Nothing is secret anymore. Especially if it is connected to the internet...
However, like for any other management interface, best security practices dictate the placement of the IPMI management port on a dedicated management LAN or VLAN restricted to trusted Administrators.
News is coming out from some of the cited sources in the article that it's all BS.
https://www.zdnet.com/article/secur...chip-hack-investigation-casts-doubt-on-story/
I would imagine that most large corporations physically separate access to the IPMI function from the general network. Not to mention that the supposed hack is more related to out of date software on the IMPI interface rather than a hardware hack.
Enter your email address to join: