From 870ce9e4682961a288248b239e3f78fe18709090 Mon Sep 17 00:00:00 2001 From: Romain Courteaud <romain@nexedi.com> Date: Fri, 19 Aug 2011 14:35:46 +0200 Subject: [PATCH] Make attacks slightly more difficult in some cases. This is mandatory for PCI compliancy. --- slapos/recipe/erp5/template/apache.zope.conf.in | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/slapos/recipe/erp5/template/apache.zope.conf.in b/slapos/recipe/erp5/template/apache.zope.conf.in index f24a5327b..a63d29299 100644 --- a/slapos/recipe/erp5/template/apache.zope.conf.in +++ b/slapos/recipe/erp5/template/apache.zope.conf.in @@ -26,6 +26,10 @@ TypesConfig conf/mime.types AddType application/x-compress .Z AddType application/x-gzip .gz .tgz +ServerTokens Prod +ServerSignature Off +TraceEnable Off + # As backend is trusting REMOTE_USER header unset it always RequestHeader unset REMOTE_USER -- 2.30.9