[ale] Server remote vulnerability
Jim Kinney
jim.kinney at gmail.com
Fri Apr 12 14:00:18 EDT 2024
So be sure to always use publicly routable address for all those ami bmc
connection and enjoy the smug feeling of no security st all with no
encryption possible on the login. There's probably still a secret,
hard-coded admin password just waiting for discovery, too.
Maybe if the source code was available some nice bunch of penguins would
fix these...
I have an ancient HP proliant that will never have a connection to it's ilo
port as it runs a java version older than dirt and with twice the bugs. And
support died years ago.
On Fri, Apr 12, 2024, 11:28 AM Bob Toxen via Ale <ale at ale.org> wrote:
>
> https://it.slashdot.org/story/24/04/11/2127238/hackable-intel-and-lenovo-hardware-that-went-undetected-for-5-years-wont-ever-be-fixed
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> https://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://mail.ale.org/pipermail/ale/attachments/20240412/f3505267/attachment.htm>
More information about the Ale
mailing list