infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

@Viss @neurovagrant @dangoodin I think a better analogy would be Stagefright where target diversity was a major factor blocking widespread abuse IIRC: based on my recent experiments with side-channels, target HW can have significant effects.

FTR, this is an example of targeting end-user applications:

https://www.youtube.com/watch?v=ugZzQvXUTIk

And don't forget: as SW mitigations (or even HW assisted ones) get better, attackers may turn to more "painful" alternatives...
this post | permalink
[RSS] Abusing copyright strings to trick software into thinking it's running on your competitor's PC

https://devblogs.microsoft.com/oldnewthing/20250624-00/?p=111299

#warez
this post | permalink
@bagder Sounds plausible, although that sounds like lots of work to dig up an unrelated e-mail address :)
this post | permalink
@bagder I'm dying to know
- what the problem was
- how did this person end up emailing you (are gasoline sensors queried with curl in Opel Astra??)
this post | permalink
@algernon ...bár belegondolva (meg megnézve a kódot) ez lényegében egy elosztott cache az EMMA elé, szóval még segíthet is szegény MÁV-os szervereknek!
this post | permalink
@algernon Arra célszerű vigyázni h nehogy tényleg DoS legyen belőle amikor már 100 példány fut itt-ott :)
this post | permalink
As they say, Hungarian Railways have 5 enemies: the four seasons and the passengers.

This summer started off esp. bad, while official online services allowing the tracking of delays suspiciously started to disappear.

Train enthusiasts however built an unofficial website that showed accurate info about the position and delays of the trains based on scraped data.

Then the Minister of Transportation accused these guys of phishing (he pbbly doesn't know what that means), DoS and of course conspiring the opposition party, so the site was voluntarily taken down...

...but the code is open source, so now we have multiple sites with the same functionality :D

https://github.com/iben12/holavonat

#Hungary #StreisandEffect
this post | permalink
@FuzzyAleks life is too short for me to drink leftover coffee
this post | permalink
@Canageek This is a documentary, it should be enjoyable with English subs:

https://www.youtube.com/watch?v=Z-keHkcTZD4

Also, lots of samples.
this post | permalink
[RSS] You have to tell Get- and Set-Security-Info the object type, you can't make it guess

https://devblogs.microsoft.com/oldnewthing/20250618-00/?p=111281
this post | permalink
Next Page