https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014701#M79380 <P>I wanted to know what the consensus is on the rule that I have created. I want to allow users to upload documents, internall, to sharepoint without being queried that Internet Explorer is attempting to read a MS Office document. I do however want them to be queried if they are uploading to an external website. The dynamic application class that I have created, Trusted TCP Connections, only include the internal IP host to communicate to internal IP host. With my rule that I have created, am I opening myself up to any major security holes? Thanks and I appreciate all of your feedback.</P><P></P><P> </P><P></P> Sun, 10 Mar 2019 11:12:32 GMT jasonsuplita 2019-03-10T11:12:32Z https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014701#M79380 <P>I wanted to know what the consensus is on the rule that I have created. I want to allow users to upload documents, internall, to sharepoint without being queried that Internet Explorer is attempting to read a MS Office document. I do however want them to be queried if they are uploading to an external website. The dynamic application class that I have created, Trusted TCP Connections, only include the internal IP host to communicate to internal IP host. With my rule that I have created, am I opening myself up to any major security holes? Thanks and I appreciate all of your feedback.</P><P></P><P> </P><P></P> Sun, 10 Mar 2019 11:12:32 GMT https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014701#M79380 jasonsuplita 2019-03-10T11:12:32Z https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014702#M79385 <HTML><HEAD></HEAD><BODY><P>Hi Jason, it looks like you may have allowed all processes executing untrusted content to read and write files, not just the trusted LOGOS connections.</P><P></P><P>Tom</P></BODY></HTML> Wed, 23 Jul 2008 18:58:53 GMT https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014702#M79385 tsteger1 2008-07-23T18:58:53Z https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014703#M79389 <HTML><HEAD></HEAD><BODY><P>Wow, I didn't realize until you said that, that I could just include a dynamic application class as my only source. I thought I would have to use an application class with an executable and attach a dynamic class to that. That is great to know that I have that much more possiblities to use. Thanks, I really appreciate your help.</P></BODY></HTML> Wed, 23 Jul 2008 20:06:00 GMT https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014703#M79389 jasonsuplita 2008-07-23T20:06:00Z https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014704#M79391 <HTML><HEAD></HEAD><BODY><P>Hi Jason,</P><P></P><P>Glad the forum was able to help!</P><P></P><P>Please do your part to improve the quality of the answers given in this forum and rate Tom's answer, especially if it helped solve your issue.</P><P></P><P>Best,</P><P></P><P>Paul</P></BODY></HTML> Wed, 23 Jul 2008 20:47:52 GMT https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014704#M79391 pmccubbin 2008-07-23T20:47:52Z https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014705#M79393 <HTML><HEAD></HEAD><BODY><P>Thanks Paul... and Jason, I hope it's working the way you want it to...</P><P></P><P>Tom</P></BODY></HTML> Wed, 30 Jul 2008 03:54:01 GMT https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014705#M79393 tsteger1 2008-07-30T03:54:01Z https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014706#M79394 <HTML><HEAD></HEAD><BODY><P>Your advice worked like a charm! Thanks for the help.</P></BODY></HTML> Wed, 30 Jul 2008 04:32:51 GMT https://community.cisco.com/t5/network-security/csa-and-file-access/m-p/1014706#M79394 jasonsuplita 2008-07-30T04:32:51Z