278 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
 
Latest 7 Posts
IBM Traveler 9.0.12 released including a security fix
Thu, Jul 14th 2016 62
IBM Traveler 9.0.1.12 released including a security fix
Thu, Jul 14th 2016 25
BM mail support for Microsoft Outlook officially released
Wed, Jun 29th 2016 29
Domino Catalog vs Domain Catalog
Sat, Jun 11th 2016 11
DE-Mail Mail-Template with Command Line DNS Lookup
Wed, Jun 8th 2016 9
43. DNUG 1. + 2. June in Hamburg
Thu, May 26th 2016 7
Domino 9.0.1 FP6
Sun, May 22nd 2016 18
Top 10
IBM Traveler 9.0.12 released including a security fix
Thu, Jul 14th 2016 62
BM mail support for Microsoft Outlook officially released
Wed, Jun 29th 2016 29
IBM Traveler 9.0.1.12 released including a security fix
Thu, Jul 14th 2016 25
IBM Notes V9.0.1 Mac 64 Bit English (CN6VDEN )
Tue, Sep 29th 2015 21
Domino Server Controller does not connect after upgrade to Java6SR16FP20
Tue, Feb 16th 2016 21
TLS 1.2 Connection Issues with mail.protection.outlook.COM
Thu, Jan 7th 2016 19
Traveler 9.0.1 IF7
Fri, Nov 7th 2014 18
Domino 9.0.1 FP6
Sun, May 22nd 2016 18
Server Controller Issue when applying 9.0.1 FP5 IF2
Thu, Mar 31st 2016 16
Crash on iNotes when applying IF1 or the new 9.0.1 FP4 version
Mon, Jul 20th 2015 15




Recent Blog Posts
62
IBM Traveler 9.0.12 released including a security fix
Thu, Jul 14th 2016 9:45a   Daniel Nashed
IBM Traveler 9.0.12 shipped with some important changes. The first change is a security fix which is described below. But there is another security fix in the installer on Windows as well and some other fixes that could be affecting you. Upgraded my server already. -- Daniel Security Bulletin: XML External Entities Injection Vulnerability in IBM Traveler (CVE-2016-3039) IBM Traveler is vulnerable to a denial of service caused by an XML External Entity Injection (XXE) error wh
25
IBM Traveler 9.0.1.12 released including a security fix
Thu, Jul 14th 2016 3:45a   Daniel Nashed
IBM Traveler 9.0.1.12 shipped with some important changes. The first change is a security fix which is described below. But there is another security fix in the installer on Windows as well and some other fixes that could be affecting you. Upgraded my server already. -- Daniel Security Bulletin: XML External Entities Injection Vulnerability in IBM Traveler (CVE-2016-3039) IBM Traveler is vulnerable to a denial of service caused by an XML External Entity Injection (XXE) er
29
BM mail support for Microsoft Outlook officially released
Wed, Jun 29th 2016 10:49a   Daniel Nashed
Finally IBM has released IMSMO 2.0. It has been around already under controlled distribution and is finally available for all customers and partners. It enables you to connect a Microsoft Outlook 2013 client to a Domino V9.0.1 Server. The software is an add-on to your Domino server similar to what a Traveler does (in fact they share some code base but they are not the same!). Also the gateway need to resist on the mail-server of the user. We asked to have a way to use a gateway server app
11
Domino Catalog vs Domain Catalog
Sat, Jun 11th 2016 12:50p   Daniel Nashed
I while ago I ran into this and I did analyse how it works in detail. But I never posted this information. Today we ran into this again and I looked for my old documentation. -- Daniel Here is how it is intended to work and how most admins are currently using it. I was very surprised when I figured out how the catalog and domain catalog really work. My impression was always that the catalog.nsf is a replica that is replicated everywhere. But there are two different types of catalogs
9
DE-Mail Mail-Template with Command Line DNS Lookup
Wed, Jun 8th 2016 2:43a   Daniel Nashed
We ran into a limitation with the DE-Mail Template that T-System implemented in their Notes Mail Template. It turned out that they are invoking a cmd.exe because this is the only way to return data directly from nslookup to the application with a redirect on Windows. The function is used to check if the recipient's domain is a DE-Mail domain and queries SRV records defined in RFC RFC 2782 (check https://en.wikipedia.org/wiki/SRV_record for details). SRV Records can not be queried with s
7
43. DNUG 1. + 2. June in Hamburg
Thu, May 26th 2016 4:58a   Daniel Nashed
Hi and good morning! This will be my first blog entry in Germany and it's about German about our German "Notes" User Group "DNUG"... Bei der DNUG hat sich einiges getan in den letzten Monaten! Seitdem die DNUG einen neuen Vorstand hat, werden einige Dinge anders angegangen und auch die Art und Weise, wie die DNUG Konferenz geplant wird, hat sich geändert. Die Geschäfts-Stelle ist jetzt virtuell und auch die Server der DNUG sind entsprechend virtualisiert. Aber auch an anderen S
18
Domino 9.0.1 FP6
Sun, May 22nd 2016 4:55p   Daniel Nashed
Domino 9.0.1 FP6 has been released a while ago. I have installed it and I got positive feedback from customers already. FP6 contains all the fixes from previous IFs and also the updated JVM Java60SR16FP20 which addresses a couple of security fixes. Also the server controller interoperability issue is fixed. But for a client based connection you also need to update your admin client! All the TLS fixes are also included and there is an additional fix for an issue in a TLS handshake. SPR#
7
Domino Federarted Web Login / SAML with F5 and ADFS 3.0
Mon, Apr 25th 2016 12:14p   Daniel Nashed
In the last couple of weeks I spent a lot of time with customer Web Federated Login workshops and implementations. Not sure what happened but suddenly everyone is interested in SAML. It looks like more and more customers are looking into that because they have already implemented SSO for other applications like O365. In one case a customer had an existing F5 configuration. In one other case we had a customer with Windows 2012 R2 and ADFS 3.0. Both configurations are not officially support
16
Server Controller Issue when applying 9.0.1 FP5 IF2
Thu, Mar 31st 2016 9:27a   Daniel Nashed
After applying 9.0.1 FP5 IF2 you cannot connect to the server controller -- again! That's another issue that cannot be fixed allowing MD5 in the java security files. What you need is an updated version of the JVM patch. The new patch has a release data of 25.3.2016 an can be downloaded from Fixcentral. Here is the relevant information from the updated technote referenced in the SPR. SPR RSSNA6UU79 is fixed in version 9.0.1FP5 Interim Fix 2 (IF2) via a server code fix and an updated JV
5
Security Issue - IBM Domino AES GCM weak nonce generation vulnerability
Tue, Mar 29th 2016 6:02a   Daniel Nashed
There is a new vulnerability affecting AES GCM ciphers which have been introduced in 9.01. FP3 (enabled by default). For very large data sets, IBM Domino Web servers using TLS and AES GCM generate a weak nonce which could be potentially used for a man-in-the-middle-attack. All Domino 9 versions supporting those ciphers are affected and there is new IF (9.0.1 FP5 IF2) which addresses this issue. The IBM Domino AES GCM weak nonce generation vulnerability is tracked as SPR #KLYHA6ZP4F. If




Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition