if you’re talking about that recent pic of him floating around with a chain and a bread, that was an AI doctored photo
if you’re talking about that recent pic of him floating around with a chain and a bread, that was an AI doctored photo
this kinda shit makes me understand the sovcit stuff a little more, “just send an email with this magic subject text and your rights are secured!”
honestly i wouldn’t trust your linux example at all, what happens with run([“echo”, “&& rm -rf /“])
just a guess, but in order for an LLM to generate or draw anything it needs source material in the form of training data. For copyrighted characters this would mean OpenAI would be willingly feeding their LLM copyrighted images which would likely open them up to legal action.
even in your hypothetical of a file name passed in through the args, either the attacker has enough access to run said tool with whatever args they want, or, they have taken over that process and can inject whatever args they want.
either attack vector requires a prior breach of the system. you’re owned either way.
the only way this actually works as an exploit is if there are poorly written services out there that blindly call through to CreateProcess
that take in user sourced input without any sanitization, which if you’re doing that then no duh you’re gonna have a bad time.
cmd.exe
is always going to be invoked if you’re executing a batch script, it’s literally the interpreter for .bat files. the issue is, as usual, code that might be blindly taking user input and not even bothering to sanitize it before using it.
i’m not understanding how this is supposed to be so severe. if an attacker has the ability to change the arguments to a CreateProcess
call, aren’t you hosed already? they could just change it to invoke any command or batch file they wanted.
computer science teaches you the theories of computation which absolute starts with mechanical computers.
if one didn’t study Turing’s tape machine in their compsci program then they should demand their money back.
yeah silly me for supporting artists with my money but also downloading drm-free copies of things so I can actually exercise a semblance of ownership. but sure, keelhaul me so you can keep your sense of smug superiority.
AI is a tool that is fundamentally based on the concept of theft and plagiarism. The LLM training data comes from artists and creators that did not consent to their work being plagiarized by a hallucinating machine.
yes, and where does the Gun Violence Archive get their numbers?
looking at their site, the answer is “themselves”… cool. Looking through their listed data it clearly includes gun violence from gang activity.
yes I know, I mentioned that in my comment. can you tell me where on that page it indicates their source of data?
your source links to this source of data, which only goes up to 2021. The table clearly states they’re counting 15 - 19 year olds.
that 6,192 number appears to come from the gunviolencearchive site, but I don’t see any source for their data other than claims that “suicide data provided by CDC”
further, a simple search of the claim “guns number one cause of death in children” will find a lot of valid critiques of this claim.
this is false, this stat deliberately counts 18 and 19 year olds as “children” and purposefully includes gang related violence. great example of using statistics to sell a story.
how many gang members are going to surrender their firearms after a ban?
a decentralized community that correctly prioritizes security would absolutely be using signed commits and other web-of-trust security practices to prevent this sort of problem
zero! i rotate mine counter clockwise
i turn mine so i can find it again if i set it down at a party
i could see the utility in an AI generated summary of a given commit, but generating it as the message is just lazy.
the diff can tell me everything i need to know about the commit, the message is supposed to tell me why it’s a commit at all.
you understand there’s more than one way to have an economy right? that there’s more than one way for labor to be rewarded for its output?
saying “our economic system needs to end” has nothing to do with what you wrote
SMS is literally the bottom of the barrel though
i’m curious how you think you know all of this? sounds to me like you’ve created a neat straw man that lives in your head for you to get mad at