Additional menu

Geekflare

Technology Blog, Web Tools and Resources to Supercharge Site and Business

Remove Version from Server Header Banner in nginx

Netsparker Web Application Security Scanner – the only solution that delivers automatic verification of vulnerabilities with Proof-Based Scanning™.

by | | Nginx

Mask Nginx version details from the HTTP Response Header.

In default NGINX configuration, Server header banner is ON which exposes what version of Nginx you are using.

This is considered as information leakage vulnerability.

If you are working on auditing or fixing a security issue, then you will be asked to get rid of a version as part of hardening & security.

Implementation

  • Go to nginx/conf folder
  • Take a backup of configuration file
  • Add following in nginx.conf under server section
server_tokens off;
  • Restart Nginx web server

Verification

You can use online tool Header Checker or developer tools inbuilt in the browser to examine the header.

nginx server version

As you can see, no more version is shown.

I hope this helps and if you are looking to learn Nginx then check out this course by Ray Viljoen.

More Reading

Why to pay more?

A curated list of best deals for your website and business. Save some $$$ this season to treat yourself or your family.

Astra

Build a unique website with Astra theme. The great thing is, its light-weight and neatly coded. Tons of customization with just few clicks.

GET 25% OFF

Keeper

A password manager to store your online passwords securely. Stay protected from data breaches and cyber-attacks.

GET 30% OFF

Udemy

Upgrade your skills by taking an online course. More than 100,000 courses to choose from. You can learn from anywhere, any devices.

GET 90% OFF

Thor

A powerful security software to protect from viruses, malware, ransomware, online threats. Secure your data and online identity today!

GET 70% OFF

A2 Hosting

Load your website up-to 20 times faster by hosting on A2 platform. Free SSL cert, WordPress optimized server, money-back and more.

GET 60% OFF

Malcare

A smart firewall and security plugin for WordPress to keep it secure from malicious requests, online threats, spam and more.

GET 25% OFF