infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

[RSS] Scrutinizing the Scrutinizer

https://www.atredis.com/blog/2024/2/9/scrutinizing-the-scrutinizer

Security advisory about CVE-2023-41261, CVE-2023-41262, CVE-2023-41263 affecting Plixer Scrutinizer: https://github.com/atredispartners/advisories/blob/master/ATREDIS-2023-0001.md
this post | permalink
[Brad Spengler @ X] RT by @spendergrsec: Great. Now memory leaks, warnings, bugs in components not exposed to non-root users (CVE-2021-46957), even performance issue patches ( CVE-2024-26602) are "security bugs"

https://twitter.com/ky1ebot/status/1762903790536327237
this post | permalink
[Brad Spengler @ X] Happy Wednesday! Hope you're all enjoying the 86 CVEs assigned by the Linux CNA today

https://lore.kernel.org/linux-cve-announce/
this post | permalink
[RSS] Restoring Starlink’s Missing Ethernet Ports

https://hackaday.com/2024/02/28/restoring-starlinks-missing-ethernet-ports/
this post | permalink
[ϻг_ϻε @ X] RT by @steventseeley: CVE-2024-1403 (CVSS 10): Critical Progress OpenEdge Vulnerability

https://securityonline.info/cve-2024-1403-cvss-10-critical-progress-openedge-vulnerability/
this post | permalink
Hol'up, F5 #BigIP has "FPGA firmware"?!

https://clouddocs.f5.com/cli/tmsh-reference/v13/modules/sys/sys_fpga_info.html

Sounds like a pretty fun persistence opportunity!
this post | permalink
@metacurity Razzlekhan time!!! https://www.youtube.com/watch?v=_DIuPPmY9mw
this post | permalink
@ktemkin Any recommended reading on the second thing? (I think there are no relevant RFCs...)
this post | permalink
@kpwn @usdAG Have you tried Piper?

https://vimeo.com/401007109
this post | permalink
[RSS] Mitigating attacks based on knowing the length of a Windows Hello PIN

https://devblogs.microsoft.com/oldnewthing/20240227-00/?p=109456
this post | permalink
Next Page