How to modify the Nginx software name and version number on the network to prevent hackers from attacking the server to collect data information - Code World

How to modify the Nginx software name and version number on the network to prevent hackers from attacking the server to collect data information

Others 2022-04-22 06:02:45 views: 0

Change the source code to hide the Nginx software name and version number

① Modify 3 Nginx source files in turn

# vim /usr/local/src/nginx-1.6.3/src/core/nginx.h

turn up

#define nginx_version 1006003

#define NGINX_VERSION "1.6.3" <-- Change to the version number to be displayed first

#define NGINX_VER "nginx/" NGINX_VERSION <-- Modify to the software name you want to display

#define NGINX_VAR "nginx" <-- Modify to the software name you want to display

#define NGX_OLDPID_EXT ".oldbin"

change into

#define nginx_version 1006003

#define NGINX_VERSION "2.2.23"

#define NGINX_VER "OWS/" NGINX_VERSION

#define NGINX_VAR "OWS"

#define NGX_OLDPID_EXT ".oldbin"

② Modify the second Nginx source file

# vim /usr/local/src/nginx-1.6.3/src/http/ngx_http_header_filter_module.c

turn up

49 static char ngx_http_server_string[] = "Server: nginx" CRLF;

## Modify nginx to the software name you want to display

change into

49 static char ngx_http_server_string[] = "Server: OWS" CRLF;

③ Modify the third file, it will control sensitive information when the website reports external errors

# vim /usr/local/src/nginx-1.6.3/src/http/ngx_http_special_response.c

turn up

"<hr><center>" NGINX_VER "</center>" CRLF

change into

"<hr><center>" NGINX_VER " ([email protected])</center>" CRLF

## This paragraph will be displayed when the website reports an error to the outside world

turn up

"<hr><center>nginx</center>" CRLF

## Modify nginx to the software name you want to display

change into

"<hr><center>OWS</center>" CRLF

④ Compile the software after modification to make it effective. If it is installed software, you need to recompile Nginx and compile it once according to the previous compilation, configure the configuration, and start the service

After recompiling, you also need to kill the previous nginx service, and it will fail after startup.

final result

# curl -I www.123.org

HTTP/1.1 200 OK

Server: OWS

Date: Tue, 24 Apr 2018 14:59:04 GMT

Content-Type: text/html; charset=UTF-8

Connection: keep-alive

X-Powered-By: PHP/5.3.27

Link: <http://www.123.org/wp-json/>; rel="https://api.w.org/"

之前配置了隐藏版本号，所以不显示版本

Guess you like

Origin http://43.154.161.224:23101/article/api/json?id=324855570&siteId=291194637

How to modify the Nginx software name and version number on the network to prevent hackers from attacking the server to collect data information

How to modify server name, ip, dns information in ubuntu 22.04 version

Hide Nginx software version number information

Flutter: How to modify the APP name, logo, and version number on the Android side

How to prevent your website from being hacked? How are hackers made?

nginx modify the default server name

Modify or hide the version number of Nginx

Apple software obtains application information, version number, program name, etc. through the web interface

How to collect business data from Dianping in batches?

nginx how to hide the version information

How to hide a text read or modify information nginx

How to hide version number in Nginx

[Python] Collect data information from e-commerce platforms

How to prevent confidential information from seeping into your code

DNS domain name to collect information

How to prevent users from opening the console to modify css (to prevent removing the watermark)

Modify the version number information of DLL (Exe) under Windows

How to quickly collect the data you want from the massive data?

The main means of attacking websites by hackers

Hackers will make these preparations before attacking!

How to prevent the exclusive legendary version from being stolen?

How to modify the network card's name CentOS 7.6

How to view the version and configuration information linux server

How to modify the env name created by conda on the cloud server

One article to understand: How to prevent data privacy leakage from the source

Nginx modify the port number

Nginx modify the port number

Nginx modify the port number

How to collect industrial data

Read the version of the specified software name from the registry for uninstallation

Recommended

Linus is the most active in "eating dog food"!

Ranking

Share good programmer web front-end array and sorting, de-duplication and random roll call

Compilation error caused by cv_bridge and python version problems error: return-statement with no value, in function returning'void*' [-fpe

魔众帮助中心系统 v3.1.0 首页切换器，界面优化

Die beim Millimeterwellenradar-Integrationstest aufgetretene Grube (Multiprozessbindung an einen UDP-Port verursacht Probleme)

How to suppress the "requires transitive directive for an automatic module" warning properly?

LeetCode-1743. Restore the Array From Adjacent Pairs-Analysis and Code (Java)

Summer 2019 Summer soft essay 7 workers

Python中Assert断言的使用语法和例子

LeetCode one question per day (2021-2-3 sliding window median)

Fairchild, the ancestor of semiconductors, the legend of the first trillion-dollar start-up

Daily

More

2024-05-20(5)

2024-05-19(0)

2024-05-18(31)

2024-05-17(6)

2024-05-16(23)

2024-05-15(5)

2024-05-14(9)

2024-05-13(8)

2024-05-12(28)

2024-05-11(32)