Re: asp source code exposure

[foo () bar com]

Can't you use regular expressions and do URL filtering on the server side with IIS? Apache has the functionality to 
match requests and filter them accordingly, such as SetEnvIf Request_URI "REGEX" blah ? just scan urls for the addition 
of :$DATA and boom your pretty safe.