1个回答
展开全部
对于JSF的应用,你可能会在HTTP的头信息中看到这样的字样:
Server : Apache/2.0.61 (Unix)
X-Powered-By : JSF/1.2
让用户知道这些消息没有太大意义,而且可能造成安全漏洞。需要屏蔽的话可以参考以下步骤:
隐藏Server信息:在apache里控制的,在httpd.conf里加入一行
ServerTokens Prod
隐藏X-Powered-By:在web.xml中加入:
view plaincopy to clipboardprint?
01.<context-param>
02. <param-name>com.sun.faces.sendPoweredByHeader</param-name>
03. <param-value>false</param-value>
04.</context-param>
view plaincopy to clipboardprint?
01.<context-param>
02. <param-name>com.sun.faces.sendPoweredByHeader</param-name>
03. <param-value>false</param-value>
04.</context-param>
<context-param>
<param-name>com.sun.faces.sendPoweredByHeader</param-name>
<param-value>false</param-value>
</context-param>
对于JBoss,需要找到这个文件:<JBOSS_HOME>\server\default\deploy\jboss-web.deployer\conf\web.xml,然后加入以下代码:
view plaincopy to clipboardprint?
01.<filter>
02. <filter-name>CommonHeadersFilter</filter-name>
03. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
04. <init-param>
05. <param-name>X-Powered-By</param-name>
06. <param-value>Servlet 2.4; JBoss-4.2.0.GA (build:
07.SVNTag=JBPAPP_4_2_0_GA date=200706281411)/Tomcat-5.5</param-value>
08. </init-param>
09. </filter>
10.↓
11. <filter>
12. <filter-name>CommonHeadersFilter</filter-name>
13. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
14. </filter>
view plaincopy to clipboardprint?
01.<filter>
02. <filter-name>CommonHeadersFilter</filter-name>
03. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
04. <init-param>
05. <param-name>X-Powered-By</param-name>
06. <param-value>Servlet 2.4; JBoss-4.2.0.GA (build:
07.SVNTag=JBPAPP_4_2_0_GA date=200706281411)/Tomcat-5.5</param-value>
08. </init-param>
09. </filter>
10.↓
11. <filter>
12. <filter-name>CommonHeadersFilter</filter-name>
13. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
14. </filter>
<filter>
<filter-name>CommonHeadersFilter</filter-name>
<filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
<init-param>
<param-name>X-Powered-By</param-name>
<param-value>Servlet 2.4; JBoss-4.2.0.GA (build:
SVNTag=JBPAPP_4_2_0_GA date=200706281411)/Tomcat-5.5</param-value>
</init-param>
</filter>
↓
<filter>
<filter-name>CommonHeadersFilter</filter-name>
<filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
</filter>
转载自 http://www.ondev.net/post/show/585
本文来自CSDN博客,转载请标明出处:http://blog.csdn.net/jayliu/archive/2009/04/28/4133793.aspx
Server : Apache/2.0.61 (Unix)
X-Powered-By : JSF/1.2
让用户知道这些消息没有太大意义,而且可能造成安全漏洞。需要屏蔽的话可以参考以下步骤:
隐藏Server信息:在apache里控制的,在httpd.conf里加入一行
ServerTokens Prod
隐藏X-Powered-By:在web.xml中加入:
view plaincopy to clipboardprint?
01.<context-param>
02. <param-name>com.sun.faces.sendPoweredByHeader</param-name>
03. <param-value>false</param-value>
04.</context-param>
view plaincopy to clipboardprint?
01.<context-param>
02. <param-name>com.sun.faces.sendPoweredByHeader</param-name>
03. <param-value>false</param-value>
04.</context-param>
<context-param>
<param-name>com.sun.faces.sendPoweredByHeader</param-name>
<param-value>false</param-value>
</context-param>
对于JBoss,需要找到这个文件:<JBOSS_HOME>\server\default\deploy\jboss-web.deployer\conf\web.xml,然后加入以下代码:
view plaincopy to clipboardprint?
01.<filter>
02. <filter-name>CommonHeadersFilter</filter-name>
03. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
04. <init-param>
05. <param-name>X-Powered-By</param-name>
06. <param-value>Servlet 2.4; JBoss-4.2.0.GA (build:
07.SVNTag=JBPAPP_4_2_0_GA date=200706281411)/Tomcat-5.5</param-value>
08. </init-param>
09. </filter>
10.↓
11. <filter>
12. <filter-name>CommonHeadersFilter</filter-name>
13. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
14. </filter>
view plaincopy to clipboardprint?
01.<filter>
02. <filter-name>CommonHeadersFilter</filter-name>
03. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
04. <init-param>
05. <param-name>X-Powered-By</param-name>
06. <param-value>Servlet 2.4; JBoss-4.2.0.GA (build:
07.SVNTag=JBPAPP_4_2_0_GA date=200706281411)/Tomcat-5.5</param-value>
08. </init-param>
09. </filter>
10.↓
11. <filter>
12. <filter-name>CommonHeadersFilter</filter-name>
13. <filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
14. </filter>
<filter>
<filter-name>CommonHeadersFilter</filter-name>
<filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
<init-param>
<param-name>X-Powered-By</param-name>
<param-value>Servlet 2.4; JBoss-4.2.0.GA (build:
SVNTag=JBPAPP_4_2_0_GA date=200706281411)/Tomcat-5.5</param-value>
</init-param>
</filter>
↓
<filter>
<filter-name>CommonHeadersFilter</filter-name>
<filter-class>org.jboss.web.tomcat.filters.ReplyHeaderFilter</filter-class>
</filter>
转载自 http://www.ondev.net/post/show/585
本文来自CSDN博客,转载请标明出处:http://blog.csdn.net/jayliu/archive/2009/04/28/4133793.aspx
本回答被提问者采纳
已赞过
已踩过<
评论
收起
你对这个回答的评价是?
Storm代理
2023-08-29 广告
"StormProxies是全球大数据IP资源服务商,其住宅代理网络由真实的家庭住宅IP组成,可为企业或个人提供满足各种场景的代理产品。点击免费测试(注册即送1G流量)StormProxies有哪些优势?1、IP+端口提取形式,不限带宽,I...
点击进入详情页
本回答由Storm代理提供
推荐律师服务:
若未解决您的问题,请您详细描述您的问题,通过百度律临进行免费专业咨询
