A potential security threat is PHP version info leaking in HTTP response headers. By default, Apache web server includes PHP version info via "X-Powered-By" field in the HTTP Response Headers. If you want to hide PHP version in the HTTP Response Headers, edit PHP config (php.ini file) by changing:
expose_php = On
expose_php = Off
You can use our HTTP Response Sniffer
to check your web server signature to see if PHP version is output in the HTTP Response Header.
Last Revised: 2015-08-31 14:03:23