-------------------------------------------------------------------
DOMINONEWS.COM | Targeted News for IBM Lotus Professionals
August 29, 2007
-------------------------------------------------------------------
SPONSORS:
FREE White Paper - Solving Key Management and Archiving Problems
in Lotus Notes Environments from Sherpa Software
http://www.DominoNews.com/homepage.nsf/ads/mailattender?opendocument
Are You Looking for Domino or Other IBM Training?
Find the right class, in the right city, at the right price!
http://www.DominoNews.com/homepage.nsf/ads/integro?opendocument
Print Merge Express: Lotus Notes Printing and Reporting Tool
Reports, Charts, Mail Merge, Labels, Barcodes, Export, Bulk Email, PDF
http://www.DominoNews.com/homepage.nsf/ads/printmergeexpress?opendocument
AttachZIP: Lotus Notes Attachment Compression & Archiving Solution
Convert attachments in each email to ZIP - Save gigabytes of disk space
http://www.DominoNews.com/homepage.nsf/ads/attachzip?opendocument
ACL Dominator: ACL Reporting and Management Security Tool for Lotus Notes
User Activity, Group Troubleshooting, Locate corrupted DB's and replica
stubs
http://www.DominoNews.com/homepage.nsf/ads/acldominator?opendocument
TOTAL Recall: Message Recall Email Tool for Lotus Notes
Mail users can now quickly cancel sent e-mail messages!
http://www.DominoNews.com/homepage.nsf/ads/totalrecall?opendocument
*******************************************************************
HOT NEWS | Today's Headlines
1. TOP NEWS STORIES
- IBM Lotus Collaborative Application Executive Briefing
- Deploying IBM Lotus Connections: Branding and customization
- Security: Potential Cross Site Scripting (XSS) vulnerability in IBM
Sametime
- Security: Response to 'Password exposure in Lotus Notes'
- Security: Accessing certain URLs can cause Lotus Domino Web Server to
crash
- Security: Vulnerability in agent signature verification which may result
- Voice enabling XML, Part 1: Develop a voice-enabled RSS reader
- Introduction to DB2 9 database recovery
- Webcast: Supercharge your portal applications with high productivity
tooling
- iPhone development with PHP and XML
2. ANNOUNCEMENTS AND OTHER RELATED TECHNOLOGY NEWS
- Develop an Ajax-based file upload portlet using DWR
- Speaking UNIX, Part 12: Do-it-yourself projects
- JLINQ: IBM's new paradigm for writing Java database applications
- Get started with Project Zero and PHP
- Build an aggregation function using WebSphere ESB
- Teen trades hacked iPhone for 'sweet' car
- Storm Worm Uses YouTube Ruse
- TVs, PCs fight for living room space at tech fair
- Atlanta-Based EarthLink Cutting 900 Jobs
- IBM Introduces Cost-Effective, Easy-to-Use Entry Storage System
- The Voyagers' amazing journey
- Microsoft Fixes Vista Validation Hitch
- Intel prepping server chip launch event
- India's Wipro to Open Center in Atlanta
- Linux Smart Phone OS to Take Off
- Gateway: From PC powerhouse to buyout bargain
- Critics urge rejection of Microsoft 'open' format
- Looking Back on Windows 95
____________________________________________________________________
****************\ SPONSORED BY SHERPA SOFTWARE /********************
FREE White Paper - Solving Key Management and Archiving Problems
in Lotus Notes Environments from Sherpa Software
This white paper by Michael Osterman, discusses the growing set
of demands placed on Notes-enabled environments for managing
their data. Learn about the Federal Rules of Civil Procedures,
compliance requirements and other factors that are forcing Lotus
Notes organizations to implement an enterprise-wide archiving,
policy enforcement and content management strategy.
http://www.DominoNews.com/homepage.nsf/ads/mailattender?opendocument
-------------------------------------------------------------------
LEAD STORY
IBM LOTUS COLLABORATIVE APPLICATION EXECUTIVE BRIEFING | Lotus
developerWorks
Building New, Innovative Collaboration Solutions -- If you want to build
on a
market leading collaboration platform and empower your team to innovate and
drive growth, then you'll want to take advantage of our latest advancements
in collaboration capabilities.
http://www-306.ibm.com/software/lotus/collaboration-solutions/?open&S_TACT=105AGX13&S_CMP...
-------------------------------------------------------------------
OTHER HEADLINES
DEPLOYING IBM LOTUS CONNECTIONS: BRANDING AND CUSTOMIZATION | Lotus
developerWorks
Part 5 in our article series demonstrates how to brand and how to customize
the IBM Lotus Connections user interface. Learn how to make changes to
ensure
that Lotus Connections has the right look and feel for your enterprise.
http://www.ibm.com/developerworks/lotus/library/connections-deploy-pt5/
SECURITY: POTENTIAL CROSS SITE SCRIPTING (XSS) VULNERABILITY IN IBM
LOTUS SAMETIME SERVER | Lotus developerWorks
In very specific scenarios, there is a possibility that a Sametime server
could be exploited by a Cross Site Scripting vulnerability. In a specific
instance, it was found that a precisely crafted Sametime meeting could
potentially contain text that would expose a Cross Site Script
vulnerability.
This can be addressed in Sametime
7.5.1 by applying an available hotfix. All
future releases will contain this fix within the shipping version.
Additionally, the same issue was not seen using the EMS server.
http://www.ibm.com/support/docview.wss?rs=477&uid=swg21266789
SECURITY: RESPONSE TO 'PASSWORD EXPOSURE IN LOTUS NOTES' | Lotus
developerWorks
A document titled "Password exposure in Lotus Notes" has been posted at the
following address:
http://www.heise-security.co.uk/news/92958. This document
discusses the possibility of using an unpublished Lotus Notes debug variable
in an attack to learn a notes.id password. This notes.ini parameter is used
for troubleshooting password quality and can be used to log a user's
password.
However, in order to utilize this feature, the following circumstances must
be true:
http://www.ibm.com/support/docview.wss?rs=475&uid=swg21266085
SECURITY: ACCESSING CERTAIN URLS CAN CAUSE THE IBM LOTUS DOMINO WEB
SERVER TO CRASH | Lotus developerWorks
Under certain circumstances, accessing URLs that reference particular files
can cause a Lotus Domino Web Server to crash, resulting in a denial of
service.
This regression was introduced in Lotus Domino 6.0.
http://www-1.ibm.com/support/docview.wss?rs=477&uid=swg21257251
SECURITY: VULNERABILITY IN AGENT SIGNATURE VERIFICATION WHICH MAY RESULT
IN ELEVATION OF USER'S RIGHTS TO FULL ACCESS ADMINISTRATOR | Lotus
developerWorks
A customer contacted IBM Lotus to report a potential vulnerability in agent
signature verification which may result in elevation of the user's rights to
Full Access Administrator. To successfully exploit this vulnerability, an
attacker must accomplish the following: * Have designer or manager access to
a database located on the Domino server (example namagent.nsf), *
Replace the
design of the database with a template that has a scheduled agent which
is set
to "enabled" and which has been signed with a trusted and valid ID. The
agent
must have been run at least once with the original signature. * Modify the
scheduled agent and sign it with an ID with the same hierarchical name
as the
original agent signer
http://www.ibm.com/support/docview.wss?rs=477&uid=swg21258784
VOICE ENABLING XML, PART 1: DEVELOP A VOICE-ENABLED RSS READER | Lotus
developerWorks
Develop an RSS reader that creates VoiceXML to be read and spoken by your
favorite compatible voice application.
http://www.ibm.com/developerworks/xml/library/x-voicexml1/?S_TACT=105AGX54&ca=dnw...
INTRODUCTION TO DB2 9 DATABASE RECOVERY | Lotus developerWorks
Learn about the backup and recovery capabilities in IBM DB2 for Linux, UNIX,
and Windows. In addition, follow a step-by-step approach to recovering data
in various failure scenarios.
http://www.ibm.com/developerworks/edu/dm-dw-dm-0708barsagade-i.html?S_TACT=105AGX54&ca...
WEBCAST: SUPERCHARGE YOUR PORTAL APPLICATIONS WITH HIGH PRODUCTIVITY
TOOLING | Lotus developerWorks
Explore different tools and techniques that enable you to easily build rich
internet applications that use exciting Web 2.0 technologies. This Software
Delivery Platform webcast focuses on the capabilities and best practices
around using tooling like WebSphere Portlet Factory and Lotus Component
Designer to access enterprise data, build new applications, and create a
compelling user experience. It also discusses some of the new application
development capabilities in WebSphere Portal.
https://www14.software.ibm.com/webapp/iwm/web/preLogin.do?lang=en_US&source=dw-c...
IPHONE DEVELOPMENT WITH PHP AND XML | Lotus developerWorks
Develop custom applications for the iPhone -- The Apple iPhone is the
hottest
new device on the market. Discover how you can develop an application for it
using your existing Web tools. I was so proud of myself: I held out for an
amazing four days before I gave in to the iPhone. Certainly, the fact
that my
original phone was a piece of junk was a lot of incentive. But what really
sold me was the fact that the phone had Wi-Fi built-in and—more importantly—
has a great browser. You see, the software development kit (SDK) for the
iPhone is standard Dynamic HTML (DHTML) through the Web browser. So, you can
use all the familiar HTML, Cascading Style Sheet (CSS), and Asynchronous
JavaScript + XML (Ajax) front-end technologies in combination with your
choice of back-end technology: PHP, Rails, Java technology—whatever you
like.
http://www.ibm.com/developerworks/library/x-iphonexmlphp/?ca=dnw-831
____________________________________________________________________
\\\\\\\\\ ANNOUNCEMENTS AND OTHER RELATED TECHNOLOGY NEWS //////////
____________________________________________________________________
******************\ SPONSORED BY INTEGRO INC. /*********************
Are You Looking for Domino or Other IBM Training?
Find the right class, in the right city, at the right price!
IBM Lotus, WebSphere, Tivoli, DB2, Rational, and much more!
Optimize your training budget with volume purchase programs!
Other technologies - Microsoft, Cisco, Red Hat, and much more!
http://www.DominoNews.com/homepage.nsf/ads/integro?opendocument
-------------------------------------------------------------------
Develop an Ajax-based file upload portlet using DWR | Lotus developerWorks
If you share large audio and video files, save some time by learning how to
develop a slick Ajax-based file upload portlet.
http://www.ibm.com/developerworks/web/library/wa-aj-dwr/?S_TACT=105AGX54&ca=dnw-...
-------------------------------------------------------------------
Speaking UNIX, Part 12: Do-it-yourself projects | Lotus developerWorks
Utilize the command line, shell scripts, source code, and the enormous
inventory of software available online to build a typical UNIX software
application when your system lacks the proper tool.
http://www.ibm.com/developerworks/aix/library/au-speakingunix12/?S_TACT=105AGX54&ca...
-------------------------------------------------------------------
JLINQ: IBM's new paradigm for writing Java database applications | Lotus
developerWorks
Streamline application design and implementation when you transform your
relational data into Java objects for easy access and manipulation.
http://www.ibm.com/developerworks/db2/library/techarticle/dm-0708ahadian/?S_TACT...
-------------------------------------------------------------------
Get started with Project Zero and PHP | Lotus developerWorks
See how easy it is to get started with Project Zero, from the
installation of
the development tools to the construction of an Ajax Web 2.0 sample
using PHP
as the back-end scripting language.
http://www.ibm.com/developerworks/edu/wa-dw-pzphp-i.html?S_TACT=105AGX54&ca=dnw-...
-------------------------------------------------------------------
Build an aggregation function using WebSphere ESB | Lotus developerWorks
Learn how to build an ESB aggregation function via user-defined mediation
primitive plug-ins. Includes two sample primitives that can serve as
templates
for building your own fully functional primitives.
http://www.ibm.com/developerworks/websphere/library/techarticles/0708_butek/0708_butek...
-------------------------------------------------------------------
Teen trades hacked iPhone for 'sweet' car | CNET Tech
The teenage hacker who managed to unlock the iPhone so that it can be used
with cellular networks other than AT&T will be trading his reworked
gadget for
a new car. George Hotz holds up the hacked iPhone he traded for a car.
George
Hotz, of Glen Rock, New Jersey, said he had reached the deal with
CertiCell, a
Louisville, Kentucky-based mobile phone repair company. Hotz posted on his
blog that he traded his modified iPhone for "a sweet Nissan 350Z and
3 8GB iPhones."
http://www.cnn.com/2007/TECH/ptech/08/28/iphone.unlocked.ap/index.html
-------------------------------------------------------------------
Storm Worm Uses YouTube Ruse | eWeek
Spammers are distributing the Storm Trojan via e-mails purporting to be from
friends and containing a false link to a YouTube video. Security pros are
warning that distributors of the Storm Trojan are now using a YouTube
video to
lure users. Contained in e-mails with subject lines such as "sheesh man what
are you thinking," the malicious link claims to go to
YouTube.com, but
actually goes to a URL harboring exploit code.
http://www.eweek.com/article2/0,1895,2176207,00.asp
-------------------------------------------------------------------
Atlanta-Based EarthLink Cutting 900 Jobs |
WSBTV.com
Internet service provider EarthLink announced today a plan to cut 900
jobs --
about half its workforce -- and close four offices as part of a
restructuring
plan. "These changes get our cost structure in line, but there is much
more to
do," said Rolla P. Huff, EarthLink President and CEO. The company will also
repurchase $200 million of its stock as part of the plan. Huff said more
cuts
could be announced before the year's end.
http://www.wsbtv.com/news/13994524/detail.html
-------------------------------------------------------------------
IBM Introduces Cost-Effective, Easy-to-Use Entry Storage System | Yahoo
Finance
New Entry-Level Storage System Offers Reliable, Robust Solution With Simple
Installation and Management -- IBM today announced the System Storage(TM)
DS3300, a robust, reliable and cost-effective new entry-level disk array
featuring integrated management software designed to give small and medium-
sized businesses (SMBs) a simple and affordable solution to handle all their
storage needs. The DS3300 brings iSCSI to the IBM System Storage D3000
series
of products, providing the industry's broadest choice of interfaces.
http://biz.yahoo.com/iw/070828/0295564.html
-------------------------------------------------------------------
The Voyagers' amazing journey | CNET
Scheduled for a five-year mission when they launched 30 years ago, both
spacecraft are still trolling the solar system. Voyager 2 launched on August
20, 1977, and Voyager 1 followed on September 5, 1977, for what was
originally
a five-year mission to study Jupiter and Saturn. Their duties were
extended to
include the first visits to Uranus and Neptune. Now, still working after 30
years, Voyager 1 is the first man-made object to reach interstellar
space and
Voyager 2 is not far behind.
http://news.com.com/Photos+Voyagers+Strange+visitors+to+other+planets/2300-11397_3...
-------------------------------------------------------------------
Microsoft Fixes Vista Validation Hitch | eWeek
he shutdown of Vista validation under Microsoft's Windows Genuine Advantage
program has been fixed. Some 12,000 Windows Vista customers across the globe
were denied access to a range of features in the new operating system as a
result of a shut-down in Microsoft's ability to validate their systems under
its Windows Genuine Advantage program.
http://www.eweek.com/article2/0,1895,2176243,00.asp
-------------------------------------------------------------------
Intel prepping server chip launch event | CNET
Next week will see the arrival of new Intel chips for servers with four or
more processors, as the chipmaker finally moves past the old Netburst
architecture. ntel will complete its transition to the Core architecture
across its PC and server processors with the launch of a new quad-core chip
next week, the "Tigerton" Xeon MP processor, CNET
News.com has learned.
http://news.com.com/8301-13579_3-9767602-37.html
-------------------------------------------------------------------
India's Wipro to Open Center in Atlanta | Yahoo Finance
India's Wipro Technologies to Open Software Center in Atlanta, Plans to Hire
Local Graduates -- Wipro Technologies, the global services arm of Indian
outsourcing company Wipro Ltd., plans to open a software development
center in
Atlanta, the company said. Wipro will initially employ 200 people and
anticipates about 500 positions within three years, mostly graduates from
state universities, the company said in a statement.
http://biz.yahoo.com/ap/070828/india_us_wipro.html?.v=3
-------------------------------------------------------------------
Linux Smart Phone OS to Take Off | eWeek
A research report says Linux will power 31 percent of all smart phones
sold in
2012. Linux will power about 31 percent of all smartphones sold in 2012, and
by then will have shipped in 331 million devices, says ABI. The research
firm
forecasts 75 percent CAGR (compound annual growth rate) for Linux in
smartphones through 2012, making it the fastest-growing OS in the sector.
http://linuxdevices.com/news/NS9422438794.html
-------------------------------------------------------------------
Gateway: From PC powerhouse to buyout bargain | CNET
Suitors once offered $7 billion for Gateway, but after a decade of missteps
and bad luck, the company is snapped up for a modest $710 million. When Acer
agreed on Monday to purchase the American PC maker, it wasn't shocking,
since
more than a few pundits would say Gateway's acquisition has been several
years
overdue. But at a $710 million purchase price, it's a comedown for a company
that in 1997 was offered $7 billion to become part of Compaq Computer (which
was eventually acquired by Hewlett-Packard).
http://news.com.com/Gateway+From+PC+powerhouse+to+buyout+bargain/2100-1042_3-6204782...
-------------------------------------------------------------------
Critics urge rejection of Microsoft 'open' format | CNET
A Microsoft document format that may be adopted as an international standard
this weekend is a ploy to lock in customers, who could lose control over
their
own data in a worst-case scenario, critics say. The International
Organization
for Standardization is balloting its members on the issue in a vote that
closes on Sunday. ISO approval would encourage wider adoption of the
Microsoft
Open XML format by public-sector organizations.
http://news.com.com/Critics+urge+rejection+of+Microsoft+open+format/2100-7344_3-6204849...
-------------------------------------------------------------------
Looking Back on Windows 95 | Yahoo Finance
Windows 95 was released 12 years ago today, which makes this a good time to
ask: How do businesses see Microsoft today? MSWindows 95 was a cultural
event.
Thousands of tech enthusiasts waited in midnight lines so they could be the
first to get their hands on a copy. And as impossible as it now sounds,
Windows 95 was the first time that the Rolling Stones let one of their songs
be used in an ad campaign. (Yes, Microsoft got the Rolling Stones to sell
out.) Microsoft was the hot tech company, the young buck challenging
IBM's establishment.
http://blogs.wsj.com/biztech/2007/08/24/looking-back-on-windows-95/?mod=yahoo_hs
___________________________________________________________________
\\\\\\\\\\\\\\\\\\\\\
DOMINONEWS.COM CONTACTS /////////////////////
Heather Schein, Site Editor (mailto:heather.schein@
DominoNews.com)
>> Send your comments, opinions, best practices and ideas.
