On Fri, 16 Jan 2004, Christian Purnomo wrote: > Hi All > > I'm getting this from my nessus probe, does know a way I can remove the version of > apache server WITHOUT touching the apache source code? > > --- > The remote web server type is : > > Apache/1.3.19 > > The 'ServerTokens' directive is set to ProductOnly > however we could determine that the version of the remote > server by requesting a non-existant page.
You need to also set ServerSignature Off. However, 1.3.19 is seriously bad news, and you should upgrade. -- Rich Bowen - [EMAIL PROTECTED] Apache Administrators Handbook - http://apacheadmin.com/ _______________________________________________ Nessus mailing list [EMAIL PROTECTED] http://mail.nessus.org/mailman/listinfo/nessus
