MISP
/
misp-docker
mirror of https://github.com/MISP/misp-docker
2
0
Fork 0
Code Issues Releases Wiki Activity

hide nginx version from response headers (#99)

pull/107/head
marjatech 2024-08-02 10:54:59 +02:00 committed by GitHub
parent 130a6ba8c0
commit 2739a8c02f
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
core/files/etc/nginx/includes/misp
View File

@ -14,8 +14,9 @@ add_header X-Permitted-Cross-Domain-Policies "none" always;
add_header X-Robots-Tag "none" always; add_header X-Robots-Tag "none" always;
add_header X-XSS-Protection "1; mode=block" always; add_header X-XSS-Protection "1; mode=block" always;
# remove X-Powered-By, which is an information leak # remove X-Powered-By and nginx version, which is an information leak
fastcgi_hide_header X-Powered-By; fastcgi_hide_header X-Powered-By;
server_tokens off;
location / { location / {
try_files $uri $uri/ /index.php$is_args$query_string; try_files $uri $uri/ /index.php$is_args$query_string;