Hello,

I have installed the mod security 2.5.9 to change the Server Signature but it is changing only the first words:

I have without modsecurity the following:

Apache 2.2 Ubuntu PHP/5.1.6-2ubuntu4.3 with Suhosin-Patch mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

And when I install the modsecurity I have:

Fedora (Red Hat) PHP/5.1.6-2ubuntu4.3 with Suhosin-Patch mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

That is, it only changes the first words and when I had the other server it changed all like that:

Fedora (Red Hat)

I have the Server Tokens with FULL mode and the server signature ON.

Anyone knows a solution to this?

Thanks

Set expose_php to Off in Your php.ini and restart Apache.

Hello,

Thank you for your support, now it displays the following:

Fedora (Red Hat) mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

How can I remove the "mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80" or at least "mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11)" ?

Thanks in advance!

Take a look at the ServerSignature and ServerTokens directives: http://httpd.apache.org/docs/2.2/mod/core.html#serversignature

Nothing, I tried all ways but the Signature stay with:

Fedora (Red Hat) mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

Seems that I have a module interfering the mod_security in the signature feature. :confused: