MicrosoftI share the concerns regarding the potential risks associated with enabling Anyone links as a default setting for external sharing at an organizational level. Currently, we utilize a third-party software-as-a-service (SaaS) platform that we have branded as our "Large File Transfer Service" to facilitate external sharing. This ensures that our staff members are fully aware of what they are sharing externally.
Prior to the implementation of Modern SharePoint, we disabled external sharing by default and only enabled it for specific site collections. Then, we created separate subsites with customized permissions for external sharing purposes. Our preferred approach is to have a default setting that is locked down, with the ability to enable external sharing on a per-site basis.
Based on my understanding of the current setting, it appears that we would need to enable Anyone links and then manually secure each site to enable external sharing for specific exceptions.
