I’m curious what issue you see with that? It seems like the project is only accepting unrestricted donations, but is there something suspicious about shopify that makes it’s involvement concerning (I don’t know much about them)?

404media is doing excellent work on tracking the non-consentual porn market and technology. Unfortunately, you don’t really see the larger, more mainstream outlets giving it the same attention beyond its effect on Taylor Swift.

Right concept, except you’re off in scale. A MULT instruction would exist in both RISC and CISC processors.

The big difference is that CISC tries to provide instructions to perform much more sophisticated subroutines. This video is a fun look at some of the most absurd ones, to give you an idea.

The current assumption made by these companies is that AI training is fair use, and is therefore legal regardless of license. There are still many ongoing court cases over this, but one case was already resolved in favor or the fair use position.

There is an episode of Tech Won’t Save Us (2024-01-25) discussing how weird the podcasting play was for Spotify. There is essentially no way to monetize podcasts at scale, primarily because podcasts do not have the same degree of platform look-in as other media types.

Spotify spent the $100 million (or whatever the number was) to get Rogan exclusive, but for essentially every other podcast you can find a free RSS feed with skippable ads. Also their podcast player just outright sucks :/

Errrrm… No. Don’t get your philosophy from LessWrong.

Here’s the part of the LessWrong page that cites Simulacra and Simulation:

Like “agent”, “simulation” is a generic term referring to a deep and inevitable idea: that what we think of as the real can be run virtually on machines, “produced from miniaturized units, from matrices, memory banks and command models - and with these it can be reproduced an indefinite number of times.”

This last quote does indeed come from Simulacra (you can find it in the third paragraph here), but it appears to have been quoted solely because when paired with the definition of simulation put forward by the article:

A simulation is the imitation of the operation of a real-world process or system over time.

it appears that Baudrillard supports the idea that a computer can just simulate any goddamn thing we want it to.

If you are familiar with the actual arguments Baudrillard makes, or simply read the context around that quote, it is obvious that this is misappropriating the text.

The reason the article compares to commercial flights is your everyday reader knows planes’ emissions are large. It’s a reference point so people can weight the ecological tradeoff.

“I can emit this much by either (1) operating the global airline network, or (2) running cloud/LLMs.” It’s a good way to visualize the cost of cloud systems without just citing tons-of-CO2/yr.

Downplaying that by insisting we look at the transportation industry as a whole doesn’t strike you as… a little silly? We know transport is expensive; It is moving tons of mass over hundreds of miles. The fact computer systems even get close is an indication of the sheer scale of energy being poured into them.

Feel the same way. My Camry is a 2013—recent enough to have a simple display and Bluetooth, but old enough to predate the ‘modern’ infotainment systems.

Believe me, I plan to drive this car until the scrapyards run out of part donors.

concepts embedded in them

internal model

You used both phrases in this thread, but those are two very different things. It’s a stretch to say this research supports the latter.

Yes, LLMs are still next-token generators. That is a descriptive statement about how they operate. They just have embedded knowledge that allows them to generate sometimes meaningful text.

It’s not really stupid at all. See the matrix code example from this article: https://spectrum.ieee.org/ai-code-generation-ownership

You can’t really know when the genAI is synthesizing from thousands of inputs or just outright reciting copyrighted code. Not kosher if it’s the latter.

I get that there are better choices now, but let’s not pretend like a straw you blow into is the technological stopping point for limb-free computer control (sorry if that’s not actually the best option, it’s just the one I’m familiar with). There are plenty of things to trash talk Neuralink about without pretending this technology (or it’s future form) is meritless.

The issue on the copyright front is the same kind of professional standards and professional ethics that should stop you from just outright copying open-source code into your application. It may be very small portions of code, and you may never get caught, but you simply don’t do that. If you wouldn’t steal a function from a copyleft open-source project, you wouldn’t use that function when copilot suggests it. Idk if copilot has added license tracing yet (been a while since I used it), but absent that feature you are entirely blind to the extent which it’s output is infringing on licenses. That’s huge legal liability to your employer, and an ethical coinflip.

Regarding understanding of code, you’re right. You have to own what you submit into the codebase.

The drawback/risks of using LLMs or copilot are more to do with the fact it generates the likely code, which means it’s statistically biased to generate whatever common and unnoticeable bugged logic exists in the average github repo it trained on. It will at some point give you code you read and say “yep, looks right to me” and then actually has a subtle buffer overflow issue, or actually fails in an edge case, because in a way that is just unnoticeable enough.

And you can make the argument that it’s your responsibility to find that (it is). But I’ve seen some examples thrown around on twitter of just slightly bugged loops; I’ve seen examples of it replicated known vulnerabilities; and we have that package name fiasco in the that first article above.

If I ask myself would I definitely have caught that? the answer is only a maybe. If it replicates a vulnerability that existed in open-source code for years before it was noticed, do you really trust yourself to identify that the moment copilot suggests it to you?

I guess it all depends on stakes too. If you’re generating buggy JavaScript who cares.

We should already be at that point. We have already seen LLMs’ potential to inadvertently backdoor your code and to inadvertently help you violate copyright law (I guess we do need to wait to see what the courts rule, but I’ll be rooting for the open-source authors).

If you use LLMs in your professional work, you’re crazy. I would never be comfortably opening myself up to the legal and security liabilities of AI tools.

That’s significantly worse privacy-wise, since Google gets a copy of everything.

A recovery email in this case was used to uncover the identity of the account-holder. Unless you’re using proton mail anonymously (if you’re replacing your personal gmail, then probably not) then you don’t need to consider the recover email as a weakness.

I think it’s more the dual-use nature of defense technology. It is very realistic to assume the tech that defends you here, is also going to be used in armed conflict (which historically for the US, involves in many civilian deaths). To present the technology without that critical examination, especially to a young audience like Rober’s, is irresponsible. It can help form the view that this technology is inherently good, by leaving the adverse consequences under-examined and out of view to children watching this video.

Not that we need to suddenly start exposing kids to reporting on civilian collateral damage, wedding bombings, war crimes, etc… But if those are inherently part of this technology then leaving them out overlooks a crucial outcome of developing these tools. Maybe we just shouldn’t advertise defense tech in kids media?

I don’t believe that explanation is more probable. If the NSA had the power to compell Apple to place a backdoor in their chip, it would probably be a proper backdoor. It wouldn’t be a side channel in the cache that is exploitable only in specific conditions.

The exploit page mentions that the Intel DMP is robust because it is more selective. So this is likely just a simple design error of making the system a little too trigger-happy.

Wow, what a dishearteningly predictable attack.

I have studied computer architecture and hardware security at the graduate level—though I am far from an expert. That said, any student in the classroom could have laid out the theoretical weaknesses in a “data memory-dependent prefetcher”.

My gut says (based on my own experience having a conversation like this) the engineers knew there was a “information leak” but management did not take it seriously. It’s hard to convince someone without a cryptographic background why you need to {redesign/add a workaround/use a lower performance design} because of “leaks”. If you can’t demonstrate an attack they will assume the issue isn’t exploitable.

I can only assume at this point you are intentionally not engaging with the actual issue. Cheers.

Fanatical and humble bundle (the good old days) are good examples.

Incidentally Wolfire Games—the studio that founded Humble (but no longer operates it)—is currently in class-action litigation against Valve for this very issue.

I don’t know what you say “non-discounted”, cheaper is cheaper no matter what.

The Steam Distribution Agreement AFAIK allows temporary sales on other platforms to undercut Steam, but requires the “resting” price matches that on Steam. By specifying “non-discounted” I meant to indicate that although sales do exist on other platforms, the normal price of an item always matches on Steam. A quick few spot checks show the non-sale price of games on Humble, Steam, and Fanatical are equal.

“Cheaper is cheaper” kind of overlooks the core issue. Ultimately a publisher on Epic Games Store—which has a fee of 12% instead of Steam’s 30%—can have a lower price for a game as part of a promotion, but can’t just sell every game 18% cheaper always without violating Steam’s terms and being risk being de-listed.

Steam doesn’t get a cut from keys sold in perfectly legal thirth party stores like fanatical, humble or gmg. Epic does not sell steam keys so obviously no.

Okay, gotcha. Yeah, I misunderstood. For Steam Keys it’s pretty clear that Valve should be able to control the price since they provide the services after that key is purchased.

But the PMFN applies to all copies, even those distributed outside of Steam (e.g. the direct-from-publisher option I mentioned). Last time I was in a thread on this, another user found the following in the complaint (page 55) from the Wolfire v. Valve case mentioned above:

204. TomG also explained to another game publisher that the publisher should “[t]hink critically about how your decisions might affect Steam customers, and Valve. If the offer you’re making fundamentally disadvantages someone who bought your game on Steam, it’s probably not a great thing for us or our customers (even if you don’t find a specific rule describing precisely that scenario).” In that same thread, TomG responded to a question by stating: “we usually choose not to sell games if they’re being sold on our store at a price notably higher than other stores. That is, we’d want to get that lower base price as well, or not sell the game at all."
205. In response to one inquiry from a game publisher, in another example, Valve explained: “We basically see any selling of the game on PC, Steam key or not, as a part of the same shared PC market- so even if you weren’t using Steam keys, we’d just choose to stop selling a game if it was always running discounts of 75% off on one store but 50% off on ours. . . .”

To add an example:

Take Cities: Skylines II. It’s listed at $50 on Steam, $50 direct from Paradox. If Steam is taking 30% cut, Paradox sees $35 from each sale. Why is Paradox not listing the game at $40? They would earn an extra $5 per sale, and draw more sales.

They have every economic reason to undercut Steam, but they aren’t. Like seriously, if not the PMFN, then what’s the explanation?

I guess I’m confused. Are you contesting that the PFMN clause has an effect or not? Whether that effect is anticompetitive?