DARPA, embedded, fast track, government, ipmi, security, tech, work

Darpa, redux, redux, reduxxx

February 12, 2013

I’d been asked about my 2nd CFT proposal… here it is, in all it’s wordy glory: darpa-reduxxx.   Thanks as always to the DARPAnians and Mudge for the opportunity. Thanks...

embedded, ipmi, security, tech

I, I, PM, I, MI, I, IPMI, I

January 29, 2013

I pull together some thoughts and stuff on IPMI. Just for you. http://fish2.com/ipmi/

hack, ipmi, python, security

one packet auditing

January 26, 2013

Not all packets are equal. If you send a single UDP packet to port 623 that contains an “Get Channel Authentication Capabilities” (see secion 22.13 of the IPMI v2 spec),...

code, hack, ipmi, python, security, tech

avctpasswd

November 11, 2012

Since I didn’t find it anywhere else… Avocent, who makes a heck of a lot of BMCs, and at times (like with Dell’s iDRAC, at least version 6) keeps encrypted...

code, ipmi, security

… passwords in shell scripts….

November 11, 2012

Looking at a file (manuf_sign_cert.sh): # This script is run on every iDRAC at manufacturing time. # to create a certificate with a derived CN using the # service tag...

code, ipmi, security, tech

lsof lite (III/III)

September 25, 2012

Finally one that looks at a process and tells you what ports its listening to. WPCM450 /tmp]$ ps |grep ssh  1263 root       4532 S   /sbin/sshd -g...