By using AWS re:Post, you agree to the Terms of Use
/Remove "server awselb/2.0" header from application responses/

Remove "server awselb/2.0" header from application responses


During a pentest of one of our apps running behind an AWS API GW the report showed that the API GW returns a "server awselb/2.0" header, which is identified as a risk by the pentesters. To my knowledge there is no way to remove/suppress such a header, but perhaps I am missing something? Is this something anybody else has ever faced?

1 Answers

I am facing the same issue

answered 2 months ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Guidelines for Answering Questions