Removing Server header from static content in IIS 7/8

Question

As part of an effort to make our API and site more secure, I\'m removing headers that leak information about what the site is running.

Example before stripping headers:<

Answer 1

You should be able to force all requests to go through your managed code by adding this to your webconfig:

Then, even static files should adhere to your header rules.