I think that is controlled by the expose_phpsetting in PHP.ini:

我认为这是由PHP.ini 中的expose_php设置控制的：

expose_php = off

Decides whether PHP may expose the fact that it is installed on the server (e.g. by adding its signature to the Web server header). It is no security threat in any way, but it makes it possible to determine whether you use PHP on your server or not.

决定 PHP 是否可以公开它安装在服务器上的事实（例如，通过将其签名添加到 Web 服务器标头）。它在任何方面都不是安全威胁，但可以确定您是否在服务器上使用 PHP。

There is no direct security risk, but as David C notes, exposing an outdated (and possibly vulnerable) version of PHP may be an invitation for people to try and attack it.

没有直接的安全风险，但正如 David C 指出的那样，暴露一个过时（并且可能存在漏洞）的 PHP 版本可能会邀请人们尝试攻击它。

header_remove("X-Powered-By");

https://secure.php.net/manual/en/function.header-remove.php

https://secure.php.net/manual/en/function.header-remove.php

If you cannot disable the expose_phpdirectiveto mute PHP's talkativeness (requires access to the php.ini), you could use Apache's Headerdirectiveto remove the header field:

如果您无法禁用Expose_php指令来静音 PHP 的健谈性（需要访问php.ini），您可以使用Apache 的Header指令删除标头字段：

Header unset X-Powered-By

if (function_exists('header_remove')) {
    header_remove('X-Powered-By'); // PHP 5.3+
} else {
    @ini_set('expose_php', 'off');
}

If you have an access to php.ini, set expose_php = Off.

如果您有权访问 php.ini，请设置expose_php = Off.

If you use FastCGI try:

如果您使用 FastCGI，请尝试：

fastcgi_hide_header X-Powered-By;

Try adding a header() call before sending headers, like:

在发送标头之前尝试添加 header() 调用，例如：

header('X-Powered-By: Our company\'s development team');

regardless of the expose_php setting in php.ini

无论 php.ini 中的 Exposure_php 设置如何

This solution worked for me :)

这个解决方案对我有用:)

Please add below line in the script and check.

请在脚本中添加以下行并检查。

Ngnix / Apache etc level settings might not be required.

可能不需要 Ngnix / Apache 等级别的设置。

header("Server:");