Wednesday, 18 January 2012

Fixing CVE-2009-3555 in Lotus Domino

A vulnerability assessment turned up a potential issue with my Domino servers.  CVE-2009-3555, or a security concern with SSL renegotiation.

There is an easy work around for Domino, add the following parameter in your notes.ini file.
SSL_DISABLE_RENEGOTIATE=1

 

Reference:

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3555

http://www-01.ibm.com/support/docview.wss?uid=swg21430331