How to Remove the Server Header from WebListener


In this post, Premier Developer consultant Tim Omta outlines how to remove the server header from WebListener.


Sometimes enterprises or those hosting web sites wish to remove the Server HTTP response header so they can make it more difficult for an attacker to determine what type of web server they are using (IIS, Apache, etc). Though it is doubtful as to how much protection this actually provides, it is still a common practice.

ASP.Net Core includes a new web server called WebListener to offer you a light weight alternative to IIS.

Read the rest on Tim’s blog here:

https://blogs.msdn.microsoft.com/timomta/2016/12/03/how-to-remove-the-server-header-from-weblistener/

Comments (0)

Skip to main content