pcsd reveals version information in the "Server" HTTP header

Solution Verified - Updated -

Issue

  • When a HTTP request is run against pcsd (port 2224 by default), it sends the Server HTTP header, containing information about versions of web server components. This presents a security vulnerability.

Environment

  • Red Hat Enterprise Linux 7 (with the High Availability Add-on)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In