Alexandre Dulaunoy
banner
a.paperbay.org.ap.brid.gy
Alexandre Dulaunoy
@a.paperbay.org.ap.brid.gy
Enjoy when humans are using machines in unexpected ways. I break stuff and I do stuff. Paperbay.org is my chaotic librarian side and the server is operated by yours […]

[bridged from https://paperbay.org/@a on the fediverse by https://fed.brid.gy/ ]
Why is this unilateral ? EU should exactly ask for the same biometric materials from US.

#europe #us

https://www.euractiv.com/news/mep-raises-questions-over-us-biometric-talks-for-eu-visa-deal/
February 19, 2026 at 6:41 AM
Why typography and proper labeling matter in public transport…

#sncb #typography #train #belgium
February 18, 2026 at 5:43 PM
When the EIB grants a €20B loan for AI infrastructure while its yearly budget is €100B, that effectively means one-fifth of its annual budget goes to AI infrastructure.

Public transport? Green energy? Social infrastructure? No. Instead, data centres operated by private consortia to potentially […]
Original post on paperbay.org
paperbay.org
February 16, 2026 at 5:59 PM
Reposted by Alexandre Dulaunoy
Many people are concerned about the CRA requirements, especially how they map to real-world coordinated vulnerability disclosure (CVD) processes.

I tried to map the standard to the functionality we have in GCVE.eu to see how it could be integrated into a […]

[Original post on infosec.exchange]
February 15, 2026 at 2:34 PM
February 14, 2026 at 8:54 PM
February 13, 2026 at 10:49 PM
Reposted by Alexandre Dulaunoy
Acknowledging Reality in Vulnerability Disclosure.

Every few years, vulnerability disclosure is declared settled. We are told that the ecosystem has matured, that coordinated disclosure is the answer, and that whatever remains outside this model is either irresponsible, obsolete, or simply […]
Original post on infosec.exchange
infosec.exchange
February 8, 2026 at 2:57 PM
Reposted by Alexandre Dulaunoy
Full disclosure in computer security still exists and is complementary to other disclosure models. The evolution of vulnerability disclosure is not linear from full disclosure to responsible disclosure to coordinated disclosure. These models coexist and all need to be taken into account.

You […]
Original post on infosec.exchange
infosec.exchange
February 8, 2026 at 9:09 AM
Je me souviens de ma première visite au zoo d’Anvers à l’âge de 7 ans. Je ne comprenais pas pourquoi des animaux sauvages étaient enfermés dans des cages et des enclos. Je me souviens encore du regard d’un singe, dans lequel on pouvait lire la détresse […]

[Original post on paperbay.org]
February 7, 2026 at 12:46 AM
Reposted by Alexandre Dulaunoy
If you’re looking for a great open-source project to use _and_ sponsor, check out

@pandoc.

I’ve been using Pandoc for years, it’s a huge time-saver for publishing documents from Markdown and an essential tool in my workflow.

https://github.com/jgm/pandoc

#pandoc #opensource #floss #publishing
GitHub - jgm/pandoc: Universal markup converter
Universal markup converter. Contribute to jgm/pandoc development by creating an account on GitHub.
github.com
February 5, 2026 at 9:20 PM
Reposted by Alexandre Dulaunoy
This NSE Checks for Ivanti EPMM MDM by requesting a known API endpoint.

#ivanti #nmap #cybersecurity

🔗 https://rulezet.org/rule/detail_rule/195235
RULEZET
rulezet.org
February 3, 2026 at 9:29 PM
Reposted by Alexandre Dulaunoy
While listening to discussions about federated systems and protocols at #fosdem (like the one I’m currently using): I realized something.

It recently resonated with me through some past and ongoing projects: when people are afraid of federation, they call […]

[Original post on infosec.exchange]
February 1, 2026 at 9:49 AM
Reposted by Alexandre Dulaunoy
Very good talk at #fosdem by @jejb

We (open-source developers) are now in a position to decide. If you work in an organization that decides to change direction, this matters to you and your open source project.

This is why CLAs are often used as a coercive […]

[Original post on infosec.exchange]
February 1, 2026 at 9:35 AM
Riley Walz scraped the city inspectors documenting graffiti violations across San Francisco. It's really a cool idea to archive and document graffiti from the perspective of the legal eye.

Now the scary part is the comments on Hacker News.

#graffitiart #streetart #graffiti

🔗 […]
Original post on paperbay.org
paperbay.org
January 27, 2026 at 5:44 AM
Reposted by Alexandre Dulaunoy
I’ll be at @fosdem next Saturday and Sunday. If you’d like to chat, feel free to find me to talk about:

* MISP
* Open Source Software and Security
* GCVE.eu / Vulnerability-Lookup
* AIL Project and one of the many @circl open source projects
* or […]

[Original post on infosec.exchange]
January 25, 2026 at 11:26 AM
I still have people asking me why I no longer travel to the US for security conferences 🤦🏼‍♂️

#us #politics
January 24, 2026 at 7:46 PM
Reposted by Alexandre Dulaunoy
The last 5 days have been a bit wild for the GCVE.eu initiative.

What started as steady work suddenly picked up real momentum:

* The public GCVE.eu database instance - https://db.gcve.eu/ - caught the attention of the media, sparking discussions well beyond our usual circles

* We […]
Original post on infosec.exchange
infosec.exchange
January 23, 2026 at 8:41 PM
January 20, 2026 at 9:12 PM
Reposted by Alexandre Dulaunoy
GNU InetUtils Security Advisory: remote authentication by-pass in telnetd

🔗 https://vulnerability.circl.lu/vuln/gcve-1-2026-0007

#telnet #telnetd #cybersecurity #vulnerability

@gcve GCVE-1-2026-0007
Vulnerability-Lookup
Vulnerability-Lookup - Fast vulnerability lookup correlation from different sources.
vulnerability.circl.lu
January 20, 2026 at 9:00 PM
January 20, 2026 at 8:44 PM
the last night, France 2025

#photography #photo #leica #bynight #monochrome
January 18, 2026 at 10:04 AM
Reposted by Alexandre Dulaunoy
Un livre de Jérôme Chantreau

Dans un Paris « cimetière d’asphalte où dansent les fantômes » (p. 349), elle est amoureuse d’un jeune homme abattu par l’armée un jour d’émeute contre la monarchie en 1834, avec tous les habitants innocents d’un immeuble de la rue […]

[Original post on paperbay.org]
January 18, 2026 at 9:41 AM
Reposted by Alexandre Dulaunoy
Reminder: under GPL/AGPL, “Corresponding Source” includes everything needed to build and modify the work. That means AI prompts, generated scripts, and config files as well. Don’t leave them out.

"The "Corresponding Source" for a work in object code form means all the source code needed to […]
Original post on infosec.exchange
infosec.exchange
January 13, 2026 at 5:34 AM
January 11, 2026 at 7:23 PM
January 11, 2026 at 11:01 AM