Такий довгий вступ, щоб сказати, що насправді e2e немає і все зберігається на серверах.

Bitcoin style

Попросив Claude пояснити в чому взагалі ідея протокола Juicebox

Задум такий. Твій приватний ключ ріжеться на 3 shard-и і кидається на сервери трьох різних компаній, в різних юрисдикціях. Щоб зібрати назад треба мінімум 2 з 3. Зламали один realm - нічого не вийде

Що зробив Маск. Поставив 3 сервери на одному x.com. Все крутиться на одному AWS us-east. Все під юрисдикцією США

А сам ключ шифрується PIN-кодом з 4 цифр. Дослідники показали, що брутфорсити його можна за хвилини на домашній машині

Re: He asked AI to count carbs 27000 times. It couldn't give the same answer twice

There's an incredibly serious lack of education with how LLMs & carb-counting works. This entire article would be better suited to astrology.com than hackernews.

When I opened it up, I assumed the author would have at least attempted a calculation service, maybe even placed something like the size of the meal into an actual model, using the integration of pre-existing tools that are (slightly more) accurate. Hell - most food literally is required to have calorie information, and you can query open source data for others!

But the author just took pictures of food & expected a realistic response?
Is this genuinely what amounts to a study in AI?

This is akin to the instagram reels that talk to chatGPT and ask it to time how long they're run is. Except those are treated as funny jokes rather than being turned into studies.

I'd like to see this study done using any kind of actual grounding knowledge, seeing what mistakes AI makes when attempting to query ground truth from picture analysis - there would at least be an interesting result methodology in that.

endymion-light, 2 hours ago

Re: He asked AI to count carbs 27000 times. It couldn't give the same answer twice

> But the author just took pictures of food & expected a realistic response?

There are very popular apps on the App Store right now that are going viral among non-techie people that do exactly this, and they have no concept of how AI works. My wife was talking about one and I had to give her a reality check that the AI had no idea what ingredients were used to make the food. And she's a licensed nutritionalist.

Studies like this create something to point at for people who are confused and serve as a springboard for a conversation in the media.

kalleboo, 3 hours ago

https://proton.me/blog/what-is-your-data-worth-to-google
Ніхуя які цифри

Re: Cloudflare to cut about 20% of its workforce

I’ve seen managers hiring people with an intent to lay them off when winds change to protect themselves and their close circle. I can only imagine they’ve had great KPIs in both cases: first for scaling the team, and then for cutting costs.

scott01, 8 hours ago

Re: AI is breaking two vulnerability cultures

This has been a very long time coming and the crackup we're starting to see was predicted long before anyone knew what an LLM is.

The catalyst is the shift towards software transparency: both the radically increased adoption of open source and source-available software, and the radically improved capabilities of reversing and decompilation tools. It has been over a decade since any ordinary off-the-shelf closed-source software was meaningfully obscured from serious adversaries.

This has been playing out in slow motion ever since BinDiff: you can't patch software without disclosing vulnerabilities. We've been operating in a state of denial about this, because there was some domain expertise involved in becoming a practitioner for whom patches were transparently vulnerability disclosures. But AIs have vaporized the pretense.

It is now the case that any time something gets merged into mainline Linux, several different organizations are feeding the diffs through LLM prompts aggressively evaluating whether they fix a vulnerability and generating exploit guidance. That will be the case for most major open source projects (nginx, OpenSSL, Postgres, &c) sooner rather than later.

The norms of coordinated disclosure are not calibrated for this environment. They really haven't been for the last decade.

I'm weirdly comfortable with this, because I think coordinated disclosure norms have always been blinkered, based on the unquestioned premise that delaying disclosure for the operational convenience of system administrators is a good thing. There are reasons to question that premise! The delay also keeps information out of the hands of system operators who have options other than applying patches.

tptacek, 9 hours ago

🇺🇦Українська DevDroid вдвічі збільшила автономність власних НРК завдяки генераторам

"Зараз 99% НРК на ринку працюють на електриці. Але ми прогнозуємо, що вже на зламі 2026 і 2027 років кілл-зона на фронті зросте з 20 до 50 кілометрів. Буде багато місій, де роботам доведеться долати маршрути 50 км на позиції і 50 км назад. Зробити такий запас ходу на електриці буде дуже дорого", – пояснює мотивацію встановлення генератора на НРК керівник DevDroid.

Сам генератор не буде безпосередньо приводити НРК у рух. Він заряджатиме батареї не лише під час зупинки чи на позиції, але й під час руху робота. Заряджання відбуватиметься за командою оператора, який оцінюватиме рівень заряду батарей. Команда на запуск пристрою виведена на планшет керування.

👉 Детальніше — за посиланням

@oboronka

Літераллі this

Кажуть за жоскі овертайми
теж беруть в Вальхаллу)

Windows 11: Я залогинился новым юзером с экрана логина (прошлый юзер был разлогинен), а оно после входа на несколько секунд показало мне содержимое рабочего стола прошлого юзера