Best Practices Domino Security - Nash!

More documents

Recommendations

Info

Web-Security "Anonymous"" matches before "-Default-" -Default-" Maximum Internet Access limits access via Web regardless of ACL level Have file and directory protection config for webservers Insecure requests can be blocked via redirects Example: /default.ida* , */system32/* Out of the box there is no way to limit the number of retries for HTTP password requests Use tools like SecureDomino from TIMETOACT (http://www.securedomino.com) Re-create SSO document regularly
More Secure Internet Password $SecurePassword="1" in "Person" Document via Agent "SetNewPasswordFormat" Generates passwords with more security ("Salted" Password) For new users change Domino Directory Profile "Use more secure Internet Passwords"
Page 2 and 3: Best Practices Domino Security BP11
Page 4 and 5: Agenda General Considerations Hardw
Page 6 and 7: An holistic approach to Domino Secu
Page 8 and 9: Report Security Concerns/Bugs Don't
Page 10 and 11: Network Security Network infrastruc
Page 12 and 13: Secure Shell (SSH) Linux Normally i
Page 14 and 15: Notes.ID Password Security Sadly th
Page 16 and 17: Password Quality Checking Use passw
Page 18 and 19: Security by Obscurity Hiding inform
Page 20 and 21: Sample ECL Settings
Page 22 and 23: Centralized ECL in Domino Directory
Page 24 and 25: ACL & Security Disable -Default- ac
Page 26 and 27: Security for Paranoid Admins Only a
Page 28 and 29: Know Issue with Reader&Author/Field
Page 30 and 31: UserNames List The user names list
Page 32 and 33: Internal Views ($ServerAccess) Is u
Page 34 and 35: Encryption of Local Databases Encry
Page 36 and 37: Caveats for Encryption Encrypted fi
Page 40 and 41: Stored Forms Stored Forms can be us
Page 42 and 43: Client Security Settings
Page 44 and 45: Check Effective access Check access
Page 46 and 47: Domino 6 Directory Assistance Suppo
Page 48 and 49: Full Access Administrators Addition
Page 50 and 51: Disable the Full Access Administrat
Page 52 and 53: New Agent-Restriction Settings Unre
Page 54 and 55: D6 Agent Manager Security Changes I
Page 56 and 57: Notes 6 User Client Access Security
Page 58 and 59: Interesting Articles http://www.ibm

Best Practices Domino Security - Nash!

Create successful ePaper yourself

Delete template?

Save as template?