Quoting Hendrik Boom (hend...@topoi.pooq.com): > IPMI is presuably the same protocol described as "The most dangerous > protocol you've never heard of"? > > http://www.itworld.com/article/2708437/security/ipmi--the-most-dangerous-protocol-you-ve-never-heard-of.html> >
For that reason, IPMI ports need to be at _least_ confined by VLAN tagging to a special service network with no direct public access whatsoever, if not physically separate. Have mandatory VPN access controls to get to that network, and watch it like a hawk. Never, ever let those ports be public-facing. _______________________________________________ Dng mailing list Dng@lists.dyne.org https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng