BMCs are back in the news again, with a vulnerability in Supermicros BMC being discovered that allows someone to install unsigned (read: malicious) firmware that persists across normal update paths. Since BMCs are—quite literally—backdoors on a server’s motherboard that allow remote control, this is a real problem. BMCs are the technical component of what’s commonly called a “remote management controller,” and implementations span vendors: Dell iDRAC, HPE iLO, Supermicro BMC, Leno...
