278 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
 
Latest 7 Posts
Extended Master Secret Extension issue affects all Internet Protocols including STARTTLS
Wed, Jul 27th 2016 79
Secure LDAP to Active Directory fails with Domino 9.0.1 FP5 IF1 and higher
Wed, Jul 27th 2016 193
IBM Traveler 9.0.12 released including a security fix
Thu, Jul 14th 2016 34
IBM Traveler 9.0.1.12 released including a security fix
Thu, Jul 14th 2016 24
BM mail support for Microsoft Outlook officially released
Wed, Jun 29th 2016 19
Domino Catalog vs Domain Catalog
Sat, Jun 11th 2016 12
DE-Mail Mail-Template with Command Line DNS Lookup
Wed, Jun 8th 2016 7
Top 10
Secure LDAP to Active Directory fails with Domino 9.0.1 FP5 IF1 and higher
Wed, Jul 27th 2016 193
Extended Master Secret Extension issue affects all Internet Protocols including STARTTLS
Wed, Jul 27th 2016 79
Traveler 9.0.1 IF7
Fri, Nov 7th 2014 40
IBM Traveler 9.0.12 released including a security fix
Thu, Jul 14th 2016 34
IBM Traveler 9.0.1.12 released including a security fix
Thu, Jul 14th 2016 24
TLS 1.2 Connection Issues with mail.protection.outlook.COM
Thu, Jan 7th 2016 22
IBM Notes V9.0.1 Mac 64 Bit English (CN6VDEN )
Tue, Sep 29th 2015 19
BM mail support for Microsoft Outlook officially released
Wed, Jun 29th 2016 19
Domino 9.0.1 FP6
Sun, May 22nd 2016 14
Domino Server Controller does not connect after upgrade to Java6SR16FP20
Tue, Feb 16th 2016 13




Recent Blog Posts
79
Extended Master Secret Extension issue affects all Internet Protocols including STARTTLS
Wed, Jul 27th 2016 8:23a   Daniel Nashed
There is a an issue described in a technote which describes an issue with Win 2008 R2 and LDAP. This issue also occurs for other internet protocols!! It is specially important for servers using STARTTLS because you don't control which version and settings the receiving/sending host is using. So the issue I blogged about today does also affect other protocols. That's why I decided to have two blog posts to ensure it is better found on the web. Hiere is the info from the other blog po
193
Secure LDAP to Active Directory fails with Domino 9.0.1 FP5 IF1 and higher
Wed, Jul 27th 2016 2:21a   Daniel Nashed
Domino 9.0.1 FP5 IF1 adds support for the Extended Master Secret Extension with TLS 1.2. Windows 2008 R2 does only supports TLS 1.0 but still sends the Extended Master Secret Extension in the server helo. Domino fails to connect because once this is offered Domino wants to use it. There is a work-around to disable this new functionality globally on the server via notes.ini SSL_DISABLE_EXTENDED_MASTER_SECRET=1 This is just a work-around and the real fix would be that Microsoft prov
34
IBM Traveler 9.0.12 released including a security fix
Thu, Jul 14th 2016 9:45a   Daniel Nashed
IBM Traveler 9.0.12 shipped with some important changes. The first change is a security fix which is described below. But there is another security fix in the installer on Windows as well and some other fixes that could be affecting you. Upgraded my server already. -- Daniel Security Bulletin: XML External Entities Injection Vulnerability in IBM Traveler (CVE-2016-3039) IBM Traveler is vulnerable to a denial of service caused by an XML External Entity Injection (XXE) error wh
24
IBM Traveler 9.0.1.12 released including a security fix
Thu, Jul 14th 2016 3:45a   Daniel Nashed
IBM Traveler 9.0.1.12 shipped with some important changes. The first change is a security fix which is described below. But there is another security fix in the installer on Windows as well and some other fixes that could be affecting you. Upgraded my server already. -- Daniel Security Bulletin: XML External Entities Injection Vulnerability in IBM Traveler (CVE-2016-3039) IBM Traveler is vulnerable to a denial of service caused by an XML External Entity Injection (XXE) er
19
BM mail support for Microsoft Outlook officially released
Wed, Jun 29th 2016 10:49a   Daniel Nashed
Finally IBM has released IMSMO 2.0. It has been around already under controlled distribution and is finally available for all customers and partners. It enables you to connect a Microsoft Outlook 2013 client to a Domino V9.0.1 Server. The software is an add-on to your Domino server similar to what a Traveler does (in fact they share some code base but they are not the same!). Also the gateway need to resist on the mail-server of the user. We asked to have a way to use a gateway server app
12
Domino Catalog vs Domain Catalog
Sat, Jun 11th 2016 12:50p   Daniel Nashed
I while ago I ran into this and I did analyse how it works in detail. But I never posted this information. Today we ran into this again and I looked for my old documentation. -- Daniel Here is how it is intended to work and how most admins are currently using it. I was very surprised when I figured out how the catalog and domain catalog really work. My impression was always that the catalog.nsf is a replica that is replicated everywhere. But there are two different types of catalogs
7
DE-Mail Mail-Template with Command Line DNS Lookup
Wed, Jun 8th 2016 2:43a   Daniel Nashed
We ran into a limitation with the DE-Mail Template that T-System implemented in their Notes Mail Template. It turned out that they are invoking a cmd.exe because this is the only way to return data directly from nslookup to the application with a redirect on Windows. The function is used to check if the recipient's domain is a DE-Mail domain and queries SRV records defined in RFC RFC 2782 (check https://en.wikipedia.org/wiki/SRV_record for details). SRV Records can not be queried with s
10
43. DNUG 1. + 2. June in Hamburg
Thu, May 26th 2016 4:58a   Daniel Nashed
Hi and good morning! This will be my first blog entry in Germany and it's about German about our German "Notes" User Group "DNUG"... Bei der DNUG hat sich einiges getan in den letzten Monaten! Seitdem die DNUG einen neuen Vorstand hat, werden einige Dinge anders angegangen und auch die Art und Weise, wie die DNUG Konferenz geplant wird, hat sich geändert. Die Geschäfts-Stelle ist jetzt virtuell und auch die Server der DNUG sind entsprechend virtualisiert. Aber auch an anderen S
14
Domino 9.0.1 FP6
Sun, May 22nd 2016 4:55p   Daniel Nashed
Domino 9.0.1 FP6 has been released a while ago. I have installed it and I got positive feedback from customers already. FP6 contains all the fixes from previous IFs and also the updated JVM Java60SR16FP20 which addresses a couple of security fixes. Also the server controller interoperability issue is fixed. But for a client based connection you also need to update your admin client! All the TLS fixes are also included and there is an additional fix for an issue in a TLS handshake. SPR#
6
Domino Federarted Web Login / SAML with F5 and ADFS 3.0
Mon, Apr 25th 2016 12:14p   Daniel Nashed
In the last couple of weeks I spent a lot of time with customer Web Federated Login workshops and implementations. Not sure what happened but suddenly everyone is interested in SAML. It looks like more and more customers are looking into that because they have already implemented SSO for other applications like O365. In one case a customer had an existing F5 configuration. In one other case we had a customer with Windows 2012 R2 and ADFS 3.0. Both configurations are not officially support




Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition