WaPo writes about vulnerabilities in Supermicro IPMIs

Charles N Wyble charles-lists at knownelement.com
Sun Aug 25 18:28:11 UTC 2013

If you are OK with USB ether net for one interface,  check out the tplink wr703n. Its powered via USB, has a USB and rj45 jack. Runs OpenWrt. 

Leo Bicknell <bicknell at ufp.org> wrote:
>On Aug 15, 2013, at 9:18 PM, Brandon Martin <lists.nanog at monmotha.net>
>> As to why people wouldn't put them behind dedicated firewalls,
>imagine something like a single-server colo scenario. 
>I have asked about this on other lists, but I'll ask here.
>Does anyone know of a small (think Raspberry Pi sized) device that is:
>  1) USB powered.
>  2) Has two ethernet ports.
>  3) Runs some sort of standard open source OS?
>You might already see where I'm going with this, a small 2-port
>firewall device sitting in front of IPMI, and powered off the USB bus
>of the server.  That way another RU isn't required.  Making it fit in
>an expansion card slot and using an internal USB header might be
>interesting too, so from the outside it wasn't obvious what it was.
>I would actually like to see the thing only respond on the USB side,
>power + console, enabling consoling in and changing L2 firewall rules. 
>No IP stack on it what so ever.  That would be highly secure and
>       Leo Bicknell - bicknell at ufp.org - CCIE 3440
>        PGP keys at http://www.ufp.org/~bicknell/

Sent from my Android device with K-9 Mail. Please excuse my brevity.

More information about the NANOG mailing list