We have a client who is failing port 80 - PCI compliance checks.
Navigating to an unknown directory gives away too much information for PCI - See below.
We have tried a few solutions but to no avail. I have re-configured the web.config file as per - (http://msdn.microsoft.com/en-us/library/994a1482(v=vs.100).aspx
Also added a custom error page in the Inetpub folders for the 'Default Web Site' but the above page is still shown.
Does anyone have a solution to this please as my customer needs to become complaint.