IPMI security article
Lloyd Kvam
python at venix.com
Tue Feb 19 15:05:24 EST 2013
On Tue, 2013-02-19 at 11:16 -0500, Kevin D. Clark wrote:
> Lloyd Kvam writes:
>
> > Should I simply disable IPMI or is it likely to be useful even in my
> > circumstances?
>
> Do you have any need to manage your server remotely using the
> functionality that IPMI provides? How easy is it for you to
> physically access your server?
I had failed to provide remote access to Xen Dom-0. When my virtualized
server failed to start, Bill McGonigle stopped in my office to make
repairs and get it started. I have fixed that oversight and can now ssh
to both Dom-0 and my virtual mail server.
The server sits on a table in my office, so access is normally trivial.
I usually use ssh as the most convenient, but the server is also on a
KVM. I have simply ignored hardware management beyond smartd.
My primary concern was yet another security vector to worry about, but I
don't think I have any exposure right now.
> I've been giving IPMI some thought lately as well.
>
> Regards,
>
> --kevin
--
Lloyd Kvam
Venix Corp
DLSLUG/GNHLUG library
http://dlslug.org/library.html
http://www.librarything.com/catalog/dlslug
http://www.librarything.com/catalog/dlslug&sort=stamp
http://www.librarything.com/rss/recent/dlslug
More information about the gnhlug-discuss
mailing list