358 Lotus blogs updated hourly. Who will post next? Home | Downloads | Events | Pods | Blogs | Search | myPL | About 
 
Latest 7 Posts
Using IBM Lotus Traveler with a proxy....food for thought before you do this
Tue, Dec 16th 2014 236
How to disable SSLv3 in Domino
Fri, Dec 12th 2014 353
Tis coming to the close of 2014, so it must be time for the snarky review
Wed, Dec 10th 2014 314
POODLE TLS - The POODLE Strikes Back - change your settings now....
Tue, Dec 9th 2014 440
The Domino fixes for POODLE and TLS, you may not be done yet
Tue, Nov 4th 2014 512
Back to basics - how to DAOS enable (missed?) non-DAOS’d Domino mail files the easy way
Mon, Nov 3rd 2014 251
STARTTLS and POODLE is this really an issue?
Thu, Oct 23rd 2014 508
Top 10
Here is a freely available VM to reverse proxy Domino - shoot the poodle
Wed, Oct 15th 2014 543
Setting up IBM HTTP Server to redirect all traffic to HTTPS when fronting Domino (I guess this is part 3???)
Thu, May 30th 2013 516
The Domino fixes for POODLE and TLS, you may not be done yet
Tue, Nov 4th 2014 512
STARTTLS and POODLE is this really an issue?
Thu, Oct 23rd 2014 508
POODLE and SHA2 support coming to Domino
Tue, Oct 21st 2014 453
POODLE TLS - The POODLE Strikes Back - change your settings now....
Tue, Dec 9th 2014 440
How to disable SSLv3 in Domino
Fri, Dec 12th 2014 353
Exporting Domino SSL keyfiles to another format for use with IHS
Tue, May 28th 2013 316
Tis coming to the close of 2014, so it must be time for the snarky review
Wed, Dec 10th 2014 314
So Domino and SHA2.....There’s a SPR for that
Wed, Aug 20th 2014 280


Notes and Domino 9.0 beta - a quick list of what floats my boat
Darren Duke    

The IBM Notes and Domino 9.0 beta files are downloading to my machine as I type. This is what we used to call 8.5.4 in the Design Partner program, but as everyone now knows it is not Lotus Domino 8.5.4 but IBM Domino (and Notes) 9.0.

Now the NDA has been lifted this is a quick overview (literally 100,000 feet) of what I'm looking forward to.

In no particular order:
  • Domino on Linux now has a 64 bit version. The 32 bit version is still here too.
  • Traveler is now available in the i platform (aka AS400, i5, iSeries).
  • New look UI using OneUI as a basis. (this can be turned off via policy). Also available in iNotes too
  • New ways to to automatically download an ID file to a new users PC (this Shared Login on steroids)
  • IBM Notes Browser Plug-in
  • Windows 8 and Windows Server 2012 support
  • Windows Phone 7 and 8 (although I still have yet to see either of these in the wild)
I'm sure there are many more, and once I start using the "official" beta I'll post more.

---------------------
http://blog.darrenduke.net/darren/ddbz.nsf/dx/notes-and-domino-9.0-a-quick-list-of-what-floats-my-boat.htm
Dec 13, 2012
41 hits



Recent Blog Posts
236


Using IBM Lotus Traveler with a proxy....food for thought before you do this
Tue, Dec 16th 2014 6:11a   Darren Duke
Over that past few weeks I've been banging my head against the wall trying to figure out why a Traveler server that has been relocated behind a proxy would not work (it was a standalone server that was working fine before it was moved behind the proxy). Everything seemed fine, except one couldn't get to the Traveler log on page and/or add devices to the servers. Existing users worked flawlessly. Needless to say this was extremely aggravating. I'd install another, new Traveler server and put i [read] Keywords: domino ibm lotus traveler bug server
353


How to disable SSLv3 in Domino
Fri, Dec 12th 2014 6:01a   Darren Duke
In my POODLE TLS post from a few days back, there was a comment asking how to fully disabling SSLv3 in Domino. You'll notice in the comments I mention that there is a way but at the time it was under NDA. Well, apparently not anymore.... Now, fair warning this may not yet be supported by IBM so if you choose to do this, you do it at your own risk (while under NDA on this, it was stated that is unsupported so YMMV). According to this post on the Domino wiki, you can use this server notes [read] Keywords: domino ibm ldd lotus notes server wiki
314


Tis coming to the close of 2014, so it must be time for the snarky review
Wed, Dec 10th 2014 1:27p   Darren Duke
Firefox, started 27, ended 34 Chrome started 32, ended 39 IE....11 and 11 IBM finally realized the 2015 plan was imploding. Except they "realized" this in 2014, so the immense damage of the plan has already been done. Oh, and I doubt they will stop the culling. Talking of IBM....support. Oh, how I used to use thee as a unique selling point. Now? I routinely have 14+ day periods when the assignee of the PMR doesn't respond to multiple emails. At first I thought this was just me [read] Keywords: domino ibm lotus lotusphere quickr apple desktop firefox google iphone java microsoft office oracle server
440


POODLE TLS - The POODLE Strikes Back - change your settings now....
Tue, Dec 9th 2014 8:11a   Darren Duke
After a brief chat in the Lotus Notes Skype chat with Jim Casle, Declan Lynch, Steve Pridemore and Frederick Norling it has become apparent that Domino maybe susceptible to the newly discovered POODLE TLS issue (POODLE 2.0 if you will). You can read about the new issues here and here. Go scan your servers at SSL Labs. Anyway, provided you are using 9.0.1 FP IF1 (the TLS fix that IBM provided a while back) the apparent Domino fix is to disable AES and 3DES ciphers and run with only RC4: [read] Keywords: domino ibm lotus notes community server skype
512


The Domino fixes for POODLE and TLS, you may not be done yet
Tue, Nov 4th 2014 3:09p   Darren Duke
As you read elsewhere IBM have finally addressed POODLE and TLS 1.0 are now available for for these releases on all platforms, 9.0.1 FP2, 9.0, 8.5.3 FP6, 8.5.2 FP4 and 8.5.1 FP5. Now just implementing these fixes may not completely protect you, unless you also disable both AES ciphers in Domino. Basically these are the two ciphers you want enabled: It's worth pointing out that with the TLS1.0 fix IBM also addressed a long time pet peeve of mine, low quality ciphers: Removed support [read] Keywords: domino ibm planetlotus planetlotus.org security server
251


Back to basics - how to DAOS enable (missed?) non-DAOS’d Domino mail files the easy way
Mon, Nov 3rd 2014 4:06p   Darren Duke
I got this question from an STS customer: My question ... is there something I can run from the server console to make sure everyone is set up for DAOS or it is working for all mail accounts? Well, yes there is. Using a old Domino feature called Indirect Files, copy and paste and Excel. Let me show you how...... If you're on Domino 9 make sure to add the following to your server notes.ini, This will prevent compact from failing by preventing the Router from delivering mail to a co [read] Keywords: admin domino inotes notes symphony server




508


STARTTLS and POODLE is this really an issue?
Thu, Oct 23rd 2014 10:28a   Darren Duke
I got an email for a customer the other day about mitigating POODLE with IBM's Lotus Protector for Mail Security (LPMS). There is a technote for this, 1687838. At the top there is an interesting warning: IMPORTANT: disabling SSLv3 for XMail may cause severe incompatibility problems with other MTAs that do not support TLS 1.x I was asked if this was an issue. My response: It depends on who you are STARTTLS emailing to.... This only affects domains that you have set as r [read] Keywords: domino ibm inotes lotus protector email outlook planetlotus planetlotus.org security server smtp wifi
453


POODLE and SHA2 support coming to Domino
Tue, Oct 21st 2014 9:02a   Darren Duke
Behold, the silence has ended.....the crescendo that is IBM has finally lifted the veil on some fixes for some very large security holes....AFAIK these are native Domino fixes. I'm unsure of the protocols supported, but my understanding is all of them, but only time will tell. These are not available yet, but should be in "weeks"... First up, fix POODLE outlined in Technote 1687167. This is coming to: 9.0.1 FP2 9.0 8.5.3 FP6 8.5.2 FP4 8.5.1 FP5 I think that is every supported Domino [read] Keywords: domino ibm security vm
543


Here is a freely available VM to reverse proxy Domino - shoot the poodle
Wed, Oct 15th 2014 7:35a   Darren Duke
In an effort to help Domino customers mitigate the disaster that is the SSLv3 Poodle bug, I am providing the virtual machine liked at the bottom of this post. Note, you can also use the IBM HTTP Server bundled with R9 if you are on a Windows server....if that is the case, stop reading. YOU USE THIS POST AT YOUR OWN RISK. For professional services related to this contact STS Sales. Take backup copies of any files you change, including the Domino Directory. That way if you screw up...... [read] Keywords: connections domino ibm inotes quickr traveler bug firefox google integration network password security server vm wiki ubuntu
280


So Domino and SHA2.....There’s a SPR for that
Wed, Aug 20th 2014 7:20a   Darren Duke
As some of you know, SHA2 support in the native Domino HTTP stack has been a bit of a fire starter of late. As IBM like to say "we've not heard that from our customers", here's your chance to change that. How do you do that? Simple, if you are able to create a PMR against Domino (if you're on support for Notes and Domino you can) and mention that you want SPR # ABAI7SASE6 (APAR LO48388) addressed. Here's link to the IBM support portal, so head on over there and create an PMR via an Elec [read] Keywords: domino ibm ldd lotus notes




Created and Maintained by Yancy Lent - About - Blog Submission - Suggestions - Change Log - Blog Widget - Advertising - Mobile Edition