Most of this is just marketing crap from Anthropic.

Finding vulnerabilities in code and generating complex, multistep exploits with publicly available models is possible now. This biggest hurdles now is setting correct context and actually knowing what to look for. Any “guardrails” for this behavior are easily bypassed by framing the detection and exploit generation as a valid dev style question in the most difficult of situations.

They likely just trained a model without guardrails in this case.

What they are doing here is over-hyping a problem and framing it like they are the only ones with a solution. LLM security issues are more in-focus now that companies have dumped a ton of resources into building AI systems they don’t really understand.

https://www.reddit.com/r/massachusetts/comments/1r8lv00/spotted_in_the_wild/

That pic looked too jpg’d to be real, but I found another source.

Confirmed or not, get better sources. Equipment damaged in a war is completely plausible and even inevitable. Propaganda is also inevitable, from either side of a conflict. In this case, an Indian source has proxied state news meant for Iranians.

Trying to sort out their mix of AI slop posts from legit unbiased news isn’t worth my time, even if the news is proxied by another source. (Indian news is generally shit as well, I just ignore that by default. If you actually want extreme sensationalized trash, then good on you.)

Tehran Times would probably also claim that they lead the world in women’s rights and free speech.

Nobody said anything about taking a shower.

Companies these days do what is right for their shareholders and if Claude makes money, or appears to make money, then the shareholders are happy.

Japan seems to be having more success: https://www.futura-sciences.com/en/this-new-japanese-weapon-can-neutralize-the-fastest-machine-ever-created_17488/

Still, the technical challenges are exactly the same. While I can’t find many more details, it being ship mounted is a significant step forward and it seems to imply that some of the more serious issues have been solved. (A demonstration is just a demonstration and anything other than it being able to hit a target ship is just speculation.)

The art of war is extremely complex and there is no way to cover everything in one Lemmy comment.

However, I can summarize: An attacker or defender simply needs to prevent the opposing side from being able to support a war.

While there are thousands of different things that can support war, it usually boils down to raw manpower, food/supplies, weapons, energy, logistics and communications. Failing to defend, or not having the capability to replenish/repair those things is usually a quick game-over as those items are highly dependent on the other. Anything that supports those key items is a target of the enemy, so those are the things that are stockpiled, fortified or should be rebuilt quickly.

000, 666 and 900-999 are invalid area numbers and any digit group of all zeros is also invalid. Thanks for playing!

I am making a slightly different point and have a bias to this perspective: https://www.legis.iowa.gov/docs/publications/SD/19230.pdf

I am saying that an SSN can be part of a larger validation scheme, not the only key to the castle. Specifically for government sites, SSNs can be linked to IRS data to verify places of last residence. A person generally needs to verify multiple items that are referenced by the SSN before basic authentication can be established and set by the user. (This is part of the full Authentication, Authorization and Access Control triad.)

An SSN is just a broad level identifier. If you look at many laws around the release of SSNs, the redaction is usually in place to prevent the linking of different documents and other data points.

If I released my SSN in this chat, I could be fully doxxed in a matter of seconds. It’s mainly because there are many legal systems in place that use an SSN as a primary key, of sorts. (It’s a bit more than that, as SSNs can be duplicated in some circumstances.)

So to say, at a high level, an SSN is considered private is absolutely correct. However, it’s so easily referenced and obtainable it really isn’t fully private either.

If I was to generate a full list of every possible SSN in the US (which I have done, multiple times), that list is effectively useless to anyone who obtains a copy of it. So, by itself, an SSN is effectively public.

SSNs are generally considered public information but how the SSN is linked to other information is usually the more difficult bit to find and it’s generally pay-walled. (Any jackass with a business license and a credit card can usually buy background check information for ‘hiring’.)

But no, it shouldn’t be solely used for authentication. That is just dumb. However, it can be used as part of a larger verification and validation scheme while building authentication/authorization profiles. In most systems that I have seen that use full or partial SSNs, it is always linked to several other identifiers that need to match.

69% of developers report losing 8+ hours weekly to inefficiencies—20% of their time (Atlassian, 2024)

Yep. If there is any company that knows what it takes to drive inefficiencies, it’s Atlassian. (Fuck them and their software.)

Memes are the communist gateway drug.

That’s kind of the point. You want the sheep to think they are burning down society for some do-good ideology while the politicians sidestep the government into a into dictatorship or other kind of single party authoritarian system. Regardless, the politicians of the new government will be just fine.

No. It might be in a politicians best interest to ensure a population stays dumb and then ensure those dumb people raise even dumber children.

Air, water, AIO, whatever. If it cools well, use it. I just prefer AIOs and there really isn’t any maintenance, was my main point. There are always tradeoffs between AIO, air or a proper water rig, so there is that. (Fans are crazy quiet these days, but when I made the switch, it was mainly for noise. I always run an overclock, so my fans were always hauling ass which probably isn’t needed now.)

Ultimately, I prefer AIOs for the way airflow is managed. It’s not better or worse than air in many instances, but I like working with a radiator rather than a chonky heatsink.

I cannot disagree though: zero maintenance is better than maybe-maintenance. Like I said, it’s about tradeoffs. (I can still make my PC sound like a fucking jet engine, though. Noctua server fans kick ass.)

I have been exclusively using AIOs for years now. Generally, by the time they need maintenance, its already time for a major hardware update and rebuild anyway. That is, of course, if it is serviceable. This depends on the quality of the AIO you buy, TBH. I had a first-gen Corsair AIO start to get audible air bubbles on startup, but it’s long since been recycled.

I am sure other people have some kind of horror story about an AIO leaking or something, but in general, they don’t really need to be maintained if it actually is a sealed system.

You can interpret anything how you choose, kind of like we have to do with your grammar.

You are missing my point, but I also wasn’t clear enough. In proper context, we are saying the same thing.

I worded that sentence carefully, as to your point, I don’t actually want to tell people to go to Reddit. However, each platform is unique in its own way. If someone wants the Reddit experience, that is the only place they are going to find it. Reddit content is generally curated algorithmically while Lemmy content is not. It’s could be the same articles on the same day, but two different experiences.

OP was referring to reposting content for someone who seemed to be looking for the same volume of content that is on Reddit that is heavily sorted, unless I missed something. I was just saying that this platform doesn’t really support that kind of thing in a constructive way. The articles and the presentation combined make the platform “content”.

Something similar has been done before and it was really easy to spot. I won’t get into the details, but it was really trashy. There are other communities that try to copy Reddit already and I block most of them.

Communities driven by one persons posts or by a cluster of bots generally suck. Yes, communities must start with only one person, but if nobody else likes the idea and the community doesn’t drive participation from Lemmy as a whole, it’s simply noise.

Post content that you like, in communities that matter to you. If you like a particular strain of content, start a new community. People will join or they won’t. Read the room and continue driving the community, or don’t.

Automated posts have their place, but most people can spot it fairly quick. It generally doesn’t drive participation as much as organic posts.

Bluntly though, if you want Reddit content, go to Reddit. Lemmy isn’t Reddit and that is what people generally like about it.