Tag Archives: security

Several errors while playing with user policy settings

As I am testing the impact of different settings in user policies I came across several errors I would like to share. If you deny “Manage Lists” in “List Permissions” and then want to create a new webiste you get … Continue reading

Posted in SharePoint | Tagged | Leave a comment

SharePoint User Policy and Domain Groups

Scenario: You have to operate a SharePoint web application and you would like to delegate Full Control permissions to your operating team. You create a new security group in your domain (let’s say “SharePoint Operators”) and you want to let … Continue reading

Posted in SharePoint | Tagged | Leave a comment

SharePoint Search on Filesystem

While I was configuring a new content source für SharePoint Server 2010 Search I was asking myself which permissions on a NTFS drive will SharePoint look after for displaying search results. Directory permissions or file permissions? Or both? I simply … Continue reading

Posted in SharePoint | Tagged , , | 1 Comment

Security Advisory 2416728 (Vulnerability in ASP.NET) and SharePoint

In ASP.NET wurde eine Sicherheitslücke entdeckt, durch die ein Angreifer den View State einer ASP.NET Website auslesen kann oder gar Zugriff auf die web.config erhält. Offizieller Microsoft Security Advisory: https://www.microsoft.com/technet/security/advisory/2416728.mspx Das betrifft somit auch SharePoint 2010. Auf Facebook hat Microsoft … Continue reading

Posted in SharePoint | Tagged | Leave a comment