263 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
 
Latest 7 Posts
IBM ConnectED (LS15) Saturday Community Events Time Changes
Sat, Jan 24th 2015 116
My IBM ConnectED Speaking Schedule -- With My First ChalkTalk
Wed, Jan 21st 2015 185
IBM ConnectED -- Get your Linux Fix at Linuxfest VI
Wed, Jan 21st 2015 171
Get Access -- Voice of the Partner is Live
Wed, Dec 17th 2014 38
IBM Mobile Connect POODLE Fix
Mon, Nov 3rd 2014 40
IBM Protector for Mail Security POODLE Fix
Wed, Oct 22nd 2014 28
Silent No More: IBM Makes Security Announcements on SHA-2, TLS, POODLE
Tue, Oct 21st 2014 30
Top 10
My IBM ConnectED Speaking Schedule -- With My First ChalkTalk
Wed, Jan 21st 2015 185
IBM ConnectED -- Get your Linux Fix at Linuxfest VI
Wed, Jan 21st 2015 171
IBM ConnectED (LS15) Saturday Community Events Time Changes
Sat, Jan 24th 2015 116
New SSL3 Exploit: The POODLE Is Here and Lifting Its Leg
Wed, Oct 15th 2014 43
IBM Mobile Connect POODLE Fix
Mon, Nov 3rd 2014 40
Get Access -- Voice of the Partner is Live
Wed, Dec 17th 2014 38
Linux Bash Bug - Shellshock - FINAL FIX RELEASED: Get Patched (AIX, Mac Too)
Mon, Sep 29th 2014 37
Linux Bash Bug - Shellshock - is Real: Get Patched (Mac Too)
Thu, Sep 25th 2014 31
Ryder Cup Skype Chat Announced
Wed, Sep 24th 2014 30
Silent No More: IBM Makes Security Announcements on SHA-2, TLS, POODLE
Tue, Oct 21st 2014 30




Recent Blog Posts
116
IBM ConnectED (LS15) Saturday Community Events Time Changes
Sat, Jan 24th 2015 4:10a   Bill Malchisky Jr.
Due to the overnight and morning rain, I started working on logistical changes to get the day's Community events included with minimal overlap to other already scheduled Saturday events. This should serve as the Master Schedule for now... as due to traveling to this event, the wonderful teams for the Totally Unsupported IBM Notes Session Database and the AngularJS and Domino demo site. by Mark Roden and Mark Leusink, will not be able to get their sites updated in-time, which is completely
185
My IBM ConnectED Speaking Schedule -- With My First ChalkTalk
Wed, Jan 21st 2015 11:11p   Bill Malchisky Jr.
In just a few short days, the next iteration of our annual January conference commences. With all of the other ICS related activities I am doing this year outside of IC15 (LS15), I am happy to take a bit of a back seat with the speaking and run my first ChalkTalk session (formerly Birds Of a Feather (BOF)), plus Linuxfest VI on Wednesday. For my ChalkTalk session, I am co-presenting with the wonderful fellow IBM Champion, Ms. Femke Goedhart. We are covering the Personal Privacy Paradigm. A ti
171
IBM ConnectED -- Get your Linux Fix at Linuxfest VI
Wed, Jan 21st 2015 5:10a   Bill Malchisky Jr.
After several months of planning, I can officially announce that Linuxfest will return to Orlando, for IC15 for its sixth consecutive year. With the compressed schedule this year and the organizing team working diligently to make the event memorable for all the speakers and attendees, we had to schedule this unofficial session differently. Thus, we are in the Swan and one-half hour after the CGS (Closing General Session). We are listed in the Totally Unsupported IBM Notes Session Database as
38
Get Access -- Voice of the Partner is Live
Wed, Dec 17th 2014 5:10a   Bill Malchisky Jr.
It is with great pleasure that I announce Voice of the Partner is in production! This tool provides IBM Collaboration Solutions business partners a new feedback continuity site to interface directly with IBM. As alluded to within my beta launch blog post, the past three months proved quite busy, culminating in this promised mid-December launch. Please understand this is a volunteer effort for me and the scope of BPs in good standing is massive. Thus, I am breaking the overall group down into
40
IBM Mobile Connect POODLE Fix
Mon, Nov 3rd 2014 5:16a   Bill Malchisky Jr.
IBM just announced a couple of Technotes dealing with IBM Mobile Connect and POODLE. As this product is quite secure by design and a product that I enjoy as customers have a great track record with it in the field, the option to use TLS 1.0 - 1.2 is supported. The new SSL v3 security changes are implemented under APAR IV66131 -- available for IMC 6.1.5 and 6.1.5.1. Thus, if you have not upgraded IMC in the past ten days, then read below and plan your upgrade as appropriate. Here Are The Tec
28
IBM Protector for Mail Security POODLE Fix
Wed, Oct 22nd 2014 2:20p   Bill Malchisky Jr.
A day after providing two Technotes on SHA-2, TLS, and POODLE for Domino, IBM released two documents to cover their Protector product. The bulletin covers three vulnerabilities and provides details on each. For the workaround document, mind the side effect mentioned at the bottom, as with some sites, this may introduce a risk assessment against delivery versus the exploit's vulnerability. 1. Bulletin - Security Bulletin: Vulnerabilities in OpenSSL may cause weak cyphers to be used over SSLv
30
Silent No More: IBM Makes Security Announcements on SHA-2, TLS, POODLE
Tue, Oct 21st 2014 9:12a   Bill Malchisky Jr.
Today (21 Oct 14), IBM created a set of Technotes covering what appears to be a first step in helping soothe the customer and partner concern on the lack of offered direction and plan for resolving the SHA-1, TLS, and POODLE exploits that exist from years of community support and a yet to be implemented capability for increased security. I offer first step as no date for the patch is provided, just that they are stating their intentions and scope with a solution by year-end, which is my conjectu
43
New SSL3 Exploit: The POODLE Is Here and Lifting Its Leg
Wed, Oct 15th 2014 3:38a   Bill Malchisky Jr.
Here we go again... another blockbuster security exploit with another clever code name is announced. POODLE (Padding Oracle On Downgraded Legacy Encryption) CVE-2014-3566 specifically allows a man-in-the-middle style attack utilizing an SSL3 connection. Once again, Red Hat does a stellar job offering full details on background, technical specifics, and testing. Google's Online Security Blog post is exceedingly terse when contrasting. Here is what you need to know. What is It? CVE-2014-356
37
Linux Bash Bug - Shellshock - FINAL FIX RELEASED: Get Patched (AIX, Mac Too)
Mon, Sep 29th 2014 6:13a   Bill Malchisky Jr.
Author's Note: Thank you to the ICS community for their tremendous support of my first Shellshock post. For those that read it early, you received critical information 14-72 hours before many sites released their stories. Several readers were fully patched before big names tweeted the issue. You were well ahead of the curve. Shellshock stories released over the weekend proved outdated and incomplete. This post provides better information faster. I am grateful for your support. As I mentione
31
Linux Bash Bug - Shellshock - is Real: Get Patched (Mac Too)
Thu, Sep 25th 2014 6:13a   Bill Malchisky Jr.
This is ugly, but fortunately you just have to update to a fixed Bash version and your fine (for now). No need to reboot your system either. Red Hat is out early on this and escalated this appropriately. Their first round of updates got all but one exploit permutation, so they re-issued another bug identifier and are working to close it soon. Their initial timeline: Red Hat announced the bug on 14 Sep, had a proposed upstream patch seven hours later (0500h 15 Sep), backported it to Bash 3.0,




Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition