Microsoft Knowledge Base Email Alertz
All KB/RSS Links  |  Hot Kb!  |  New Kb!  |  Scott Cate  |  FAQ / KB  |  Web Hosting  |  Unsubscribe  

(830980) - If you add an Active Server Pages (ASP) page to a Microsoft Windows SharePoint Services document library, you may make sensitive information available to all users with access to the document library.

Search KbAlertz

Advanced Search

Receive Microsoft Knowledge Base articles by E-Mail?

Every night we scan the Microsoft Knowledge Base. If technologies you're interested in are updated, we'll send you an e-mail. You only get one e-mail a day, and only when new articles are added.
Click here to create a
FREE account
Already have an account?
[Click here to Login]











Microsoft Knowledge Base Article

This article contents is Microsoft Copyrighted material.
©2005-©2007 Microsoft Corporation. All rights reserved. Terms of Use | Trademarks
Article ID: 830980 - Last Review: September 26, 2007 - Revision: 2.5

Sensitive information may be exposed when you store ASP pages in a Windows SharePoint Services 2.0 or Windows SharePoint Services 3.0 document library

View products that this article applies to.

SUMMARY

If you add an Active Server Pages (ASP) page to a Microsoft Windows SharePoint Services 2.0 or Microsoft Windows SharePoint Services 3.0 document library, you may make sensitive information available to all users who have access to the document library.

MORE INFORMATION

Documents that you add to a document library in Windows SharePoint Services 2.0 and Windows SharePoint Services 3.0 can be opened by any text editor and the documents' contents can be viewed. ASP pages may store sensitive information such as logon identities and the corresponding passwords for these identities. Therefore, if you add an ASP page to a document library, all users who have access this document library can also view the whole contents of the ASP page.

We recommend that you do not use a document library in this manner. If you must reference an ASP page from a document library, do so only through a hyperlink on a page that is stored in the document library. More architecture information is available in the Microsoft Windows SharePoint Services Administrators Guide.

For more information about how to install, to configure, and to administer Windows SharePoint Services, see the Microsoft Windows SharePoint Services Administrator's Guide. To do this, visit the following Microsoft Web site:
http://www.microsoft.com/downloads/details.aspx?FamilyID=A637EFF6-8224-4B19-A6A4-3E33FA13D230 (http://www.microsoft.com/downloads/details.aspx?FamilyID=A637EFF6-8224-4B19-A6A4-3E33FA13D230)
For more information about how to install, to configure, and to administer Microsoft Windows SharePoint Services 3.0, visit the following Microsoft Web site:
http://technet2.microsoft.com/windowsserver/WSS/en/library/6181fe5b-90ca-40cf-aade-abd59cf3c9071033.mspx (http://technet2.microsoft.com/windowsserver/WSS/en/library/6181fe5b-90ca-40cf-aade-abd59cf3c9071033.mspx)
APPLIES TO
  • Microsoft Office SharePoint Server 2007
  • Microsoft Office SharePoint Portal Server 2003
  • Microsoft Windows SharePoint Services 2.0
Back to the top
Keywords: 
kbweb kbinfo KB830980
        

Community Feedback System

Very often, it takes hours to solve a problem. Very often, you've looked high and low, and have tried a lot of solutions. When you finally found it, chances are, it was because someone else helped you. Here's your chance to give back. Use our community feedback tool to let others know what worked for you and what didn't.

Please also understand that the community feedback system is not warranted to be correct, it's simply a system that we've built to let people try and help each other. If something in a feedback response doesn't make sense to you, or you're not comfortable making changes that the feedback talks about (like registry edits), please consult a professional.

Thank you for using kbAlertz.com Feedback System.

-- Scott Cate

Copyright © 2002-2007 KBALERTZ.COM.  All Rights Reserved. Terms / PrivacyDiscount ASP.NET Hosting