Hiding sensitive response headers may not be the most important security measure that you can take, but it is one extra layer of security according to defense in depth security principle. By default, Asp.Net applications reveal too much information about its platform and version, and this information makes an application vulnerable to zero-day bugs. Suppose … →