Solved

How to update ESX packages

Posted on 2014-11-19
2
493 Views
Last Modified: 2014-11-23
I need to update the following, however I've never done this on an ESX host before. This host is running customer facing services so need to keep downtime to a minimum. Any advise would be great. OS - ESXi-4.1.0


Upgrade to the Dropbear SSH 2012.55 or later.

OpenSSL 0.9.8 SSL/TLS users (client and/or server) should upgrade to 0.9.8za.

OpenSSL 1.0.0 SSL/TLS users (client and/or server) should upgrade to 1.0.0m. OpenSSL 1.0.1 SSL/TLS users (client and/or server) should upgrade to 1.0.1h.
0
Comment
Question by:gman
2 Comments
 
LVL 61

Expert Comment

by:gheist
ID: 40454334
It is openssl 0.9.8zc already
ESXi 4.1 does not have later OpenSSL versions
1) ESXi/ESX 4.1 Update 3 - latest bulk patch - required by others.
2)ESXi/ESX 4.1 Patch 11 - patches all SSL vulnerabilities to date
not for ESXi / 3) ESX 4.1 Patch 11a -  disables SSL v3 (aka poodle)

Save vib or zip on some webserver, or upload to some datastore visible to ESXi
Then install with esxcli vib install (-v -z) as vmware guides say.
Yes, 3 reboots., no just two....

Much easier if you have vcenter and vmware upgrade manager.
0
 
LVL 62

Accepted Solution

by:
btan earned 500 total points
ID: 40455109
I will also suggest to explore the typical way to apply patches to ESXi hosts is through the VMware Update Manager.
http://www.virtualizationadmin.com/articles-tutorials/vmware-esx-and-vsphere-articles/general/vsphere-update-manager-vum-part1.html

Instead you may consider to scan as a whole on the required patches required for ESXi which the mgr support as well
http://pubs.vmware.com/vsphere-55/index.jsp#com.vmware.vsphere.update_manager.doc/GUID-F7191592-048B-40C7-A610-CFEE6A790AB0.html

It also has the patch repository to manage patches and extensions
http://pubs.vmware.com/vsphere-55/index.jsp#com.vmware.vsphere.update_manager.doc/GUID-CDC79A4C-2D70-4674-8A5D-0D1E71AFDD3B.html
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

You may have a outside contractor who comes in once a week or seasonal to do some work in your office but you only want to give him access to the programs and files he needs and keep privet all other documents and programs, can you do this on a loca…
An overview of HIPAA and guidance on this topic that Experts Exchange members can offer.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, just open a new email message. In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
A simple description of email encryption using a secure portal service. This is one of the choices offered by The Email Laundry for email encryption. The other choices are pdf encryption which creates an encrypted pdf of your email and any attachmen…

910 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now