263 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
 
Latest 7 Posts
Delivering two new presentations at Developer Camp 2015 in Germany
Wed, Jan 21st 2015 41
A brilliant concept -- Compulsive Narrative Syndrome
Sun, Jan 18th 2015 16
Come talk to me at Connect in Orlando - I'll be there part of the time.
Fri, Jan 16th 2015 8
Looking for a few people who want to beta test my new SSL Certificate Request tool.
Thu, Dec 4th 2014 7
Well, it's official. IBM ConnectedED does not feel my contribution is worth the session time.
Mon, Dec 1st 2014 6
First look at a new free Domino SSL certificate tool
Mon, Dec 1st 2014 9
Simplified explanation and steps for upgrading to SHA-2 encrypted SSL certificates for Domino
Mon, Nov 10th 2014 11
Top 10
Delivering two new presentations at Developer Camp 2015 in Germany
Wed, Jan 21st 2015 41
A brilliant concept -- Compulsive Narrative Syndrome
Sun, Jan 18th 2015 16
Summary Recommendation for dealing with the POODLE SSLv3 Vulnerability on Domino servers
Thu, Oct 16th 2014 14
Patch for the SSL v3 POODLE exploit has escaped IBM and can now be downloaded. You REALLY need this patch
Tue, Nov 4th 2014 14
Simplified explanation and steps for upgrading to SHA-2 encrypted SSL certificates for Domino
Mon, Nov 10th 2014 11
Warning: IBMs Interim Fix adding TLS 1.0 to Domino can break connections from Python and some other scripting clients
Tue, Nov 4th 2014 10
First look at a new free Domino SSL certificate tool
Mon, Dec 1st 2014 9
IBM Domino Servers STILL don't support SSL SHA-2 Certificates - and about to be a PROBLEM
Wed, Sep 17th 2014 8
Come talk to me at Connect in Orlando - I'll be there part of the time.
Fri, Jan 16th 2015 8
Looking for a few people who want to beta test my new SSL Certificate Request tool.
Thu, Dec 4th 2014 7




Recent Blog Posts
41
Delivering two new presentations at Developer Camp 2015 in Germany
Wed, Jan 21st 2015 10:45a   Andrew Pollack
So the mini-sized, final year, run out the contract version of Lotusphere (aka Connect, aka ConnectED) is next week -- but I won't be speaking there. To see these brand new presentations you'll have to come see me in Germany at the beginning of March. [Developer Camp 2015] Interfacing Domino with Amazon Web Services and other external services If you're serious about Domino as a web platform, you're going to have to get used to interfacing with other services and systems whether they are on
16
A brilliant concept -- Compulsive Narrative Syndrome
Sun, Jan 18th 2015 9:30a   Andrew Pollack
I first came across this brilliant concept in Joel Shepherd’s "23 Years on Fire", the fourth novel in his Cassandra Kresnov series. The series started out a little juvenile but has gotten steadily more serious as the depth and age of the characters has increased. Here is Shepherd's characters explaining CNS -- tell me this doesn't ring a bell in modern politics. “The human brain is trained to look for and identify patterns, but in abstract concepts, fixed and unarguable facts are hard to
8
Come talk to me at Connect in Orlando - I'll be there part of the time.
Fri, Jan 16th 2015 10:34a   Andrew Pollack
It looks like unless things go pear shaped in the next few days, I'll be able to get down to Orlando for the beginning of the Connect conference. I'm currently planning to be there from Friday evening until Tuesday morning or early afternoon. I don't plan on buying a ticket and going sessions but I will likely lurk around the usual places (e.g. the Dolphin rotunda area, or if it's nice out the various sunshine spots) a good part of that time. If you want to make a specific effort to meet (or
7
Looking for a few people who want to beta test my new SSL Certificate Request tool.
Thu, Dec 4th 2014 11:53a   Andrew Pollack
I plan to open source this tool once I've done just a little more testing with other people. Drop me an email if you're interested. I'm looking for around 5 people who have the time, know how to deal with SSL stuff already, and already have the Notes 9.x admin client on their machines. The idea behind open sourcing for me, is that I've created the functional tool, and there's a lot of room for making it nicer looking and adding other kinds of functionality. For example, this tool allows you
6
Well, it's official. IBM ConnectedED does not feel my contribution is worth the session time.
Mon, Dec 1st 2014 3:39p   Andrew Pollack
I know I'm in good company, and I don't deserve a session slot any more than anyone else -- but I'd be lying if I didn't admit to being a bit frustrated and disappointed. For now, I'll hold my tongue about the decision process, wish the best of luck to those who will be speaking, hope the people attending find the content helpful, and say that if you want the content I've been delivering you'll have to come to some of the user groups or to Rudi's "Admin / Developer Camp" conferences...
9
First look at a new free Domino SSL certificate tool
Mon, Dec 1st 2014 3:30p   Andrew Pollack
I've coded something that I plan to release to the community if there is enough interest. It's designed to make the process of getting SHA2 certificates a little easier. I've had to request a fair number of these recently and the command line stuff is tedious and it's easy to make mistakes or misplace the various files. This tool uses the same steps as the process IBM documents and the same tools. You still have to install openSSL and the kyrtool update on your 9.x Admin client machine. The
11
Simplified explanation and steps for upgrading to SHA-2 encrypted SSL certificates for Domino
Mon, Nov 10th 2014 2:40p   Andrew Pollack
I went through the process to understand what IBM is saying in their patch information -- and while it's valid, it's also harder than it needs to be (IMCO) for people already used to doing things the Domino way. If you're already familiar with using the server certification database to create the keyring and make the certificate request certificate (CSR) you can keep using it. This is also helpful if you already have a SHA1 based certificate and you just want to re-issue. Note: This resolves
10
Warning: IBMs Interim Fix adding TLS 1.0 to Domino can break connections from Python and some other scripting clients
Tue, Nov 4th 2014 5:06p   Andrew Pollack
Here's a bit of joy to add to your day. Once your server can speak TLS 1.0 to help secure you from POODLE attacks, any code making connections to your server over HTTPS that use the utilities wget, curl and most importanly Python (and others, apparently) may break. The issue is that these tools are built using a version of openSSL that will try to connect using TLS 1.2 first -- and when that fails, the connection gets dropped. I've seen reports of this in Ruby as well, but I've verified that
14
Patch for the SSL v3 POODLE exploit has escaped IBM and can now be downloaded. You REALLY need this patch
Tue, Nov 4th 2014 5:00a   Andrew Pollack
If you do not apply this patch, you are going to start having users unable to connect using SSL to your Domino servers. Vendors and customer sites are starting to release operating system and browser patch that block access to sites using only SSLv3 without TLS. Until this morning, that meant all Domino servers not using a reverse proxy front end of some kind. This patch adds TLS 1.0 to Domino versions 8.51, 8.52, 8.53, 9.0, and 9.01 in all the various platforms. TLS 1.0 is a fairly old version
5
Automatic Spam Report to Provider Agent
Wed, Oct 29th 2014 7:39a   Andrew Pollack
This morning Andy Donaldson was asking on FB for code that turned a spam email into an EML attachment for reporting to anti-spam providers. I wrote this a while back for exactly that purpose. Rather than an attachment, this just creates an email to the anti-spam provider that contains the original spam message including all of it's header information and encoded mime. Essentially, if you took the body of what I'm sending and saved it as a text document with a .EML extension it would be the sam




Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition