Finally figured out how to hide the fact that apache and PHP weren't the latest version. Needed to do this becuase of PCI checking on the server which doesn't taken into account that the non-latest versions of the software have backported security.
Apache:
edit /etc/apache2/apache.conf and set:
edit php.ini and set:
Apache:
edit /etc/apache2/apache.conf and set:
ServerSignature OffPHP:
ServerTokens Prod
edit php.ini and set:
expose_php = OffFor plesk, the php.ini file is in /usr/local/psa/admin/conf on a Debian related system. The httpd.conf file is in this directory too.
No comments:
Post a Comment