audit, code, DARPA, data, fast track, ipmi, python, security, tech

ITAR

February 26, 2013

Well, not really.  Actually I.tar.gz.  In the gzip’d tar there are 3 files; little IPMI/BMC configuration file sucker, a suggested set of security recommendations that could be checked, and an...

embedded, ipmi, security

The infamous Daryl, er, Cipher Zero

February 22, 2013

Now, a few words on looking for things. When you go looking for something specific, your chances of finding it are very bad. Because of all the things in the...

DARPA, embedded, fast track, government, ipmi, security, tech, work

Darpa, redux, redux, reduxxx

February 12, 2013

I’d been asked about my 2nd CFT proposal… here it is, in all it’s wordy glory: darpa-reduxxx.   Thanks as always to the DARPAnians and Mudge for the opportunity. Thanks...

hack, ipmi, python, security

one packet auditing

January 26, 2013

Not all packets are equal. If you send a single UDP packet to port 623 that contains an “Get Channel Authentication Capabilities” (see secion 22.13 of the IPMI v2 spec),...

code, hack, ipmi, python, security, tech

avctpasswd

November 11, 2012

Since I didn’t find it anywhere else… Avocent, who makes a heck of a lot of BMCs, and at times (like with Dell’s iDRAC, at least version 6) keeps encrypted...

dinosaur, dinosaurs, security, tech

waxing nostalgic

September 11, 2012

Got an HP server to play with, a Proliant ML 150 G6 (what’s the deal with HP’s wacko URLs?); not too expensive, and is big with really loud fans. When...