Home
Domino SSL Cipher Settings
IBM (SSL, Cipher) Tuesday, 19 May 2015 by paul

Security Bulletin CVE-2015-2808 has recommended disabling the RC4 Ciphers in Domino SSL due to a vulnerability.

More information at Security Bulletin: Vulnerability in RC4 stream cipher affects IBM Notes, Domino & Expeditor (CVE-2015-2808) - http://www-01.ibm.com/support/docview.wss?uid=swg21902300&myns=swglotus&mynp=OCSSVHEW&mynp=OCSSKTWP&mynp=OCSSKTMJ&mync=E&cm_sp=swglotus-_-OCSSVHEW-OCSSKTWP-OCSSKTMJ-_-E

The Domino Wiki also gives some useful advice for setting the TLS 1.2 Ciphers using the SSLCipherSpec notes.ini value on the 9.0.1 FPS IF2 Domino servers.

http://www-10.lotus.com/ldd/dominowiki.nsf/dx/TLS_Cipher_Configuration

The advantage of using the Notes.ini value is that it can be put into a global configuration document for the domain and override all Internet site documents in one place.


Add Comment
No Comments.