Listing the web server in the HTTP headers does nothing for your users, but will tell an attacker which exploits they can try. Make sure that you turn off this feature in your web server configuration - or even better, misreport the web server!
Sanitized HTTP ResponseAccept-Ranges: bytes
Content-Length: 196
Connection: close
Content-Type: text/html