• Get application security done the right way! Detect, Protect, Monitor, Accelerate, and more…
  • Mask Nginx version details from the HTTP Response Header.

    In default NGINX configuration, the Server header banner is ON which exposes what version of Nginx you are using.

    This is considered as information leakage vulnerability.

    If you are working on auditing or fixing a security issue, then you will be asked to get rid of a version as part of hardening & security.

    Implementation

    • Go to nginx/conf folder
    • Take a backup of a configuration file
    • Add the following in nginx.conf under server section
    server_tokens off;
    • Restart Nginx webserver

    Verification

    You can use an online tool Header Checker or developer tools inbuilt in the browser to examine the header.

    As you can see, no more version is shown.

    I hope this helps and if you are looking to learn Nginx then check out this course by Ray Viljoen.