HPE Community
Operating System - HP-UX
1848462 Members
7667 Online
104029 Solutions
New Discussion

Re: Apply SNMP vulnerabilities patch or not?

 
marktam
Occasional Contributor

‎03-14-2002 01:06 AM

‎03-14-2002 01:06 AM

Apply SNMP vulnerabilities patch or not?

I want to apply apply SNMP vulnerabilites patch (PHSS_26137) in my hpux 10.20 using swinstall.

Does I use mark it all or match or "Match What target had" item?

If the matching was failed when using "Match What target had" item, that mean this patch was not useful for my system?


Thanks
MT.
mt
0 Kudos
Reply
6 REPLIES 6
Alexander M. Ermes
Honored Contributor

‎03-14-2002 01:33 AM

‎03-14-2002 01:33 AM

Re: Apply SNMP vulnerabilities patch or not?

Hi there.
use the 'Mark for install' .
It then does an analysis run.
If there are any errors, it will show it in the logfile. You should keep your eyes on it during the analysis. If the analysis succeeds, go for install, but be careful.
It may be, that the patch requires a reboot.
check that first.
Rgds
Alexander M. Ermes
.. and all these memories are going to vanish like tears in the rain! final words from Rutger Hauer in "Blade Runner"
0 Kudos
Reply
Ceesjan van Hattum
Esteemed Contributor

‎03-14-2002 03:54 AM

‎03-14-2002 03:54 AM

Re: Apply SNMP vulnerabilities patch or not?

"The Match What Target Has option."
This option identifies the currently installed software and selects the products from the depot that match what is currently installed on the machine.
The matching products are marked automatically with a Yes in the Matched? column in the Software Selection screen, and the utility begins an install analysis.

Do not bother too much, just mark for install and go for it !
0 Kudos
Reply
Steve Labar
Valued Contributor

‎03-14-2002 01:45 PM

‎03-14-2002 01:45 PM

Re: Apply SNMP vulnerabilities patch or not?

The PHSS_26137 patch has fixes for SNMP & Openview in it. If you are installing it to a system that has Openview installed, you need to match it. If you do not have OpenView installed you need to mark for install to get the updates for SNMP. I have installed it on a non-OpenView system and the SNMP files did get updated appropriately.

Good Luck.

Steve
0 Kudos
Reply
pap
Respected Contributor

‎03-14-2002 02:55 PM

‎03-14-2002 02:55 PM

Re: Apply SNMP vulnerabilities patch or not?

Hi,

Today only I have applied the same patch to more than 10 machines. As per HP the patch is not a critical one and no risk in installing it. It doesn't requires reboot too. Just go to swinstall , mark it and install it. That's it.


As per HP it is an HP recommeded patch hence you shoould have to install on your machines.

For HP 11.0 the equivalent patch is PHSS_26138.

Let me know if you have any questions.

-Piyush.
"Winners don't do different things , they do things differently"
0 Kudos
Reply
John Payne_2
Honored Contributor

‎03-14-2002 05:48 PM

‎03-14-2002 05:48 PM

Re: Apply SNMP vulnerabilities patch or not?

If you are running snmpdm, you definitely want to install. No need to match the target, as the patch will look for OV. Just install and go.

I installed the patches the day after the vulnerability was reported. I have not seen a single issue with the patches since that time.

BTW, I would like to thank HP for having the patch ready when the vul. was reported. Some of the other guys around here (Windows, Solaris, etc) were pulling their hair out because the security guy was pestering them to either patch or shutdown snmp...

John
Spoon!!!!
0 Kudos
Reply
pap
Respected Contributor

‎03-15-2002 07:47 AM

‎03-15-2002 07:47 AM

Re: Apply SNMP vulnerabilities patch or not?

HI One more thing I would like to add.

1. Before installing patch PHSS_26137 on HP-UX 10.20, check whether snmpdm is running using "ps -ef| snmpdm" . If it is running then kill the process.

2. One it is killed, then start installing the patch using swinstall. If you do not kill the snmpdm process, your installation will stuck in analysis phase.

3. Once the patch is installed, start the process using

#/usr/sbin/snmpdm

You are all set then.
"Winners don't do different things , they do things differently"
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.