Hailey2d ago

so it cost anthropic $20k to find this openbsd crash bug which amounts to putting a negative integer in a tcp field where a negative integer was not expected by the c code which does some cavalier int cast bullshit, ie. a vuln which is totally fuzzable, and quite certainly would have been found by the fuzzers of the 2010s had anyone cared to burn that much compute on fuzzing openbsd.

The difference today is not that anybody suddenly cares about investing that much in openbsd (is the build server still a donated machine running in Theo's basement?), but that openbsd's reputation for security makes it really good marketing if you can find a bug, any bug, it doesn't matter; and that marketing value is what makes it worth spending $20k on fuzzing.

Show threadcharlotte
@hailey ill maintain that as great as claude is, mythos is currently being marketed with the same old "it's too dangerous" strategy that worked well for sama and still works for dario

best wait till we get anything but the model card
Apr 9 at 9:50pmWeb
Show threadAdam Collins2d ago
@halva I can't remember, did we ever lift the export ban on the Apple Power Mac G4?
Show threadLisPi2d ago
@halva @hailey Why does that nonsensical marketing even work?

It's clearly false every time, it's about as relevant as those chain mails claiming you'll die in some random way if you don't do XYZ instructions (including but not limited to resharing the mail). It never happens.
Show threadLost Librarian7h ago
@lispi314 @halva @hailey Because it is targeted at investors and the general public, both of these groups know crap about GenAI or tech in general for that matter; thus they all see llms as magic, making this wizard of oz trickery possible
Show threadLisPi7h ago
@irisleveilleur @halva @hailey But they're still as gullible after failing to die a few hundred times from refusing to repost?
Show threadLost Librarian7h ago
@lispi314 @halva @hailey I would say it’s mostly due to confirmation bias, they read the news about a new scary model breaking every app ever, then two weeks later the news reports about a data breach, that data breach might be completely unrelated, but they see it and think that the damned hackers got there hands on the tech and this is the result. At the end of the day, they don’t watch the tech as closely as many of us nerds do, so it is easier to fool them again and again as they don’t see the clear failings of these companies
Show threadLisPi7h ago
@irisleveilleur @halva @hailey They should start doing something like I did when younger.

I actually got annoyed enough at those silly messages that I started a textfile where I logged how many times it was supposed to have killed me or my family and incremented it on each time.

I stopped when it reached some point between 3 & 4 digits.