v.25.12Improvement

Avoid exposing the ClickHouse server version

Published: November 25, 2025

Avoid exposing the ClickHouse server version in HTTP error responses returned before authentication. #91003 (filimonov).

Prevent ClickHouse server version from being exposed in HTTP error responses returned before authentication.

Why it matters

To enhance security by avoiding the leakage of the ClickHouse server version information in HTTP error messages that are sent to clients before they authenticate. This reduces the risk of potential attackers gaining insight into the server environment.

How to use it

This feature is applied automatically with the update. No additional configuration or user action is required to benefit from the improved security behavior.

Related resources

Pull Request #91003