Select Page

Be aware of automatic Domino HSTS Settings

As part of our normal review of such things I ran an SSL Labs test on our sites only to discover that we now had double header entries in our responses for Strict-Transport-Security. Not a terrible thing but the SSL test does point it out and after some examination I...

Domino SSL Fixes Coming: “Dis is good!”

As Nicolas Cages tells Cher in Moonstruck when he’s eating the steak she cooked for him… “‘Dis is good.” IBM released two technotes today regarding SSL and Domino. I do wish this would have happened sooner but I can tell you from a lot of...

Streaming files to IE8? You may want this.

An easy XPages tip for a lazy Friday… Got SSL? Streaming files using an XAgent? You’re gonna’ get an error unless you do something like this: if(context.getUserAgent().isIE(8, 8)==false){   response.setHeader(“Cache-Control”,...

Requiring SSL for SSO? Flick the switch!

Recently we switched our servers to use SSO and life was good.  Until someone tried to login to their mail. (Why anyone would want to use the browser to access their mail when they have a perfectly good Notes client and Traveler at their disposal is beyond...