Our Information Security group is asking us to restrict information in the http response headers, such as internal IP addresses, internal FQDN, server version or frameworks being used.
We have Confluence setup in an evaluation environment using the built in database Tomcat web server.
I'm guessing this needs to be configured in web.xml under
Any help would be appreciated.
Two vulnerabilities have been published for Confluence Server and Data Center recently: March 20, 2019 CVE-2019-3395 / CVE-2019-3396 April 17, 2019 CVE-2019-3398 The goal of this article is...
Connect with like-minded Atlassian users at free events near you!Find an event
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no Community Events near you at the moment.Host an event
You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events