Problem

A security scan of your VA administration port detected CVE-2003-1418 - Apache Server ETag Header Information Disclosure.

Resolution

To get rid of this detection, add the following line to /VA/Apache/conf/httpd.conf

FileETag None

This happens because Apache sends an ETag header by default, which causes many detection programs to alert based on this vulnerability even though Apache fixed the default many years ago. FileETag directives that do not include the "iNode" property are not affected by the CVE.