Disable Nginx Server Header

View on Twitter

💡 You can tell Nginx to not reveal its version number to client responses. The less information an attacker has on your system, the better.

👉🏼 Set "server_tokens" value to "off" in the main http directive.

Set server_tokens value to off in the http block to disable emitting nginx version on error pages and in the Server response header.

A preview of the VPS Security Cheatsheet.

Download the VPS Security Cheatsheet

No spam! 🙅🏻‍♀️ Unsubscribe at any time.