The security feature "Remove outgoing information about your server" removes HTTP response headers that expose information about your servers and the software you use.
The following response header fields are removed:

  • X-AMZN-RequestID
  • X-AspNet-Version
  • X-AspNetMvc-Version
  • X-Cache
  • X-Cache-Hits
  • Fastly-Debug-Path
  • Fastly-Debug-TTL
  • X-Fastly-Request-ID
  • X-Powered-By
  • X-Request-ID
  • X-Runtime
  • Server
  • Server-Timing
  • X-Served-By
  • X-Timer
  • X-Version
  • Via

and the wao.io-specific header fields:

  • WA-IC
  • WA-Request-ID

Did this answer your question?