For personal computing, any recommendations on motherboard manufacturers who take security seriously?
Dell Enterprise devices receive long-term security updates. In addition, Dell will happily sell ProSupport for used hardware, and will even transfer existing ProSupport coverage on used devices (e.g. purchased on eBay). ProSupport gets you competent and US-based tech support engineers with the power to solve tech problems and ordering (e.g. spare parts) quickly.
Dell 1L micro PCs / thin clients are affordable on the used market.
There's a modern MSI Intel motherboard with coreboot support, https://www.phoronix.com/news/Coreboot-Start-ADL-MSI-Dasharo
10 years ago I bought a refurb alienware tower really cheap. It, however, came with some "premium" alienware warranty plan. I really can't remember the details anymore, but I encountered a bug in the drivers/software for something on the machine. When I called them about it, I ended up getting US support and they made a ticket for the engineering department. They fixed the issue and called me a week later to thank me for the info and make sure I'd installed the new version of their stuff.
I was blown away that they had that level of support for not-enterprise hardware lol.
Their normal support is indeed terrible though. Some time later I bought my brother a refurb all-in-one and the DVD drive died after a few months. When I called about that I got somebody who refused to help me because the bios self-test software didn't give me any error codes - because it didn't generate any - because the dvd drive wasn't found at all.
Can you really prevent this with a bios setting?
would using a 3rd party (pcie or usb) ethernet adapter prevent it?
For unsupported but functional hardware with vulnerable BMCs, it would be helpful to have a toolkit (e.g. stacking multiple exploits) for hardware owners to replace the vulnerable software with OpenBMC, https://github.com/openbmc/openbmc.
Abandoned hardware owners could crowdfund an effort to add OpenBMC compatibility testing for their devices. This also falls under the rubric of repairability technology and a circular economy for electronics.
I've never heard of AETN before? I thought maybe they could be Insyde, a competitor to AMI, out of Taiwan, who also develops BMC firmware, but could not find a connection with "AETN." Phoenix is another BMC firmware developer although they've been focusing on OpenBMC.
ASPEED out of Taiwan is huge in the BMC chip business. There are some new FPGA based implementations for BMC / BMC-like cards based on standards that have come out of the open compute group... pretty cool stuff.
