Solved

How to update ESX packages

Posted on 2014-11-19
2
486 Views
Last Modified: 2014-11-23
I need to update the following, however I've never done this on an ESX host before. This host is running customer facing services so need to keep downtime to a minimum. Any advise would be great. OS - ESXi-4.1.0


Upgrade to the Dropbear SSH 2012.55 or later.

OpenSSL 0.9.8 SSL/TLS users (client and/or server) should upgrade to 0.9.8za.

OpenSSL 1.0.0 SSL/TLS users (client and/or server) should upgrade to 1.0.0m. OpenSSL 1.0.1 SSL/TLS users (client and/or server) should upgrade to 1.0.1h.
0
Comment
Question by:gman
2 Comments
 
LVL 61

Expert Comment

by:gheist
Comment Utility
It is openssl 0.9.8zc already
ESXi 4.1 does not have later OpenSSL versions
1) ESXi/ESX 4.1 Update 3 - latest bulk patch - required by others.
2)ESXi/ESX 4.1 Patch 11 - patches all SSL vulnerabilities to date
not for ESXi / 3) ESX 4.1 Patch 11a -  disables SSL v3 (aka poodle)

Save vib or zip on some webserver, or upload to some datastore visible to ESXi
Then install with esxcli vib install (-v -z) as vmware guides say.
Yes, 3 reboots., no just two....

Much easier if you have vcenter and vmware upgrade manager.
0
 
LVL 61

Accepted Solution

by:
btan earned 500 total points
Comment Utility
I will also suggest to explore the typical way to apply patches to ESXi hosts is through the VMware Update Manager.
http://www.virtualizationadmin.com/articles-tutorials/vmware-esx-and-vsphere-articles/general/vsphere-update-manager-vum-part1.html

Instead you may consider to scan as a whole on the required patches required for ESXi which the mgr support as well
http://pubs.vmware.com/vsphere-55/index.jsp#com.vmware.vsphere.update_manager.doc/GUID-F7191592-048B-40C7-A610-CFEE6A790AB0.html

It also has the patch repository to manage patches and extensions
http://pubs.vmware.com/vsphere-55/index.jsp#com.vmware.vsphere.update_manager.doc/GUID-CDC79A4C-2D70-4674-8A5D-0D1E71AFDD3B.html
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Healthcare organizations in the United States must adhere to the guidance of both the HIPAA (Health Insurance Portability and Accountability Act) and HITECH (Health Information Technology for Economic and Clinical Health Act) for securing and protec…
Find out what Office 365 Transport Rules are, how they work and their limitations managing Office 365 signatures.
Sending a Secure fax is easy with eFax Corporate (http://www.enterprise.efax.com). First, Just open a new email message.  In the To field, type your recipient's fax number @efaxsend.com. You can even send a secure international fax — just include t…
This video demonstrates how to create an example email signature rule for a department in a company using CodeTwo Exchange Rules. The signature will be inserted beneath users' latest emails in conversations and will be displayed in users' Sent Items…

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now