Removing/Hiding/Disabling excessive HTTP response headers in Azure/IIS7 without UrlScan
问题 I need to remove excessive headers (primarily to pass penetration testing). I have spent time looking at solutions that involve running UrlScan, but these are cumbersome as UrlScan needs to be installed each time an Azure instance is started. There must be a good solution for Azure that does not involve deploying installers from startup.cmd. I understand that the response headers are added in different places: Server : added by IIS. X-AspNet-Version : added by System.Web.dll at the time of