The Joomla! Extensions Directory ™

Clean Response Plugin

When using GZIP compression, Joomla adds an X-Content-Encoded-By response header with a value of "Joomla! 2.x". This allows attackers to quickly determine that your site is running on Joomla (and get the version).

Joomla 3.1+ users do not need this plugin. Set global configuration > site > metadata "show joomla version" to no, and the header will not be sent.

Many people think that the generator tag is the last Joomla reference they need to remove (see my ByeByeGenerator plugin). Those people miss the response header.

This plugin allows an administrator to alter that response value to "PHP" (the plugin default), or a user supplied text value.

Note: If you have a system plugin that utilizes JResponse and is loaded BEFORE Clean Response, this plugin will have no effect on your response headers. Put Clean Response before other system plugins in your plugins list. YOUR HOST MUST SUPPORT STREAM WRAPPERS OR YOU WILL EXPERIENCE THE SAME ISSUE AS OLIN IN THE REVIEWS BELOW.

Your server must support stream wrappers, allow_url_include (for the php://data type), allow writing to the plugins/system/cleanresponse/preempt folder, or eval(). The plugin will choose the best option that is available in your system.

Update 1.4: Resolved PHP Strict Standards error - nothing serious
Version 1.5 Joomla 3.0 compatibility
Version 1.6 - prevent whitescreen on hosts that use unknown method to disable stream wrappers.
Version 2.0 - add 3 additional methods for override to accommodate very restrictive hosts
Version 2.1 - provide options to disable methods that cannot be verified on certain hosts

4/26/2012 - Joomla 1.5/1.6/1.7 availability and support withdrawn.

All of my extensions are free and none of my extensions display advertisements or links to my sites or services. If you feel that I have blessed you, then you can bless me by making a contribution to fund future development. Visit the "Website" link to make a contribution.

Report Extension



Reviews: 9
Now maybe it may be only the all-in-one greatest plugin being coupled with ByeByeGenerator, Meta Robots, HeadTags, ScriptsDown and Meta Character Count as THE essential plugin for security, performance and SEO.
Reviews: 2
The plugin just do what he says, nothing more. Congratulations to the developer. As you said in one of the previous comments, theses free plugins are your visit card, and i think it's a hell of visit card!
Reviews: 3
The component works perfect just out of the box. It does what it needs to do. Thank you for you excellent work !
Reviews: 5
This plugin works as expected. Once Gzip is activated in the "server" settings of Joomla's control center, a response header of "Joomla 1.5" or "Joomla 2.5" is being sent. There are online tools or browser plugins to display those headers, search for "view response headers".
Reviews: 22
I use: Clean Response, ByeBye Generator,and AdminExile and they all work perfectly!

Thank you Michael for your great Joomla extensions!
Reviews: 3
This is no doubt an excellent extension. However it was not effective in Joomla 2.5. The Header continues to be generated and this extension had no effect.
Owner's reply

Thanks for the 5 stars, but your description of the plugin operation in Joomla 2.5 is untrue.

My 2.5.3 test system responds with this header:

X-Content-Encoded-By: PHP

Which is the plugin default configuration.

If you're having an issue, you should contact me using the contact form at my site.

Reviews: 6
Great plug-in Had a little difficulty getting it up and running for mobile headers but figured it out. The developer was quick to respond to my questions and very professional and patient with me. It helped me finish hiding all the header info to protect versions of Joomla.
Reviews: 1
I am a beginner at site creation and i decided to install Adminexile which was quick, easy and worked a treat!
I installed Clean Response but failed to really read the installation documents and advice from the developer.
My site went blank, similar to Olin's below and i was desperate.
I tried a few things but still only a blank screen.
I contacted the developer and within an extremely short time they replied with a courteous, extremely informative and detailed method for rectifying the problem.
When i receive bad customer service i am always the first to complain and complain the loudest. I rarely take the time to give good service the recognition it deserves, yet the support and service i received in this instance was outstanding.
Problem is solved and all due to a great developer with awesome customer service!
I never receive the quality of service when i pay for it! Certainly never expected it for free software!
I highly recommend this product purely on service alone, not to mention the great functions of the product itself!
Keep up the great work!
Owner's reply

My free extensions are my business card. When users enjoy my free extensions, and appreciate my customer service - they are more likely to become customers.

Thanks for the great review!

Reviews: 1
After installation on Joomla 1.5.23 both admin and frontend becomes blank :( No effects after unpublish using phpmyadmin! I had to restore my site from backup... Be careful!
Owner's reply

You should have contacted me. This is the first issue I have ever heard of using this extension.

You'll notice that all of the other reviews are 5 stars. My guess is that since this is your first review, you don't know what you're doing or this is sabotage against my extension rating.

Reviews: 8
This plug in works just as advertised. I had an issue with it conflicting with another plug in I was using and the developer responded to my query immediately and even sent over upgraded plug in versions for me, with in a 12 hour period. Highly recommend Michael and his products.
Reviews: 3
Installed Clean Response AND ByeBye Generator, and all worked perfectly.

However, I would suggest that anyone concerned about advertising their favorite CMS to hackers should also use a non-Joomla template, otherwise it would be easily possible for a malicious crawler to simply search for the string "Joomla" (such as in joomla_logo...jpg - the Joomla image on every bundled template) and scan for Joomla vulnerabilities.

Can obviously be tweaked out by renaming the Joomla images and editing the template scripts, though defeats the objective somewhat. That said, it's a pointless Joomla-related file-naming issue but, as I say, this little gem (in necessary conjuntion with ByeBye generator) work beautifully.

Nice one - thank you!
Owner's reply

I'm glad it worked out for you. There have been some recent updates that I suggest you install! Performance and stability enhancements.

There are many things that can be done to hide the existence of Joomla. I've attempted to start discussions in the forums regarding more extreme methods, but was met with strong opposition by the moderators. Now I don't discuss, I just do.

I have a new component/plugin package to release soon that will help with this subject.

Reviews: 4
This works just like said, thanks!
Reviews: 1
This little plugin works like a charm!

What would be good is if it would also change the 'generator' tag, which albeit I'll do myself but that would also save the effort on every upgrade.

Good work Michael ;-)
Owner's reply

Check out my ByeByeGenerator plugin, which also (optionally) removes the robots tag.