Comments on: I can’t believe IT departments allow Lotus Notes on their networks

By: Rob

Rob — Wed, 12 Dec 2007 22:20:02 +0000

Don’t get me started… You may recall my rants about Outlook when my company switched over? Well IT here admitted that Outlook (and more specifically the Scalix server backend) was sucking, and replaced it with… Novell Groupwise. I never thought I’d hear myself say this, but I wish I was on Outlook now.

By: Jessica

Jessica — Wed, 12 Dec 2007 19:51:08 +0000

That is not the stupidest thing I have ever heard - there is an abundance of stupid in the world - but it is extremely stupid.

And no doubt if you pointed it out to someone official who deals with the Notes/Does environment you will probably be accused of hacking the system to boot.

By: Stephen Harris

Stephen Harris — Wed, 12 Dec 2007 19:42:11 +0000

That sounds like a misconfiguration in the environment.

Your ID file identifies you to the server. That’s (nearly) all. Your password unlocks the ID file just like a PGP keyThe desktop (desktop.dsk and variants) and the NAB (names.nsf) identify what mailbox you want to access. The desktop provides the icon, the NAB identifies where to check for new mail. The server _should_ refuse (using ACLs) unauthorised access. It sounds like the ACLs for the mailboxes in question are set to allow any authorised access, rather than specific named access.

You have to be careful with notes ACLs, especially if you want to allow replication (so the servers also have to be given permission to the NSF files). It’d be very easy for the unaware admin to set permissions too weak.

At least that’s how it worked when I used to admin it… 9 years ago. Fortunately haven’t had to do much Notes admin work for a while; it’s what made me decide to leave that job!

By: Tina Marie

Tina Marie — Wed, 12 Dec 2007 16:56:40 +0000

I’ve actually seen that behavior. I never actually had to use Notes, but I had to write code once to send email through it.

And, no, I don’t know how to fix it. It’s been years.