Here is our domino level:
Product ID . . . . . . . . . . . . . : 5733LD9
IPL source . . . . . . . . . . . . . : ##MACH#B
Release of base option . . . . . . . : V9R0M1
PTF
ID Status
FP69019 Temporarily applied
FP69018 Superseded
I navigated to
https://www.ssllabs.com/ssltest/
If I enter the url for our domino web mail access or our traveler server
url they both are
vulnerable. The ssllabs server then runs a bunch of TLS tests, and
simulated handshakes
and eventually a report is displayed with a grade.
In the warning text below the grade I see this for all our IBMi servers as
weel as Domino and Traveler servers.
"This server is vulnerable to the Return Of Bleichenbacher's Oracle
Threat"
Jim
to the
both and I
Jim W Grant
Senior VP, Chief Information Officer
Web: www.pdpgroupinc.com
From: "Rob Berendt" <rob@xxxxxxxxx>
To: "Midrange Systems Technical Discussion" <midrange-l@xxxxxxxxxxxx>
Date: 01/02/2018 01:29 PM
Subject: Re: CERT Advisory: #144389 Return of Bleichenbacher's
Oracle Threat (ROBOT)
Sent by: "MIDRANGE-L" <midrange-l-bounces@xxxxxxxxxxxx>
Where do you see that message?
I see:
ROBOT (vulnerability) No (more info)
The (more info) is simply a site explaining what ROBOT is. Nothing in
there about impending doom.
Perhaps it is an update or configuration setting (as you questioned).
Product ID . . . . . . . . . . . . . : 5733LD9
IPL source . . . . . . . . . . . . . : ##MACH#B
Release of base option . . . . . . . : V9R0M1
PTF
ID Status
SE19019 Temporarily applied
FP69018 Temporarily applied
...
I scanned the doc for Feb. The only hit is...
... our cert expires then. Better get on that
Rob Berendt
midrange.com
