nanog mailing list archives

Re: WaPo writes about vulnerabilities in Supermicro IPMIs

From: Jay Ashworth <jra () baylink com>
Date: Thu, 15 Aug 2013 23:43:05 -0400 (EDT)

----- Original Message -----

From: "Andrew Jones" <aj () jonesy com au>

Well, *I* would firewall eth1 from eth0 and cross-over eth1 to the ILO jack;
let the box be the firewall. Sure, it's still as breakable as the box
proper, but security-by-obscurity isn't *bad*, it's just *not good
enough*.


That's great until you muck up your firewall config or the kernel
hangs etc. and you're up for a trip to the data centre.


Sure.  But if you can reduce 1% to 1% of 1%, then you've still done something
useful.

Cheers,
-- jra
-- 
Jay R. Ashworth                  Baylink                       jra () baylink com
Designer                     The Things I Think                       RFC 2100
Ashworth & Associates     http://baylink.pitas.com         2000 Land Rover DII
St Petersburg FL USA               #natog                      +1 727 647 1274

Current thread:

WaPo writes about vulnerabilities in Supermicro IPMIs Jay Ashworth (Aug 15)
- Re: WaPo writes about vulnerabilities in Supermicro IPMIs Jima (Aug 15)
- Re: WaPo writes about vulnerabilities in Supermicro IPMIs Valdis . Kletnieks (Aug 15)
  - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Jay Ashworth (Aug 15)
  - RE: WaPo writes about vulnerabilities in Supermicro IPMIs Tom Walsh - EWS (Aug 15)
- Re: WaPo writes about vulnerabilities in Supermicro IPMIs Brandon Martin (Aug 15)
  - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Jay Ashworth (Aug 15)
    - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Jonathan Lassoff (Aug 15)
    - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Jay Ashworth (Aug 15)
    - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Andrew Jones (Aug 15)
    - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Jay Ashworth (Aug 15)
  - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Leo Bicknell (Aug 16)
    - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Charles N Wyble (Aug 25)
- Re: WaPo writes about vulnerabilities in Supermicro IPMIs Kyle Creyts (Aug 15)
  - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Alain Hebert (Aug 16)
    - Message not available
    - Message not available
    - Message not available
    - Message not available
    - Re: WaPo writes about vulnerabilities in Supermicro IPMIs Anthony Bonkoski (Aug 17)
- <Possible follow-ups>
- Re: WaPo writes about vulnerabilities in Supermicro IPMIs Scott Weeks (Aug 15)
- Re: WaPo writes about vulnerabilities in Supermicro IPMIs Larry Sheldon (Aug 15)