Two new Technotes have been published
How is IBM Domino impacted by the POODLE attack?
The Short version it is and IBM will provide Interim Fixes for the following Domino releases:
- 9.0.1 Fix Pack 2
- 9.0
- 8.5.3 Fix Pack 6
- 8.5.2 Fix Pack 4
- 8.5.1 Fix Pack 5
Planned SHA-2 deliveries for IBM Domino 9.x
The Short version
SHA-2 support for Domino 9.x is planned to be delivered over the next several weeks via an Interim Fix.
- With this Interim Fix, Domino administrators will be able to configure Domino 9.x to use a SHA-2 certificate over HTTP, SMTP, LDAP, POP, and IMAP. With a SHA-2 certificate in place, users will be able to use a browser to connect to iNotes, XPages, traditional Domino Web apps, and Sametime (based on Domino HTTP).
- Once the Interim Fix is applied, browser users will not receive a security alert since Domino will be configured with SHA-2. Domino administrators will be able to import a 3rd-party SHA-2 cert or generate SHA-2 certs with the Domino Administrator client with Domino 9.x running the Interim Fix on all supported platforms.
- As mentioned in the above section, the cryptographic infrastructure needed to provide these features was new to Domino 9.x. For this reason, we will not be able to support SHA-2 on Domino 8.5.x.