Team Foundation Server - Why can all valid users see all Team Projects? - Willy-Peter Schaub's Cave of Chamomile Simplicity

Team Foundation Server - Why can all valid users see all Team Projects?

For TFS2005 this question is valid, because the group Team Foundation Valid Users has the right to View project-level information on Team Projects by default as shown:

image 

To work around this security issue, deselect the View project-level information option when creating Team Projects.

For TFS2008 this question seems to have vaporised, because by default the group Team Foundation Valid Users does not appear as shown:

image 

I for one was not aware that this issue fizzled out with TSF2008 ... until Etienne mentioned the problem today and I had a peek at our TFS2005 and TFS2008 servers back home.

Share this post: email it! | bookmark it! | digg it! | reddit! | kick it! | live it!
Published Wednesday, April 16, 2008 6:20 PM by willy
Filed under:

Comments

# Una piccola differenza tra TFS2005 e 2008

Wednesday, April 16, 2008 7:55 PM by Normal people bore me!

Una piccola differenza tra TFS2005 e 2008

# Team System Link Love - 8

Monday, April 21, 2008 7:23 AM by .NETicated

MVP Summit MVP Summit 2008, Seattle Day +1 on Grant Holliday's blog MVP Summit 2008, Seattle Day

# VSTS Links - 5

Monday, April 28, 2008 7:52 PM by Team System News

V-Ness on Customizing Work Items in Visual Studio. The VS Team Architect Blog on Rosario April CTP. The...

# Secure by default and the list of team projects

Wednesday, May 14, 2008 4:56 AM by James Manning's blog

Another brown-paper-bag bug in TFS 2005 was that, by default, all valid users could see the full list

Leave a Comment

(required) 
(required) 
(optional)
(required) 

Enter the numbers above: