Unsolved
This post is more than 5 years old
128 Posts
0
1074
Another Symmetrix Security/Update Question ...
Every Symmetrix has a service processor in it which is essentially a lap-top that handles the communications and management tasks to and from the array. They all run various versions of MS Windows on them as the base OS. On a regular basis, Microsoft issues patches and updates to Windows to fix a number of instabilities and security flaws. The question is, how often (if at all) does EMC update these service processors? Are they kept up to date and secure?
MrTS2Symm
113 Posts
1
January 11th, 2007 09:00
The Service Processors run one level of MS across the board. It is a specific image for EMC and is kept up to date by the local team. The updates that are performed are mostly packaged together. With respect to security, the majority of these are not on any open or public network (internet accessible). The only networks that they might be attached to are Customer internal and secure networks.
sysmgr1
128 Posts
0
January 11th, 2007 10:00
What you are saying is that all of the service processors in the field are running Windows "EMC edition" and these are not automatically updated with Microsoft's latest operating system patches and security fixes. There also is no centralized patch management system that keep everyone's service processor at the same patch level. Since the patches are only applied at the local team's leisure, then the probability of being behind in the OS patches and security updates is quite high.
Without a centralized automated way to do this, it would probably be a huge burden on all the local EMC teams to update everyone's service processors on a regular basis.
sysmgr1
128 Posts
0
January 12th, 2007 13:00
If there is a virus scanner on there, I would assume that its not updated either. This might present a potential problem as well. Especially when files for code loads are copied from removable media or ftp'd.
MrTS2Symm
113 Posts
0
January 12th, 2007 16:00
There is virus protection also.
Again, all the PC's or laptops are not on the open internet. These are not sitting on your desk at home and vulnerable to any and all people that use programs to hack over the internet.
As far as code for the machines, it is retrieved via intranet (internal to EMC only) and with the checking that is done internally and externally with the files, we know if they are if at any time corrupt in any way. New ones created if need be.
sysmgr1
128 Posts
0
January 15th, 2007 05:00
Every DMX with a modem is effectively open and connected to the entire world, which just about every array. All it takes is a phone.
It's a good thing nobody has any of those...
Farhan-WyGkB
21 Posts
1
January 23rd, 2007 05:00
Has any had their symm hacked in to ? I'd love to know .....
sysmgr1
128 Posts
0
January 23rd, 2007 06:00