RE: [Panicsel-developers] IPMI password

[Cress, A. R <and...@in...>]

Hugo,

Hmmm.  I really hadn't thought that this would be needed.

What I had thought would be enough to conceal the passwords and =
centrally administer the passwords would be to use ssh keys for root =
access, then run pefconfig -P $psw on each system via ssh.  In order to =
set the IPMI password via pefconfig, root access is required.  The =
passwords could be encrypted on the central system, and protected there, =
so that they wouldn't be stored in a visible form, and would only be =
visible from the ssh command line in progress.=20

Are you worried about visibility over the LAN, or from a shell command =
history, is that the issue?
I guess that an option could be added to pefconfig to pass an encrypted =
password, but how do you propose that the key be passed in?

Andy

-----Original Message-----
From: pan...@li... =
[mailto:pan...@li...] On Behalf Of =
Hugo CACOTE
Sent: Tuesday, June 29, 2004 2:43 AM
To: pan...@li...
Subject: [Panicsel-developers] IPMI password



Dear all,

Is there any way to configure a BMC's IPMI password without using the=20
plain text password?

I would like to distribute the passwords the IPMI on all the machines =
(du=20
e to the number of machines going to each machine and configure this=20
information doesn't seems feasible) from a central point. Is there any =
kind=20
of private key mechanism in the current version of panicsel (pefconfig) =
or=20
in the next versions??


Thank you,
Hugo Ca=E7ote=20


-------------------------------------------------------
This SF.Net email sponsored by Black Hat Briefings & Training.
Attend Black Hat Briefings & Training, Las Vegas July 24-29 -=20
digital self defense, top technical experts, no vendor pitches,=20
unmatched networking opportunities. Visit www.blackhat.com
_______________________________________________
Panicsel-developers mailing list
Pan...@li...
https://lists.sourceforge.net/lists/listinfo/panicsel-developers