We have an internet facing site on SharePoint 2010 Foundation. We have anonymous access enabled (mandatory), but we need to lock down access to the _layouts, _catalogs, etc directories. By lock down, I mean we don't want the user to be able to 'View All
Site Content' and see the lists. We need their user to have 'access' to them so the content is rendered/ran appropriately.
Is the only alternative to lock these directories down in the web.config?
View Complete Post