infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

[RSS] X41 Audited Mullvad VPN AB API

https://x41-dsec.de/security/research/news/2026/01/20/mullvad/
this post | permalink
[RSS] Windows Internals: Check Your Privilege - The Curious Case of ETW's SecurityTrace Flag

https://connormcgarr.github.io/securitytrace-etw-ppl/
this post | permalink
[reddit] Possible new SSO Exploit (CVE-2025-59718) on 7.4.9?

https://www.reddit.com/r/fortinet/comments/1qibdcb/possible_new_sso_exploit_cve202559718_on_749/

/via @Hetti

#Fortinet
this post | permalink
I feel I have this instinct to feed programs data that they won't be able to handle.

Unfortunately this is mostly true for tools I'd like to use, not targets I review.
this post | permalink
Humble request for vibe-coders: report your runtime errors!

LLM tends to insert Pokémon exception handlers everywhere, making problems (of which vide-code has a *lot*) hard to even notice.

Slightly related illustration:
this post | permalink
@troed I'm no lawyer, but my understanding is if the infra is legally owned by an EU legal entity they can (at least in theory) say FU to the mothership
(they can threaten to fire the leadership ofc, but can't send them to jail etc.). This can also be used by AWS as an argument not to screw their EU business ("we would comply, it's just those picky EU judges!").

But yeah, we've seen how complicit people can become when they get nasty looks (see DOGE)...
this post | permalink
I positively surprised that AWS apparently built a separate IAM for their European Sovereign Cloud:

https://aws.amazon.com/blogs/aws/opening-the-aws-european-sovereign-cloud/

I can't tell if this whole thing will be good enough, but some key issues seem to be addressed here.
this post | permalink
@krutonium @ekis I bet they took special care to select very European sounding names for the VP and director too :D
this post | permalink
In the shitty state of tech today: Soundcloud!

I want to filter for DJ mixes (long tracks) on the web:

- The mobile app groups sets to a tab when searching, but the web version does not.
- The web version allows you to filter search based on duration, but the official help page doesn't tell you how to do it (you have to do a search, select Tracks then you can filter for duration).
- Neither interfaces allow you to search only artists you follow.

I thought these were solved problems by 2001.
this post | permalink
[RSS] What was the secret sauce that allows for a faster restart of Windows 95 if you hold the shift key?

https://devblogs.microsoft.com/oldnewthing/20260119-06/?p=111995
this post | permalink
Next Page