Front cover - IBM Redbooks

you open another database which resides in another directory, for example
yourserver/help/help5_client.nsf, you will be prompted to authenticate again
since yourserver/help is not a subdirectory of yourserver/mail.
To avoid users being prompted to authenticate multiple times, and to avoid the
security risk of saved passwords when using such basic authentication, you can
enable session authentication on Domino.
Cached authentication credentials
Many browsers store both logon credentials and private data in memory, typically
up to 30 pages, which are not reliably discarded until the browser is closed. The
browser remembers the user’s authentication information while it is still open.
iNotes Web Access provides a “Logout” button that closes the entire browser
session, discards the in-memory files, and tries to close the browser window.
This facility aims to prevent anyone from accessing the user’s mail file by hitting
the “back” button on the browser’s navigation bar to view personal information
from the previous screen while their browser is open and unattended. When all
browser windows are closed, cached files are removed from the browser’s cache,
so that no one can access the user’s personal iNotes Web Access data.
However, there are certain types of personal data that will not be removed unless
the user explicitly empties the temporary Internet files folder through the
appropriate menu command in the browser being used.
Attention: Users should make sure that they close all active browser
windows. iNotes Web Access secure logout will close the active browser
window, but not necessarily all browser windows.
Access level to Forms5.nsf database
Forms5.nsf is one of the databases that is part of iNotes Web Access. It contains
most of the JavaScript, pass-thru HTML and images used to implement the user
interface of iNotes Web Access.
In order for iNotes Web Access to function correctly, make sure that Anonymous
is assigned Reader access to the database {server’s data
directory}\iNotes\Forms5.nsf. You will not see an entry for this database in the
Catalog.nsf database, but you can find the database using the Domino
Administrator → Files tab or by creating a bookmark into your Notes bookmarks
folder.
Enabling anonymous access to this database does not present any security risk
since only the common user interface components that make up the iNotes
interface are contained in this database.
Chapter 12. Security features of other Lotus products 551