隐藏或修改nginx返回的Server信息(以及隐藏版本号)

如何隐藏nginx版本号:

[root@localhost /]# vi /etc/nginx/nginx.conf
[root@localhost /]# nginx -t
[root@localhost /]# nginx -s reload
配置文件中,http区段中插入“server_tokens off;”,重新载入配置文件

复制代码
worker_processes 1;
events {
worker_connections 1024;
}
http {
include mime.types;
default_type application/octet-stream;
server_tokens off;
expires 5s;
sendfile on;
复制代码
隐藏或修改nginx返回的Server信息:

复制代码
[root@localhost /]# vi /opt/nginx/nginx-1.2.0/src/http/ngx_http_special_response.c
找到29行:修改展示名称(LLSERVER)
[root@localhost /]# ”


LLSERVER
” CRLF
[root@localhost /]# cd /opt/nginx/nginx-1.2.0/src/http/ngx_http_header_filter_module.c
[root@localhost /]# vi /opt/nginx/nginx-1.2.0/src/http/ngx_http_header_filter_module.c
找到49和50行: 修改展示名称(Server: LLSERVER)
[root@localhost /]# static char ngx_http_server_string[] = “Server: LLSERVER” CRLF;
[root@localhost /]# static char ngx_http_server_full_string[] = “Server: LLSERVER ” NGINX_VER CRLF;
复制代码
隐藏nginx请求头header:修改nginx.conf ,在location中添加配置如下:
[root@localhost /]# proxy_hide_header X-Frame-Options; //将X-Frame-Options换成Location
[root@localhost /]# add_header X-Frame-Options SAMEORIGIN always; //将X-Frame-Options换成Location

扫码领红包

微信赞赏支付宝扫码领红包

发表回复

后才能评论