{"id":13466,"date":"2014-06-08T13:02:33","date_gmt":"2014-06-08T18:02:33","guid":{"rendered":"http:\/\/bucktownbell.com\/?p=13466"},"modified":"2014-06-08T13:08:11","modified_gmt":"2014-06-08T18:08:11","slug":"dan-farmer-presents-research-on-ipmi-vulnerabilities","status":"publish","type":"post","link":"http:\/\/bucktownbell.com\/?p=13466","title":{"rendered":"Dan Farmer Presents Research on IPMI Vulnerabilities"},"content":{"rendered":"<blockquote><p>IPMI runs regardless of the underlying operating system and operates on UDP port 623 through a server\u2019s network port or its own Ethernet port. It runs continuously, Farmer said, unless the plug is literally pulled. Moore\u2019s scan pulled up 230,000 responses over port 623, an admittedly tiny slice of the overall number of implementations. Yet Farmer concludes that 90 percent of BMCs running IPMI could be compromised because of default or weak passwords or weaknesses in the protocol, not only implicating the host server but others in the same management group because, as he discovered, some vendors share common passwords.<\/p><\/blockquote>\n<p>via <a href=\"http:\/\/threatpost.com\/vulnerabilities-in-ipmi-protocol-have-long-shelf-life\/106480\">Dan Farmer Presents Research on IPMI Vulnerabilities | Threatpost | The first stop for security news<\/a>.<\/p>\n<p>BMC = Baseboard Management Controller, a separate device attached to motherboards for management purposes.\u00a0 This isn&#8217;t the first article to point out vulnerabilities in IPMI.\u00a0 It has been noted that IPMI should run on its own intranet and not the public internet.\u00a0 Providing another layer of security to this interface may mitigate any problems.\u00a0 IPMI can&#8217;t be any less secure than SNMP.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>IPMI runs regardless of the underlying operating system and operates on UDP port 623 through a server\u2019s network port or its own Ethernet port. It runs continuously, Farmer said, unless the plug is literally pulled. Moore\u2019s scan pulled up 230,000 &hellip; <a href=\"http:\/\/bucktownbell.com\/?p=13466\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[287],"tags":[520,958,60,101],"class_list":["post-13466","post","type-post","status-publish","format-standard","hentry","category-interfaces","tag-enterprise","tag-ipmi","tag-management-systems","tag-security"],"_links":{"self":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/13466","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=13466"}],"version-history":[{"count":4,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/13466\/revisions"}],"predecessor-version":[{"id":13470,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=\/wp\/v2\/posts\/13466\/revisions\/13470"}],"wp:attachment":[{"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=13466"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=13466"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/bucktownbell.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=13466"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}