How to prevent "awselb/2.0" server information exposure in HTTP response header?
How to prevent "awselb/2.0" server information exposure in HTTP response header?
Please provide a solution to the official exposure of "awselb/2.0" to the server response header on AWS.
Example) Option to remove http response header
- Le plus récent
- Le plus de votes
- La plupart des commentaires
Hi,
According to other re:post answers, It is not possible to configure the ELB to do not expose that header.
However, as a workaround, you can override the value using CloudFront edge functions.
Note even when using. Cloudfront the alb will have to be public still(internet facing). Even if you could mask the server header the IP addresses are registered with AWS
It is not possible to hide this header directly on Application Load Balancer. Use Amazon CloudFront's Response Headers Policies instead. Please see my response to a similar question on re:Post, on How to prevent "awselb/2.0" server information exposure in HTTP response header.
Contenus pertinents
- demandé il y a 2 mois
- demandé il y a un an
- demandé il y a un an
AWS OFFICIELA mis à jour il y a un an- AWS OFFICIELA mis à jour il y a un an
- AWS OFFICIELA mis à jour il y a 3 ans
- AWS OFFICIELA mis à jour il y a 2 ans
Also, consider opening a support case, and express your use-case why you want to be able to override this header.