So just how secure is your Domino server from attempts to hack into it?
So as I was going through the Google News Alerts, I see this blog posting in CIO.com from another post over at infosecisland.com titled Hacking Lotus Notes. Often these types of stories are a bit more fluff than fire, but this one actually talks techniques and specific attacks... for instance:
IBM Lotus Domino Server is a solution for the corporate environment that provides different services to manage electronic documents, and it includes many models such as Mail server, Http server and Data base. The current version is Lotus Domino 8.5.1.
To detect the server we start by scanning the network, usually the server runs a web interface Lotus Domino httpd, so we run Nmap and scan the targeted network as follows:
Nmap –sV 172.16.1.0.24 –p 80
Nmap scan report for 172.16.1.7
Host is up (0.017s latency).
Not shown: 65533 filtered ports
PORT STATE SERVICE VERSION
80 open http Lotus Domino httpd
Now as you can see the IP address of the Domino server is found and you can open your web browser to check some nice Domino web pages with the version: http://serverip/homepage.nsf.
You can use the Google Hack method to find all web servers running on Domino by searching for inurl:homepage.nsf. In the results you will find thousands of Domino based web pages. Now it is very important to note that you should not attempt training yourself on these sites.
Based on this, you can see the rest of the article is probably going to go down the path of what steps to take to fine the weak spot in your environment. This sounds like a perfect article to print out and use to attack your own system before someone else with far worse intentions decides to do it for you...