How to remove IIS server information from the response header?

#howto #iis #remove #header

How to remove IIS server information from the response header?

(Tested on IIS 10.0, ASP.NET MVC 5)

Add/Edit three lines of code in web.config as below

Line 1

<httpRuntime targetFramework="4.7.2" enableVersionHeader="false" />

Line 2

<remove name="X-Powered-By" />

Line 3

<requestFiltering removeServerHeader="true" />

Overview

...
<system.web>
    <compilation debug="true" targetFramework="4.7.2" />
    <httpRuntime targetFramework="4.7.2" enableVersionHeader="false" />
</system.web>
<system.webServer>
    <httpProtocol>
        <customHeaders>
            <remove name="X-Powered-By" />
        </customHeaders>
    </httpProtocol>
    <security>
        <requestFiltering removeServerHeader="true" />
    </security>
</system.webServer>
...

DEV Community

How to remove IIS server information from the response header?

How to remove IIS server information from the response header?

Add/Edit three lines of code in web.config as below

Overview

Top comments (0)

🛠️ Bring your solution into Docusign. Reach over 1.6M customers.

Read next

AI Models Can Now Predict Why Scientists Cite Research Papers, Study Shows

New Test Reveals AI Models Often Memorize Instead of Think - Study Shows Gap in Current Evaluation Methods

AI System Builds Self-Expanding Knowledge Maps with 85% Accuracy Using Deep Graph Reasoning

AI Learns Physics Like a Child: Just By Watching Videos