freeipmi-devel
[Top][All Lists]
Advanced
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Freeipmi-devel] ipmi configuration security best practices

From: dan farmer
Subject: Re: [Freeipmi-devel] ipmi configuration security best practices
Date: Tue, 19 Feb 2013 08:38:12 -0800 
Bah - meant to mention this was in an appendixy like page, that
detailed the exact systems tested:

        http://fish2.com/ipmi/testing.html

I meant to include links to the exact issues on the page as well, 
I'll add those in ASAP.

-- d

> The levels that the vendors give are a bit arbitrary, but FWIW, I did
> a set of Nessus scans on out-of-the-box iDRAC 6, iLO3, and a Supermicro 
> BMC's; no "high" security issues, but:
> 
>       Vendor          High    Med     Low     Informational
>       Dell            0               3               0               30
>       HP                      0               0               2               
> 12
>       SM                      0               8               1               
> 45
> 
> I suppose I'd suggest killing all the medium issues if at all possible.
> 
> dan
>
reply via email to
[Prev in Thread] Current Thread [Next in Thread]