Suppressing back-end application server identity

Suppressing back-end application server identity

HTTP responses normally include a Server header containing the identity and version of the server that is sending the response. The following example illustrates the header output for a response sent from a back-end junctioned application server:
Content-Type: text/html Date: Tue, 09 Nov 2004 03:34:18 GMT Content-Length: 515 Server: IBM_HTTP_SERVER/1.3.19Apache/1.3.20 (Win32) Last-Modified: Thu, 04 Nov 2004 09:03:46 GMT Connection: close

To suppress back-end application server identity in HTTP server responses, set the suppress-backend-server-identity stanza entry in the [server] stanza of the WebSEAL configuration file to "yes":
[server] suppress-backend-server-identity = yes

The default setting is "no".
Parent topic: Suppression of WebSEAL and back-end server identity