I'm a bit disappointed that web2py by default sets `X-Powered-By: web2py`
in the http header, thus making it easier for web-scanning tools to detect
the software running behind a web site, and allow more targetted attacks.
Is there an easy config option to efficiently turn this off for all pages
cd web2py/gluon
grep -r X-Powered-By
./globals.py:self.headers['X-Powered-By'] = 'xping'
воскресенье, 12 апреля 2020 г., 16:02:13 UTC+3 пользователь Yan Wong
написал:
>
> I'm a bit disappointed that web2py by default sets `X-Powered-By: web2py`
> in the http header, thus making it easie
yes. This can be in the user's code:
response.headers['X-Powered-By'] = 'xping'
On Sunday, 12 April 2020 12:47:31 UTC-7, Alex Beskopilny wrote:
>
> cd web2py/gluon
> grep -r X-Powered-By
> ./globals.py:self.headers['X-Powered-By'] = 'xping'
>
>
> воскресенье, 12 апреля 2020 г., 16:02:13 U
Hi all,
Not a question but a tip for others experimenting with py4web on GCP App
Engine.
Following the instructions in the _documentation, after a few failed
attempts to access my app (with 502 and 404 errors), I modified the deploy
command in the Makefile by adding the --promote flag to make i
Excellent, thanks Massimo.
On Sunday, March 29, 2020 at 8:46:26 AM UTC+13, Massimo Di Pierro wrote:
>
> We ave a new group for py4web questions and discussions:
>
> https://groups.google.com/forum/#!forum/py4web
>
> Please also use it for pydal, yatl, and pluralize questions.
> For web2py specific
5 matches
Mail list logo
