You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Hello ... Sorry I couldn't check everything about it in details, but I knew that the Server header couldn't be removed since the last upgrade of NWebsec.
I suggest changing the value of the server header as a kind of obfuscation instead of totally removing it. I have tried changing the Server header into something like Apatche and it worked and IIS didn't realize the change.
The text was updated successfully, but these errors were encountered:
Well, opinions vary on whether the server header really exposes valuable information. See the last couple of paragraphs in the docs for Suppressing version headers.
I suggest we leave this issue hanging, and I'll have another look at it when I'm done with the work to support ASP.NET vnext.
Hello ... Sorry I couldn't check everything about it in details, but I knew that the Server header couldn't be removed since the last upgrade of NWebsec.
I suggest changing the value of the server header as a kind of obfuscation instead of totally removing it. I have tried changing the Server header into something like Apatche and it worked and IIS didn't realize the change.
The text was updated successfully, but these errors were encountered: