Securing DRAC/ILO

Posted by The Diamond Z on Server Fault See other posts from Server Fault or by The Diamond Z
Published on 2012-04-10T10:39:23Z Indexed on 2012/04/10 11:31 UTC
Read the original article Hit count: 343

Filed under:
|
|

This might be a dumb question but DRAC/ILO both have HTTP server interfaces.

If I were trolling IP's port 80 on and I came across such a page I'd know it to be a high value target in the sense that if I can crack it, I can take control of the server to some extent (potentially installing another OS).

Other than changing the port, what are the best practices for securing DRAC/ILO on public Internet facing machines?

© Server Fault or respective owner

Related posts about security-policy

Related posts about ilo