Suppression of WebSEAL and back-end server identity

Suppression of WebSEAL and back-end server identity

This section contains the following topics:

Suppressing WebSEAL server identity
HTTP responses normally include a Server header containing the identity and version of the server that is sending the response.
Suppressing back-end application server identity

Parent topic: Web server security configuration
Related concepts

Cryptographic hardware for encryption and key storage
Prevention of vulnerability caused by cross-site scripting
Prevention of Cross-site Request Forgery (CSRF) attacks
Platform for Privacy Preferences (P3P)

Related tasks

Configure WebSEAL to support only Suite B ciphers
Configure NIST SP800-131A compliance
Disable HTTP methods