Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Sometimes the interface will piggyback on the same physical port as the primary NIC, so you can accidentally get it on the network without knowing.

Supermicros default to using the dedicated nic for IPMI, but they also default to using the piggyback if there is no link on the dedicated nic. :(



Which means everything is fine, then the ipmi switch port is shut down, and suddenly you're exposed in an unexpected fashion. It's not good. At least the password is no longer ADMIN/ADMIN on new kit, although I had one supermicro machine connected for me in India last week which was old enough that it was ADMIN/ADMIN


Huh, I thought they listen on an invalid IP address by default for security reasons.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: