How to remove PHP version from the X-Powered-By HTTP header on Plesk server?

Question

How to remove PHP version from the X-Powered-By HTTP header?

Answer

To remove PHP version from the X-Powered-By HTTP header for website:

1. Connect to the Plesk server via SSH;

   Note: If direct SSH access to the server is not possible, contact server administrator for further assistance. 

2. Create a new .ini configuration file in the appropriate PHP directory:

   # echo 'expose_php = off' > /opt/plesk/php/X.X/etc/php.d/hideheader.ini

   • where X.X - a PHP version, e.g. 5.6, 7.0, 7.1, etc

3. Reload the Plesk PHP service configuration:

   # service plesk-phpXX-fpm reload

   • where phpX.X - a PHP version, e.g. php5.6, php7.0, php7.1, etc

4. Verify that the header is not shown anymore:

   # curl -sIL example.com/index.php | grep -c PHP

To remove PHP version from the X-Powered-By HTTP header for webmail:

1. Connect to the Plesk server via SSH;

   Note: If direct SSH access to the server is not possible, contact server administrator for further assistance. 

2. In /etc/psa-webmail/horde/horde/php.ini set expose_php parameter as below:

   CONFIG_TEXT: expose_php = Off

3.  Restart Apache:

   # service httpd restart

4. Verify that the header is not shown anymore:

   # curl -sIL webmail.plesk.tld/index.php | grep PHP
   #

Additional Information

• How to remove the X-Powered-By header?