HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 279

Specify TLS/SSL version used by certain port or protocol.

Some application only uses certain version of TLS/SSL. Due to vulnerabilities we don't want this TLS/SSL version to be available to all ports/protocol. We want an ability to specify which versions of TLS/SSL a port or protocol can and cannot use.
about 3 years ago in Domino / Security 2 No Plans to Implement

Web site rules document allows to apply wildcard (*) for HTTP response codes with exceptional codes

This feature is created as requested by customer. There are many HTTP response codes, so it will be much more efficient if the feature of " internet site document allows to apply wildcard (*) for HTTP response codes with exceptional codes" can be ...
over 1 year ago in Domino / Security 0 Needs Review

To Disable Backward/Forward arrow from the iNotes browser window

Hello Team, This is regards with iNotes web Access. Currently we can see the Backward Arrow Active and end users are able to use Backward and forward arrow in the browser. Customer would like to Disable the Backward/Forward arrow from the Browser ...
over 1 year ago in Domino / Security 1 No Plans to Implement

Router does not obey the Reader field if the Reader Access and above is restricted for Person Document

1) A person document is restricted via Person Document Properties>>Access>>Unchecking "All Reader and above" field. Anonymous is not selected. 2) An email is sent from Notes client/iNotes to the restricted user's internet address by us...
over 3 years ago in Domino / Security 3 Assessment

PKI certificate in the person document - Domino to not check the whole certificate and just the SubjectDN

If that name matches an entry in the Domino Directory, you use the first entry from the full name field for further authorization. Otherwise, you use the common name from the certificate. More data points for not keeping the entire PKI certif...
about 5 years ago in Domino / Security 1 Under Consideration

Disabling wink to be used as a potential attack vector

Seeing more and more attempts to use Wink as an attack vector (see example below). Looking into possibility to disable wink so that it wont cause any potential security risk. 03/17/2022 10:04:27 AM HTTP JVM: 1399490 [Thread-11] INFO org.apache.win...
over 1 year ago in Domino / Security 2 Already Exists

Domino to have permissions policy header

There are customers who are experiencing permissions-policy vulnerability. This is the former "Feature Policy" with new specs. Can domino have the same to mitigate vulnerabilities related to it?
over 1 year ago in Domino / Security 3 Needs Clarification

directory acl with hostname separation

Domino has the option to add directory acl. it would be good to be able to add directory separation. i.e when acessing the server using webmail. only databases in mail folder can be accessed and not files in other folders. this could be handle...
over 5 years ago in Domino / Security 5 Already Exists

Rate limiting protections for Domino

An authentication endpoint without rate limiting protections can be susceptible to innumerable amounts of credential stuffing and eventual guessing of set of credentials used for authentication. API endpoints can also be used to attack further inf...
almost 2 years ago in Domino / Security 1 Needs Clarification

Login access Mail or Read encryption mail with otp in mobile or sametime push message

Login access Mail or Read encryption mail with otp in mobile or sametime push message
over 5 years ago in Domino / Security 0 Under Consideration
Copyright © 2023 HCL Technologies Limited