Liebert IntelliSlot Web Card

When I first put this card in and pulled up its web interface, I got a very ominous message about how it was plugged in to an unsupported device.A telnet and some TFTP later, I updated the firmware and after a reboot, it decided my device was supported after all. Maybe I got some old stock. Would have been nice if it would have let me do that via the web; TFTP is never not a pain.The main page of the web interface is pretty and mostly functional, although once you dig deeper than that, the user interface appears to have been designed by someone who was not familiar with users or interfaces. The telnet interface is actually easier to use.No ssh support. Boo! Macs don't even ship with "telnet" anymore. Likewise, there's no TLS support for email alerts. These are weird omissions for a firmware update that is from September 2017.It does have SNTP support enabled out of the box, which is good.SNMP has support for the RFC 1628 UPS MIB, so that's fine. Although the default settings are a little unusual.Changing virtually any setting requires a reboot of the card, which requires nearly two minutes.Overall it gets the job done, but it's a bit mired in the past.EDIT: Docked another star because I thought it supported HTTPS, but its cipher/protocol list is so far out of date that literally every option it can negotiate is provably insecure. (And that's on the Sept 2017 firmware! They'd heard of TLS 1.1 by then guys!) The current version of Google Chrome thinks it's so insecure it won't even connect. And even if you can negotiate a connection, it generates a self-signed certificate with no facility for overwriting it. So the most secure web admin setting for this device is "disabled." Not that telnet is any better. But, it's no problem, it's not like this card does anything worth securing properly, like controlling the power to a bunch of crucial equipment. Oh, wait... (Of course you should put this on a private management LAN with RFC 1918 addresses, and of course if someone is snooping that LAN you've got problems already, but if your corporate policy is "encrypt all the things" you're gonna have a bad time. It looks like we'll end up disabling both web and telnet and accessing this via RS-232 from a console server with ssh support.)I'd be happy to come back and return the fourth star if a future firmware update fixes some of the security mess. (Really the fifth star was lost to firmware issues as well, so even that could theoretically be on the table if they thoroughly modernized the whole thing.)