Skip to Main Content
HCL Domino Ideas Portal

Welcome to the #dominoforever Product Ideas Forum! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated by HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino Page

ADD A NEW IDEA

Security

Showing 297

HTTP Password Changes Timing Issues - AdminP - Domino Caching - etc.

HTTP Password Changes has many challenges as documented by HCL here: https://support.hcltechsw.com/csm?id=kb_article&sysparm_article=KB0024871 Other platforms have challenges, but not as severe as this. If Domino is going to be accepted as a r...
about 3 years ago in Domino / Security 2 Needs Review

Need to remove the attachments from body of email

There should be some sort of rule present at server side, which can remove the attachments from the body, when certain conditions are true (like attachment contains *.bat, *.exe etc). The files should be completely stripped off from the mail and t...
over 5 years ago in Domino / Security 2 Assessment

Support "Password verification compatible with Notes/Domino release 8.01 or greater" with JConsole.

As security is important, it is recommended to set HTTPPassword hash to "Password verification compatible with Notes/Domino release 8.01 or greater". Unfortunately, this setting is not supported by JConsole. As JConsole is very useful, please add ...
over 6 years ago in Domino / Security 1 Under Consideration

Fix the ID vault so it doesn't use a separate ID file or capture that ID file so it isn't lost all the time

Time and time again, I encounter environments where no one has a copy of the ID file used to create the ID Vault. This is because during the process of creating the vault, there was no warning of the importance of the ID file created at the time a...
10 months ago in Domino / Security 3 Needs Review

Nonce checking for Domino Web Application

iNotes has the nonce checking feature for security purpose. This feature is also needed when using web application on Domino Server side. Currently, a web user can post the data to Domino Web Server by using crafted HTML files created from the cl...
over 2 years ago in Domino / Security 0 Under Consideration

In DDM.nsf database Security - DB ACL probe should have option to exclude Templates from Database ACL monitoring.

Config a Security - Database ACL probe to run. For the 'Select one or more databases to probe' field, enter an asterisk to represent all databases. After the probe runs, review event docs generated in ddm.nsf --> Events are generated for both N...
about 4 years ago in Domino / Security 1 Under Consideration

Disable database access during CL COPY process because ACL is set to -default- manager during the copy.

When you copy or replica a database using the CL COPY command, the ACL will set the database wide open on the destination server. ACL is set to -default- with manager access rights.This is a huge security issue. What we want: a. disable ...
almost 5 years ago in Domino / Security 1 Under Consideration

Ability to create/rollback database Access Control List snapshots

ACL list may contain many lines, hard to roll back changes. snapshots (before migration), or rollback to particular state may help
almost 6 years ago in Domino / Security 2 Under Consideration

Graylisting in Domino mail

Add possibility to add graylisting as an option in the domino mail server
almost 6 years ago in Domino / Security 0 Under Consideration

Whitelist Active Content Filter on iNotes

We can use the parameter iNotes_WA_DisableActCntSecurity=1 to disable the Active Content Filter on iNotes and this removes potentially harmful active content from HTML in mail messages prior to display in a browser. However, using the parameter ...
10 months ago in Domino / Security 1 Needs Review