[Pool] ntp with monlist hidden in IPMI on server mainboard

Mark Karpeles mark at hell.ne.jp
Sat Feb 1 12:09:34 UTC 2014


Maybe you shouldn't have a server's IPMI interface visible to the outside
world? This could be a major issue if you're not careful.

Now you have a good reason to switch your IPMI interface to a private
network.


On Sat, Feb 1, 2014 at 9:04 PM, Klaus Hartnegg <
Klaus.Hartnegg at blickzentrum.de> wrote:

> I just found a server mainboard with built in IPMI (remote configuration
> tool running in the chipset), that includes an ntp server which allows
> monlist. None of this can be disabled: not the monlist command, not the ntp
> service, and not the whole IPMI feature of the mainboard. And it speaks
> through the same ethernet jack as the server that runs on this hardware.
>
> Plea to all developers: the most important feature of every automatic
> thing is the switch to turn it off!
> _______________________________________________
> pool mailing list
> pool at lists.ntp.org
> http://lists.ntp.org/listinfo/pool
>


More information about the pool mailing list