...
I'll create my own abridged version in the future with additional perspective of impact to web applications.
| Include Page | ||||
|---|---|---|---|---|
|
Intermediate Hardening
These items are best practice and but may sometimes impact integrated modules.
Disable Etag Header
Etag (entity tag) was introduced to help improve caching. However, besides not being very effective in an enterprise clusters environments), it also provides sensitive information like inode number, multipart MIME boundary and child processes. It allows hackers to uniquely identify a particular server.
...
- Disable etag - rely on the default Expire or Cach-Control header information.
- Minimally disable INode
... to fill out
Advanced Hardening
The advanced hardening is more likely to break your system so apply carefully one step at a time.
...