infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

[RSS] Pointer leaks through pointer-keyed data structures

https://googleprojectzero.blogspot.com/2025/09/pointer-leaks-through-pointer-keyed.html

New from P0!
this post | permalink
@molly0xfff I'd do the same if I woke up some day realizing I became a politician somehow.
this post | permalink
Our state-party is planning to declare "Antifa" (as the party likes to call it) as a terrorist organization, as an obvious distraction from other, more pressing problems.

What I find mind-blowing is that none of the independent/opposition journalists seem to put in the work to spell out **anti-fascist** in their articles, just like they picked up the propaganda term "migrant" for asylum seekers etc. before.

Words matter. Journalists should know this the best.
this post | permalink
[RSS] exploits.club Weekly Newsletter 87 - NVIDIA Merlin Bugs, GrapheneOS's Allocator, Intel CPU Bugs, And More

https://blog.exploits.club/exploits-club-weekly-newsletter-87-nvidia-merlin-bugs-grapheneoss-allocator-intel-cpu-bugs-and-more/
this post | permalink
@cryptax A hammer is too heavy to be used for massage, yet it's not heavy enough to tear down steel constructions. People try to use these tools for many things. This recent post is a great summary about why different use cases are not equal:

https://infosec.exchange/@david_chisnall/115270162462304611
this post | permalink
CVE-2023-51767: a bogus CVE in OpenSSH

https://seclists.org/oss-sec/2025/q3/175

Interesting (and civil!) discussion on #Rowhammer
this post | permalink
[RSS] [How to Become a Kernel Developer] Blog 2: Posted patches, what next?

https://www.linaro.org/blog/blog-2-posted-patches-what-next/
this post | permalink
[RSS] Fast & Faulty - A Use After Free in KGSL Fault Handling

https://streypaws.github.io/posts/Fast-and-Faulty-A-Use-After-Free-in-KGSL-Fault-Handling/

#Qualcomm CVE-2024-38399
this post | permalink
[RSS] Is Mouse Input Random Enough for Generating Secret Keys?

https://x41-dsec.de/security/research/news/2025/09/25/mouse-entropy/
this post | permalink
[RSS] Taming 2,500 compiler warnings with CodeQL, an OpenVPN2 case study

https://blog.trailofbits.com/2025/09/25/taming-2500-compiler-warnings-with-codeql-an-openvpn2-case-study/
this post | permalink
Next Page