I'm setting up a build server using Team Foundation Server (TFS). The drop location needs to be in UNC (e.g. \SERVER\Share$) for some reason known only to MS.
My concern is this. It's a server on the public Internet and the last thing I want is to have someone hack at.
My question
1) Is it possible to fake a UNC to a local directory without actually setting up a share that might be probed/attacked?
2) If I must set up a share...what can I do to secure it beyond hiding it ($), limiting the connections to 1 and setting permission to the specific account that will use it?