Hacker News new | past | comments | ask | show | jobs | submit login

If you have physical access twice, full disk encryption usually doesn't help really at all. IPMI seems about as powerful as physical access.



If you just ignore random reboots, sure. But why would you?


I don't think that'd be necessary, couldn't you make changes and then wait for natural reboots?


You couldn't, not via console access anyway.

However, if the attacker gains RCE many IPMI implementations theoretically allow for DMA, but this is a significantly more complex attack to mount in practice with no public PoCs available.




Consider applying for YC's Spring batch! Applications are open till Feb 11.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: