Description | This article describes how the user could verify if the server information in the HTTP header is hidden by the signatures of the FortiWeb. |
Scope | FortiWeb v7.4.x |
Solution |
The user does not want the information from the server could be visible to the end client. The information could be visible in the HTTP response sent to the end client.
To hide the server information signature needs to be enabled and the category in information disclosure in action 'erase' in the signature profile corresponding to the server policy.
An attack log will be visible with the match of the signature.
|
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.