Nope, I'm talking about the dedicated ethernet port used for BMC access on a server. You would be surprised how often those BMC ethernet ports are connected to networks that are behind firewalls, but still have egress connectivity to the public Internet.
That is truly ghastly. Dell (and others) keep adding this kind of rubbish and don't seem to pay a penalty for it -- presumably because medium/large corporate customers (not cloud scale) keep asking for it?
For HP iLO you have to pay for Advanced Premium Security Edition to get security features like firmware validation. You have to manage a fleet of licence entitlements otherwise your security stops working. Just managing that much licencing is a full time job.
iLO also has user scripts that can be downloaded to the controller -- what could go wrong ¯\_(ツ)_/¯. Lots of hardcoded credentials in the example scripts. It does at least have https, but managing the certificates is another big job.
