pdemro.com

I received an email today from an independent security researcher which detailed a vulnerability in pdemro.com. I am using a pretty old version of the Ghost docker image which apparently serves a directory which is a Git repository (including a .git folder). The vulnerability exploited my permissive Caddy configuration to access the git HEAD. To reproduce, the researcher built a robot to hit websites at /.git/HEAD. Read all [Read More]

SharePoint Framework (SpFx) is the latest-and-greatest way to build web parts and bolt on modifications to SharePoint Online (SpFx also has a limited on-premises capability with SharePoint 2016). Adopting SpFx has been mostly a positive experience but as with any new technology there are challenges and growing pains. One challenge specifically is creeping build times for our core project. As web parts, extensions and core libraries are added, it takes [Read More]

Quickly jotting down my notes on how to debug SpFx extensions with FireFox & Code. This probably applies to SpFx web parts as well. Install FireFox the Debug Adapter The Microsoft instructions for debugging using Chrome are pretty much in play here, the only difference is you'll be installing the FireFox debugging adapter extension rather than the Chrome extension, and using a different configuration schema. The FireFox debug adapter has [Read More]

I was looking around over the last few days/weeks and couldn't find many resources on how to actually create a true single server farm in SharePoint 2016 which doesn't depend on active directory. I am using Azure to provision the VM in this excersize so we are skipping the step of actually installing the SharePoint bits since they are available in an Azure VM template. Before you begin - [Read More]

Update 01-09-2017 - SharePoint 2016 Feature Pack 1 brings several functional updates. One of these updates is the "OneDrive for Business Modern Experience." The ODFB Modern experience is not compatible with traditional feature stapling and I have included the powershell steps below to disable/revert it. How to manage fast site creation when implementing a MySite feature staple in SharePoint 2016 Feature stapling has been around for a long time, [Read More]