CONFIGURING


TCP/IP security considerations

In a TCP/IP network, configure all Domino® servers to reject Telnet and FTP connections. Furthermore, do not allow file system access to the Domino server or the operating system on which it runs, unless you are sure you can properly maintain user access lists and passwords and you can guarantee a secure environment.

About this task

If you use the Network File System (NFS) without maintaining the password file, users can breach security by accessing files through NFS instead of through the Domino server. If this "back door" access method is needed, isolate the network pathway on a LAN NIC and segment, and make sure that the ability to access files through NFS is exclusive to this isolated secure network.

Related concepts
NRPC and Internet connection security
Network security