infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

"ChatGPT isn't its own, unique problem. It's a symptom of a totalizing cultural paradigm in which passive consumption and regurgitation of content becomes the status quo"

Many strong quotes in this one

#LLM

Teachers Are Not OK
https://www.404media.co/teachers-are-not-ok-ai-chatgpt/
this post | permalink
@ciaranmak secrets.club never disappoints!
this post | permalink
[RSS] Hypervisors for Memory Introspection and Reverse Engineering

https://secret.club/2025/06/02/hypervisors-for-memory-introspection-and-reverse-engineering.html
this post | permalink
[oss-security] Roundcube webmail: Post-Auth RCE via PHP Object Deserialization reported by firs0v /by @hanno

https://www.openwall.com/lists/oss-security/2025/06/02/1

#NoCVE
this post | permalink
@cR0w @Viss Are there any reports about itw exploitation? Asking for https://github.com/v-p-b/xss-reflections
this post | permalink
Re: NetLock distrust, this ticket is a good starting point to figure out what exactly the compliance issues were:

https://bugzilla.mozilla.org/show_bug.cgi?id=1904041

It's not a nice read with comments like "was comment 20 AI generated?"...
this post | permalink
This was the original version. While Adeptus Mechanicus clearly represents my general understanding of things, the Sister of Sororitas praying on a hill of skulls better captures my current mental state. #wh40k #IT #Windows
this post | permalink
I have no idea why this works now and why it didn't work before...

Praise be the Omnissiah!
this post | permalink
Google Chrome is removing Hungarian CA NetLock from its trust store:

https://security.googleblog.com/2025/05/sustaining-digital-certificate-security-chrome-root-store-changes.html

Stated reason: "a pattern of compliance failures, unmet improvement commitments, and the absence of tangible, measurable progress in response to publicly disclosed incident reports"

I've personally ran into revoked NetLock certs during the past months, the reason for revocation was unclear ("administrative").

NetLock was compromised previously as part of the Stuxnet/Duqu campaign:

https://theintercept.com/2014/11/12/stuxnet/
this post | permalink
Hidden Bear: The GRU hackers of Russia’s most notorious kill squad

https://theins.press/en/inv/281731
this post | permalink
Next Page