eleijeep

It’s easy to think it’s telling you useful information when it’s new to you and you don’t know enough to spot the mistakes.

Last time I tried asking an LLM about a command line program it gave me a command line switch that didn’t even exist in that program. When searching for the switch I found that it was for a different program completely.

Personally I would rather just read a book.

They can power it with that fusion reactor that we’ll surely have by then. 🦄

Not a very good article. The original write-up (not linked anywhere in the article) is here: https://blog.qualys.com/vulnerabilities-threat-research/2026/03/17/cve-2026-3888-important-snap-flaw-enables-local-privilege-escalation-to-root

They also mention something else that’s interesting at the bottom of the write-up:

Secondary Finding: Vulnerability in Ubuntu 25.10 uutils Coreutils

In a proactive security effort prior to the release of Ubuntu Desktop 25.10, the Qualys Threat Research Unit assisted the Ubuntu Security Team in reviewing the uutils coreutils package (a Rust rewrite of standard GNU utilities).

A race condition in the rm utility allowed an unprivileged local attacker to replace directory entries with symlinks during root-owned cron executions (specifically /etc/cron.daily/apport). Successful exploitation could lead to arbitrary file deletion as root or further privilege escalation by targeting snap sandbox directories.

The vulnerability was reported and mitigated prior to the public release of Ubuntu 25.10. The default rm command in Ubuntu 25.10 was reverted to GNU coreutils to mitigate this risk immediately. Upstream fixes have since been applied to the uutils repository.

Not just a spokesperson. Cindy Cohn is a warrior queen. She’s retiring as Executive Director of the EFF this year after serving for over 10 years. She’s a lawyer who has been fighting for our civil liberties for over 20 years. Maximum respect.

more hype and no practical results

I’ve said it before and I’ll say it again: if this happens in my lifetime I will eat my hat.

Paper: Autonomous language-image generation loops converge to generic visual motifs

Reminds me of Shining Force III , Grandia , Vandal Hearts and other 5th-gen titles that birthed the genre/aesthetic.

Don’t collaborate with fascists.

No need. Let corporations replace human-designed human-tested code with public domain slop. Soon enough they’ll realise that they’re using millions of lines of code that is completely unsupported by any sapient being and when they get hit with ransomware because their nginx-rewrite had a command injection vulnerability they will fire the CTO and replace all the slop with the FOSS licensed originals.

Your weak reading comprehension is your problem

People in glass houses shouldn’t

endeavours [SIC]

imply that British English spelling is some kind of aberration that needs an editor’s note.

It’s rich to start your critique like this because you have completely missed the point that I’m making.

Enjoy being an arsehole [SIC] on the internet.

I can’t parse your second clause so no idea what point you’re making.

Your sense of achievement in your private endeavours is your own. Who cares if someone else plays their game the way they want to? I don’t use cheats in any of my games and I like to try to get achievements. But I don’t look at other people’s achievements or care if they got them legitimately. Why should anyone care?

Heaven forbid someone illegitimately obtains imaginary game points in a single player offline game that they bought.

Long time lurker

Joined: a week ago

max 50Gb is the catch

He thinks that systemd is desktop linux.

Well last I heard you can’t copyright the output of an LLM, so the entire concept of a licence for open slopware is moot.

Which order are these emails supposed to be read in? Is the manufacturer replying to the reviewer or vice-versa?

I’ve been waiting for something like this to appear. Not just a “plagiarism detector” but something that actually identifies the data in the training pool that most closely represent a particular AI model output. You could do the same for text and images too, and I’m surprised this is the first one that I’ve heard of.

I’m not a fan of the MAFIAA but if this type of reverse-search tech can hold AI companies to account then it’s a step towards reining them in.

Vibe-coded slop is horribly insecure and the dev doesn’t understand the codebase?

shocked_pikachu.png