Welcome! » Log In » Create A New Profile

ESA-2017-123 and NetWorker 8.2

Posted by enchanter 
ESA-2017-123 and NetWorker 8.2
November 28, 2017 03:59PM
Regarding ESA-2017-123

Anyone else bothered that EMC announced an *unauthenticated* remote code
execution vulnerability (CVSS score: 9.8!) but didn't bother to release
security patches for NetWorker 8.2?

There is a workaround for 8.2, but 9.1 and 9.2 both got patches, while
8.2 did not.

PS: if you're trying to use the nsradmin example (page 54) in the 8.2 Security
Configuration Guide they link to from the ESA, I'm pretty certain
it's wrong. It should be '. type: NSRLA', not '. type: nsr peer information'.

Tim
--
Tim Mooney Tim.Mooney@ndsu.edu
Enterprise Computing & Infrastructure 701-231-1076 (Voice)
Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
North Dakota State University, Fargo, ND 58105-5164


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Mark Davis
Re: ESA-2017-123 and NetWorker 8.2
November 29, 2017 08:59AM
I noticed this as well, and yes it bothers me. My 8.2.4 server is supported until July 2018, so why no patch?

Thanks for pointing out the error in the Security Configuration Guide. The problem for me is I have a few clients where nsrauth simply won't work.

Mark
-- 
Mark Davis
Western University - WTS


> -----Original Message-----
> From: EMC Data Protection Q & A [mailto:EMC-DATAPROTECTION-
> L@listserv.temple.edu] On Behalf Of Tim Mooney
> Sent: Tuesday, November 28, 2017 6:04 PM
> To: EMC-DATAPROTECTION-L@listserv.temple.edu
> Subject: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
>
> Regarding ESA-2017-123
>
> Anyone else bothered that EMC announced an *unauthenticated* remote code
> execution vulnerability (CVSS score: 9.8!) but didn't bother to release
> security patches for NetWorker 8.2?
>
> There is a workaround for 8.2, but 9.1 and 9.2 both got patches, while
> 8.2 did not.
>
> PS: if you're trying to use the nsradmin example (page 54) in the 8.2
> Security Configuration Guide they link to from the ESA, I'm pretty certain
> it's wrong. It should be '. type: NSRLA', not '. type: nsr peer
> information'.
>
> Tim
> --
> Tim Mooney Tim.Mooney@ndsu.edu
> Enterprise Computing & Infrastructure 701-231-1076
> (Voice)
> Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
> North Dakota State University, Fargo, ND 58105-5164
>
>
> --
> This list is hosted as a public service at Temple University by Stan
> Horwitz If you wish to sign off this list or adjust your subscription
> settings, please do so via http://listserv.temple.edu/archives/emc-
> dataprotection-l.html
> If you have any questions regarding management of this list, please send
> email to owner-emc-dataprotection-l@listserv.temple.edu


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Re: ESA-2017-123 and NetWorker 8.2
November 29, 2017 10:59AM
In regard to: Re: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2,...:

> I noticed this as well, and yes it bothers me. My 8.2.4 server is
> supported until July 2018, so why no patch?

That was exactly my thought.

> Thanks for pointing out the error in the Security Configuration Guide.
> The problem for me is I have a few clients where nsrauth simply won't
> work.

Based on how I read the auth methods setting, you can still restrict
things so that those clients work while keeping the client secure
from attack by everything other than your backup server (which you
implicitly trust anyway).

You should be able to do this on your NetWorker backup server:

auth methods: "oldclient1.your.fqdn,oldauth
oldclient2.your.fqdn,oldauth
oldclient3.your.fqdn,oldauth
0.0.0.0/0,nsrauth"

Then, on each of the old clients, try this:

auth methods: "backupserver.your.fqdn,oldauth
0.0.0.0/0,nsrauth"

The first setting allows your backup server to talk oldauth to the
clients you've listed specifically & first, while using the default
of just nsrauth for everything else (0.0.0.0/0).

The second setting allows your old client(s) to talk oldauth when
communicating with the backup server, but allows just nsrauth from
anywhere else.

At least, that's my understanding. I could be wrong, don't sue me, etc.
Of course, if you have to back up old clients *that you don't trust*,
then you're potentially exposing your backup server to them by allowing
oldauth from those clients. Thanks, EMC.

As far as I can tell the 8.2.x 'lgtoclnt' package still defaults to
an auth methods setting of "0.0.0.0/0,nsrauth/oldauth", so you will
need to periodically audit your clients and apply the security workaround
to every new install of lgtoclnt.

We also have some clients in our environment that get lgtoclnt installed
as part of our standard install, but we don't back them up (or, for VMs,
we use VBA). We've had to make sure nsrexecd is shut down on all of
those clients too.

I hope some customers with more clout than our site put some pressure
on EMC to address the lack of patches for the still-supported 8.2.

Tim

>> -----Original Message-----
>> From: EMC Data Protection Q & A [mailto:EMC-DATAPROTECTION-
>> L@listserv.temple.edu] On Behalf Of Tim Mooney
>> Sent: Tuesday, November 28, 2017 6:04 PM
>> To: EMC-DATAPROTECTION-L@listserv.temple.edu
>> Subject: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
>>
>> Regarding ESA-2017-123
>>
>> Anyone else bothered that EMC announced an *unauthenticated* remote code
>> execution vulnerability (CVSS score: 9.8!) but didn't bother to release
>> security patches for NetWorker 8.2?
>>
>> There is a workaround for 8.2, but 9.1 and 9.2 both got patches, while
>> 8.2 did not.
>>
>> PS: if you're trying to use the nsradmin example (page 54) in the 8.2
>> Security Configuration Guide they link to from the ESA, I'm pretty certain
>> it's wrong. It should be '. type: NSRLA', not '. type: nsr peer
>> information'.
>>
>> Tim
>> --
>> Tim Mooney Tim.Mooney@ndsu.edu
>> Enterprise Computing & Infrastructure 701-231-1076
>> (Voice)
>> Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
>> North Dakota State University, Fargo, ND 58105-5164
>>
>>
>> --
>> This list is hosted as a public service at Temple University by Stan
>> Horwitz If you wish to sign off this list or adjust your subscription
>> settings, please do so via http://listserv.temple.edu/archives/emc-
>> dataprotection-l.html
>> If you have any questions regarding management of this list, please send
>> email to owner-emc-dataprotection-l@listserv.temple.edu
>
>
> --
> This list is hosted as a public service at Temple University by Stan Horwitz
> If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
> If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
>

--
Tim Mooney Tim.Mooney@ndsu.edu
Enterprise Computing & Infrastructure 701-231-1076 (Voice)
Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
North Dakota State University, Fargo, ND 58105-5164


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Mark Davis
Re: ESA-2017-123 and NetWorker 8.2
November 29, 2017 10:59AM
Thanks for this excellent post Tim. I hope to use some of these suggestions in my environment.

In the meantime, I'm going to write a email to our EMC sales folks. We just did a 3 year renewal of support, and they will have a lot more clout at asking for an explanation of no patch for 8.2. Hopefully I can get some information, and will post it here.

Mark

> -----Original Message-----
> From: EMC Data Protection Q & A [mailto:EMC-DATAPROTECTION-
> L@listserv.temple.edu] On Behalf Of Tim Mooney
> Sent: Wednesday, November 29, 2017 1:40 PM
> To: EMC-DATAPROTECTION-L@listserv.temple.edu
> Subject: Re: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
>
> In regard to: Re: [EMC-DataProtection-L] ESA-2017-123 and NetWorker
> 8.2,...:
>
> > I noticed this as well, and yes it bothers me. My 8.2.4 server is
> > supported until July 2018, so why no patch?
>
> That was exactly my thought.
>
> > Thanks for pointing out the error in the Security Configuration Guide.
> > The problem for me is I have a few clients where nsrauth simply won't
> > work.
>
> Based on how I read the auth methods setting, you can still restrict
> things so that those clients work while keeping the client secure from
> attack by everything other than your backup server (which you implicitly
> trust anyway).
>
> You should be able to do this on your NetWorker backup server:
>
> auth methods: "oldclient1.your.fqdn,oldauth
> oldclient2.your.fqdn,oldauth
> oldclient3.your.fqdn,oldauth
> 0.0.0.0/0,nsrauth"
>
> Then, on each of the old clients, try this:
>
> auth methods: "backupserver.your.fqdn,oldauth
> 0.0.0.0/0,nsrauth"
>
> The first setting allows your backup server to talk oldauth to the clients
> you've listed specifically & first, while using the default of just
> nsrauth for everything else (0.0.0.0/0).
>
> The second setting allows your old client(s) to talk oldauth when
> communicating with the backup server, but allows just nsrauth from
> anywhere else.
>
> At least, that's my understanding. I could be wrong, don't sue me, etc.
> Of course, if you have to back up old clients *that you don't trust*, then
> you're potentially exposing your backup server to them by allowing oldauth
> from those clients. Thanks, EMC.
>
> As far as I can tell the 8.2.x 'lgtoclnt' package still defaults to an
> auth methods setting of "0.0.0.0/0,nsrauth/oldauth", so you will need to
> periodically audit your clients and apply the security workaround to every
> new install of lgtoclnt.
>
> We also have some clients in our environment that get lgtoclnt installed
> as part of our standard install, but we don't back them up (or, for VMs,
> we use VBA). We've had to make sure nsrexecd is shut down on all of those
> clients too.
>
> I hope some customers with more clout than our site put some pressure on
> EMC to address the lack of patches for the still-supported 8.2.
>
> Tim
>
> >> -----Original Message-----
> >> From: EMC Data Protection Q & A [mailto:EMC-DATAPROTECTION-
> >> L@listserv.temple.edu] On Behalf Of Tim Mooney
> >> Sent: Tuesday, November 28, 2017 6:04 PM
> >> To: EMC-DATAPROTECTION-L@listserv.temple.edu
> >> Subject: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
> >>
> >> Regarding ESA-2017-123
> >>
> >> Anyone else bothered that EMC announced an *unauthenticated* remote
> >> code execution vulnerability (CVSS score: 9.8!) but didn't bother to
> >> release security patches for NetWorker 8.2?
> >>
> >> There is a workaround for 8.2, but 9.1 and 9.2 both got patches,
> >> while
> >> 8.2 did not.
> >>
> >> PS: if you're trying to use the nsradmin example (page 54) in the 8.2
> >> Security Configuration Guide they link to from the ESA, I'm pretty
> >> certain it's wrong. It should be '. type: NSRLA', not '. type: nsr
> >> peer information'.
> >>
> >> Tim
> >> --
> >> Tim Mooney
> Tim.Mooney@ndsu.edu
> >> Enterprise Computing & Infrastructure 701-231-1076
> >> (Voice)
> >> Room 242-J6, Quentin Burdick Building 701-231-8541
> (Fax)
> >> North Dakota State University, Fargo, ND 58105-5164
> >>
> >>
> >> --
> >> This list is hosted as a public service at Temple University by Stan
> >> Horwitz If you wish to sign off this list or adjust your subscription
> >> settings, please do so via http://listserv.temple.edu/archives/emc-
> >> dataprotection-l.html
> >> If you have any questions regarding management of this list, please
> >> send email to owner-emc-dataprotection-l@listserv.temple.edu
> >
> >
> > --
> > This list is hosted as a public service at Temple University by Stan
> > Horwitz If you wish to sign off this list or adjust your subscription
> > settings, please do so via
> > http://listserv.temple.edu/archives/emc-dataprotection-l.html
> > If you have any questions regarding management of this list, please
> > send email to owner-emc-dataprotection-l@listserv.temple.edu
> >
>
> --
> Tim Mooney Tim.Mooney@ndsu.edu
> Enterprise Computing & Infrastructure 701-231-1076
> (Voice)
> Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
> North Dakota State University, Fargo, ND 58105-5164
>
>
> --
> This list is hosted as a public service at Temple University by Stan
> Horwitz If you wish to sign off this list or adjust your subscription
> settings, please do so via http://listserv.temple.edu/archives/emc-
> dataprotection-l.html
> If you have any questions regarding management of this list, please send
> email to owner-emc-dataprotection-l@listserv.temple.edu


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Frank Swasey
Re: ESA-2017-123 and NetWorker 8.2
November 30, 2017 06:59AM
Yes, it bothers me a lot. I opened a Sev 1 with EMC about it and it took me a day to find out that the fix for this vulnerability will be released in the normal cumulative patch set for 8.2.4 due out mid-December.

I am also annoyed that Dell/EMC decided not to post this one to Bugtraq. They post the other ESA's out there - why not this one?

I have also verified with Dell/EMC that there is NO WAY to disable oldauth during the install nor startup of nsrexecd. So, if (like me), you have people in control of cf-engine (or puppet, etc) that think it is a good idea to stop NetWorker, rm -rf /nsr/res/nsrladb, start NetWorker periodically... the workaround is a daily slog of running nsradmin from the NetWorker server to verify none of the clients have reverted their auth methods settings.

To be honest, this is really cementing my jaded view that Dell/EMC is keeping NetWorker alive simply to sell Data Domain and their "new" Elastic Cloud Storage devices.

Sorry - it's been along couple of days over here.

- Frank

On 11/28/17, 18:04, "EMC Data Protection Q & A on behalf of Tim Mooney" <EMC-DATAPROTECTION-L@LISTSERV.TEMPLE.EDU on behalf of Tim.Mooney@NDSU.EDU> wrote:

Regarding ESA-2017-123

Anyone else bothered that EMC announced an *unauthenticated* remote code
execution vulnerability (CVSS score: 9.8!) but didn't bother to release
security patches for NetWorker 8.2?

There is a workaround for 8.2, but 9.1 and 9.2 both got patches, while
8.2 did not.

PS: if you're trying to use the nsradmin example (page 54) in the 8.2 Security
Configuration Guide they link to from the ESA, I'm pretty certain
it's wrong. It should be '. type: NSRLA', not '. type: nsr peer information'.

Tim
--
Tim Mooney Tim.Mooney@ndsu.edu
Enterprise Computing & Infrastructure 701-231-1076 (Voice)
Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
North Dakota State University, Fargo, ND 58105-5164


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu




--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Mark Davis
Re: ESA-2017-123 and NetWorker 8.2
January 09, 2018 10:59AM
I checked the EMC FTP site, and see that Networker version 8.2.4.11 is out. Looking at the Read Me file I see:

- For details about fixes included in 8.2.4.11 or earlier please see the "NetWorker_NMM_8.2.4_Cumulative_Hotfixes.pdf

So I go to the support site, and find this document. It was posted in Oct 2017 and details up to 8.2.4.10. Has anyone else noticed this? I'm just wondering if ESA-2017-123 has actually been addressed in the 8.2.4.11 release.

Mark

> -----Original Message-----
> From: EMC Data Protection Q & A [mailto:EMC-DATAPROTECTION-
> L@listserv.temple.edu] On Behalf Of Tim Mooney
> Sent: Tuesday, November 28, 2017 6:04 PM
> To: EMC-DATAPROTECTION-L@listserv.temple.edu
> Subject: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
>
> Regarding ESA-2017-123
>
> Anyone else bothered that EMC announced an *unauthenticated* remote code
> execution vulnerability (CVSS score: 9.8!) but didn't bother to release
> security patches for NetWorker 8.2?
>
> There is a workaround for 8.2, but 9.1 and 9.2 both got patches, while
> 8.2 did not.
>
> PS: if you're trying to use the nsradmin example (page 54) in the 8.2
> Security Configuration Guide they link to from the ESA, I'm pretty certain
> it's wrong. It should be '. type: NSRLA', not '. type: nsr peer
> information'.
>
> Tim
> --
> Tim Mooney Tim.Mooney@ndsu.edu
> Enterprise Computing & Infrastructure 701-231-1076
> (Voice)
> Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
> North Dakota State University, Fargo, ND 58105-5164
>
>
> --
> This list is hosted as a public service at Temple University by Stan
> Horwitz If you wish to sign off this list or adjust your subscription
> settings, please do so via http://listserv.temple.edu/archives/emc-
> dataprotection-l.html
> If you have any questions regarding management of this list, please send
> email to owner-emc-dataprotection-l@listserv.temple.edu


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Eddie Albert
Re: ESA-2017-123 and NetWorker 8.2
January 09, 2018 10:59AM
As a customer, send an RFE (request for enhancement) to your DSE, if you don’t have a DSE then contact your EMC rep.

Semper fidelis, /ALE

Eddie Albert

From: Mark Davis
Sent: Tuesday, January 9, 2018 13:01
To: EMC-DATAPROTECTION-L@LISTSERV.TEMPLE.EDU
Subject: Re: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2

I checked the EMC FTP site, and see that Networker version 8.2.4.11 is out. Looking at the Read Me file I see:

- For details about fixes included in 8.2.4.11 or earlier please see the "NetWorker_NMM_8.2.4_Cumulative_Hotfixes.pdf

So I go to the support site, and find this document. It was posted in Oct 2017 and details up to 8.2.4.10. Has anyone else noticed this? I'm just wondering if ESA-2017-123 has actually been addressed in the 8.2.4.11 release.

Mark

> -----Original Message-----
> From: EMC Data Protection Q & A [mailto:EMC-DATAPROTECTION-
> L@listserv.temple.edu] On Behalf Of Tim Mooney
> Sent: Tuesday, November 28, 2017 6:04 PM
> To: EMC-DATAPROTECTION-L@listserv.temple.edu
> Subject: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
>
> Regarding ESA-2017-123
>
> Anyone else bothered that EMC announced an *unauthenticated* remote code
> execution vulnerability (CVSS score: 9.8!) but didn't bother to release
> security patches for NetWorker 8.2?
>
> There is a workaround for 8.2, but 9.1 and 9.2 both got patches, while
> 8.2 did not.
>
> PS: if you're trying to use the nsradmin example (page 54) in the 8.2
> Security Configuration Guide they link to from the ESA, I'm pretty certain
> it's wrong. It should be '. type: NSRLA', not '. type: nsr peer
> information'.
>
> Tim
> --
> Tim Mooney Tim.Mooney@ndsu.edu
> Enterprise Computing & Infrastructure 701-231-1076
> (Voice)
> Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
> North Dakota State University, Fargo, ND 58105-5164
>
>
> --
> This list is hosted as a public service at Temple University by Stan
> Horwitz If you wish to sign off this list or adjust your subscription
> settings, please do so via http://listserv.temple.edu/archives/emc-
> dataprotection-l.html
> If you have any questions regarding management of this list, please send
> email to owner-emc-dataprotection-l@listserv.temple.edu


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu



--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Frank Swasey
Re: ESA-2017-123 and NetWorker 8.2
January 09, 2018 10:59AM
I have noticed it and am pestering the support person dealing with my BMR issue (which was caused by the workaround for this thing).

On 1/9/18, 13:01, "EMC Data Protection Q & A on behalf of Mark Davis" <EMC-DATAPROTECTION-L@LISTSERV.TEMPLE.EDU on behalf of davism@UWO.CA> wrote:

I checked the EMC FTP site, and see that Networker version 8.2.4.11 is out. Looking at the Read Me file I see:

- For details about fixes included in 8.2.4.11 or earlier please see the "NetWorker_NMM_8.2.4_Cumulative_Hotfixes.pdf

So I go to the support site, and find this document. It was posted in Oct 2017 and details up to 8.2.4.10. Has anyone else noticed this? I'm just wondering if ESA-2017-123 has actually been addressed in the 8.2.4.11 release.

Mark

> -----Original Message-----
> From: EMC Data Protection Q & A [mailto:EMC-DATAPROTECTION-
> L@listserv.temple.edu] On Behalf Of Tim Mooney
> Sent: Tuesday, November 28, 2017 6:04 PM
> To: EMC-DATAPROTECTION-L@listserv.temple.edu
> Subject: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
>
> Regarding ESA-2017-123
>
> Anyone else bothered that EMC announced an *unauthenticated* remote code
> execution vulnerability (CVSS score: 9.8!) but didn't bother to release
> security patches for NetWorker 8.2?
>
> There is a workaround for 8.2, but 9.1 and 9.2 both got patches, while
> 8.2 did not.
>
> PS: if you're trying to use the nsradmin example (page 54) in the 8.2
> Security Configuration Guide they link to from the ESA, I'm pretty certain
> it's wrong. It should be '. type: NSRLA', not '. type: nsr peer
> information'.
>
> Tim
> --
> Tim Mooney Tim.Mooney@ndsu.edu
> Enterprise Computing & Infrastructure 701-231-1076
> (Voice)
> Room 242-J6, Quentin Burdick Building 701-231-8541 (Fax)
> North Dakota State University, Fargo, ND 58105-5164
>
>
> --
> This list is hosted as a public service at Temple University by Stan
> Horwitz If you wish to sign off this list or adjust your subscription
> settings, please do so via http://listserv.temple.edu/archives/emc-
> dataprotection-l.html
> If you have any questions regarding management of this list, please send
> email to owner-emc-dataprotection-l@listserv.temple.edu


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu




--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Dag Nygren
Re: ESA-2017-123 and NetWorker 8.2
January 09, 2018 11:59PM
On tisdag 9 januari 2018 kl. 20:00:53 EET Mark Davis wrote:
> I checked the EMC FTP site, and see that Networker version 8.2.4.11 is out.
> Looking at the Read Me file I see:
>
> - For details about fixes included in 8.2.4.11 or earlier please see the
> "NetWorker_NMM_8.2.4_Cumulative_Hotfixes.pdf
>
> So I go to the support site, and find this document. It was posted in Oct
> 2017 and details up to 8.2.4.10. Has anyone else noticed this? I'm just
> wondering if ESA-2017-123 has actually been addressed in the 8.2.4.11
> release.

Yes. It is a big shame that the README file no longer contains the Changelog.

It was very handy to have it at tha same location!

Best
Dag


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Mark Davis
Re: ESA-2017-123 and NetWorker 8.2
January 12, 2018 11:59AM
I contacted our Sales Engineer, and he looked into this issue. The link in the Read Me file now has the information for 8.2.4.11. ESA-2017-123 has been fixed with this release. You can see the details at:

https://support.emc.com/downloads/1095_NetWorker

Mark Davis
Western University - WTS


> -----Original Message-----
> From: Mark Davis
> Sent: Tuesday, January 09, 2018 1:01 PM
> To: EMC Data Protection Q & A <EMC-DATAPROTECTION-L@listserv.temple.edu>;
> Tim Mooney <Tim.Mooney@NDSU.EDU>
> Cc: Mark Davis <davism@uwo.ca>
> Subject: RE: [EMC-DataProtection-L] ESA-2017-123 and NetWorker 8.2
>
> I checked the EMC FTP site, and see that Networker version 8.2.4.11 is
> out. Looking at the Read Me file I see:
>
> - For details about fixes included in 8.2.4.11 or earlier please see the
> "NetWorker_NMM_8.2.4_Cumulative_Hotfixes.pdf
>
> So I go to the support site, and find this document. It was posted in Oct
> 2017 and details up to 8.2.4.10. Has anyone else noticed this? I'm just
> wondering if ESA-2017-123 has actually been addressed in the 8.2.4.11
> release.
>
> Mark


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Dag Nygren
Re: ESA-2017-123 and NetWorker 8.2
January 14, 2018 06:59AM
On fredag 12 januari 2018 kl. 21:30:32 EET Mark Davis wrote:
> I contacted our Sales Engineer, and he looked into this issue. The link in
> the Read Me file now has the information for 8.2.4.11. ESA-2017-123 has
> been fixed with this release. You can see the details at:
>
> https://support.emc.com/downloads/1095_NetWorker

But we don't want a link. We want the info in the README directly
as it was earlier...

Best
Dag


--
This list is hosted as a public service at Temple University by Stan Horwitz
If you wish to sign off this list or adjust your subscription settings, please do so via http://listserv.temple.edu/archives/emc-dataprotection-l.html
If you have any questions regarding management of this list, please send email to owner-emc-dataprotection-l@listserv.temple.edu
This message was imported via the External PhorumMail Module
Sorry, only registered users may post in this forum.

Click here to login