Create Server Tokens disabled option

tBartel03

Member
Apr 4, 2020
10
0
1
United States
cPanel Access Level
Root Administrator
Server Tokens is currently set to Product Only (e.g. “Apache”) on my server though I want to outright disable that header. It serves no purpose for my clients or I and only serves to let potential threats be aware of what to expect on the server. Please implement an option to outright disable this header.
 

tBartel03

Member
Apr 4, 2020
10
0
1
United States
cPanel Access Level
Root Administrator
Basically the header exists and is forced by Apache because of statistics in regards to Nginx. So effectively unless we compile our own copy of Apache the header will continue to be forced by Apache.
 

cPanelKenneth

cPanel Development
Staff member
Apr 7, 2006
4,607
79
458
cPanel Access Level
Root Administrator
Pure speculation: it sounds like it's not just a recompile; one needs to make a change to the httpd source code before recompile. And that change will need made every time httpd gets an update.