zlacker

[return to "Supermicro server motherboards can be infected with unremovable malware"]
1. SoftTa+K5b[view] [source] 2025-09-28 17:22:44
>>zdw+(OP)
"If a potential attacker already has administrative access to the BMC..."

Then you've already lost.

The BMC needs to be ideally on a physically isolated network, or at least a separate one that has no route from the outside nor on the machine itself.

◧◩
2. burnt-+Mic[view] [source] 2025-09-29 06:05:02
>>SoftTa+K5b
Yep. Defense in depth. Port-based VLAN at a minimum. Only total morons place their web-based and ssh remote/KVM management directly on the internet. Note that many Supermicro boards permit (as an option) to use the regular on-board NICs reducing the need to install a second or third cable for the BMC only adapter on mixed networks. Generally, one shouldn't be placing any box of any sort directly on the 'net unless it's hardened and behind sufficient network/application filtering.
[go to top]