Author: <span class="vcard">kenio.carvalho</span>

Working this week on a new WebSphere Portal Project.

Several content are using AngularJS and some calls to get data go to another server in another domain.

To avoid CORS we implement a reverse proxy on the IHS side.

Bellow the config of my httpd.conf.
LoadModule proxy_module modules/mod_proxy.so
LoadModule proxy_connect_module modules/mod_proxy_connect.so
LoadModule proxy_http_module modules/mod_proxy_http.so
LoadModule ibm_ssl_module modules/mod_ibm_ssl.so

SSLProxyEngine on
KeyFile /opt/IBM/HTTPServer/bin/key.kdb
SSLStashfile /opt/IBM/HTTPServer/bin/key.sth

Proxypass /acme/products  https://anotherdomain/api/v1/products
ProxypassReverse /acme/products  https://anotherdomain/api/v1/products

AngularJS web WebSphere WebSphere Portal

Textbox.io for AngularJS allows developers to leverage the capabilities of the Textbox.io WYSIWYG Rich Text Editor in forms within your AngularJS application. This provides a far more feature rich content authoring environment than a standard textarea.

AngularJS Connections

AngularJS

MacOS Sierra will be available on 20 September for the general public. I search yesterday and today on the system requirements for Notes on MAC and i not found any information.

Anyone knows if the current version of Notes for MAC will run on Sierra?

Domino Notes

As of September 6, 2016, IBM has implemented hard entitlement validation on Fix Central for IBM Notes/Domino products. IBM Software Subscription and Support (S&S) will be validated through IBM ID association to IBM Customer Numbers.

More information on this TN

Domino

IBM Inform is a new mobile app for Connections Cloud customers. It provides dynamic updates about the current status of the Connections Cloud Services, providing schedule insight and important status updates during service impacting events. IBM Inform is a great complement to the other communication tools used to reach administrators and clients’ help desk.

imagem2

Connections

“Domino applications that are created from system templates that make use of Java applets, such as the Domino Directory (names.nsf), Document Library, Domino Web Server Configuration database and Widget Catalog database, will be impacted by the removal of NPAPI functionality. The Teamroom and Discussion databases created from older (pre-8.5.3) templates will be impacted as well.
Additionally, custom Notes applications that are using Java applets also may not work correctly in web browsers due to these changes.
It is recommended that you either (1) redesign the portions of the applications that use Java applets to use HTML, or (2) redesign the entire application to leverage XPages design elements.”

I think IBM will not replace any Java applet.

Domino

To change the type of encryption using the command line, issue the following command:

idsldapmodify -p port -D  adminDN  -w  adminPW  -i  filename 

where filename contains:

dn: cn=configuration
changetype: modify
replace: ibm-slapdPWEncryption
ibm-slapdPWEncryption:  password_encryption_mechanism 

Here, the ibm-slapdPWEncryption attribute can be assigned any of the 
following values: none,aes128,aes192,aes256,crypt,sha,ssha, md5
sha224, sha256, sha384, sha512, ssha224, ssha256, ssha384, or ssha512.

To cause the updated settings to take effect dynamically, issue the following idsldapexop command:

idsldapexop -D  adminDN  -w  adminPW  -op readconfig -scope single 
        "cn=configuration" ibm-slapdPWEncryption

The information is from Knowledge Center 

WebSphere Portal

Nikto is an Open source web scanner released under the GPL license, which is used to perform comprehensive tests
on Web servers for multiple items including over 6500 potentially dangerous files/CGIs.

To install Nikto on Centos ;

1  yum install perl-CPAN* perl perl-Net-SSLeay openssl install perl-Time-HiRes
2  wget https://github.com/sullo/nikto/archive/master.zip
3 – unzip master.zip

To run a simple test, just type ./nikto.pl -h 192.168.10.74 on the program folder.

This is the result from my development server

– Nikto v2.1.6
—————————————————————————
+ Target IP:          192.168.10.74
+ Target Hostname:    192.168.10.74
+ Target Port:        80
+ Start Time:         2016-09-01 08:43:45 (GMT-3)
—————————————————————————
+ Server: Lotus-Domino
+ The anti-clickjacking X-Frame-Options header is not present.
+ The X-XSS-Protection header is not defined. This header can hint to the user agent to protect against some forms of XSS
+ The X-Content-Type-Options header is not set. This could allow the user agent to render the content of the site in a different fashion to the MIME type
+ No CGI Directories found (use ‘-C all’ to force check all possible dirs)
+ IBM/Lotus Domino: Server detected based on banner or nsf retrieval.
+ IBM/Lotus Domino: Version 9.0.0.0 detected at /download/filesets/l_LOTUS_SCRIPT.inf.
+ OSVDB-523: /homepage.nsf: This database can be read without authentication, which may reveal sensitive information.
+ Allowed HTTP Methods: GET, HEAD, POST, TRACE, PUT, DELETE, OPTIONS, PATCH
+ OSVDB-397: HTTP method (‘Allow’ Header): ‘PUT’ method could allow clients to save files on the web server.
+ OSVDB-5646: HTTP method (‘Allow’ Header): ‘DELETE’ may allow clients to remove files on the web server.
+ HTTP method: ‘PATCH’ may allow client to issue patch commands to server. See RFC-5789.
+ OSVDB-877: HTTP TRACE method is active, suggesting the host is vulnerable to XST
+ /ckeditor/ckeditor.js: CKEditor identified. This file might also expose the version of CKEditor.
+ /ckeditor/CHANGES.md: CKEditor Changelog identified.
+ 8392 requests: 0 error(s) and 12 item(s) reported on remote host
+ End Time:           2016-09-01 08:45:02 (GMT-3) (77 seconds)
—————————————————————————
+ 1 host(s) tested

Domino

Two days ago my NAS WD My Book Live  died. I think because an energy problem.  I bought an USB to SATA adapter and follow the instructions bellow.

The steps worked for a My Book Live 3TB. You need to open and disassembly and extract the HD.  If data partition is not ok, you will loose all data.

1) Download the virgin disk image (02.41.05-034) (203MB) from

https://mega.co.nz/#!FZkASQ6T!P3DMWzaOn62jSrG4SECtIDeJeLYEdmz6w6kR9it8U68599

2) Extract with 7-zip and you should have a file called mybook3tb.img
http://www.7-zip.org/download.html208

3) Format an 8GB+ thumbdrive or external usb hard drive to NTFS and copy mybook3tb.img to it

4) Download SystemRescueCd and burn it to a CD
http://www.sysresccd.org/Download658

5) Shut down your computer and remove the cable from your computers hard drive so we don’t erase it by mistake  ### Verify your discs on gparted before proceed and write down the names of /dev/sd…  ####

6) Hook up your MyBookLive to a SATA port on your motherboard or buy an eSATA to SATA cable or dock and hook up the drive that way. You can try a USB to SATA cable but success rates vary

7) Turn on your computer and tell it to boot from the CD drive

8) When the system rescue cd menu comes up, select to “directly start the graphical environment”

9) Open gparted and check to see where your MyBookLive shows under. In my case it shows up under /dev/sda
The drive should contain several EXT3 partitions and a rather large EXT4 partition

If your drive shows up under sdb, sdc, sdd etc.  just substitute the proper name for the drive when getting to
dd if=/mnt/usb/mybook3tb.img of=/dev/sda bs=1M (DON’T ENTER THIS COMMAND YET)

Now in gparted check to see where your thumbdrive shows up. In my case it shows up under /dev/sdb1
If it shows up under sdc1, sdd1, sde1, etc.  just substitute the proper name for the drive when getting to
mount -t ntfs /dev/sdb1 /mnt/usb (DONT ENTER THIS COMMAND YET)

10) In terminal type the commands below (Make sure you change sdb1 (For the thumbdrive or usb hard drive) and sda (for the MBL hard drive) to whatever they show up as in GPARTED)

mkdir /mnt/usb
mount -t ntfs /dev/sdb1 /mnt/usb
dd if=/mnt/usb/mybook3tb.img of=/dev/sda bs=1M

11) Look for any errors in the terminal window (output should look similar to below)
4420+0 records in
4420+0 records out

12) Logout of the SystemRescue CD and shut down the computer

13) Hook up the pcb to the MyBookLive hard drive and screw it down with 2 screws for now and then hook up the ethernet and power cord and try booting the drive again without putting it back in the case

14) Now from the dashboard do a Quick Factory restore to format the data partition

15) When the quick factory restore is complete power down the MyBookLive

16) Put the drive back together as you are done!

I copied from the link https://community.wd.com/t/guide-debrick-mybooklive-v2-0/58546

Linux

 

linux

 

Linux will turn 25 years old on August 25, the day Linus Torvalds sent out his fateful message asking for help with a new operating system. “I’m doing a (free) operating system (just a hobby, won’t be big and professional like gnu) for 386(486) AT clones. This has been brewing since april, and is starting to get ready. I’d like any feedback on things people like/dislike in minix, as my OS resembles it somewhat (same physical layout of the file-system (due to practical reasons) among other things),” he wrote in the comp.os.minix message board. And the rest, as they say, is history

Linux

From an IBM email received today:

As we first advised in December of 2015, Microsoft has confirmed they no longer support versions of Internet Explorer® older than the current version (Microsoft Internet Explorer® 11). We continue to allow access to our services for these non-supported versions, but effective September 24, 2016, an anticipated update to our Verse and SmartCloud Notes web applications will cause users accessing the service with un-supported browsers (versions previous to Internet Explorer® 11) to encounter issues such a missing controls (reply, forward, or other formatting tools) and other functional issues.

We encourage our clients to take immediate action by notifying their users and assisting any who use legacy versions of Microsoft Internet Explorer® to upgrade immediately.

Domino