---

---

The (LS/Java) API for handling Item values is very rudimentary at best, which for LS  especially painful since it does not have Collections

A more full API is needed (and would be loved).

The NotesItem class should have a API which handles values better.

 Suggestion:

- getValueAt(index)
- getNumberOfValues() (number of values in Item)
- removeValueAt(index) (number of value is decremented by one)
- insertValueAt (index) (number of values is incremented by one)
- replaceValueAt(Index) (same number of values in item)
- sort(Asc/Desc)

Please vote for it. https://domino-ideas.hcltechsw.com/ideas/DDXP-I-570

---

---

Today I had to do some installations of NotesV10 because af Shanghai offiec had gotten new PCs.

1) Notes Installation and an important step

Doing a Notes install is normally a "no brainer" and V10 is too. Install V10 and then FP3.

You start Notes and are then guided through a few forms for name, server name, ID file etc.

After Notes is running you can then shut it down.

To get users setup and configuration from old PC , you copy and replace 3 files in the new data directory: "names.nsf, desktop8.ndk, bookmark.nsf" (and maybe some other files like user.dic..)

This works great in V9, however I have seen this break Notes in V10 and you need to reinstall Notes again (after running NICE).

The trick to make it work it seems is to do a Windows reboot before copying the 3 files, it will then work perfectly.

2) Really strange security issue in V10

Today I saw a really strange security issue in connection with the Notes installations.

After a restart of Notes I had a superuser log in.

After the log in I tried to open a database, acces a server but all the time I would a dialogbox saying wrong password for accessing server etc.

And it could not replicate, same error. Really strange ..in 25 years I have never seen this error .

I logged out and had the superuser check if password was correct, it was not!

Using the correct password everything worked correctly again.

BUT how is it possible log in using a wrong password?? or rather accepting a wrong password and get into the eclipse client ...(but not able to access in databases)

There is a bug somewhere...

---

---

In my other blog entry "Domino Designer (and Sametime) breaks..."

I wrote about the issues many had with Domino Designer V10 breaking down with fonts issues, XPages not working, Sametime looking weird etc.

After working on the issues for months I had finally nailed it down to LibreOffice 6 as being the culprit.

Just by uninstalling LibreOffice the problem went away for many which was great!

However the fix did not work for all .....including some of my installations.

Fortunately some followed my direction and comments about LibreOffice and fonts, and narrowed it further down to just being the font "Noto Sans" doing all the damages

When removed Noto Sans Notes worked correctly after a Windows restart. I removed some other Fonts installed by LibreOffice as well, but I don't think that was needed.

Thanks to Lars Berntrop-Bos, Lukas Malina and others for the great work on following up and commenting to blog entry.

Noto Sans was added in LibreOffice from version 6.0 on and also note that OpenSans is removed in the installation process by LibreOffice 6

See https://wiki.documentfoundation.org/Fonts

Now it is up to HCL to dive in and find the real cause and fix the issues for good..

---

---

I have run ".Load Compact -REPLICA" on two servers where both server where dead afterwards. The names.nsf database was corrupted in the process.and the server could not be restarted.

The fix was to make a file copy of a names.nsf from another server.

What seem to happen
The REPLICA option is a rather new Compact option on Domino. It compacts by creating a new database with suffix .ORIG and when done switches with the original database. This means the database is accessible while compacting, and only while switching/renaming the old with the one it is not accessible.

If the server can not rename a database (like names.nsf, log.nsf..) because it is in use by the server, it will instead compact with the options -REPLICA - RESTART. This means when the server is restarted it will do the compacting on the databases before they are locked by the system again.

Unfortunately this leads to a race condition where the Server and the Compact task tries to get a hold of the same databases. That may be fine for log.nsf but when that happens for names.nsf your in trouble.

Compact task will start compacting names.nsf and server tries to open names.nsf can not find server documents and other documents and crashes. Since the compact task never finished before the crash you may have a "none working" names.nsf.

IBM/HCL knows of the problem, so hopefully we will have fix soon.

Until then...be careful and stay away from the -REPLICA option


From log:

[03352:00002-00007F742382F720] IBM Domino (r) Server (64 Bit), Release 9.0.1FP10HF382 , November 19, 2018
[03352:00002-00007F742382F720] Copyright (c) IBM Corporation 1987, 2013. All Rights Reserved.
[03352:00002-00007F742382F720] Restart Analysis (0 MB): 100%
[03352:00002-00007F742382F720] 04/03/2019 09:13:26 AM Compacting /local/notesdata/log.nsf (), restart completing, -REPLICA -RESTART
[03352:00002-00007F742382F720] 04/03/2019 09:13:26 AM Compacting /local/notesdata/log.nsf (), restart completing, -REPLICA -RESTART
[03352:00002-00007F742382F720] Clearing DBIID CC5E5ECA for DB /local/notesdata/log.ORIG
[03352:00002-00007F742382F720] 04/03/2019 09:13:32 AM Compacted /local/notesdata/log.nsf (), restart completed, -REPLICA -RESTART
[03352:00002-00007F742382F720] 04/03/2019 09:13:32 AM Compacted /local/notesdata/log.nsf (), restart completed, -REPLICA -RESTART
[03352:00002-00007F742382F720] 04/03/2019 09:13:32 AM Compacted /local/notesdata/log.nsf (), 512K bytes recovered (<1%), -REPLICA -RESTART
[03352:00002-00007F742382F720] 04/03/2019 09:13:32 AM Compacted /local/notesdata/log.nsf (), 512K bytes recovered (<1%), -REPLICA -RESTART
[03352:00002-00007F742382F720] 04/03/2019 09:13:34 AM Recovery Manager: Restart Recovery complete. (0/0 databases needed full/partial recovery)
[03352:00002-00007F742382F720] 04/03/2019 09:13:35 AM Recovery Manager: Assigning new DBIID for /local/notesdata/names.nsf (need new backup for media recovery).
[03352:00002-00007F742382F720] 04/03/2019 09:13:35 AM Recovery Manager: Assigning new DBIID for /local/notesdata/names.ndx (need new backup for media recovery).
[03352:00002-00007F742382F720] 04/03/2019 09:13:35 AM Compacting /local/notesdata/names.nsf (), restart completing, -REPLICA -RESTART
[03352:00002-00007F742382F720] Clearing DBIID BB86E638 for DB /local/notesdata/names.ORIG
[03352:00002-00007F742382F720] 04/03/2019 09:13:37 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($AccountsByType)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:37 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Accounts)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:37 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Adminp)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($CertificateAuthorities)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Certifiers)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Clusters)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Connections)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($CrossCertByName)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($CrossCertByRoot)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Domains)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($ExternalDomainNetworkAddresse')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($FileIdentifications)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Groups)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:38 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Holidays)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($InternetSites)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($LDAPAlias)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Informational, rebuild view needed - invalid collection header (reading /local/notesdata/names.nsf view note Title:'($LDAPCN)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Invalid collection data was detected.
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($LDAPG)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Informational, rebuild view needed - invalid collection header (reading /local/notesdata/names.nsf view note Title:'($LDAPRDNHier)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Invalid collection data was detected.
[03352:00002-00007F742382F720] 04/03/2019 09:13:39 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($LDAPS)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Locations)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($MailGroups)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Networks)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($PeopleGroupsFlat)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($PoliciesByGroup)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($PoliciesExt)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Policies)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Profiles)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Programs)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:40 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($RegisterGroups)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:41 AM Informational, rebuild view needed - invalid collection header (reading /local/notesdata/names.nsf view note Title:'($ServerAccess)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:41 AM Invalid collection data was detected.
[03352:00002-00007F742382F720] 04/03/2019 09:13:41 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($ServerConfig)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:41 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($ServerGroups)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:41 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($ServersLookup)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:41 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($Servers)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:42 AM Informational, rebuild view needed - invalid collection header (reading /local/notesdata/names.nsf view note Title:'($Users)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:42 AM Invalid collection data was detected.
[03352:00002-00007F742382F720] 04/03/2019 09:13:42 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($vwServersByMajVer) $vwServers')
[03352:00002-00007F742382F720] 04/03/2019 09:13:42 AM Informational, rebuilding view - no container or index (reading /local/notesdata/names.nsf view note Title:'($WebSSOConfigs)')
[03352:00002-00007F742382F720] 04/03/2019 09:13:43 AM Compacted /local/notesdata/names.nsf (), restart completed, -REPLICA -RESTART
[03352:00002-00007F742382F720] 04/03/2019 09:13:43 AM Compacted /local/notesdata/names.nsf (), 9728K bytes recovered (39%), -REPLICA -RESTART
[03352:00002-00007F742382F720] 04/03/2019 09:13:43 AM Informational - The database /local/notesdata/names.nsf has caused the DAOS catalog to become out of sync. Prune operations may be postponed. Please run 'tell daosmgr resync' at the next convenient opportunity to re-synchronize.
[03352:00002-00007F742382F720] 04/03/2019 09:13:43 AM Configuration Error: Server record not found. The Server Name in ID file [DominoDev/xxxxx], does not match any Server found in the Domino Directory in the ($Locations) view. Check that the Server name field in the Server record is a hierarchical name.
[03352:00002-00007F742382F720] Server exiting: The Domino Directory does not contain a server document for this server

---

---

There is a horrible bug in V10 (maybe V9FP10 too).

In Designer open a form, close a form and everything breaks, font changes, XPages no longer works etc.

A short video showing the error. Domino Designer V10 errors.webm

As a Sametime user you may see this error :


as Adam Osborne is having:

Many have not been having this error, but others are having the issues.

In search for the cause
Over the past many frustrating months I have been changing different settings, doing upgrades and downgrades, uninstalls, NICE, doing a fresh Notes install, install to different folder... to fix the issue

You name it ...I have tried it.

Then finally ....I tried a brand new Win 10 install.

By routine I installed some OpenSource software first, Greenshot, LibreOffice, 7-Zip and few others from ninite.com.

Installed Notes...issue still there. Mailed with IBM Support again, could such software have any influence? No.. was the answer.

Just in case...I wanted to make sure myself. So made a brand new Windows 10 install again and immediately installed Notes. BINGO!

It worked .... no issues!! :-)

So I started installing the OpenSource software one by one to find the cause. After installing LibreOffice 6.2 the Notes issue was back. I tried uninstallling LibreOffice...and the issue was gone again.

So clearly LibreOffice was the cause for the issue somehow...why? ..that is not very clear.

Notes have a history with LibreOffice/OpenOffice in form of the embedded office suit in version 8.5 called Symhony

Symphony was IBM's take on Office products, but was stopped and removed from the Notes Client again. IBM later donated source code to Apache and became part of OpenOffice.

LibreOffice was later forked of OpenOffice and became very popular with over 200 million users in 2018 .

Whether there are "leftovers" ...code ...in the Notes client from when Symphony was part of the client that interfer...I don't know...but it seems one place to search first for the cause

I also know LibreOffice has done some changes in regards to handling of Fonts in version 6

The Workaround

So if you have this error the first thing to try is to uninstall LibreOffice (and OpenOffice)..... this works for some ...and suddenly all problems are gone.

However if your Notes and Windows install are "not that fresh" ...uninstalling LibreOffice will no longer do the trick.

It only worked for me on the fresh Win 10 install

But uninstalling LibreOffice is only a very short term fix, the real issues needs to be fixed.

HELP ME!

All I ask you to do is put some pressure on IBM/HCL to:

- Firstly acknowledge there is this issue, "the can't reproduce it" (it is simple install LibreOffice 6.2)
- Get IBM/HCL going to find the "actual" cause, and fix it. My case at IBM is TS001932332

Until now I have been doing all the work ..IBM/HCL haven't really done anything ....but maybe stall the case

Some of my related Tweets are :
https://twitter.com/jezzper/status/1100012782265815040
https://twitter.com/jezzper/status/1098173114570235906

---

---

NGinx as a reverse proxy in front of IBM Domino works great.

You can use Jesse Gallagher's guide on Nginx with IBM Domino to get you started

There 3 things to be aware off:

1) All communication HTTPS only

The first think you might want to do is make sure all communication is HTTPS only.

By adding this parameter

return 301 https://$host$request_uri;

All http traffic from the browser will get a redirection to HTTPS instead.

The HTTP 301 parameter will make the redirection "permanent".

2) Disable connectors

Set HTTPEnableConnectorHeaders=0 in notes.ini

You don't need the connector and it will just open a can of worms. Just don't.

Read more here:
https://nevermind.dk/nevermind/blog.nsf/subject/security-hole-leaves-ibm-domino-server-wide-open---part-one
https://nevermind.dk/nevermind/blog.nsf/subject/security-hole-leaves-ibm-domino-server-wide-open---part-two

3) IBM Domino with Nginx may reveal data.

You most likely will use HTTP and not HTTPS to communicate with Domino back-end from Nginx, especially if you are working with more than one internet domain.

When running with the redirecting setup like above all may seem "nice and dandy", but it is probably not.

It is just redirecting so fast that you don't notice something may be wrong.

The problem is that when you log in to Domino it will redirect you using HTTP and NOT HTTPS.

This means one response from Domino server and one request from browser will be HTTP.

The request from the browser will then be redirected to HTTPS and all will look nice in the browser.

All fast so you will not notice the error, but a network sniffer will..and Domino's access cookies can be harvested .

The simple way to find out if your hit by this issue is to look at the network traffic in the browser using developer tools.

As you can see here the browser tries to access using HTTP but get redirected with a 301.


Fortunately the fix is easy.

You want Nginx always to return a response with the same protocol as the request used.

By adding:

proxy_redirect http:// $scheme://;

Nginx will return the response from Domino in HTTPS

Read More

---

---