Skip to content

Disable Nginx Server Header

View on Twitter

💡 You can tell Nginx to not reveal its version number to client responses. The less information an attacker has on your system, the better.

👉🏼 Set "server_tokens" value to "off" in the main http directive.

Set server_tokens value to off in the http block to disable emitting nginx version on error pages and in the Server response header.

Download the VPS Security Cheatsheet

Use this FREE security cheatsheet to not miss a step when securing your VPS.

A preview of the VPS Security Cheatsheet.

You'll also get tips on building scalable Node.js applications about twice a month. I respect your email privacy. Unsubscribe any time.

You might also like
Check Worldwide DNS Propagation Read tip
Find Vulnerabilities in Your Nginx Configuration Read tip
Sites-Available vs Sites-Enabled in Nginx Read tip