpd/global.conf
+++ b/config/httpd/global.conf
@@ -1,5 +1,5 @@
 Timeout 300
-ServerSignature on
+ServerSignature off
 UseCanonicalName off
 ServerTokens Prod
 LogLevel warn