varx is a user on infosec.exchange. You can follow them or interact with them if you have an account anywhere in the fediverse.
If you don't, you can sign up here.
This was kind of delightful: https://holeybeep.ninja/
It's a half-joking vulnerability disclosure for a privesc bug in `beep` of all things (CVE-2018-0492). Lots of ridiculousness in the text.
But their recommended patching method is a poker-faced usage of an unpatched issue wherein `patch` can be told to call `ed`, which allows arbitrary command execution: https://rachelbythebay.com/w/2018/04/05/bangpatch/
