RNUG Lotus User Group (www.vlaad.lv)

Anonymous entry check

Vladislavs Tatarincevs  4 March 2008 09:00:00
Katras datubāzes ACLa, jābūt ANONYMOUS ierakstam.
Tas ir īpaši aktuāli ja serveris ir pieejams no Internet.
Ja ANONYMOUS ieraksts nav ACLā datubāzes pieejas līmenis no WEBa ir tāds pats ka noklusētais ka autorizētām Lotus Notes lietotājs
Viena no iespējam kā var pārbaudīt vai ir kāda nepilnība ACLos ir catalog.nsf datubāzēs, bet tā neparada visas tas bāzes kurās nav ANONYMOUS ieraksta.
šī datubāzē, iet cauri visiem ACLiem un vāc info par DEFAULT ANONYMOUS un LOCALDOMAINSERVERS, ļoti noderīga gan veicot ACL pārbaudi, gan arī ieviešot Lotus Domino Clusteri, jo ir svarīgi kāds tips ir LOCALDOMAINSERVERS grupai.
ja ir kādi ieteikumi par šo db, rakstiet uz e-pastu vai komentējiet.

Every dayabase ACL should containt Anonymous entry, especially if this server accessible from WEB (internet).
If database has no Anonymous entry, unauthenticated users will receive DEFAULT access, the same access as company's Lotus Notes users.
One of the options how to check for ACL problems is to look for catalog.nsf, but this database does not show databases that don't have ANONYMOUS entry, you should it manually.
This database will give you clear picture of all database that are opened from Internet.

as well, this db will be valuable if you are implementing a cluster, because it necessary to know all databases that don't have LocalDomainServers group.
Comments

1Maris Abols  13/03/2008 16:31:28  Anonymous entry check

Second thing to remember is in database ACL advanced tab set appropriate value to field "Maximum Internet name and password". For example, if database is only for reading documents, authorised users can use Domino URL Comands like "?EditDocument" to try edit documents.


Discussion for this entry is now closed.

Archives