From 3c84acb9f2f026a3d5c56bdc6f4bd499a8bccd61 Mon Sep 17 00:00:00 2001
From: Jacky Lam <jacky.lam@r2studiohk.com>
Date: Thu, 2 May 2024 12:21:40 +0100
Subject: [PATCH] fix[security]: Disable server_tokens for React nginx

---
 cvat-ui/react_nginx.conf | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/cvat-ui/react_nginx.conf b/cvat-ui/react_nginx.conf
index 29ae133f3978..c3d51866beab 100644
--- a/cvat-ui/react_nginx.conf
+++ b/cvat-ui/react_nginx.conf
@@ -1,6 +1,11 @@
 server {
     root /usr/share/nginx/html;
 
+    # Disable server signature to make it slighty harder for
+    # attackers to find known vulnerabilities. See
+    # https://datatracker.ietf.org/doc/html/rfc9110#name-server
+    server_tokens off;
+    
     gzip on;
     gzip_comp_level 6;
     gzip_http_version 1.1;