tag:blogger.com,1999:blog-9122514974659083342.post2893394034945244698..comments2024-02-02T22:30:20.736-05:00Comments on Chemical Facility Security News: ICS-CERT Publishes GE Proficy AdvisoryPJCoylehttp://www.blogger.com/profile/03390039682578324978noreply@blogger.comBlogger1125tag:blogger.com,1999:blog-9122514974659083342.post-34793917298039231172013-01-09T09:01:31.755-05:002013-01-09T09:01:31.755-05:00When I read the ICS-CERT Advisory, it looks like t...When I read the ICS-CERT Advisory, it looks like they are just repeating the instructions from GE, and not providing ICS-CERT recommendations. If this is the case, do you have problems with this approach?<br /><br /><br />-----copied from Advisory------<br /><i>Patches for versions of CIMPLICITY prior to Version 8.0 will not be <br />created. <b>GE recommends customers who are unable to patch or upgrade consider the recommendations below.</b><br /><br /><b>GE has provided the following workaround recommendations that eliminate the need to use the vulnerable component:</b><br /><br />Option 1: Disable the CIMPLICITY built-in Web server if it is not in use.<br />Option 2: Use an alternate Web server to host GlobalView, WebView, or ThinView.</i>Anonymousnoreply@blogger.com