Category: risk
-
Remotely Access Live Supermicro Firmware+
TLDR; a vendor supported/supplied utility allows download of live BMC1 firmware/configuration on (at least) some SuperMicro BMCs. It’s hard to tell who might be affected, but the utility used was written by ATEN Technology, ASRock ASPEED, and others all seem to be connected in various ways in not only SuperMicro firmware but the rest of…
-
how many factors, anyway?
I’ve been using Google’s 2 factor authentication for awhile now, it’s simple to use and seems effective (and is probalby the most commonly used 2F on earth.) But how many factors is it, really? But perhaps I could try to distill this even a bit more, and go radical… is the 2nd factor really necessary…
-
Sleeps with Butterflies
Butterfly flaps have interesting consequences. Apparently Edward Lorenz came up with the term butterfly effect; later he wrote a marvelous paper presented at the 1972 AAAS (speech below, and taken from another site which had the text), which explains the effect… in a way that may or may not align with how you view it.…