278 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
 
Latest 7 Posts
How to thoroughly confuse your customers, IBM Edition
Thu, Apr 28th 2016 21
An open letter to the ICS GM Inhi Cho Shu
Wed, Mar 23rd 2016 27
Real badgers....
Tue, Mar 22nd 2016 10
The 2015 Snarky Review
Mon, Jan 11th 2016 18
If you get page errors after disabling HTTPEnableConnectorHeaders in Domino, try this
Mon, Nov 2nd 2015 11
Free SSL certificates. Yes free (for most domains)
Thu, Oct 1st 2015 20
Free SSL certificates. Yes free (for most domains)
Thu, Oct 1st 2015 17
Top 10
An open letter to the ICS GM Inhi Cho Shu
Wed, Mar 23rd 2016 27
How to thoroughly confuse your customers, IBM Edition
Thu, Apr 28th 2016 21
SOLUTION - Domino Directory Assistance to Active Directory when using SSL DOES NOT break with 9.0.1 FP4
Thu, Jul 16th 2015 20
Free SSL certificates. Yes free (for most domains)
Thu, Oct 1st 2015 20
The 2015 Snarky Review
Mon, Jan 11th 2016 18
iNotes and IE11 - yes it is supported
Tue, Mar 18th 2014 17
STARTTLS and POODLE is this really an issue?
Thu, Oct 23rd 2014 17
Free SSL certificates. Yes free (for most domains)
Thu, Oct 1st 2015 17
How to disable SSLv3 in Domino
Fri, Dec 12th 2014 16
Supercharge your Domino servers with OCSP Stapling - real go faster stripes
Wed, Sep 16th 2015 16




Recent Blog Posts
21
How to thoroughly confuse your customers, IBM Edition
Thu, Apr 28th 2016 10:57a   Darren Duke
Off I toddle to IBM Fix Central. I wanted the latest FP5 and IF's for Notes, the Browser Plugin and the Lite Browser Plugin. Here's a screenshot of what IBM Fix Central returns for me..... Now, I usually know what I am doing, but this is confusing to me, let alone a poor customer who does not understand IBM's mission to put obstacles in the way of everything you'd ever want to do on their sites. Some mind boggling questions arise...... Can I just download 901FP5SHF238_W32_stan
27
An open letter to the ICS GM Inhi Cho Shu
Wed, Mar 23rd 2016 7:46a   Darren Duke
First, let me congratulate you on your new appointment. I wish you ever success. However, I have some concerns about the division (is that that word?) you have just taken over. There really are no avenues to get these to you so I figured this was as good a place as any to try and outline my thoughts..... 1) The schedule for new on-prem software releases requires much more regularity. Thinking Notes and Domino here. See this post as to why 9.0.2 Where for art thou?. 2) The IBM process for
10
Real badgers....
Tue, Mar 22nd 2016 2:59p   Darren Duke
In no way related to IBM Badges........ (although this could be what is at the non-customer end of a PMR)
18
The 2015 Snarky Review
Mon, Jan 11th 2016 1:00p   Darren Duke
Firefox started at 34, ended at 43 (which also seemed to break everything). Chrome started at 39, ended at 47. IE, 11 and 11 (or Edge depending on your OS). My browser preference has changed. I'd love to still use Firefox (as they give a shit about privacy) but it's performance compared to Chrome is laughably right now. So Chrome it is (hangs head in shame)... IBM finally grasped that web security in Domino is important. We got SHA2, TLS1.2, OCSP, HSTS and modern ciphers. Only in R
11
If you get page errors after disabling HTTPEnableConnectorHeaders in Domino, try this
Mon, Nov 2nd 2015 5:53a   Darren Duke
If you are wondering why you want to disable HTTPEnableConnectorHeaders go read Jasper Kiaer's excellent post on why this maybe the worst security hole in Domino ever. Yes, ever. So now you've sent HTTPEnableConnectorHeaders=0 in the server notes.ini (make sure the setting has taken with a "show config http*" in the server console). You restart HTTP on Domino and you get this when you try to access the server: Request contains an HTTP header that does not contain a colon Then you
20
Free SSL certificates. Yes free (for most domains)
Thu, Oct 1st 2015 5:11p   Darren Duke
There are times when a SSL certificate would be nice but not economical. Like for this blog for example. I'm hardly going to splurge $100+ on SSL certificate "just because", and "SSL everywhere" and Google ranking be damned. But here are options out there to get free Class 1 SSL certificates from a trusted root certifier. StartSSL will provide you a free 1 year SSL for most domains (anything with the word financial in the domain is not allowed, and I'm sure there are more rules than th
17
Free SSL certificates. Yes free (for most domains)
Thu, Oct 1st 2015 8:11a   Darren Duke
There are times when an SSL certificate would be nice but not economical. Like for this blog for example. I'm hardly going to splurge $100+ on SSL certificate "just because", and "SSL everywhere" and Google ranking be damned. But here are options out there to get free Class 1 SSL certificates from a trusted root certifier. StartSSL will provide you a free 1 year SSL for most domains (anything with the word financial in the domain is not allowed, and I'm sure there are more rules than t
16
Supercharge your Domino servers with OCSP Stapling - real go faster stripes
Wed, Sep 16th 2015 8:12a   Darren Duke
OK, so I know I said IBM were dropping the ball on 9.0.2 but the Domino security team have been knocking the ball out of the park lately (IBM, don't ignore security again.....just saying). Anyhow, yesterday was HSTS, today I give you OCSP Stapling in Domino. Again the crowds ask, "WTF?"....Via Wikipedia (and, yes a bit yawny....): OCSP stapling, formally known as the TLS Certificate Status Request extension, is an alternative approach to the Online Certificate Status Protocol (OCSP) for
7
Supercharge your Domino servers with OCSP Stapling - real go faster stripes
Wed, Sep 16th 2015 7:17a   Darren Duke
OK, so I know I said IBM were dropping the ball on 9.0.2 but the Domino security team have been knocking the ball out of the park lately (IBM, don't ignore security again.....just saying). Anyhow, yesterday was HSTS, today I give you OCSP Stapling in Domino. Again the crowds ask, "WTF?"....Via Wikipedia (and, yes a bit yawny....): OCSP stapling, formally known as the TLS Certificate Status Request extension, is an alternative approach to the Online Certificate Status Protocol (OCSP) f
16
Supercharge your Domino servers with OCSP Stapling - real go faster stripes
Wed, Sep 16th 2015 7:17a   Darren Duke
OK, so I know I said IBM were dropping the ball on 9.0.2 but the Domino security team have been knocking the ball out of the park lately (IBM, don't ignore security again.....just saying). Anyhow, yesterday was HSTS, today I give you OCSP Stapling in Domino. Again the crowds ask, "WTF?"....Via Wikipedia (and, yes a bit yawny....): OCSP stapling, formally known as the TLS Certificate Status Request extension, is an alternative approach to the Online Certificate Status Protocol (OCSP) f




Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition