Removing X-Powered-By

by

I think that is controlled by the expose_php setting in PHP.ini:

expose_php = off

Decides whether PHP may expose the fact that it is installed on the server (e.g. by adding its signature to the Web server header). It is no security threat in any way, but it makes it possible to determine whether you use PHP on your server or not.

There is no direct security risk, but as David C notes, exposing an outdated (and possibly vulnerable) version of PHP may be an invitation for people to try and attack it.

More Related Contents:

  1. Why would one omit the close tag?
  2. Create a CSV File for a user in PHP
  3. PHP file_get_contents() and setting request headers
  4. HTTP authentication logout via PHP
  5. Easy way to test a URL for 404 in PHP?
  6. How do I read any request header in PHP
  7. Does $_SERVER[‘HTTP_X_REQUESTED_WITH’] exist in PHP or not?
  8. How do I find the mime-type of a file with php?
  9. Return a PHP page as an image
  10. HTTP Headers for File Downloads
  11. How to prevent my site page to be loaded via 3rd party site frame of iFrame
  12. Show image using file_get_contents
  13. Check if PHP-page is accessed from an iOS device
  14. Caching HTTP responses when they are dynamically created by PHP
  15. Getting HTTP code in PHP using curl
  16. file_get_contents() give me 403 Forbidden
  17. How to send 500 Internal Server Error error from a PHP script
  18. Request headers bag is missing Authorization header in Symfony 2?
  19. How to get final URL after following HTTP redirections in pure PHP?
  20. How to use the CSV MIME-type?
  21. How can I set a cookie and then redirect in PHP?
  22. PHP cURL how to add the User Agent value OR overcome the Servers blocking cURL requests?
  23. Get “Content-Type” header of request in PHP
  24. How to properly use Bearer tokens?
  25. header(“Content-type: text/css”); is working in Firefox and Chrome, but in Internet Explorer 9 it shows up as ‘text/html’
  26. Can I serve MP3 files with PHP?
  27. Is header(‘Content-Type:text/plain’); necessary at all?
  28. using header() to rewrite filename in URL for dynamic pdf
  29. Parsing HTTP_RANGE header in PHP
  30. Downloading a file with a different name to the stored name

Leave a Comment