× The internal search function is temporarily non-functional. The current search engine is no longer viable and we are researching alternatives.
As a stop gap measure, we are using Google's custom search engine service.
If you know of an easy to use, open source, search engine ... please contact support@midrange.com.


  1.  Home
  2. MIDRANGE-L
  3. April 2014

Re: OpenSSL Vulnerability Notice

By that, do you mean that no one on the LAN can access the HMC unless they
do it via a box that's also on the protected LAN segment (example: RDP to a
box on the protected segment, run browser session to HMC there)? Or is the
HMC reachable by browser from the general network? Because Heartbleed does
not require anything other than browser access to exploit. Firewalls and
whatnot don't matter if there's an opening to the web service.


On Tue, Apr 22, 2014 at 12:13 PM, Jerry Draper <midrangel@xxxxxxxxxxxxx>wrote:

I get that the HMC has issues with heartbleed.

On the other hand does anyone have an HMC in a vulnerable position?

The ones I work on are inside protected networks on private segments.

Jerry

On 4/22/2014 9:34 AM, Steinmetz, Paul wrote:
Rob,

From what I read and have been told by IBM
Only HMCs with code levels 777 or 778 are vulnerable.
The older HMCs with older code are safe. (776 or older)

777 and 778 used the newer version of openssl, which contained the
vulnerability.

Paul

-----Original Message-----
From: midrange-l-bounces@xxxxxxxxxxxx [mailto:
midrange-l-bounces@xxxxxxxxxxxx] On Behalf Of rob@xxxxxxxxx
Sent: Tuesday, April 22, 2014 11:08 AM
To: Midrange Systems Technical Discussion
Subject: Re: OpenSSL Vulnerability Notice

Does this mean that my original HMC's will carry this vulnerability to
the grave?

HMC V7R760 was the last release supported on models 7310-C04 and
7310-CR2.
Future HMC releases are not supported on C04 or CR2.

HMC Code Level
Version: 7 Build Level: 20130812.1 Serial Number: 103BC5A
Release: 7.6.0 Base Version: V7R7.6.0 Model Type: eserver xSeries 335
-[7310CR2]-
Service Pack: 3 BIOS: T2E139AUS



Rob Berendt
--
IBM Certified System Administrator - IBM i 6.1 Group Dekko Dept 1600
Mail to: 2505 Dekko Drive
Garrett, IN 46738
Ship to: Dock 108
6928N 400E
Kendallville, IN 46755
http://www.dekko.com

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing
list To post a message email: MIDRANGE-L@xxxxxxxxxxxx To subscribe,
unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx Before posting, please take a
moment to review the archives at http://archive.midrange.com/midrange-l.


--
Jerome Draper, Trilobyte Software Systems, since 1976
iSeries, Network, and Connectivity Specialists -- iSeries, LAN/WAN/VPN
Representing WinTronix, Synapse, Netopia, HiT, and others .....
(415) 457-3431; www.trilosoft.com

--
This is the Midrange Systems Technical Discussion (MIDRANGE-L) mailing list
To post a message email: MIDRANGE-L@xxxxxxxxxxxx
To subscribe, unsubscribe, or change list options,
visit: http://lists.midrange.com/mailman/listinfo/midrange-l
or email: MIDRANGE-L-request@xxxxxxxxxxxx
Before posting, please take a moment to review the archives
at http://archive.midrange.com/midrange-l.





As an Amazon Associate we earn from qualifying purchases.

This thread ...
Follow-Ups:
Replies:
Follow On AppleNews
Return to Archive home page | Return to MIDRANGE.COM home page

This mailing list archive is Copyright 1997-2024 by midrange.com and David Gibbs as a compilation work. Use of the archive is restricted to research of a business or technical nature. Any other uses are prohibited. Full details are available on our policy page. If you have questions about this, please contact [javascript protected email address].

Operating expenses for this site are earned using the Amazon Associate program and Google Adsense.