Hi ,
Before making any change make sure to backup
- Locate this file on your server where you intend to disable server signature " C:\IBM\WebSphere\AppServer\profiles\<profile_name>\config\cells\<cell_name>\nodes\<node_name>\servers\<server_name>\server.xml"
- Backup this file
- edit this file and locate the <webContainer> Element "<webContainer invokeFlushAfterService="false" maxConnections="100" ..."
- append this value here " suppressIBMExtensionHeader="true" "
- This attribute, when set to "true" will suppress the IBM-specific server signature.
- save server.xml
- synch node & restart JVM's
This should then suppress IBM-Specific server signature from the application deployed on WAS
Please note that making changes to the server.xmk file can affect the behavior of your WebSphere Application Server, so proceed with caution and ensure you have a backup of the original configuration. Additionally, be aware that the exact paths and configuration details may vary depending on your specific installation and version of WebSphere Application Server.
------------------------------
Thanks,
Shiv
Shivraj Mudaliyar
Associate Director | Enterprise Architecture
Kyndryl Ireland
------------------------------
Original Message:
Sent: Fri September 15, 2023 01:54 AM
From: ravi pal
Subject: Server Signature
Hi All,
Due to Vulnerability issue, I want to disable the server signature in XML file of WebSphere Application that is on windows server, Pls help me with steps and XML steps also, thanks
------------------------------
ravi pal
------------------------------