Inkampani ye-Eclypsium
Uhlalutyo olongezelelweyo lubonise ukuba ezi ngxaki zichaphazela i-firmware yabalawuli be-BMC abasetyenziswa kwiiplatifti ze-server ze-Gigabyte Enterprise Servers, ezikwasetyenziswa kwiiseva ezivela kwiinkampani ezifana ne-Acer, AMAX, Bigtera, Ciara, Penguin Computing kunye ne-sysGen. Abalawuli be-BMC abanengxaki basebenzise i-firmware ye-MergePoint EMS esesichengeni ephuhliswe ngumthengisi wesithathu uAvocent (ngoku icandelo leVertiv).
Ubuthathaka bokuqala bubangelwa kukunqongophala kokuqinisekiswa kwe-cryptographic yohlaziyo lwe-firmware ekhutshelweyo (kuphela ukuqinisekiswa kwe-CRC32 checksum kuyasetyenziswa, ngokuchaseneyo.
Ubuthathaka besibini bukhona kwikhowudi yohlaziyo lwe-firmware kwaye ikuvumela ukuba ufake endaweni yemiyalelo yakho, eya kwenziwa kwi-BMC kunye nenqanaba eliphezulu lamalungelo. Ukuhlasela, kwanele ukutshintsha ixabiso leparamitha ye-RemoteFirmwareImageFilePath kwifayile yokucwangcisa i-bmcfwu.cfg, apho indlela eya kumfanekiso we-firmware ehlaziyiweyo inqunywe. Ngexesha lohlaziyo olulandelayo, olunokuqaliswa ngomyalelo kwi-IPMI, le parameter iya kuqhutyelwa phambili yi-BMC kwaye isetyenziswe njengenxalenye ye-popen () umnxeba njengenxalenye yomgca we /bin/sh. Ukusukela ukuba umgca wokuvelisa umyalelo weqokobhe udalwe kusetyenziswa i-snprintf () umnxeba ngaphandle kokucoca ngokufanelekileyo abasebenzi abakhethekileyo, abahlaseli banokubeka endaweni yekhowudi yabo ukuze baphumeze. Ukuxhaphaza ubuthathaka, kufuneka ube namalungelo akuvumela ukuba uthumele umyalelo kumlawuli we-BMC nge-IPMI (ukuba unamalungelo omlawuli kumncedisi, ungathumela umyalelo we-IPMI ngaphandle koqinisekiso olongezelelweyo).
UGigabyte kunye noLenovo baziswe ngeengxaki emva kweJulayi 2018 kwaye bakwazi ukukhulula ukuhlaziywa ngaphambi kokuba ulwazi luvezwe esidlangalaleni. Lenovo inkampani
Nge-8 kaMeyi kulo nyaka, iGigabyte ikhuphe uhlaziyo lwe-firmware yeebhodi zomama kunye nesilawuli se-ASPEED AST2500, kodwa njengeLenovo, yalungisa kuphela ubungozi bokutshintsha komyalelo. Iibhodi ezisesichengeni ezisekwe kwi-ASPEED AST2400 zihlala zingenahlaziyo okwangoku. Gigabyte nayo
Masikhumbule ukuba i-BMC isilawuli esikhethekileyo esifakwe kwiiseva, esine-CPU, imemori, indawo yokugcina kunye ne-sensor polling interfaces, ebonelela nge-interface ephantsi yokubeka iliso kunye nokulawula izixhobo zeseva. Ukusebenzisa i-BMC, kungakhathaliseki ukuba yiyiphi inkqubo yokusebenza esebenza kumncedisi, unokubeka iliso kwimo yeenzwa, ulawule amandla, i-firmware kunye neediski, uququzelele ukubhuthwa okude kwinethiwekhi, uqinisekise ukusebenza kwekhonsoli yokufikelela kude, njl.
umthombo: opennet.ru