Comment 32 for bug 1872941
Revision history for this message
| bugproxy (bugproxy) wrote Comment bridged from LTC Bugzilla | #32 |
© 2004
Canonical Ltd.
•
Terms of use
•
Data privacy
•
Contact Launchpad Support
•
Blog
•
Careers
•
System status
•
0e1f616
(Get the code!)
------- Comment From <email address hidden> 2020-04-28 02:27 EDT-------
> Booting over the public internet FTP server, terrifies me. Because
> there is no secureboot verification of either kernel or the initrd.
> Meaning it's trivial to man-in-the-middle attack, and inject things
> into the installer. Can HMC support HTTPS load?
It does support FTPS (via SSL) and SFTP (via SSH). Not sure how good the certificate verification is.
Can you maybe open an RFE against the HMC to also provide HTTPS?