Problem: The company Apple iPhone/iPad users are unable to complete the account validation either using auto profile installation or using manual account setup, if they try to connect or try to enable there devices on the IBM Lotus Traveler server. You didnĀ“t see the issues on Nokia, Windows mobile or Android devices. {readmorelink}[...]{/readmorelink}

Read more: Solving: Apple iPhone users are unable to complete the account validation




If you run a nessus scan against a Domino HTTP Server you might get the following result:

Scanner host: "nessus"
Imported from: "/opt/nessus/var/nessus/users/nessus.1/reports/xxxxxxxxxxxxxxxxxxxxxx.nessus"
Scan report created: 2012-06-05 22:06:09 Scan report imported: 2012-06-06 06:25:46 Report name: PeriodicScan[xxxxxxxxxxx]:Groupware-Server (scheduled)
Hostname: "Domino1" (xxx.xxx.xxx.xxx)
Plugin name: "HTTP TRACE / TRACK Methods Allowed"
Plugin family: "Web Servers"
Service: "www", Protocol "tcp", Port "80"
Severity: Medium
Risk factor: Medium

Fixing this "issue" (= disable the trace / track method) is quite easy: {readmorelink}[...]{/readmorelink}

Read more: Hardening Domino: Disable Lotus Domino HTTP Trace/Track methods