2025-03-12 00:17:19 +05:30
|
|
|
id: file-disable-server-header
|
2025-02-21 00:28:06 +05:30
|
|
|
|
|
|
|
|
info:
|
2025-03-12 00:17:19 +05:30
|
|
|
name: Disable Apache2 Server Header
|
2025-02-21 00:28:06 +05:30
|
|
|
author: pussycat0x
|
|
|
|
|
severity: medium
|
|
|
|
|
description: |
|
|
|
|
|
Ensures that 'ServerTokens Prod' and 'ServerSignature Off' are correctly set in Apache to prevent server information leakage.
|
|
|
|
|
remediation: |
|
|
|
|
|
Set 'ServerTokens Prod' and 'ServerSignature Off' in Apache configuration and restart the service.
|
|
|
|
|
reference:
|
|
|
|
|
- https://httpd.apache.org/docs/2.4/mod/core.html#servertokens
|
|
|
|
|
- https://httpd.apache.org/docs/2.4/mod/core.html#serversignature
|
|
|
|
|
metadata:
|
|
|
|
|
verified: true
|
2025-04-09 16:01:27 +05:30
|
|
|
tags: audit,config,file,apache,hardening
|
2025-02-21 00:28:06 +05:30
|
|
|
|
|
|
|
|
file:
|
|
|
|
|
- extensions:
|
|
|
|
|
- conf
|
|
|
|
|
|
|
|
|
|
matchers-condition: and
|
|
|
|
|
matchers:
|
|
|
|
|
- type: word
|
|
|
|
|
words:
|
2025-03-12 00:17:19 +05:30
|
|
|
- "<Directory"
|
|
|
|
|
- "<FilesMatch"
|
2025-02-25 09:17:12 +05:30
|
|
|
condition: and
|
2025-02-21 00:28:06 +05:30
|
|
|
|
|
|
|
|
- type: word
|
|
|
|
|
words:
|
2025-02-25 09:17:12 +05:30
|
|
|
- "ServerTokens Prod"
|
2025-02-21 00:28:06 +05:30
|
|
|
- "ServerSignature Off"
|
2025-02-25 09:17:12 +05:30
|
|
|
condition: and
|
2025-04-09 11:57:32 +00:00
|
|
|
negative: true
|
|
|
|
|
# digest: 4a0a00473045022069c695bf78d378721446f01071fb8472f9be65761bc798e04b782bf32ab0d17a022100e0ef287a95163f2ee1e8b3df27c7990a02da468ecd4cd4890c549ab13e28c4ae:922c64590222798bb761d5b6d8e72950
|
