Thread:Project:Support desk/Make Special:Version only visible to Admins?/reply (3)

I see. It is true that the exact version numbers are security-relevant; however, hiding them is no real help. See "security by obsurity". Hiding that page alone also won't really help you. Without being a hacker I spontaneously know at least one other way to get your version numbers, that is through the MediaWiki API. And I guess you cannot prevent that; except blocking all calls to the API making it completely useless. Apart from that Apache and PHP versions are often transferred with the header of each request already so that you don't even need Special:Version to know them.

If you really want to be on the safe site, you must make sure that you are running current software versions. Everything else will only give you a false feeling of a security, in which you cannot trust.