The common practice among server manufacturers at present is to provide a default user account and pass-word.This solution has more flaws,such as attacks being carried out through default user accounts and passwords.This paper presents a method to tackle these flaws,by generating an initial password based on the main board management controller.First of all,for BMC chip identification number as the user password password only seed.At the same time,the text get the user demand and corresponding extraction and conversion seeds get user account password.Select encryption strategies according to the scene,the user password password seed baseboard management controller is obtained by strategy encryption initial password and store,seeds will door account password encryption by encryption strategies the baseboard management controller initial account and store.By the user in the same way for users to the user account and password,to log in.Implements the baseboard management controller is the only identification based on BMC chip encryp-tion password generation,and the baseboard management controller,account is text generation based on user demand,higher initial account number and password generated initial data security,without modifying the initial account and pass-word will still be able to protect the BMC system's security.
server managementnetwork securitysecurity vulnerability
万方数据
维普
