– Install mod_security
– Set expose_php = Off in php.ini
– Set SecResponseBodyAccess Off in modsecurity.conf
– Set ServerSignature “Microsoft-IIS/7.5” in httpd.conf
Categories: