198 Lotus blogs updated hourly. Who will post next? Home | Blogs | Search | About 
 
Latest 7 Posts
Quickr Fix for Chrome 60+
Fri, Aug 25th 2017 5
MWLUG 2017 presentation - Notes, Domino and the single sign on soup
Thu, Aug 10th 2017 5
Renewing LetsEncrypt SSL certificates automatically - redux
Wed, Aug 2nd 2017 6
Domino NIFNSF update - you probably don’t want to enable it
Fri, Mar 31st 2017 14
Moving Domino NIF indexes out of the NSF
Wed, Mar 29th 2017 2
2016 the annus horribilis review
Mon, Dec 19th 2016 8
Renewing LetsEncrypt SSL certificates automatically with NginX
Fri, Dec 9th 2016 21
Top 10
Renewing LetsEncrypt SSL certificates automatically with NginX
Fri, Dec 9th 2016 21
Domino NIFNSF update - you probably don’t want to enable it
Fri, Mar 31st 2017 14
The Domino fixes for POODLE and TLS, you may not be done yet
Tue, Nov 4th 2014 11
Idea - I’m going to open a PMR asking IBM to release 9.0.2....and you are invited to take part
Tue, Jul 19th 2016 11
POODLE TLS - The POODLE Strikes Back - change your settings now....
Tue, Dec 9th 2014 9
iNotes and IE11 - yes it is supported
Tue, Mar 18th 2014 8
2016 the annus horribilis review
Mon, Dec 19th 2016 8
On Domino 9? Have a cluster? You’re using DBMT right?
Wed, Mar 19th 2014 7
How to disable SSLv3 in Domino
Fri, Dec 12th 2014 7
TLS 1.2 in Domino and the settings I use
Mon, Apr 6th 2015 7




Recent Blog Posts
5
Quickr Fix for Chrome 60+
Fri, Aug 25th 2017 8:53p   Darren Duke
Yeah, Quickr right? Long time since I've posted about Quickr. Still a great (if somewhat complicated and unsupported) product, Still being used by me and several clients despite IBM having several products claiming to replace it.. Despite IBM ceasing support many moons ago it chugged along very nicely so long as a reverse proxy is in front of it to allow TLS 1.2 and SHA2. Except Chrome 60 broke it. Google (and Safari before it) changed the way XHR works and basically buggered Quickr in the pro
5
MWLUG 2017 presentation - Notes, Domino and the single sign on soup
Thu, Aug 10th 2017 7:44p   Darren Duke
As promised, here is the presentation from my MWLUG 2017 session on SSO. If you need (for hire) help with any of this see the STS contact page.
6
Renewing LetsEncrypt SSL certificates automatically - redux
Wed, Aug 2nd 2017 10:56a   Darren Duke
After almost a year of using Let's Encrypt to secure this very site, I'm still running into issues automatically renewing the certificates every 90 days. In my last post about this I'd documented the procedure I was using but was unable to ever get it to work successfully via cron (it was fine manually). I've now switched to a different auto-renew method....Enter: certbot This seems much simpler, tidier solution. The only snag for me was it required Python 2.7 to be installed. I sent a
14
Domino NIFNSF update - you probably don’t want to enable it
Fri, Mar 31st 2017 2:33p   Darren Duke
In my last post about NIFNSF, Christian Hensler left this comment: I couldn't find anything on the internet, so off I went to the Design Partner forum. Now this is a NDA'd so I'm maybe skirting the rules here, but there is indeed an IBM reproduced issue with performance with NIFNSF. So this AM I did some testing and I was able to reproduce the issue. Base on my testing, on average, the current NIFNSF implementation is twice as slow as non-NIFNSF databases. So you many not want to impl
2
Moving Domino NIF indexes out of the NSF
Wed, Mar 29th 2017 4:16p   Darren Duke
New in Fix Pack Feature Pack 8 is the ability to move the view index files out of the NSF. NIF is the technical term for these index files and end with the file suffix of NDX. Doing this has several advantages including: Make the NSF smaller, so better backup times Help get more out of the 64GB limit....if 6GB of your NSF is NIF index, that's a logt of space Move NIF's to better performing storage, for example SSD's Allows concurrent access to to databases and views, so theoretically better
8
2016 the annus horribilis review
Mon, Dec 19th 2016 2:30p   Darren Duke
Firefox started at 43, ended at 50 (they are slowing down....) Chrome started at 47, ended at 55 (they are speeding up....) IE....you know what? F**k IE. Still using Chrome as my primary browser, although Vivaldi is slowly taking over Didn't go Connect 16. Won't be at Connect 17. I already know what's going to happen....IBM is going to tell you about all the products that they promise * cognitive* is being added too. Like Verse (2 years ago?) and Toscana. "No, really we are" the
21
Renewing LetsEncrypt SSL certificates automatically with NginX
Fri, Dec 9th 2016 4:06p   Darren Duke
A while back I blogged that I switched the SSL on this blog to Let's Encypt, the free SSL provider. I even linked to the Crontab post I used to renew the SSL certificate (they are only good for 90 days, so need to be renewed regularly). Except mine would not renew. Hum.... I eventually got around to looking at this before the certificate ran out on Dec 20th and it turns out I needed to do a few more steps. If you manually run the renew.sh on the server without these additional steps thi
5
WTF? A new podcast? If you liked This Week In Lotus, you should (at least) like ’WTF Tech’
Mon, Oct 31st 2016 10:14a   Darren Duke
A long time ago, before IBM came down like a hammer, there was a podcast. We really enjoyed doing This Week In Lotus, but it became a bit untenable as IBM threatened all kinds of stuff (including revoking *my* Champion status.....) so we stopped. But IBM kept doing "WTF?" kinds of things.....canceling 9.0.2, going to fix packs only, spreading Java 8 out over a year (from now). After getting together at MWLUG, Stuart and I started to reminisce and we started thinking about saddling up again.
3
Switched to Let’s Encrypt for the blog SSL certificate
Wed, Sep 21st 2016 12:25p   Darren Duke
I had switched the blog to SSL a while back (mainly due to Google threatening that non-SSL website will take a hit in searches). At the time Let's Encrypt (the free, yes free, CA SSL issuer) was just getting started and didn't have roots published to most of the browser root stores. Because of this I went with free certificate available from Start SSL. I'm not disappointed with StartSSL, it's just time to try something else when the StartSSL certificate expired. In fact if you need anything




Created and Maintained by Yancy Lent - About - Planet Lotus Blog - Advertising - Mobile Edition