Don’t break that sandbox

Posted by Sahil Malik on Win Smarts See other posts from Win Smarts or by Sahil Malik
Published on Sun, 17 Apr 2011 20:03:24 GMT Indexed on 2011/06/20 16:34 UTC
Read the original article Hit count: 595

Filed under:

SharePoint 2010

SharePoint 2010 Training: more information

Hmm .. I hear that some soldiers are spreading rumors that it is OKAY to edit the WSS_Sandbox trust level inside of SharePoint. Afterall, it is just .NET code right? And it’s just a CAS policy, so why not make that tempting little tweet, and well – all I wanna do is call web services! Ummmm .. DON’T DO IT! Yes I know it’s just .NET code! But Microsoft has spent a great deal of time, resources, and thoughts in crafting up the boundary of what a sandbox solution can do, and what it cannot do. Soon as you make that tiny little tweak to allow calling web services, you just opened a bunch of security holes in your SharePoint installation. Not to mention, you broke the first cardinal rule of your SharePoint solutions, which is, “No Microsoft files were hurt in the building of this solution”

Read full article ....

Related posts about SharePoint 2010

Prevent malicious vulnerability scan increasing load on a server

as seen on Server Fault - Search for 'Server Fault'
Hi all, this week we have been suffering some malicious vulnerability scans to our servers, increasing the load on them, making them nearly unusable. The attack is easy to defend, just blocking the offending ip, but only after discovering it. Is there any form of prevent it? Is it normal that… >>> More
x.gif in Apache logs

as seen on Server Fault - Search for 'Server Fault'
I manage a Django site where we host the media on a subdomain. There shouldn't be any requests for media to the main domain. However I keep seeing these requests for "x.gif" showing up in the access logs on the domain that's handled by WSGI (not the media domain). Can anyone explain what this is… >>> More
Unexpected start of already-primary server processes when heartbeat on secondary is stopped.

as seen on Server Fault - Search for 'Server Fault'
Hi, I've got an active-passive Heartbeat cluster with Apache, MySQL, ActiveMQ and DRBD. Today, I wanted to perform hardware-maintenance on the secondary node (node04), so I stopped the heartbeat service before shutting it down. Then, the primary node (node03) received a shutdown notice from the… >>> More
OCR anything with OneNote 2007 and 2010

as seen on How to geek - Search for 'How to geek'
Quality OCR software can often be very expensive, but you may have one already installed on your computer that you didn’t know about. Here’s how you can use OneNote to OCR anything on your computer. OneNote is one of the overlooked gems in recent versions of Microsoft Office. OneNote… >>> More
Aggregate SharePoint Event/Items into your Calendar view using Calendar Overlay

as seen on ASP.net Weblogs - Search for 'ASP.net Weblogs'
One of the most common features I have seen in common use for SharePoint (prior to 2010) in Intranet environments for Team site is Calendar’s. Not only the Calendar list type, but also the ability to add a Calendar view to any list that has the desired columns to construct a Calendar – such as Start… >>> More

Developer IT