infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

[RSS] What are the dire consequences of registering a RunOnce command from my RunOnce command?

https://devblogs.microsoft.com/oldnewthing/20240805-00/?p=110098
this post | permalink
@Viss This includes availability, right? They will take a look at how many ppl can't use Teams at any given time, right??
this post | permalink
[RSS] Introducing the Vanguard Awards

https://www.thezdi.com/blog/2024/8/1/introducing-the-vanguard-awards
this post | permalink
[RSS] Government Emails at Risk: Critical Cross-Site Scripting Vulnerability in Roundcube Webmail

https://www.sonarsource.com/blog/government-emails-at-risk-critical-cross-site-scripting-vulnerability-in-roundcube-webmail
this post | permalink
@csepp @uint8_t Yes, it was phishing according to the news, so from the professional side this is meh...
this post | permalink
@screaminggoat Are these ancient CVE's added retroactively or some companies have fallen behind this badly?
this post | permalink
We have this Deposit Return System freshly implemented and of course the IT backend broke after few weeks.

The important thing to notice is that the operator just won't take *any* responsibility/SLA for the IT system, because IT just breaks y'know.

This rhymes pretty much with CrowdStrike's narrative about some random vendor taking out 8M computers is _just inevitable_. (see also: https://risky.biz/WWC4/ )

I'd also bet the reason they can't even tell when they will be able restore transaction processing is that their backend is some unnecessarily complex k8s and/or cloud-native monstrosity... (see also: https://blog.thinkst.com/2024/07/unfashionably-secure-why-we-use-isolated-vms.html )

(Report in Hungarian: https://hvg.hu/gazdasag/20240805_A-Mohu-Repont-app-kotelezo-visszavaltas-ebx )
this post | permalink
University student phished others so he could steal their grants. Article in Hungarian:

https://hvg.hu/itthon/20240805_Feltorte-a-Neptun-rendszert-es-maganak-utalta-el-a-diakok-osztondijat-a-csalo-ebx

I'd like to note that In my time we wouldn't think of stealing from broke-ass students like ourselves...also had proper RCE's :P

#Hungary #Neptun
this post | permalink
[RSS] Pnut: A Self-Compiling C Transpiler Targeting Human-Readable POSIX Shell

https://hackaday.com/2024/07/25/pnut-a-self-compiling-c-transpiler-targeting-human-readable-posix-shell/
this post | permalink
[RSS] Proof that find + mkdir are Turing-Complete

https://hackaday.com/2024/08/05/proof-that-find-mkdir-are-turing-complete/
this post | permalink
Next Page