Posts
4258
Following
738
Followers
1632
"I'm interested in all kinds of astronomy."
@raptor @david_chisnall @davidgerard I think an often overlooked but important example is path traversal
1
1
2
repeated

I would like to read this book, but i'm clearly not going to pay $130 + $60 for shipping wtf https://templeos.net/product/templeos-book/

1
2
0
repeated

@davidgerard

Prompt injection works because it’s one stream of data mixed with instructions. If you separate it with tags, the user can fake the tags.

If only someone had told people that in-band signalling is a bad idea before LLMs came along.

3
2
0
repeated
repeated

David Chisnall (*Now with 50% more sarcasm!*)

Edited 6 hours ago

The Free Software movement never escaped from its origins: the early ‘80s MIT AI Lab. Two things were true in this environment:

  • Back when most computers had tens of KiBs of RAM and 1 MiB was a huge amount, programs were simple. Very few programs were so complex that one person could not completely understand them.
  • The AI Lab was full of some of the most talented programmers in the world.

This meant that the only obstacles for these people being able to fix bugs and add features to any program were access to the source code and the legal rights to modify it. Once you have those, any program was understandable by that group and they could modify it however they wished.

For the next 40 years, the FSF focused on these two things. The world around them changed. These two prerequisites were never enough for most people (what do 90% of computer users do if you give them even a modest 10,000 line C codebase and tell them they can change it however they like?) and now they aren’t enough even for competent programmers.

When Linus says ‘fork it’ to folks who don’t want LLM-extruded code in their kernel, he knows full well that it is almost impossible to fork a 40 MLoC C (and Rust now) codebase that averages more than one CVE per day and have something useful.

The Free Software movement is struggling now because it obsessed over licenses, which was never a path that would succeed, and ignored the hard problems:

  • How do you design environments that enable end users to modify their software?
  • How do you engineer software so that it is cheap and easy for a random user to maintain a fork that meets their specific needs?
  • How do you foster communities where people want to share improvements, so forks don’t proliferate even when it’s easy?
  • How do you create an environment where everyone sees the benefits of user-modifiable code to such a degree that trying to sell anything that doesn’t come with these rights is commercially impossible?

Instead of tackling any of these problems, they created more complex and restrictive GPL variants. And well-paid lawyers found loopholes in them that allowed corporations to keep doing what they wanted (and even pick licenses like AGPLv3 to control ecosystems, because they give the copyright owners so many more rights than everyone else that it’s hard for anyone else to compete). They said ‘don’t worry about the complexity of the licenses, you only need to understand the legal details if you’re creating and distributing derived works’ while completely forgetting that making it possible for anyone to create and distribute modified versions of the programs was the entire point of the Free Software movement.

EDIT: Lots of people are reading this as if it’s about the kernel. I would say that the kernel is the least important part of a system for this. The layers on top, especially anything that directly interfaces with the user or controls their data, are far more important to build around these principles.

6
16
0
repeated

RE: https://gamedev.lgbt/@lurnoise/116471839269805545

Hihi, a reminder that I'm available for work <3

0
1
0
repeated

reverse engineering implies the existence of engineering

0
12
0
repeated
Edited 11 hours ago

Now that the CEO of Flock has called deflock.me a terrorist organization, I'd hate for other people to know about these other flock watchdog groups.

Please don't go on these websites, I beg you.

https://Alpr.wtf - Every U.S. jurisdiction using ALPR, plus how to file info requests.

https://EyesOnFlock.com - Crowdsourced map of Flock cameras and city contracts.

https://Deflock.me - Nationwide ALPR map tracking Flock deployments, removals, and resistance.

https://HaveIBeenFlocked.com — Quick check to see if Flock is watching your neighborhood.

https://DontGetFlocked.com — Plots your route, counts ALPR/Flock cameras, and suggests surveillance-free alternatives.

0
6
0
repeated
Edited 10 hours ago

Starship Flight 13 Scrubbed

What is really fascinating is that SpaceX tried and failed to launch their Starship rocket today. The attempt was scrubbed after four engines failed to light, and there is almost no news coverage of the event. It's very weird.

https://spacenews.com/spacex-aborts-starship-flight-13-launch-attempt/

4
4
1
#music #psytrance #195bpm
Show content
My kind of hitech (+daytime!) :)

https://www.youtube.com/watch?v=VbLpEq_8Ry0
0
0
0
repeated
repeated

Hello, World! Welcome back! I have new blog :-)

https://tracesofhumanity.org/hello-world/

0
3
0
repeated
repeated

Rust 1.97.1 has been released.

This release fixes a miscompilation in an LLVM optimization. This newly discovered issue has existed since 1.87.0, but was unlikely to lead to an actual miscompilation until a change in 1.97.0.

See the blog post for details: https://blog.rust-lang.org/2026/07/16/Rust-1.97.1/

0
2
0
repeated

never bought a whoop because a subscription-locked fitness device sounds like a terrible idea, but this fucks https://github.com/OpenStrap/edge

1
2
0
repeated

IFIN - The Independent Federated Intelligence Network

Edited 16 hours ago

Cursor will run anything called git.exe when you open it, but it isn't the only one. As a fork of VS Code, Cursor has inherited this behavior from its questionable parentage.

UPDATE: That's if you have Copilot Chat AI features enabled

https://discourse.ifin.network/t/remember-that-cursor-git-exe-bug-its-in-vscode-too/665

1
4
0
repeated
Edited yesterday

Regarding CVE-2026-56155, the in-the-wild ADFS vulnerability - the July patch just released does not fix the vulnerability.

Instead it adds an audit log. The changes to harden the service and enforce protection will only apply with October 2026’s update applied.

https://support.microsoft.com/en-us/servicing/os/windows/docs/2026/07/kb5121391-cve-2026-56155-ad-fs-dkm-container-acl-hardening

1
4
0
repeated
repeated

Internet Ethics Corner with Abadidea:

There is an important difference between lists of things you think are good and lists of things you think are bad. There is a PROFOUND difference when the list is of people or groups of people by name.

Putting specific real people on ideological sinner lists gets them and their families unemployed, homeless, assaulted and killed. This is not a joke. This is not an exaggeration. That is the function and purpose of a list of people you have decided are Bad.

You think you’re doing the right thing. But the right thing is to uplift what you think is good and admirable, not to paint a target on the backs of every random stranger who falls even an inch short of your personal definition of perfection. Those people aren’t you, they did not sign up for your ideological newsletter, and you are not their judge, jury and executioner.

The Nuremberg Trials are an appropriate use case for a list of bad people. Your ongoing social media argument is not.

2
4
0
Show older