By
Published: 11 Jan 2004
At my company we are looking to make users' e-mail accessible from any Internet connection via Notes Webmail in the beginning and eventually iNotes. We have all the router settings that we need to make, but what do you recommend on the Domino end that will make getting mail like this a secure process? Would we have to get an SSL certificate from somewhere like Verisign, or could we generate our own certificates from the Domino server? Please give me your feedback and recommendations on the best way to accomplish this. Thanks for your help!
The best way to secure Webmail is with high-quality passwords. Make sure every user has a password that is a
phrase (not a single word) with mixed upper-/lowercase or letters/numbers. Also use the address book option to "store Internet passwords in more secure format." Also, check the ACLs on each person's mail file, to make sure it is as tight as possible. There should be no access for Anonymous or Default. With these practices, it is nearly impossible for someone to break into a Domino Webmail account.
Editor's Note:
For more information on secure passwords, check out these tips written by Chuck:
Also check out Assigning unique initial passwords, which is a tip unto itself filled with member feedback to the second tip in the above list.
Do you have comments on this Ask the Expert Q&A? Let us know.
Dig Deeper on Lotus Notes Domino Password Management
Is it possible to encrypt a user's name before sending an email? SearchDomino.com expert Chuck Connell weighs in.
Continue Reading
Learn how to change authentication timeout interval for Domino Web Access logins.
Continue Reading
SearchDomino.com expert Chuck Connell explains your options if you can't restore a corrupted certlog.nsf file using the fixup command.
Continue Reading
Start the conversation
0 comments