What are the biggest security concerns on PXE? (election machine network boot) - The Great Awakening

What are the biggest security concerns on PXE? (election machine network boot) 🤔💭 Theory 😲💡

posted 3 years ago by ostof 3 years ago by ostof +295 / -0

Nerdpedes,

have a look at

https://security.stackexchange.com/questions/64915/what-are-the-biggest-security-concerns-on-pxe

Best of:

I can capture a full machine image. Do your systems automatically connect to the domain controller after setting up the machine? If so, this image probably has domain controller credentials on it, that I can capture and use elsewhere.

Computer makes a DHCP request --> DHCP server responds with address and PXE parameters --> Computer downloads boot image using TFTP over UDP

If the good guys got the traffic on that low level, unencrypted. Then they would have it all.

47 comments

47 comments share save hide report block hide replies

You're viewing a single comment thread. View all comments, or full comment thread.

Comments (47)

sorted by:

▲ 2 ▼

– cc321 2 points 3 years ago +2 / -0

Thank you for the great info. to your last statement, I know some HP enterprise servers have a separate NIC and rom for remote built in.

permalink parent save report block reply

▲ 3 ▼

– tstr 3 points 3 years ago +3 / -0

HP, Dell, IBM. They all have that. DRAC or ILO, each their own version of the same thing. Access to power cycle, BIOS, and to the OS if it is running.

permalink parent save report block reply

▲ 3 ▼

– deleteme1234 3 points 3 years ago +3 / -0

Buried deep inside your computer's Intel chip is the MINIX operating system and a software stack, which includes networking and a web server. It's slow, hard to get at, and insecure as insecure can be.

permalink parent save report block reply

▲ 2 ▼

– BatteryBaron 2 points 3 years ago +2 / -0

IME

permalink parent save report block reply

To The Great Awakening

We are researchers who deal in open-source information, reasoned argument, and dank memes. We do battle in the sphere of ideas and ideas only. We neither need nor condone the use of force in our work here. WE ARE THE PUBLIC FACE OF Q. OUR MISSION IS TO RED-PILL NORMIES.

This is a pro-Q community. Please read and respect our rules below before contributing.

WHY Q?

"Those who cannot understand that we cannot simply start arresting w/o first: ensuring the safety & well-being of the population shifting the narrative removing those in DC through resignation to ensure success defeating ISIS/MS13 to prevent fail-safes freezing assets to remove network-to-network abilities kill off COC to prevent top-down comms/org, etc. etc. should not be participating in discussions." Q