Another Symmetrix Security/Update Question ...

sysmgr,

The Service Processors run one level of MS across the board. It is a specific image for EMC and is kept up to date by the local team. The updates that are performed are mostly packaged together. With respect to security, the majority of these are not on any open or public network (internet accessible). The only networks that they might be attached to are Customer internal and secure networks.

MrTS2Symm,

What you are saying is that all of the service processors in the field are running Windows "EMC edition" and these are not automatically updated with Microsoft's latest operating system patches and security fixes. There also is no centralized patch management system that keep everyone's service processor at the same patch level. Since the patches are only applied at the local team's leisure, then the probability of being behind in the OS patches and security updates is quite high.

Without a centralized automated way to do this, it would probably be a huge burden on all the local EMC teams to update everyone's service processors on a regular basis.

Actually the OS on the svc processor seems to be just plain Windows 2000.

If there is a virus scanner on there, I would assume that its not updated either. This might present a potential problem as well. Especially when files for code loads are copied from removable media or ftp'd.

Correct Sysmgr. The Service Processors run Windows 2000.

There is virus protection also.

Again, all the PC's or laptops are not on the open internet. These are not sitting on your desk at home and vulnerable to any and all people that use programs to hack over the internet.

As far as code for the machines, it is retrieved via intranet (internal to EMC only) and with the checking that is done internally and externally with the files, we know if they are if at any time corrupt in any way. New ones created if need be.

When virus definitions aren't continually updated, their effectiveness deteriorates. I would bet they are years out of date. When the operating system isn't patched, then it's stability and efficiency are compromised. Maybe that's why they stick and hang so often.

Every DMX with a modem is effectively open and connected to the entire world, which just about every array. All it takes is a phone.
It's a good thing nobody has any of those...

Although that's a good question, there is more to this topic than protection from the stereotypical hacker. Keeping the OS updated promotes stabilty, supportability and (yes) security.