Move away from default password
Stewart Smith
stewart at linux.ibm.com
Tue Jun 18 08:58:02 AEST 2019
Adriana Kobylak <anoo at linux.ibm.com> writes:
>>> 1. Unique password per BMC.
>>> In this approach, there is a way to change the factory default
>>> password. Example flow: assemble the BMC, test it, factory reset,
>>> generate unique password (such as `pwgen`), then use a new function
>>> “save factory default settings” which would save the current
>>> setting into a new “factory settings” flash partition. After that,
>>> a factory reset would reset to the factory installed password, not to
>>> the setting in the source code.
>
> How would this new "factory settings" flash partition be protected
> against being modified by an unauthorized or malicious user?
My guess would be it'd be protected the same way that the default
password is today: not at all. If an attacker can write to flash, the
only way to reset the box is to dediprog the BMC flash chip.
--
Stewart Smith
OPAL Architect, IBM.
More information about the openbmc
mailing list