Welcome to the #dominoforever Product Ideas Lab! The place where you can submit product ideas and enhancement request. We encourage you to participate by voting on, commenting on, and creating new ideas. All new ideas will be evaluated jointly by the IBM & HCL Product Management & Engineering teams, and the next steps will be communicated. While not all submitted ideas will be executed upon, community feedback will play a key role in influencing which ideas are and when they will be implemented.

For more information and upcoming events around #dominoforever, please visit our Destination Domino page.


Enhancement request: The customer wants IBM to be supported that VOP is accessed via http inside intranet.

Some customers are using iNotes as intranet mail now and they are accessing iNotes via http.

VOP currently only supports access via https and this system requirement is disturbing the extension of VOP to existing iNotes users.

Please also support that VOP is accessed via http inside intranet.

  • Avatar32.5fb70cce7410889e661286fd7f1897de Guest
  • Oct 11 2018
  • Attach files
  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    October 12, 2018 10:16

    74% of all hacks are from inside. A better solution is to switch all intranets to HTTPS. We advised all our customers to do exactly that. All of my customers, beside one because they are moving away from IBM, are now totally on HTTPS Internal and externally.  And correct me if i am wrong, that's the best way to handle this: all secure.

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    October 13, 2018 03:09

    Is there any problem that prevent implementing HTTPS in internal network ? If cost of certificate is an issue you can use free public certificate like Lets Encrypt.

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    October 15, 2018 09:07

    Http was supported, you do not need to configure https as a must, you can try it in your testing environment.

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    October 15, 2018 15:04

    Switching to https using a free certificate (e.g. "Let's encrypt" and automated Domino integration "LE4D") seems to look like a less troublesome future, than insisting on http.

    Also, when thinking about a more distant future, where HTTP/2 may be used, many implementations will not function at all without encryption.

    Some browsers (starting with Chrome) will display warnings when connecting to http without encryption, which may create support calls in the future.

    And, as already pointed out, most attacks are triggered internally.

  • Avatar40.8f183f721a2c86cd98fddbbe6dc46ec9
    Guest commented
    October 19, 2018 06:53

    Your customer KNOWS that I can read EVERY Username and EVERY Password by just reading the Traffic within the network? So the mails of the CEO are available public to every single user in the network who knows how to sniff... Thumbs up for this...