Remove Version from Server Header Banner in nginx

Netsparker Web Application Security Scanner - the only solution that delivers automatic verification of vulnerabilities with Proof-Based Scanning™.

By Chandan Kumar on February 19, 2018

Posted in

Mask Nginx version details from the HTTP Response Header.

In default NGINX configuration, Server header banner is ON which exposes what version of Nginx you are using.

This is considered as information leakage vulnerability.

If you are working on auditing or fixing a security issue, then you will be asked to get rid of a version as part of hardening & security.

Implementation

Go to nginx/conf folder
Take a backup of configuration file
Add following in nginx.conf under server section

server_tokens off;

Restart Nginx web server

Verification

You can use online tool Header Checker or developer tools inbuilt in the browser to examine the header.

As you can see, no more version is shown.

I hope this helps and if you are looking to learn Nginx then check out this course by Ray Viljoen.

Power Your Business

Netsparker

Netsparker uses the Proof-Based Scanning™ to automatically verify the identified vulnerabilities with proof of exploit, thus making it possible to scan thousands of web applications and generate actionable results within just hours.

Try Netsparker

Kinsta

Probably the best managed WordPress cloud platform to host small to enterprise sites. Kinsta leverages Google's low latency network infrastructure to deliver content faster. Free SSL, CDN, backup and a lot more with outstanding support. You'll love it.

Try Kinsta

Intruder

A powerful cloud-based vulnerability scanner that finds security flaws in your digital estate, explains the risks & helps with their remediation. Intruder saves you time by reducing complexity & automatically scanning you for the latest vulnerabilities as soon as they emerge, helping to achieve peace of mind.

Try Intruder

Remove Version from Server Header Banner in nginx

Implementation

Verification

Website Speed Test

Geekflare Audit tool let you quickly find out how does
your site perform against best practices, performance and SEO.

Power Your Business

Choosing the right product and service is essential to run an online business. Here are some of the tools and services to help your business grow.

Netsparker

Kinsta

Intruder

Stay up to date

follow Geekflare on LinkedIn

Remove Version from Server Header Banner in nginx

Implementation

Verification

More Great Reading on Geekflare

Configuring Nginx for Performance and Security

How to Enable CORS in Apache and Nginx?

How to Implement CSP frame-ancestors in Apache, Nginx and WordPress?

How to Block Unwanted User-Agent & Referrers in Apache, Nginx and WordPress?

How to Monitor Nginx and PHP Applications with Amplify?

How to Setup Nginx with Let’s Encrypt Cert?

Website Speed Test

Geekflare Audit tool let you quickly find out how does your site perform against best practices, performance and SEO.

Power Your Business

Choosing the right product and service is essential to run an online business. Here are some of the tools and services to help your business grow.

Netsparker

Kinsta

Intruder

Stay up to date

follow Geekflare on LinkedIn

Geekflare Audit tool let you quickly find out how does
your site perform against best practices, performance and SEO.