Awhile back I mentioned I was working on a paper on IPMI+BMC+etc security and promised to send a link when done; I hope doing so is not inappropriate, but here it is:
Feel free to ignore! There's a one-page summary espresso version as well for those who don't wish to slog through the longer one.
Your mileage or perspective may vary, and C&C welcome. Certainly if you see any mistakes let me know ;))
Thanks to folks for some clarifying comments on and off this list.