Software > Firmware
network card to reduce attack surface?
AdamJoseph:
--- Quote from: meklort on August 19, 2022, 09:46:58 am ---In this case, there is no checking that the requested MAC is different from the host MAC, and so I will add that in a future release, as it's a very good point.
--- End quote ---
Stuff like this is my big-picture concern.
The ASPEED BMC has its fingers in a lot of pies. Removing it from the trusted computing base is much less error prone than trying to plug all the different holes in it. We're not even sure we know about all the holes.
It's great that we now have control firwmware-level control of the BCM5719! Back when I bought my Talos2s that was not the case, and it annoyed me, a lot. This is an awesome development, but it doesn't solve all the problems that come from assuming the ASPEED BMC is trustworthy.
ClassicHasClass:
The BMC question is what Kestrel should ultimately solve.
Navigation
[0] Message Index
[*] Previous page
Go to full version