Web Server returns a valid response with junk HTTP methods
If you have checked your website for vulnerabilities and found: You can go and edit your httpd.conf file and add to your vhosts this lines: After restart apache and check againt it should make you happy
The anti-clickjacking X-Frame-Options header is not present.
If you have this for your site after scanning: Go to apache httpd.conf and add to the bottom of the file After restart the apache server FOR UBUNTU 20.04: First enable mod headers and restart apache2 go to /etc/apache2/conf-enabled/security.conf: find Uncomment Header set X-Frame-Options: “sameorigin” to look like this: And restart apache2 again:
The X-XSS-Protection header is not defined.
If after you have checked your website you see this: Go to httpd.conf and add to the bottom Be shure that Mod_headers is enabledRestart apache
The X-Content-Type-Options header is not set.
For the The X-Content-Type-Options header is not set.Open httpd.conf and add to the bottom
Retrieved x-powered-by header: PHP
If you want to remove the powered by Go to httpd.conf and add to the bottom And restart Apache
Tutorial: How to Disable Track and Trace in apache (TraceEnable Off)
In this simple tutorial I show how to check and disable Apache track and trace. The operating system is CentOS 7 but it can work for CentOS 8 and other distros. Nikto error: Allowed HTTP Methods: TRACE If you want to disable TRACE methods go to httpd.conf and add to the bottom:
config.php: PHP Config file may contain database IDs and pas
If you need to protect your config files go to httpd.conf and add to the bottom: