IBM Domino Web Server Cross-site Scripting Vulnerability

    Kenio Carvalho  18 June 2015 11:41:40
    IBM Domino Web server configured for Webmail is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability using a specially-crafted URL to execute script in a victim's Web browser within the security context of the hosting Web site, once the URL is clicked. An attacker could use this vulnerability to steal the victim's cookie-based authentication credentials. Note that Domino servers configured for iNotes are not vulnerable to this attack.

    See this link for details and how to fix it

      Performance problems with Full Text Indexer

      Kenio Carvalho  17 June 2015 11:07:13
      Last week two clustered servers are facing performance problems. The cpu was very high for 2 hours and the disk queue above 5,48.

      During the problem the command set config UPDATE_NO_FULLTEXT=1 was issued and the cpu and disk queue decrease

      To schedule the full text index i use the this TN

        Multiple vulnerabilities in IBM Java 6 SR16FP3 IF1 affect IBM Notes and Domino

        Kenio Carvalho  3 June 2015 17:34:49
        There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition, Version 6 SR16FP3 IF1 that is used by IBM Notes and Domino. These issues were disclosed as part of the Oracle April 2015 Critical Patch Update and are resolved by IBM Java 6 SR16FP3 IF2.

        Get the complete information and fixes here

          I like the IBM Knowledge Base

          Kenio Carvalho  2 June 2015 21:00:43
          On April IBM stop the updates for IBM Knowledge Base  (lotuskb.nsf). I use this database on a daily basis. But now the beloved database was not updated anymore.

          The new way to work is Google or IBM Support Portal
          I like  the database.
          I need offline access, some customers doesn't allow aliens laptops on their networks.

          I build a java project to update the legacy lotuskb.nsf.  

          1 - I get the URLs of the support feeds
          2 - Read the feeds and extract the URL's to technotes
          3 - Parse the html of the technotes and store them into the lotuskb.nsf.

          I use several packages like JSOUP and JERICHO to parse and render the html. It is not perfect but i got the documents again on the lotuskb.nsf

          Thanks to Nathan Freeman for the article about running Domino API on eclipse

          The eclipse project is here

            Rational Team Concert - 10 Free Licenses for Small Teams

            Kenio Carvalho  23 May 2015 12:31:24
            IBM Rational Team Concert integrates task tracking, source control, and agile planning with continuous builds and a configurable process to adapt to the way you work.
            Finally -- everything you need to build great software, integrated seamlessly together right out of the box.

            Get your 10  free license here

              Google are removing support for Java, and other plugins that use NPAPI

              Kenio Carvalho  7 May 2015 21:13:57
              Google are removing support for Java, and other plugins that use NPAPI, from Chrome 45, which is available in September 2015.

              Oracle are not providing an alternative interface for Java and recommend users use a browser that does support NPAPI.

              Impact to IBM Web Content Manager 8.5 customers

              Customers using Chrome will not be able to use Ephox EditLive! from September onwards. It is possible to re-enable the Java plugin in Chrome before then. See the resolution section for instructions.

              Impact to users of IBM Web Content Manager and earlier

              Customers using Chrome will not be able to use Ephox EditLive from September onwards.

              Additionally, the import function of rich text fields, which is used to import an HTML file and it's images from the local workstation, will no longer function on Chrome regardless of the editor used. This is applicable to all design and markup fields, including rich text elements and components as well as menu and navigator designs. A fix for this is in development and will be available for WebSphere Portal as an iFix and in a cumulative fix (CF) when complete. This fix will not be available on versions earlier than

                Setup IBM Traveler for IBM Verse App from Zero to Verse Hero

                Kenio Carvalho  1 May 2015 21:42:33
                I follow the steps bellow to setup my IBM Traveler to allow the IBM Verse App.

                My Domino and Traveler is on the same machine using Linux.

                1 - Install or upgrade the Domino server 9.0.1 FP3

                2 - Install or upgrade IBM Traveler

                3 - Configure Domino HTTP for SSL.  This link was very useful for self cert.

                4 - I am using iPhone. The easiest way to import the self cert was sending the cert by mail and then install the cert on the iPhone.

                5 - Upgrade the Domino Directory ( The current Domino Directory Template does not have a tab for IBM Verse.

                6 - Download the IBM Verse App from the store and be happy :-)

                  How to specify port when ssh to server

                  Kenio Carvalho  2 April 2015 21:15:17
                  Need this kind of port today. The ssh 22 port was used on the firewall for another server. The admin publish the server using port 1234
                  According to man ssh:

                   -p port 

                  Port to connect to on the remote host. This can be specified on
                  a per-host basis in the configuration file.

                  So you should be looking at:

                  ssh -p 1234 user@host

                  to connect to port 1234.

                  New Entries

                  New Comments





                  Locations of visitors to this page