A Few Todos while Securing Apache Server – Install mod_security – Set expose_php = Off in php.ini – Set SecResponseBodyAccess Off in modsecurity.conf – Set ServerSignature “Microsoft-IIS/7.5” in httpd.conf