modsecurity problem with SecServerSignature

Discussion in 'Server Operation' started by hhhhhh, Sep 8, 2009.

  1. hhhhhh

    hhhhhh New Member

    Hello,

    I have installed the mod security 2.5.9 to change the Server Signature but it is changing only the first words:

    I have without modsecurity the following:

    Apache 2.2 Ubuntu PHP/5.1.6-2ubuntu4.3 with Suhosin-Patch mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

    And when I install the modsecurity I have:

    Fedora (Red Hat) PHP/5.1.6-2ubuntu4.3 with Suhosin-Patch mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

    That is, it only changes the first words and when I had the other server it changed all like that:

    Fedora (Red Hat)

    I have the Server Tokens with FULL mode and the server signature ON.

    Anyone knows a solution to this?

    Thanks
     
  2. Leszek

    Leszek New Member

    Set expose_php to Off in Your php.ini and restart Apache.
     
  3. hhhhhh

    hhhhhh New Member

    Hello,

    Thank you for your support, now it displays the following:

    Fedora (Red Hat) mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

    How can I remove the "mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80" or at least "mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11)" ?

    Thanks in advance!
     
  4. falko

    falko Super Moderator

  5. hhhhhh

    hhhhhh New Member

    Nothing, I tried all ways but the Signature stay with:

    Fedora (Red Hat) mod_ruby/1.1.6 Ruby/1.8.7(2008-08-11) Server at www.domain.com Port 80

    Seems that I have a module interfering the mod_security in the signature feature. :confused:
     

Share This Page