Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations SkipVought on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Call PIlot Updates
- Thread starter ashort123
- Start date
Nortel does test for compatibility as Microsoft updates come out. In general, though, you do not install the Microsoft hotfixes directly -- Nortel repackages them as CallPilot updates -- the latest one for Rls. 4.0 is CP404SEC003S, and it includes all hotfixes up to and including MS05-053. There's a bulletin out every couple of days responding to Microsoft security bulletins.
Not sure what model or software version you have, but you might be interested to know there is a technical bulletin out warning not to put SP1 for W2003 on a 201i Rls. 3.0.
Here is an excerpt from CallPilot Security Bulletin Update P-2006-0011:
Nortel periodically provides comprehensive Server Security Update Product Enhancement Packages (PEPs) for use with CallPilot systems, generally with the introduction of a CallPilot Service Update (SU). Installation of these Security Update PEPs results in increased security of the CallPilot server.
• CallPilot uses a particular combination and specific versions of various Microsoft Windows Operating System (OS), web server, and browser components. Therefore, Nortel does not install many security updates issued by Microsoft because only vulnerabilities in the components used by CallPilot need to be patched. CallPilot uses components in specific ways so the importance of a given vulnerability on CallPilot may differ from its importance when those components are used by non-CallPilot applications.
• While most Microsoft security updates function properly on CallPilot, some security updates have been found to cause issues.
• Customers should not install non-Nortel-approved Microsoft security updates on the CallPilot server for the following reasons:
o Customers may make mistakes in identifying which security updates are applicable to CallPilot and which exact version of a security update to apply.
o Microsoft security updates must be tested to ensure they do not impact CallPilot functionality prior to being installed on customers’ production servers.
o If a customer alters the software or configuration of a CallPilot server in a manner not supported by Nortel, future upgrades of CallPilot software could fail even though the system presently works fine. Nortel testing is based on standard CallPilot configurations and cannot test all possible modifications of those configurations.
How Nortel Provides Microsoft Security Updates
• Each up-issue and release of CallPilot software incorporates the latest set of Microsoft security updates available at the time the release or up-issue was built. In addition to new security updates, each CallPilot software up-issue or release contains other security improvements that further harden CallPilot to attack.
• Each latest software release contains incremental security updates and enhancements over that of releases in Sustained/Retired status. Security-minded customers will therefore want to stay current with the latest release of CallPilot.
• When Microsoft issues a new security update, Nortel evaluates whether it applies to CallPilot, its threat-severity, and its impact on CallPilot operation and stability. After successful testing on software releases that are Current, Active, or Sustained, the security update is approved for direct download from Microsoft and installation on a CallPilot server.
o Nortel will publish a response to each Microsoft Security Advisory Technical Security Advisory Bulletin within two (2) business days of Microsoft notification, subject to availability of the update from Microsoft for the OS versions being tested and qualified. The response will be in the form of a Technical Security Advisory Bulletin advising whether the new security update can be applied to CallPilot.
o The Technical Security Advisory Bulletins are all posted to
Not sure what model or software version you have, but you might be interested to know there is a technical bulletin out warning not to put SP1 for W2003 on a 201i Rls. 3.0.
Here is an excerpt from CallPilot Security Bulletin Update P-2006-0011:
Nortel periodically provides comprehensive Server Security Update Product Enhancement Packages (PEPs) for use with CallPilot systems, generally with the introduction of a CallPilot Service Update (SU). Installation of these Security Update PEPs results in increased security of the CallPilot server.
• CallPilot uses a particular combination and specific versions of various Microsoft Windows Operating System (OS), web server, and browser components. Therefore, Nortel does not install many security updates issued by Microsoft because only vulnerabilities in the components used by CallPilot need to be patched. CallPilot uses components in specific ways so the importance of a given vulnerability on CallPilot may differ from its importance when those components are used by non-CallPilot applications.
• While most Microsoft security updates function properly on CallPilot, some security updates have been found to cause issues.
• Customers should not install non-Nortel-approved Microsoft security updates on the CallPilot server for the following reasons:
o Customers may make mistakes in identifying which security updates are applicable to CallPilot and which exact version of a security update to apply.
o Microsoft security updates must be tested to ensure they do not impact CallPilot functionality prior to being installed on customers’ production servers.
o If a customer alters the software or configuration of a CallPilot server in a manner not supported by Nortel, future upgrades of CallPilot software could fail even though the system presently works fine. Nortel testing is based on standard CallPilot configurations and cannot test all possible modifications of those configurations.
How Nortel Provides Microsoft Security Updates
• Each up-issue and release of CallPilot software incorporates the latest set of Microsoft security updates available at the time the release or up-issue was built. In addition to new security updates, each CallPilot software up-issue or release contains other security improvements that further harden CallPilot to attack.
• Each latest software release contains incremental security updates and enhancements over that of releases in Sustained/Retired status. Security-minded customers will therefore want to stay current with the latest release of CallPilot.
• When Microsoft issues a new security update, Nortel evaluates whether it applies to CallPilot, its threat-severity, and its impact on CallPilot operation and stability. After successful testing on software releases that are Current, Active, or Sustained, the security update is approved for direct download from Microsoft and installation on a CallPilot server.
o Nortel will publish a response to each Microsoft Security Advisory Technical Security Advisory Bulletin within two (2) business days of Microsoft notification, subject to availability of the update from Microsoft for the OS versions being tested and qualified. The response will be in the form of a Technical Security Advisory Bulletin advising whether the new security update can be applied to CallPilot.
o The Technical Security Advisory Bulletins are all posted to
- Status
Similar threads
- Locked
- Question
