From 208d31af3e0cd8141aa27ef02695f388ecd352fb Mon Sep 17 00:00:00 2001
From: Luke Smith <luke@lukesmith.xyz>
Date: Sun, 29 Aug 2021 16:47:53 -0400
Subject: [PATCH] hide nginx tokens

---
 maintenance.html |  2 +-
 nginx.html       | 14 ++++++++++++--
 2 files changed, 13 insertions(+), 3 deletions(-)

diff --git a/maintenance.html b/maintenance.html
index d3d9cb3..579c375 100644
--- a/maintenance.html
+++ b/maintenance.html
@@ -14,7 +14,7 @@
     <main>
 
         <p>Here are some important topics you should be familiar with whenever you are managing a server.</p>
-        <h2>Keep packages up to date.</h2>
+        <h2 id="update">Keep packages up to date.</h2>
         <p>All GNU/Linux distributions use package managers to easily be able to install and update packages without manually downloading them.
         On Debian, which we use here for these tutorial the package manager is <code>apt-get</code> or <code>apt</code> for short.
         </p>
diff --git a/nginx.html b/nginx.html
index 067b5d9..0cca5b8 100644
--- a/nginx.html
+++ b/nginx.html
@@ -13,7 +13,7 @@
     <nav></nav>
     <main>
         <p>At this point, we should have a domain name and a server and the domain name should direct to the IP address of the server with DNS records.
-        As I said in previous articles, the instructions I will give will be for <strong>Debian 10</strong>.
+        As I said in previous articles, the instructions I will give will be for <strong>Debian</strong>.
         In this article, other distributions might work a little differently.</p>
 
         <h2>Logging in to the server</h2>
@@ -48,7 +48,7 @@
             </p>
         </aside>
 
-        <h2>Installing the Webserver: NGINX</h2>
+        <h2>Installing the Webserver: Ngninx</h2>
 
         <p>
         If the program runs without an error, <code>ssh</code> has now logged you into your server.
@@ -217,6 +217,16 @@ Port 80 is the canonical webserver port, while 443 is the port used for encrypte
 We will certainly need that for the next page.
 </p>
 
+<h2>Nginx security hint</h2>
+
+<p>By default, Nginx and most other webservers automatically show their version number on error pages.
+It's a good idea to disable this from happening because if an exploit comes out for your server software, someone could exploit it. Open the main Nginx config file <code>/etc/nginx/nginx.conf</code> and find the line <code># server_tokens off;</code>. Uncomment it, and reload Nginx.
+</p>
+
+<p>
+Remember to <a href="maintenance.html#update">keep your server software up to date</a> to get the latest security fixes!
+</p>
+
 <h2>We now have running website!</h2>
 
 <p>