From a1b49f5fcfadf5a364a7421063d522685c76a4da Mon Sep 17 00:00:00 2001 From: Lars Kiesow Date: Sat, 21 Jan 2023 23:18:06 +0100 Subject: [PATCH] Reduce Fingerprinting As DieselTech#6997 pointed out in Matrix, it is a good idea to reduce fingerprinting by removing the `X-Powered-By` response header as pointed out by the Express security best practices: See http://expressjs.com/en/advanced/best-practice-security.html#reduce-fingerprinting --- server/Server.js | 1 + 1 file changed, 1 insertion(+) diff --git a/server/Server.js b/server/Server.js index 3b9223da..de08318e 100644 --- a/server/Server.js +++ b/server/Server.js @@ -142,6 +142,7 @@ class Server { const app = express() const router = express.Router() app.use(global.RouterBasePath, router) + app.disable('x-powered-by') this.server = http.createServer(app)