You need to do a thorough review and adjustment to the Access Control List on your databases and your server security settings. Domino is a very secure Web server when it is set up correctly. In particular, look at the Anonymous access entry in each database ACL; you want this to be No Access. Also look at names.nsf / Server / Servers / <server name> / Internet Protocols / HTTP / Allow HTTP Clients to Browse. You want this set to No.
Dig Deeper on Lotus Notes Domino Policy Management
Related Q&A from Chuck Connell
Is it possible to encrypt a user's name before sending an email? SearchDomino.com expert Chuck Connell weighs in. Continue Reading
Learn how to change authentication timeout interval for Domino Web Access logins. Continue Reading
SearchDomino.com expert Chuck Connell provides a resource for a Lotus Notes administrator who wants to filter out email containing the word "spam," ... Continue Reading
Have a question for an expert?
Please add a title for your question
Get answers from a TechTarget expert on whatever's puzzling you.