My question is whether I can omit my server info from being sent in the http header using php? I know by itself it is not dangerous, but humor me. If I wanted to omit that information, how would I do this. How about if I wanted to insert false server information as to lead potential harmful users astray? I have looked at the php doc, but I could not find it. Thanks.
可以将文章内容翻译成中文,广告屏蔽插件可能会导致该功能失效(如失效,请关闭广告屏蔽插件后再试):
问题:
回答1:
I don't know if using PHP to do this is the right approach. Is the server running Apache? If so, you can add the following options to your config file to hide server info:
ServerTokens ProductOnly
ServerSignature Off
To hide PHP info, edit your php.ini and add the line:
expose_php Off
Or, if this option already exists, change from On to Off.
Reference: http://www.debianadmin.com/apache-tipshide-apache-information-php-software-version.html
{var%20f='http://v.t.sina.com.cn/share/share.php?appkey=1515056452',u=z||d.location,p=['&url=',e(u),'&title=',e(t||d.title),'&source=',e(r),'&sourceUrl=',e(l),'&content=',c||'gb2312','&pic=',e(p||'')].join('');function%20a(){if(!window.open([f,p].join(''),'mb',['toolbar=0,status=0,resizable=1,width=440,height=430,left=',(s.width-440)/2,',top=',(s.height-430)/2].join('')))u.href=[f,p].join('');};if(/Firefox/.test(navigator.userAgent))setTimeout(a,0);else%20a();})(screen,document,encodeURIComponent,'','','https://img.manongdao.com/sparkler-677774__340.jpg', '推荐 女痞 的文章《Changing the http header info to hide server info》','https://www.manongdao.com/article-349618.html','页面编码gb2312|utf-8默认gb2312'));){kind=link}