How to Stop Sensitive Information From Being Exposed in Response Headers Received By Oracle HTTP Server (Doc ID 2241284.1)

Last updated on MARCH 09, 2017

Applies to:

Oracle HTTP Server - Version 11.1.1.2.0 and later
Information in this document applies to any platform.

Goal

Stop server data (hostname/ipaddress) from being exposed in X-REQUEST-URL response headers.
-Response headers received by Oracle HTTP Server(ohs) contains sensitive information such as hostname and ip address.

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms