Appliance and OpenSSL POODLE vulnerability...
Hi, does anyone know what we can do to mitigate this: Found this: http://www.symantec.com/connect/blogs/new-openssl-vulnerability-could-facilitate-dos-attacks …which links to this Poodle article: http://www.symantec.com/connect/blogs/poodle-vulnerability-old-version-ssl-represents-new-threat …the POODLE wiki page: https://en.wikipedia.org/wiki/POODLE#External_links …the US-Cert page re POODLE: https://www.us-cert.gov/ncas/alerts/TA14-290A …the OpenSSL Org related advisory: https://www.openssl.org/news/secadv_20141015.txt …which suggests that users of SSLv3 should upgrade: OpenSSL 1.0.1 users should upgrade to 1.0.1j. OpenSSL 1.0.0 users should upgrade to 1.0.0o. OpenSSL 0.9.8 users should upgrade to 0.9.8zc. The Symantec N5230 Appliance running Appliance v2.6.1.2, reports its OpenSSL version as: my-appliance:/home/maintenance # openssl version OpenSSL 0.9.8j-fips 07 Jan 2009 . Is there an official statement re appliances? Thanks.Solved1.4KViews3likes3CommentsUpgrade operating system for Symantec Appliance 5220
Our Information Security team, as per the annual audit,scanned the hosts for vulnerability and found that the OS on these appliance is very old - scan output message says, "Unsupported Unix Operating System". Lack of support implies that no new security patches for the product will be released by the vendor. As a result, it is likely to contain security vulnerabilities. Question: We have upgraded the Appliance to version 2.6.1.1, however that does not upgrade the underlying OS. Is there any technote from Symantec supporting that OS shall remain the same or plans on upgrading the Appliance OS etc. in detail? Thanks All.Solved1.2KViews0likes5CommentsNetbackup 5020 and 5030 appliances
I am simply looking for some information regarding these PDDO appliances. Are they being phased out as a result of the increased capacity of their MSDP counterparts (5220/5230)? I was in contact with one of our reps and they mentioned the 5030 was becoming obsolete because the 5230 was doubling in capacity. However, there is a major difference between obsolete and no longer to be developed and produced. While MSDP is cool, I feel that it still limits me in the area of concurrent operations and overall disk performance and for this reason, the 5030 still has a place in the data center. If Symantec plans to abandon the 5000 PDDO series in favor of the 5200 MSDP series, then they will need to increase performance to go with the capacity they are touting. We are currently at this cross-roads and are trying to determine our direction and it would seem the best decision is to use a 5030 with my own media server as opposed to locking myself into a MSDP solution with limited perfmance when comparing the two.Solved1.4KViews2likes3Comments