https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970151#M158376 <P>If your not going to update via the host OS, it is not important to match the OS. You do need to&nbsp;download the firmware file in a verision your client can deal with to extract the binary firmware image. You can then update the image via the web interface. &nbsp; For CentOS the Red Hat file should work without issue</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 06 Jul 2017 14:30:23 GMT Jimmy Vance 2017-07-06T14:30:23Z https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970140#M158373 <P>Hi!</P><P>My University is scanning all the campus servers with Nessus Vulnerability Scanner and they are complaining that my ILO4 (firmware 1.10 July 17 2012) on ProLiant ML350p Gen8 HP server has a "medium" risk level of vulnerability, so they are asking to solve this issue as soon as possible, to avoid potential attacks.</P><P>I enclose the "medium" risk entries of the report: all the problems are connected with the 443/tcp port, it seems I should update the version of SSL protocol to improve cipher, encription and certificate...</P><P>Actually I do not know what to do in practice, but I am also very cautious since ILO is very useful to monitor the system and I don't want to lose functionalities.</P><P>Is anybody able to help me safely in this respect?</P><P>Thank you very much in advance!</P><P>Mauro</P><P>&nbsp;</P> Thu, 06 Jul 2017 13:42:04 GMT https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970140#M158373 Mauro1967 2017-07-06T13:42:04Z https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970142#M158374 <P>Update to the latest iLO4 firmware and have them scan it again. &nbsp;You are running a very very old version of iLO firmware. Many securty fixes/enhancments have been added.</P><P><A href="http://h20565.www2.hpe.com/hpsc/swd/public/readIndex?sp4ts.oid=1009143853&amp;lang=en&amp;cc=us" target="_blank">http://h20565.www2.hpe.com/hpsc/swd/public/readIndex?sp4ts.oid=1009143853&amp;lang=en&amp;cc=us</A> &nbsp;Select your OS and then exapnd the firmware tab</P><P>You can review the revision history to see the changes that have been made</P><P>&nbsp;</P> Thu, 06 Jul 2017 13:55:41 GMT https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970142#M158374 Jimmy Vance 2017-07-06T13:55:41Z https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970147#M158375 <P>Dear Jimmy, thank you indeed for the quick suggestion, I will do the update.</P><P>However my Operative System is:</P><P>CentOS release 6.2 (Final)</P><P>which is not present in the list of the web page you suggested me.</P><P>Which one should I use? Actually I thought that ILO is</P><P>independent with respect to the OS, is it really important</P><P>to match the OS?</P><P>thank you again</P><P>Mauro</P> Thu, 06 Jul 2017 14:13:32 GMT https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970147#M158375 Mauro1967 2017-07-06T14:13:32Z https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970151#M158376 <P>If your not going to update via the host OS, it is not important to match the OS. You do need to&nbsp;download the firmware file in a verision your client can deal with to extract the binary firmware image. You can then update the image via the web interface. &nbsp; For CentOS the Red Hat file should work without issue</P><P>&nbsp;</P><P>&nbsp;</P> Thu, 06 Jul 2017 14:30:23 GMT https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970151#M158376 Jimmy Vance 2017-07-06T14:30:23Z https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970239#M158386 <P>Dear Jimmy,</P><P>ok, I will update to the latest iLO4 firmware first,</P><P>then I will check if the security issues will disappear (hopefully)!</P><P>Thank you again!</P><P>Mauro</P><P>&nbsp;</P> Fri, 07 Jul 2017 12:34:45 GMT https://community.hpe.com/t5/proliant-servers-ml-dl-sl/security-issue-with-ilo4/m-p/6970239#M158386 Mauro1967 2017-07-07T12:34:45Z