So, there’s a pesky vulnerability in Domino tied to the Tika indexing engine and “weaponized” PDF attachments. Fun times.
Thomas Hampel has a deep dive on what HCL is doing and recommending. But if your server isn’t fully patched yet, your first question is probably
“Which databases are full-text indexed with attachment conversion filters turned on?”
Here’s the fastest way:
Grab the FTIViewer and take a peek. In seconds, you’ll know what’s what.
Look for the paperclip and the green smiley face icons — those are your “uh-oh” indicators. If you see them, those indexes are using attachment filtering and might be at risk.
What to do next ?
HCL suggests a few workarounds. A practical one is to reindex your full-text indexes without the conversion filters (i.e., without Tika).
If you’ve got the Domino Optimizer, this is a breeze. Tick the “without conversion filters” option, schedule the rebuild, and you’re done.
Coffee still hot, crisis averted.
That’s it — quick, clean, and no drama. Bye for now!
No comments:
Post a Comment