nhh221 /etc/apache2/conf # grep ServerTokens commonapache2.conf ### ServerTokens ServerTokens Full I wonder whether the setting: ServerTokens Prod instead of "Full" is more secure ? Reproducible: Always Steps to Reproduce: 1. 2. 3.
Full is the default upstream, but I would be in favour of this change. Anyone against changing ServerTokens to 'Prod' ?
This is only security by obscurity, but I've got no solid objections against it (as can tweak it anyway).
in cvs