How to prevent "awselb/2.0" server information exposure in HTTP response header?
How to prevent "awselb/2.0" server information exposure in HTTP response header?
Please provide a solution to the official exposure of "awselb/2.0" to the server response header on AWS.
Example) Option to remove http response header
- 新しい順
- 投票が多い順
- コメントが多い順
Hi,
According to other re:post answers, It is not possible to configure the ELB to do not expose that header.
However, as a workaround, you can override the value using CloudFront edge functions.
Note even when using. Cloudfront the alb will have to be public still(internet facing). Even if you could mask the server header the IP addresses are registered with AWS
It is not possible to hide this header directly on Application Load Balancer. Use Amazon CloudFront's Response Headers Policies instead. Please see my response to a similar question on re:Post, on How to prevent "awselb/2.0" server information exposure in HTTP response header.
関連するコンテンツ
AWS公式更新しました 2年前
Also, consider opening a support case, and express your use-case why you want to be able to override this header.