Skip Links

Network World

Julie Bort

Rogue SharePoint sites pose security menace

By Microsoft Subnet on Wed, 03/25/09 - 3:01pm.
Newsletter Signup

Gartner estimates that 30% of SharePoint servers are rogue deployments, launched by business managers without the IT department's knowledge. SharePoint is easy to set up and easy to use, which makes it popular with the power user crowd. That might be nice for Microsoft's pocketbook but not for IT pros. Rogue deployments are not likely to be very secure, Gartner warns.

However, there is some good news: Finding those wayward SharePoint servers has become easier thanks to some freebie sleuthing tools by Microsoft and Quest Software.

Just what kind of danger do rogue SharePoint servers pose? Obviously they cause governance issues over protecting data for e-discovery. They may also violate access control policies -- allowing the wrong users to see documents and data they shouldn't. In the worst cases, they become an "in" for hackers. Older versions of SharePoint have been known to have cross-site scripting vulnerabilities, for instance. Plus, rogue versions of SharePoint may be placed on rogue and unpatched versions of Windows Server -- a security headache unto itself.

Visit the Microsoft Subnet web site for more news, blogs, podcasts. Subscribe to all Microsoft Subnet bloggers. Sign up for the bi-weekly Microsoft newsletter. (Click on News/Microsoft News Alert.)

IE8 arrives
Server Core 2008 – SQL Server not supported
Will Microsoft’s newest board member improve R&D Deliverables?

Standards Compliant IE8 + IE7 Compatibility Mode: Blessing or Curse?
Six of the best gadgets from Microsoft TechFest
Reader's Choice for Best Windows open source Projects
Microsoft to give away one million training vouchers


Follow Microsoft Subnet on Twitter

good one

0
By SharePoint Hosting (not verified) on Mon, 03/30/2009 - 7:53am.

Some of you might find this site helpful:

SharePoint

It's pretty cool...

Share

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

Post new comment

The content of this field is kept private and will not be shown publicly.
  • You can use BBCode tags in the text.
  • Lines and paragraphs break automatically.
  • Allowed HTML tags: <p> <strong> <i> <br /> <br> <ul> <ol> <li> <dl> <dt> <dd> <blockquote>

More information about formatting options

CAPTCHA
This question is for testing whether you are a human visitor and to prevent automated spam submissions.
Welcome, visitor. Register Log in
About Microsoft Subnet Blog

The Microsoft Subnet blog is the official blog of the Network World's Microsoft Subnet community, and is written by Online Community editor Julie Bort. Microsoft Subnet is the independent voice of Microsoft customers and is your gateway to daily Microsoft news, blogs, opinion, books, prize giveaways and more. Visit the Microsoft Subnet index page daily, and while you are there, subscribe to the Microsoft newsletter. The newsletter includes news generated by the Microsoft Subnet community as well as other Microsoft news stories published by Network World.

(OS community)
RSS feed (Microsoft RSS feed)

Blog Roll
Microsoft Subnet Home Page
http://www.networkworld.com/subnets/microsoft/
All Microsoft Subnet bloggers
http://www.networkworld.com/community/blogs/microsoft/feed
ActiveWin
http://www.activewin.com
Blake Handler The Road to Know Where
http://bhandler.spaces.live.com/
Dmitry's PowerBlog
http://dmitrysotnikov.wordpress.com/
Doug Brown,DABCC
http://www.dabcc.com
Ed Bott's Windows Expertise
http://www.edbott.com/weblog/
Joseph Tartakoff Microsoft Blog
http://blog.seattlepi.nwsource.com/microsoft/
Long Zheng istartedsomething
http://www.istartedsomething.com/
Mini-Microsoft
http://minimsft.blogspot.com/
Paul Thurrott's Supersite for Windows
http://www.winsupersite.com
Robert McLaws WindowsNow
http://www.windows-now.com
Scobleizer
http://scobleizer.com/
Techmeme
http://www.techmeme.com/
Todd Bishop's Microsoft Blog
http://www.techflash.com/Microsoft