<html><head></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; ">The relevant section is 14.38:<div><br></div><div><div>14.38 Server</div><div><br></div><div> The Server response-header field contains information about the</div><div> software used by the origin server to handle the request. The field</div><div> can contain multiple product tokens (section 3.8) and comments</div><div> identifying the server and any significant subproducts. The product</div><div> tokens are listed in order of their significance for identifying the</div><div> application.</div><div><br></div><div> Server = "Server" ":" 1*( product | comment )</div><div><br></div><div> Example:</div><div><br></div><div> Server: CERN/3.0 libwww/2.17</div><div><br></div><div> If the response is being forwarded through a proxy, the proxy</div><div> application MUST NOT modify the Server response-header. Instead, it</div><div> SHOULD include a Via field (as described in section 14.45).</div><div><br></div><div> Note: Revealing the specific software version of the server might</div><div> allow the server machine to become more vulnerable to attacks</div><div> against software that is known to contain security holes. <b>Server</b></div><div><b> implementors are encouraged to make this field a configurable</b></div><div><b> option.</b></div><div><br></div><br class="Apple-interchange-newline"><br><div><div>On Apr 12, 2011, at 6:28 AM, Jay McCarthy wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite">A few thoughts...<br><br>Is it an error to not include this header? I'm not interested in the<br>subtle advertising to log readers, so it doesn't really matter to me<br>what is says.<br><br>What's the behavior when there are two Server headers? Because you can<br>just as easily pass another one in the optional header list.<br><br>I don't like the idea of a parameter or another field in the response<br>data structure, but maybe I should just add an optional argument to<br>response/xexpr and then remove the automatic insertion in the code you<br>quote.<br><br>Jay<br></blockquote></div><br></div></body></html>