https://bz.apache.org/bugzilla/show_bug.cgi?id=58750
--- Comment #4 from Konstantin Kolinko <knst.koli...@gmail.com> --- 1. The place to patch is org.apache.coyote.http11.Http11Processor.prepareResponse() If this feature is enabled, then it means that 1) if none Server header is set by a web application, we should skip adding the default one 2) if a Server header was set by a web application, we should remove it 2. A possible value to trigger this feature could be setting an empty string, but that value is already used as a synonym for no value (null), by Http11Processor.setServer() setter method. 3. For reference, the Server header is defined for HTTP/1.1 by RFC 7231 ch.7.4.2. https://tools.ietf.org/html/rfc7231#section-7.4.2 A server "MAY" generate it. There is no obligation to actually generate it. Skipping the Server header saves several bytes of bandwidth. -- You are receiving this mail because: You are the assignee for the bug. --------------------------------------------------------------------- To unsubscribe, e-mail: dev-unsubscr...@tomcat.apache.org For additional commands, e-mail: dev-h...@tomcat.apache.org
