This forum is closed to new posts and
responses. Individual names altered for privacy purposes. The information contained in this website is provided for informational purposes only and should not be construed as a forum for customer support requests. Any customer support requests should be directed to the official HCL customer support channels below:
1) POODLE has to do with SSLv3 fallback, and is independent of the certificate strength. The IF and future fixpacks for 8.5.x disable SSLv2, and prevent the SSLv3 fallback, and will allow for SSLv3 to be disabled completely.
Certificate strength - Notes/Domino 8.5.x and below only support SHA-1 certificates. The only way to run SHA-2 certificates or greater will be to upgrade to 9.0.1.
Certificate authorities as well as browsers are removing support for SHA-1 - I think most certificate authorities might still be willing to issue SHA-1 'short term' certificates - mine will thru EOY 2015 - but it seems that most browser vendors won't support SHA-1 'soon'.
So... Short term, you should be OK with 8.5.x as far as POODLE, etc goes, but long term to get SHA-2 support you'll need to upgrade to 9.0.1FP2IF1 or greater. Additionally, I'd suspect the new ciphers , 'if there will be any', would also be available only for the 9 code stream.
Feedback response number WEBB9SLMNJ created by ~Sigmund Dworelitnivu on 01/09/2015
From what I think I understand...
Return to top
. . . . . . From what I think I understand... (~Sigmund Dworel... 9.Jan.15) 
