CCC.LB.C07: Scrub Sensitive Headers
Control ID:CCC.LB.C07
Title:Scrub Sensitive Headers
Objective:Remove headers that disclose internal details or software
versions from HTTP responses.
Guideline Mappings
| Reference ID | Entry ID | Strength | Remarks |
|---|
NIST-CSF | PR.DS-2 | 0 | Data in transit is protected |
NIST_800_53 | SC-13 | 0 | Cryptographic protection |
Assessment Requirements
| ID | Description | Applicability |
|---|
| CCC.LB.C07.TR01 | When responses pass through the load balancer, the
"Server" header MUST be replaced with "lb".
| tlp-green tlp-amber tlp-red |