I need to mitigate the Jetty 6.1.22 DoS vulnerability. One way is to disable the VMware Update Manager Service that uses Jetty. If I do this, what can I expect? Will my vCenter server still operate properly? Will vSphere Client still work as expected? What functionality will I lose?
Please forgive my ignorance if this is an elementary question. I inherited this system recently and haven't had the opportunity attend formal training yet.
Thank you for your help.
The Virtual Center will continue to run, and so would all hosts and Virtual Machines.
Update Manager is used to do just what is says - update the host and virtual machines. So apart from that, everything elase will work normally.
http://www.vmware.com/files/pdf/VMware-vCenter-Update-Manager-DS-EN.pdf
Regards
a
One way is to disable the VMware Update Manager Service that uses Jetty. If I do this, what can I expect? Will my vCenter server still operate properly? Will vSphere Client still work as expected? What functionality will I lose?
Vmware Update Manager is the patching tool used to perform updated of the ESXi host. It is just an additional plug-in installed on the vCente server. If you disable the service there wont be any impact for the vCenter server.
vSphere Client is just a medium which is used to access the vCenter server or ESXi host.
If you want to update the ESXi host using Vmware update Manager then you want to have the service enabled. Alternatively you could use Command lines to perform ESXi updates