NETWORK CONFIGURATION


TCP/IP security considerations
In a TCP/IP network, configure all IBM® Lotus® Domino™ servers to reject Telnet and FTP connections. Furthermore, do not allow file system access to the Domino server or the operating system on which it runs, unless you are sure you can properly maintain user access lists and passwords and you can guarantee a secure environment.

If you use the Network File System (NFS) without maintaining the password file, users can breach security by accessing files through NFS instead of through the Domino server. If this "back door" access method is needed, isolate the network pathway on a LAN NIC and segment, and make sure that the ability to access files through NFS is exclusive to this isolated secure network.

See also