From beng at jlab.org Mon Nov 27 14:46:51 2023 From: beng at jlab.org (Brian Eng) Date: Mon, 27 Nov 2023 19:46:51 +0000 Subject: [Dsg-hallc_magnets] PLC Communication Modules Message-ID: Hi Steve, The CC just opened incident reports for vulnerabilities for the communication modules that will need to have updated firmware applied to them to mitigate the issue. https://www.tenable.com/blog/cve-2023-3595-cve-2023-3596-rockwell-automation-controllogix-vulnerabilities-disclosed Incident: INC0113400 & INC0113401 hms-plc1 and hms-plc2 are the hostnames. Is there a time I can provide the CC when the magnets will be off that we could perform these updates? -------------- next part -------------- An HTML attachment was scrubbed... URL: From lassiter at jlab.org Mon Nov 27 15:16:51 2023 From: lassiter at jlab.org (Steven Lassiter) Date: Mon, 27 Nov 2023 20:16:51 +0000 Subject: [Dsg-hallc_magnets] PLC Communication Modules In-Reply-To: References: Message-ID: Hi, These PLCS need to stay on during the entire running of the current experiment. The next SAD-24 is currently slated to start May 19, 2024. The first few weeks of SAD-24, they need to be on for the warm up of the HMS dipole magnet in a controlled manner. After the HMS dipole has stabilized then the PLCS could be brought down, one at a time. The patch should be installed into one plc, off line, tested and verified before the other PLC is patched. It is not just having the magnets turned off that matters, as the PLCs also control Hall C cryogenics and spectrometer rotation. I will be off and away from the lab, starting around Dec 15 and lasting until the first of next year. Steven ________________________________ From: Dsg-hallc_magnets on behalf of Brian Eng via Dsg-hallc_magnets Sent: Monday, November 27, 2023 2:46 PM To: dsg-hallc_magnets at jlab.org Subject: [Dsg-hallc_magnets] PLC Communication Modules Hi Steve, The CC just opened incident reports for vulnerabilities for the communication modules that will need to have updated firmware applied to them to mitigate the issue. https://www.tenable.com/blog/cve-2023-3595-cve-2023-3596-rockwell-automation-controllogix-vulnerabilities-disclosed Incident: INC0113400 & INC0113401 hms-plc1 and hms-plc2 are the hostnames. Is there a time I can provide the CC when the magnets will be off that we could perform these updates? -------------- next part -------------- An HTML attachment was scrubbed... URL: