Hide the Nginx version in response headers

Posted on Mon 04 October 2021 in devops • Tagged with devops, k8s, nginx, security

We run a couple of Kubernetes (k8s) clusters in Azure and on the back of a pentest exercise we were requested to ensure that we do not return the Nginx version in the HTTP response headers.

Due to our Infrastructure as Code (IaC) first approach we could easily ensure this …


Continue reading