Yang pake IPMI / BMC Supermicro Baca Nih

voezie · 19 Nov 2013

Dapet email dari HostingSecList, mudah2-an bermanfaat untuk user Supermicro

[h=1]Supermicro IPMI Vulnerabilities[/h] [h=2]Urgent Action Required[/h]
We have been made aware of a series of security vulnerabilities in Supermicros IPMI firmware.
It is possible to gain root access on the supermicro ipmi BMC, which can be used ultimately to compromise the server operating system.

https://community.rapid7.com/community/metasploit/blog/2013/11/06/supermicro-ipmi-firmware-vulnerabilities

It appears that Supermicro has released some patches for some boards already.

Note: It is never a good idea to expose a management interface such as IPMI to the public internet.

Ongoing Discussion via WHT:

http://www.webhostingtalk.com/showthread.php?p=8918302#post8918302

netone · 23 Nov 2013

tetep lebih aman, lewat private network, client yang mau akses IPMI vpn dulu ke vpn lokal baru bisa akses ke ipmi nya

Yang pake IPMI / BMC Supermicro Baca Nih

voezie

Hosting Guru

netone

Poster 1.0