<p dir="ltr">FYI</p>
<p dir="ltr">This affects geomag,  landslides,  and geohazards websites. </p>
<div class="gmail_quote">---------- Forwarded message ----------<br>From: "La, Lien" <<a href="mailto:lla@usgs.gov">lla@usgs.gov</a>><br>Date: Jun 11, 2014 12:03 PM<br>Subject: eSAS Emergency Maintenance<br>
To: <br>Cc: "eSAS" <<a href="mailto:gs_help_esas@usgs.gov">gs_help_esas@usgs.gov</a>><br><br type="attribution"><div dir="ltr"><div style="color:rgb(0,0,0);font-family:arial,sans-serif;font-size:13px"><p class="MsoNormal" style="margin-bottom:0.0001pt">
<span style="font-size:10pt;font-family:Arial,sans-serif">TO:  All <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)"><span>eSAS</span></span> Customers</span></p>




<p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif"><br></span></p><p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-family:verdana,sans-serif">DOI External Scanning has identified the latest high severity OpenSSL vulnerabilities on websites behind the WAFs. The eSAS team needs to conduct a firmware upgrade on all WAFs to resolve the vulnerabilities.  </span><span style="font-size:10pt;font-family:Arial,sans-serif">All affected sites with failover functionality will remain functional through an alternate regional devices.</span></p>





</div><div style="color:rgb(0,0,0);font-size:13px"><p class="MsoNormal" style="font-family:arial,sans-serif;margin-bottom:0.0001pt"><span style="font-family:Arial,sans-serif;font-size:10pt"><br></span></p><p class="MsoNormal" style="font-family:arial,sans-serif;margin-bottom:0.0001pt">





<span style="font-family:Arial,sans-serif;font-size:10pt">TODAY'S DATE: Wednesday, June 11, 2014</span><span style="font-size:10pt;font-family:Arial,sans-serif"><br></span></p><p class="MsoNormal" style="font-family:arial,sans-serif;margin-bottom:0.0001pt">





<span style="font-family:Arial,sans-serif;font-size:10pt"> </span></p><p class="MsoNormal" style="font-family:arial,sans-serif;margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif">PLANNED CHANGE DATE/TIME: </span></p>




<p class="MsoNormal" style="font-family:arial,sans-serif;margin-bottom:0.0001pt">
<span style="font-size:10pt;font-family:Arial,sans-serif"><br></span></p><div style="font-family:arial,sans-serif"><p class="MsoNormal" style="margin:0in 0in 0.0001pt 0.25in"><span style="font-size:10pt;font-family:Symbol">·<span style="font-size:7pt;font-family:'Times New Roman'">      </span></span><span style="font-family:Arial,sans-serif">Thursday, June 12, 2014, 5:00 PM - 8:00 PM PST </span></p>





</div><blockquote style="font-family:arial,sans-serif;margin:0px 0px 0px 40px;border:none;padding:0px"><p class="MsoNormal" style="margin:0in 0in 0.0001pt 0.25in"><span style="font-size:10pt;font-family:Arial,sans-serif">for WAFs located at Menlo Park Campus (network address spaces 137.227.239.x and 137.227.233.x)</span></p>





<p class="MsoNormal" style="margin:0in 0in 0.0001pt 0.25in"><span style="font-family:Arial,sans-serif;font-size:10pt">for WAFs located at the Denver Federal Center (network address spaces 137.227.231.x and 137.227.229.x)</span></p>





</blockquote><blockquote style="font-family:arial,sans-serif;margin:0px 0px 0px 40px;border:none;padding:0px"><p class="MsoNormal" style="margin:0in 0in 0.0001pt 0.25in"><br></p></blockquote><div style="font-family:arial,sans-serif">




<p class="MsoNormal" style="margin-bottom:0.0001pt;text-indent:0.25in">
<span style="font-size:10pt;font-family:Symbol">·<span style="font-size:7pt;font-family:'Times New Roman'">      </span></span><span style="font-size:10pt;font-family:Arial,sans-serif">Friday, June 13, 2014, 5:00 PM - 6:00 PM PST</span></p>





</div><blockquote style="font-family:arial,sans-serif;margin:0px 0px 0px 40px;border:none;padding:0px"><p class="MsoNormal" style="margin:0in 0in 0.0001pt 0.25in"><span style="font-family:Arial,sans-serif">for WAF located at the Reston National Center (network address space 137.227.248.x)</span><br>





</p></blockquote><blockquote style="margin:0px 0px 0px 40px;border:none;padding:0px"><p class="MsoNormal" style="margin:0in 0in 0.0001pt 0.25in"><font face="Arial, sans-serif">* Please note that the Reston WAF will be shutdown after the upgrade for the Reston planned power outage scheduled for Saturday.</font></p>




</blockquote><div style="font-family:arial,sans-serif"><p class="MsoNormal" style="margin-bottom:0.0001pt;text-indent:0.25in"><span style="font-family:Arial,sans-serif;font-size:10pt"> </span><span style="font-family:Arial,sans-serif;font-size:10pt;text-indent:0.25in"> </span></p>





</div><p class="MsoNormal" style="font-family:arial,sans-serif;margin-bottom:0.0001pt"><span style="font-family:Arial,sans-serif;font-size:10pt">CATEGORY OF CHANGE: High</span></p><p class="MsoNormal" style="font-family:arial,sans-serif;margin-bottom:0.0001pt">




<span style="font-family:Arial,sans-serif;font-size:10pt"><br>
</span></p></div><div style="color:rgb(0,0,0);font-family:arial,sans-serif;font-size:13px"><div><p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif">ANTICIPATED IMPACT ON USER COMMUNITY: </span></p>





<p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif"><br></span></p></div><p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif">Production <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)"><span>eSAS</span></span> sites with failover configuration will remain functional through the alternate regional failover devices until the <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)">upgrade</span> is completed; however, sites without a failover configuration will not be accessible during this time.</span></p>





<div><p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif"> </span></p><p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif">DESCRIPTION OF CHANGE:  The WAF appliances will be <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)">upgraded</span> to <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)">firmware</span> version 7.8.1.017.</span></p>





<p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif"> </span></p><p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif">RATIONALE FOR CHANGE:  The <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)">firmware</span> <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)">upgrade</span> is necessary to fix the OpenSSL </span>Man in the Middle Security Bypass Vulnerability<span style="font-family:Arial,sans-serif;font-size:10pt"> (CVE-2014-0224).</span></p>





<p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif"> </span></p><p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif">INDIVIDUAL(S) RESPONSIBLE FOR CHANGE:   ITSOT <span style="background-color:rgb(255,255,204);color:rgb(34,34,34)"><span>eSAS</span></span> Team.</span></p>





<p class="MsoNormal" style="margin-bottom:0.0001pt"><span style="font-size:10pt;font-family:Arial,sans-serif"> </span></p></div></div><span style="color:rgb(0,0,0);font-size:10pt;font-family:Arial,sans-serif">For any questions or concerns, please send email to </span><span style="color:rgb(0,0,0);font-size:10pt;background-color:rgb(255,255,204);font-family:Arial,sans-serif">GS</span><span style="color:rgb(0,0,0);font-size:10pt;font-family:Arial,sans-serif"> Help </span><span style="color:rgb(0,0,0);font-size:10pt;font-family:Arial,sans-serif;background-color:rgb(255,255,204)"><span style="color:rgb(34,34,34)">eSAS.</span></span><div>





<font face="Arial, sans-serif"><br></font></div><div><font face="Arial, sans-serif"><br clear="all"></font><div><div dir="ltr"><div><font color="#999999">-------------------------------------------------------------<br></font></div>





<div><font color="#999999">Lien La</font></div><div><font color="#999999">IT Security Operations Team</font></div><div><font color="#999999">Office of Information Technical Services</font></div><div><font color="#999999">U.S. Geological Survey </font></div>





<div><font color="#999999">Email:  <a href="https://mail.google.com/mail/?view=cm&fs=1&tf=1&to=lla@usgs.gov" target="_blank">lla@usgs.gov</a></font></div><div><font color="#999999">Work:  650.329.4062</font></div>




<div><font color="#999999">Mobile:  650.207.0328</font></div>
</div></div>
</div></div>
</div>