When i said that more important than reverse-dns is that the server is configured correctly.
And that even more important is to hide the server version, i was still aware that this does not block
all script kids. But i can say from own tests that if an server claim to be apache with old php version
you will see other attack pattern than if you say that you are running tomcat.
And also it was under the topic of A+ with 4 times 100%. You are correct that up to date versions are important.
I it is also the case with my server. I still think that many people do only look at one point there they get ratings
and get other important points out of view.
Hi, you should think twice aboute removing the Reverse-DNS because some mail server rate this as an negative indicator. And on the other side there are still traceroute and whois to get more information about your server.
More important is that the server is configured correctly.
For example my domain https://suche.org/
Top Rating on https://securityheaders.io/?q=https%3A%2F%2Fsuche.org
But even more important. You can not find out what server is running. Without this information it is much harder to find an backdoor. Another point is that for the worst case the an attacker can manage to get into the system he can not offline get the password (pbkdf2). Ănd how you protect your private key for the certificate. What is the DNS name for your ip is no security issue.
I wholeheartedly don't agree with your statement "even more important". Scripts will be ran against your server and daemons anyway. You should keep your software up to date and secure all the time, hiding your software and/or versions won't change anything and won't keep the scriptkiddo's away.