infosex.exchange <3

You are probably looking for the infosec.exchange Mastodon instance

This host is mostly for my random stuff, and in little part acts like a well-intentioned placeholder for the typosquatted domain.

Discoverability and Archiving

Currently I'm using this host for saving the items from my own feeds to the Wayback Machine and provide in-links for search engines. I hate that I have to do this, but the non-sense ideology of Mastodon pretty much ruined the search feature for Fediverse as a whole, and this wasn't changed by the fact that they owned their mistake and implemented search eventually.

Yes, I (or anyone else) could do similar things with other peoples published feeds, regardless of the tantrum. No, you can't defederate this, because the process doesn't rely on an instance.

Gluttony Section for Search Engines

"A simple principle is that for most things that are automated and scaled, the *trust requirements* have to be vastly expanded and made vastly more strict."

https://www.quora.com/What-does-Alan-Kay-think-about-programming-and-teaching-programming-with-copilots-and-LLMs-of-today
this post | permalink
@SecurityWriter I think this is in large part a result of an unexpected change in threat models: if you assume every one of your peers is trusted design gets much easier. Then security comes by and tells you that your users are sometimes assholes and your B2B partners can get compromised and it changes the game. But your original plan wasn't wrong considering your original assumptions.
this post | permalink
@algernon @datarama @technomancy Can't you just prompt an LLM to output realistic looking code that doesn't work? Feed them their own crap.
this post | permalink
ELF Internals - What I wish I knew when learning about ELF (Executable and Linkable Format) files.

https://beepandboo.com/elf-internals/
this post | permalink
Reverse Engineering Automation - Minimizing the Noise

https://beepandboo.com/reverse-engineering-automation-minimizing-the-noise/

#reverseengineering
this post | permalink
#BurpSuite #UX
this post | permalink
I'm a bit ashamed to admit how much I like this track

https://www.youtube.com/watch?v=BxJLuHGZj6w
this post | permalink
@robb "We assume people are not sociopath and that most of them wants to be good citizen. " - Except companies are not people...

"It’s a dangerous line of thinking" - Slippery slope? It's also dangerous that regulators throw their hands in the air saying "we did regulation, now everything is fine, please move on", while the regulation resulted in massive negative externalities, that doesn't seem to go away anytime soon. By this reasoning the Cobra-law should still be in effect.
this post | permalink
[RSS] Pwn2Own Vancouver 2024 - The Full Schedule

https://www.thezdi.com/blog/2024/3/19/pwn2own-vancouver-2024-the-full-schedule
this post | permalink
@gim @finestructure
- If you can make the rules (define the enemy, declare war), then you are not simply complying, so that's a different story
- If the definition of enemy (as part of the rule) allows one to ~arbitrarily decide who they can hurt, then it is the rule that needs some refinement, see my original point.
(Note that the main rule is still sparing human life, so even considering crime by strict obedience the worst case is you becoming Batman)
this post | permalink
Next Page