ARTICLES

Home  > Articles  >  SharePoint file filtering beyond out-of-the-box
 Whether for audit or to enforce policy, file filtering in SharePoint is an excellent feature. Out of the box, you can specify the list of files you want to be blocked; not really do any audit on already uploaded files. Also, if user renames file extension – SharePoint can`t really detect the actual file type that is used and allow for bad content to be uploaded. Here we`ll check out some other options that prevent your server from becoming a distribution point for bad content.

One of the interesting things is that Microsoft Forefront for SharePoint and its advanced file filtering capabilities allow to set file filtering for both on-demand (reporting) and live scenarios. Also, since SharePoint stores it`s content in SQL database as a clear text - event if you have Rights Management enabled - Forefront is still able to pick up bad content and do filtering. One of the really good options is that no matter what users change file extensions to – Forefront will be able to get the signature of the file and recognize the actual format of the file restricted content.

Below we see Forefront for SharePoint 2006 and some of its filtering options:

filefiltering

One of the things you notice is that we can send notification to users and administrators either by email or on the screen. Here is how to set your notifications for various events and roles:

notifications

As you can see whatever advanced filtering capabilities are missing out of the box - can be achieved by Forefront. For those of you who are interested in a lab environment to explore, check out the VHD that supports above security scenario and more accessible here

Yaroslav Pentsarskyy, Microsoft MVP
Blog: www.sharemuch.com