Spectre and Meltdown Security Threats/ Vulnerabilities

We are monitoring the evolving analysis of the Meltdown and Spectre security threats. While the typical deployment usage of the hardware resources within our object storage system does not present an opportunity to exploit the threats, we recommend the following actions from our customers.

1. Keep up to date with Swarm software updates.

2. Keep up to date with OS patches on your Elasticsearch, Content Gateway, SwarmNFS, FileFly, and Platform 9.0 servers.

3. If you are running a Platform 8.x (or earlier CSN) server, do not allow non-admin users to execute programs on the Linux OS.

4. In general, do not allow untrusted, non-admin users to log into and execute local programs on the servers that host the software pieces of Swarm Object Storage.

We will advise you if future analysis shows that additional remediation actions are necessary to address these security threats.

© DataCore Software Corporation. · https://www.datacore.com · All rights reserved.