infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

I've never imagined I'll have my name on a CIS Benchmark, but here we go:

Version 2.0.0 of CIS Benchmarks for #IBMi V7R4M0 and V7R5M0 released:

https://www.cisecurity.org/benchmark/ibm

I'm glad we could upgrade #password policy requirements so they follow modern best-practices more closely, reducing password fatigue of users while increasing system security.
this post | permalink
A much better reinterpretation by the Scorpions: https://www.youtube.com/watch?v=dYnS6WGjATU
this post | permalink
I finally get to listen to Kanye West's New Slaves where he quite blatantly plagarized the song of Omega, a legendary Hungarian band.

I'm generally quite excited about reinterpretations (the main theme of the song is pretty epic and has been "borrowed" a bunch of times before), but this one was just so bad and out of place I decided to just share the original for you to enjoy it its entirety:

https://www.youtube.com/watch?v=kwhGj80nkys
this post | permalink
@workchronicles "and now for the tricky bit" https://youtu.be/lKXe3HUG2l4?si=Bk5FxvRKA1QqHmnT&t=644
this post | permalink
"Oracle's Unlimited Strength Jurisdiction Policy"

Oracle's *what*?
this post | permalink
[oss-security] CVE-2023-51518: Apache James server: Privilege escalation via JMX pre-authentication deserialisation

"Note that by default JMX endpoint is only bound locally."

https://seclists.org/oss-sec/2024/q1/161
this post | permalink
[ϻг_ϻε @ X] Amazing talk by @zh_explorer and Aobo Wang on exploiting logical bugs in Xiaomi routers. When a "/" would PREVENT vulnerabilities, instead of cause them ;)

https://hitcon.org/2020/slides/Exploit%20(Almost)%20All%20Xiaomi%20Routers%20Using%20Logical%20Bugs.pdf
this post | permalink
@schaffenburg Will do thanks!
this post | permalink
[RSS] Reverse engineering a clear-cased prison laptop #ReverseEngineering @zephray_wenting

https://blog.adafruit.com/2024/02/26/reverse-engineering-a-clear-cased-prison-laptop-reverseengineering-zephray_wenting/
this post | permalink
[RSS] What is x86-64-v3?

https://hackaday.com/2024/02/25/what-is-x86-64-v3/
this post | permalink
Next Page