I'm trying to "Hardening" the Lync 2010 online meeting service, one of my goals is to prevent the possibility to send\receive files for all external users (Federated and anonymous users) in order to do so, i've implemented the configuration specified in the following KB:
http://support.microsoft.com/kb/2621840
New-CsFileTransferFilterConfiguration -Identity EdgePoolIdentity -BlockFileExtension $True -Action BlockAll -Enabled $True
Unfortunately, this solution is not working as expected, the result is that an external users will not be able to receive files sent by internal users, but he will be able to send files from the internet to internal users,
This is a very major security risk, since the Lync 2010 File filtering mechanism is not sophisticated (for example: a malicious file can be sent with *.txt extension)
Is there a way to completely disable the file transferring service for all external users? (we still want to use it on our internal environment)
Many thanks!