3 Answers
- Newest
- Most votes
- Most comments
2
Note AWS team this is being reported by Penetration Testing firms as an information disclosure vulnerability. Request that action is taken to address..
answered 7 months ago
0
Unfortunately, there is no option to remove the header at this time. If you deploy 3rd Party Solution like F5 WAF, you can cloak server information.
answered a year ago
Can we hide or change that awselb/2.0 to other name.
0
It's not customizable at the moment. A workaround would be to front the ALB with CloudFront and use edge functions to override the Server
header with none, as briefly illustrated here: https://docs.aws.amazon.com/AmazonCloudFront/latest/DeveloperGuide/lambda-examples.html#lambda-examples-overriding-response-header
answered a year ago
Relevant content
- asked 10 months ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated 2 years ago
- AWS OFFICIALUpdated a year ago
- AWS OFFICIALUpdated 2 years ago
Same on our side. AWS team please prioritize it.