infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

@greg It's especially nice because if I wrote anything stupid back then I can just claim it's a hallucination ;)
this post | permalink
@dannyjpalmer Splitters!
this post | permalink
Can't wait to deploy trippy parrots to our AS/400! #IBMi

https://community.ibm.com/community/user/power/blogs/val-besong/2024/11/12/ibm-power-modernizes-infrastructure-and-accelerate
this post | permalink
[RSS] Remediation for CVE-2024-20767 (ColdFusion) and CVE-2024-21216 (WebLogic) Potential Exploitable Bugs

https://blog.securelayer7.net/coldfusion-path-traversal-and-weblogic-unauthenticated-rce-remediation/
this post | permalink
Another externality of half-assed #EU #privacy regulation:

Translated pages become unreadable because you can't click through consent banners (and blockers stop working too) :P
this post | permalink
OK this is pretty awesome: thanks to recent advances in machine translation (in large part LLM's), my old blog became magically available English:

https://translate.kagi.com/Hungarian/English/https://buhera.blog.hu/2014/02/22/apple_vs_ssl_goto_fail
this post | permalink
"The xCyclopedia project attempts to document all executable binaries (and eventually scripts) that reside on a typical operating system."

https://strontic.github.io/xcyclopedia/intro
this post | permalink
[oss-security] PostgreSQL: 4 CVEs fixed in 17.1, 16.5, 15.9, 14.14, 13.17, 12.21

https://www.openwall.com/lists/oss-security/2024/11/16/7

CVE-2024-10976, CVE-2024-10977, CVE-2024-10978, CVE-2024-10979
this post | permalink
Qualys is at it again:

https://seclists.org/oss-sec/2024/q4/108

LPEs in needrestart (CVE-2024-48990, CVE-2024-48991, CVE-2024-48992,
CVE-2024-10224, and CVE-2024-11003)
this post | permalink
I try to reconstruct the design process of PAN-OS web services:
- Let's require authentication on all interfaces, because security!
- ...but we need some stuff to be accessible pre-auth 🤔
- Let's define a skeleton key that can be passed to us by another parser that have 0 concept of what needs to be authenticated!

Am I missing something?

#PaloAlto
this post | permalink
Next Page