Skip to: content | sidebar

[2019-07-01] Near Source IT becomes official Canadian distributor of the FUDO Network Security Appliance

Secure Administrative Access

IPMI is an extremely useful tool built into the out-of-band management systems of most server class hardware. It is however, a very large security concern, that is often overlooked.

Properly securing the IPMI subsystems of your servers is critical to maintaining the ease of access and extreme productivity boost provided by allowing your network and server administrators access to the out-of-band management systems built into your hardware. However, without proper security protocols, these management systems can lead to especially bad server compromises, as the attacker has the equivalent of full physical access to the compromised machine. This can give the attacker access to install BIOS level malware that will persist through the reformatting of the server and allow the attacker to rapidly recompromise the machine. With this level of access, an attacker can also hijack an active administrative session in order to gain a level of access that might not otherwise have been accessible.