In testing, after giving a user share access to a Skydrive folder, that user was able to send that link to somebody else and that user was able to also gain access to that same share. Whatever level of access that was given to the original user, was the same access given to the user that the link was sent to. When looking under the shared permissions, it showed that the new user was given access to the folder by the original user.
This is a huge security issue and I’m wondering if there is a way to stop a user that has been given access by an admin, from giving access to other random uninvited people.
Recent Comments