Awhile back I mentioned I was working on a paper on IPMI+BMC+etc security and promised to send a link when done; I hope doing so is not inappropriate, but here it is:

http://fish2.com/ipmi/

Feel free to ignore!  There's a one-page summary espresso version as well for those who don't wish to slog through the longer one.  

Your mileage or perspective may vary, and C&C welcome.  Certainly if you see any mistakes let me know ;))

Thanks to folks for some clarifying comments on and off this list.

dan

^..^