On October 14, 2014, a vulnerability was publicly announced in the Secure Sockets Layer version 3 (SSLv3) protocol when using a block cipher in Cipher Block Chaining (CBC) mode that may affect EMC Isilon OneFS customers.
The following release contains the resolution to this issue:
EMC Isilon OneFS 7.1.1.2
EMC recommends that all customers running versions prior to 7.1.1.2 upgrade to the version listed above at the earliest opportunity.
Isilon Engineering is continuing to develop fixes for the other code branches. This ESA will be updated when fixes are available for additional versions.
Note: The following versions of EMC Isilon OneFS will not be remediated:
EMC Isilon OneFS 6.5.x
EMC Isilon OneFS 7.0.1.x
EMC Isilon OneFS 7.1.0.x
I am trying to understand if version 7.1.0.x will be patched at some point ?
Well, after 2 months of promises i got the final word. EMC Isilon will not be patching this bug in OneFS 7.1.0.x
You should be ashamed of yourself, EOPS for this version is Oct 31, 2016 and yet you are refusing to support this version 1.5 year ahead of that date.
If you are new to Isilon platform, this is becoming the norm for Isilon. Leave you out high and dry. Time to share this wonderful news on social media.
Thanks for reaching out on twitter - somehow I never got the alert for this via normal ECN channels. I have some follow up that I need to do with you before I can post a final answer here. Trying to reach out to you through the account team.
Hope you are doing great. My pleasure to come back to Support Forum after a long time and post here for you
Definitely I am not having the expertize to answer, but have pinged Ashish internally. He is a Senior Leader and may be busy with many things - causing the delay.
you can post your reply here, no need to reach out to me through my team. I am sure other people who are running 7.1.0.x would like to know.
It's very simple, you are either going to release a patch for 7.1.0.x or not. By not releasing the patch you are essentially saying that you are not supporting 7.1.0.x family of code.
after another conference call with Isilon "higher ups" i got this reply:
"We are not going to patch 7.1.0.x because it's very close to 7.1.1.x code and we did not want to spend development resources on 7.1.0.x . but but but ..we still support 7.1.0.x ."
And then i used a lot of expletives to describe what i think about that reply. Isilon enterprise support - enjoy it folks.
dynamox
2 Intern
2 Intern
•
20.4K Posts
0
February 5th, 2015 09:00
Thank you Ashish, SR 69100962 has been opened.
dynamox
2 Intern
2 Intern
•
20.4K Posts
0
March 24th, 2015 07:00
Care to comment Ashish Palekar ?
dynamox
2 Intern
2 Intern
•
20.4K Posts
0
March 24th, 2015 07:00
Well, after 2 months of promises i got the final word. EMC Isilon will not be patching this bug in OneFS 7.1.0.x
You should be ashamed of yourself, EOPS for this version is Oct 31, 2016 and yet you are refusing to support this version 1.5 year ahead of that date.
If you are new to Isilon platform, this is becoming the norm for Isilon. Leave you out high and dry. Time to share this wonderful news on social media.
dynamox
2 Intern
2 Intern
•
20.4K Posts
0
March 25th, 2015 10:00
so no one from EMC cares to comment ? Maybe some one can ping Ashish Palekar
Nikschen
179 Posts
0
March 25th, 2015 10:00
Dynamox,
sorry for the delay. We did raise this question internally and I was told that Ashish will reply to this thread. Again, sorry for the delay.
Niki
aap1
12 Posts
0
March 25th, 2015 18:00
Hi dynamoxx
Thanks for reaching out on twitter - somehow I never got the alert for this via normal ECN channels. I have some follow up that I need to do with you before I can post a final answer here. Trying to reach out to you through the account team.
Regards
Ashish
nandas
1.5K Posts
0
March 25th, 2015 18:00
My dear friend dynamox,
Hope you are doing great. My pleasure to come back to Support Forum after a long time and post here for you
Definitely I am not having the expertize to answer, but have pinged Ashish internally. He is a Senior Leader and may be busy with many things - causing the delay.
Trust you understand.
Thanks,
Sandip
dynamox
2 Intern
2 Intern
•
20.4K Posts
1
March 25th, 2015 21:00
you can post your reply here, no need to reach out to me through my team. I am sure other people who are running 7.1.0.x would like to know.
It's very simple, you are either going to release a patch for 7.1.0.x or not. By not releasing the patch you are essentially saying that you are not supporting 7.1.0.x family of code.
dynamox
2 Intern
2 Intern
•
20.4K Posts
0
March 30th, 2015 19:00
after another conference call with Isilon "higher ups" i got this reply:
"We are not going to patch 7.1.0.x because it's very close to 7.1.1.x code and we did not want to spend development resources on 7.1.0.x . but but but ..we still support 7.1.0.x ."
And then i used a lot of expletives to describe what i think about that reply. Isilon enterprise support - enjoy it folks.