infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

reasoning_effort = 'none'
this post | permalink
Friendly advice for crisis communication:

"Our systems have been under attack for T days" doesn't mean that your system withstood the attack for that long. Hackers don't work with sledgehammers.

It means that you saw the attack but were unable to act on it for T days.

#incidentresponse
this post | permalink
This is a fun one: LLM inference creates a timing side channel that allows identifying sensitive topics by passively intercepting encrypted traffic:

https://www.microsoft.com/en-us/security/blog/2025/11/07/whisper-leak-a-novel-side-channel-cyberattack-on-remote-language-models/

/via @jonny
this post | permalink
@simpson I wish you a fast recovery, whatever happened...
this post | permalink
@leadore @gaborudvari Thanks, I'll go through this in a couple of days, now I just managed to unlock fly permission and rn floating around randomly listening to some light house music with beer :D
this post | permalink
@gaborudvari Great tips, thanks! I'm experimenting with minetest rn but frankly I have no idea what I'm supposed to do so can't really gauge the feature parity either :D
this post | permalink
@gaborudvari well I do mind and I find it disgusting that entire families are made to sell their PII if their kid wants to play a game along with their friends. And yes, I'm willing to pay for an option that doesn't sell my kids personal data, but apparently this is not an option.
this post | permalink
TIL Minecraft requires a freaking MS account. I thought it wasn't that bad so we proceeded to create one, but it turns out that if you want to create a child account (based on birth date, to avoid adult ads and shit) you as an adult *also* need a MS account that would be of course immediately connected to your childs account which I assume to be a gold mine for advertisers.

Seriously, fuck #AdTech!

(I also wonder if this is legal in the EU?)
this post | permalink
@condret https://en.wikipedia.org/wiki/In-band_signaling
this post | permalink
@G33KatWork constraints induce creativity: finishing the project without *that* part is almost like writing a haiku :)
this post | permalink
Next Page