Turning Off Server Signatures: A Step-by-Step Guide

"

Start reading

In the ever-evolving landscape of online security, one often underestimated vulnerability lies in the information servers reveal about themselves – the server signature. Disabling this feature is crucial in fortifying your website against potential threats. In this comprehensive guide, we’ll walk you through two methods to turn off server signatures, ensuring a safer digital space for your website.

Why Disable Server Signatures?

Attackers can leverage server signatures to their advantage during cyber attacks. Turning off this feature becomes imperative to enhance your website’s security and prevent potential vulnerabilities from being exploited.

How do you check your website’s server signatures?

The best way to determine if your website’s server signatures are exposed is by using our free tool. Navigate to the Security section, and it will inform you if your server signature is public. If it is, take immediate action to turn it off.

How to Turn Off Server Signature?

The guidance provided varies depending on the server you use, but rest assured, we’ll provide step-by-step instructions tailored to your specific platform.

Method 1: Apache Servers

  1. Locate your Apache config file:
    • For Ubuntu, Debian, or Linux Mint: [file path]
    • For Fedora, CentOS, RHEL, or Arch Linux: [file path]
  2. Add the following two lines to the end of the config file:
ServerSignature Off ServerTokens Prod

Method 2: Using .htaccess

  1. Navigate to your public_html folder via FTP to reveal hidden files.
  2. Open the .htaccess file.
  3. Add the following code to disable the server signature:
# Disable server signature ServerSignature Off

Method 3: WordPress Plugin

If you’re using WordPress with plugins like Yoast, follow these steps:

  1. Click on the Yoast plugin and select Tools.
  2. Open the file editor and place the following code at the bottom after </IfModule>:
# START-Disable server signature # ServerSignature Off # END-Disable server signature #

3. After making changes, refresh If SEO report you did earlier to check if the Server Signature section turns green.

Conclusion

Congratulations! By following these simple steps, you’ve successfully turned off your website’s server signature, taking a significant stride in securing your online space.

Regularly check and update your security measures to ensure a continuously safe online presence.

Pick your next post

Unravelling the Power of UUIDs: Your Key to Uniqueness

Unravelling the Power of UUIDs: Your Key to Uniqueness

Apr 18, 2024

In a world overflowing with data, ensuring the individuality of every piece of information is paramount. Enter UUIDs, or Universally Unique Identifiers – your digital guardians of distinction. These seemingly random strings of numbers and letters act as unmistakable...

read more
QR Codes: Your Shortcut to the Digital World

QR Codes: Your Shortcut to the Digital World

Apr 18, 2024

Forget wasting time typing in URLs or fumbling with menus. In our digital world, speed and ease are king. Businesses are always searching for ways to make things smoother, whether pulling up a website or paying for a coffee. That's where QR codes come in – tiny...

read more
Plaintext Emails: Does Your Website Have Them?

Plaintext Emails: Does Your Website Have Them?

Dec 4, 2023

When the term "Plaintext email" comes up, you might initially think we're diving into the world of two primary email types on the internet: plaintext and HTML. However, we focus here on plaintext emails strategically placed on our websites, notably in the footer and...

read more
Read More