9 Sep
2010
9 Sep
'10
12:29 a.m.
John Doe wrote:
Every few days I see in the logwatch on my Centos-5.5 web-server what seems like a rather feeble break-in attempt.
Maybe just make sure your set apache ServerSignature to Off...
Thanks for the suggestion.
I looked at my /etc/httpd/conf/httpd.conf and I saw that ServerSignature was indeed set to On. This must have been the default, as I certainly would not have changed it, since I found the explanation of its purpose completely incomprehensible: ------------------------------------ # Optionally add a line containing the server version and virtual host # name to server-generated pages ------------------------------------
I have changed it to Off, and restarted the httpd service.
--
Timothy Murphy
e-mail: gayleard /at/ eircom.net
tel: +353-86-2336090, +353-1-2842366
s-mail: School of Mathematics, Trinity College, Dublin 2, Ireland