I was under the impression the purpose of that is to give an LLM a cheap (in terms of context window) understanding of a repo, and not at all for the benefit of humans? Whether that's effective is another matter, even…
I haven't personally tried, so I can't say for certain, but Lambda has publicly stated they run on bare metal EC2 instances, presumably the supply of whatever instance types they use should be fairly healthy
Most mature and/or security conscious providers don't consider containers to be a secure isolation boundary (with Microsoft being a notable exception, though it's unclear whether that's a failure of internal policy or…
I wasn't expecting a peer reviewed study, but I certainly was expecting more from that title
What makes you say that? The article is pretty clear that they had the llm working in a staging environment, then it decided to use some other creds it found which (unbeknownst to the author) had broad access to their…
I wish there was a mechanism to force shitty, bloated companies that have been mismanaged into a nosedive to divest "culturally valuable" IP early. I enjoyed the early ghost recon and rainbow 6 games, but I don't even…
350 was late last year. The text at the top of the linked page says prices are up about 30% over the past month. Directly prior to the war starting the price was about 470
> My opinion is that both should be liable in a case like this. I totally agree, but if I went after every company I felt to be incompetent to the point of criminal negligence I'd be up to my eyeballs in lawsuits just…
That's fair, if your domain is erroneously put on the block list, Google should be liable for the consequences. But my point is that any knock on effects like domain suspension, email deliver-ability, etc. stem from 3rd…
Self censorship requires a threat or risk of detriment if the party doesn't self censor, right? Where is that here? What Radix does has no impact on Google, and I don't see how Google would be incentivized to pressure…
Theoretically, the easiest way is to use a sub address (more commonly/colloquially known as email aliases or plus addresses, they're described in RFC 5233). You should be able to add a separator character (usually a…
You might want to review the commenting guidelines, notably the first few. Like you mention, big tech gravitates to a handful of tech hubs across the US, which drives up salaries for every company in the area. Which is…
I think there's a fundamental misunderstanding where executives mistake software engineering for "code monkey with a fancy inflated title" And coding agents are making that disconnect painfully obvious
I question their data if their p90 value is $211k I recognize that not everyone makes big tech money, but that's somewhere between entry and mid level at anywhere that can conceivably be called big tech
Are you thinking of the Missouri department of education's teacher directory website? https://krebsonsecurity.com/2022/02/report-missouri-governor... Luckily someone eventually talked sense into the governor, despite…
Actually, it's really important to me to have a network of atomic clocks available to verify the times I clock in and out, I want to make sure I get paid for an accurate duration of time down to the nanosecond
> 103 drivers (41.9%) overall tested positive for THC, with yearly rates ranging from 25.7% to 48.9%. The statistics for this seem suspect at best, I'll believe it once it's peer reviewed
> Researchers analyzed coroner records from Montgomery County in Ohio from January 2019 to September 2024, focusing on 246 deceased drivers who were tested for THC following a fatal crash. This paper would need to go…
Yeah, in some (rare) situations physical isolation is a more appropriate level of security. Or if you want to land somewhere in between, you can use VM's with single tenant NUMA nodes. But for a typical case, VM's are…
Containers are never a security boundary. If you configure them correctly, avoid all the footguns, and pray that there's no container escape vulnerabilities that affect "correctly" configured containers then they can be…
That's entirely incorrect. For starters, they didn't get unlucky. They made a choice to use the same system they knew was sketchy (which they almost certainly knew was sketchy even before 11/18) And on top of that,…
There was another deployment system available. The progressive one used to roll out the initial change, which presumably rolls back sanely too.
Do you have a public source about an embargo period for this one? I wasn't able to find one
Like the other poster said, roll back should be the right answer the vast majority of the time. But it's also important to recognize that roll forward should be a replacement for the deployment you decided not to roll…
To clarify, I'm not trying to imply that I definitely wouldn't have made the same decision, or that cowboy decisions aren't ever the right call. However, this preliminary report doesn't really justify the decision to…
I was under the impression the purpose of that is to give an LLM a cheap (in terms of context window) understanding of a repo, and not at all for the benefit of humans? Whether that's effective is another matter, even…
I haven't personally tried, so I can't say for certain, but Lambda has publicly stated they run on bare metal EC2 instances, presumably the supply of whatever instance types they use should be fairly healthy
Most mature and/or security conscious providers don't consider containers to be a secure isolation boundary (with Microsoft being a notable exception, though it's unclear whether that's a failure of internal policy or…
I wasn't expecting a peer reviewed study, but I certainly was expecting more from that title
What makes you say that? The article is pretty clear that they had the llm working in a staging environment, then it decided to use some other creds it found which (unbeknownst to the author) had broad access to their…
I wish there was a mechanism to force shitty, bloated companies that have been mismanaged into a nosedive to divest "culturally valuable" IP early. I enjoyed the early ghost recon and rainbow 6 games, but I don't even…
350 was late last year. The text at the top of the linked page says prices are up about 30% over the past month. Directly prior to the war starting the price was about 470
> My opinion is that both should be liable in a case like this. I totally agree, but if I went after every company I felt to be incompetent to the point of criminal negligence I'd be up to my eyeballs in lawsuits just…
That's fair, if your domain is erroneously put on the block list, Google should be liable for the consequences. But my point is that any knock on effects like domain suspension, email deliver-ability, etc. stem from 3rd…
Self censorship requires a threat or risk of detriment if the party doesn't self censor, right? Where is that here? What Radix does has no impact on Google, and I don't see how Google would be incentivized to pressure…
Theoretically, the easiest way is to use a sub address (more commonly/colloquially known as email aliases or plus addresses, they're described in RFC 5233). You should be able to add a separator character (usually a…
You might want to review the commenting guidelines, notably the first few. Like you mention, big tech gravitates to a handful of tech hubs across the US, which drives up salaries for every company in the area. Which is…
I think there's a fundamental misunderstanding where executives mistake software engineering for "code monkey with a fancy inflated title" And coding agents are making that disconnect painfully obvious
I question their data if their p90 value is $211k I recognize that not everyone makes big tech money, but that's somewhere between entry and mid level at anywhere that can conceivably be called big tech
Are you thinking of the Missouri department of education's teacher directory website? https://krebsonsecurity.com/2022/02/report-missouri-governor... Luckily someone eventually talked sense into the governor, despite…
Actually, it's really important to me to have a network of atomic clocks available to verify the times I clock in and out, I want to make sure I get paid for an accurate duration of time down to the nanosecond
> 103 drivers (41.9%) overall tested positive for THC, with yearly rates ranging from 25.7% to 48.9%. The statistics for this seem suspect at best, I'll believe it once it's peer reviewed
> Researchers analyzed coroner records from Montgomery County in Ohio from January 2019 to September 2024, focusing on 246 deceased drivers who were tested for THC following a fatal crash. This paper would need to go…
Yeah, in some (rare) situations physical isolation is a more appropriate level of security. Or if you want to land somewhere in between, you can use VM's with single tenant NUMA nodes. But for a typical case, VM's are…
Containers are never a security boundary. If you configure them correctly, avoid all the footguns, and pray that there's no container escape vulnerabilities that affect "correctly" configured containers then they can be…
That's entirely incorrect. For starters, they didn't get unlucky. They made a choice to use the same system they knew was sketchy (which they almost certainly knew was sketchy even before 11/18) And on top of that,…
There was another deployment system available. The progressive one used to roll out the initial change, which presumably rolls back sanely too.
Do you have a public source about an embargo period for this one? I wasn't able to find one
Like the other poster said, roll back should be the right answer the vast majority of the time. But it's also important to recognize that roll forward should be a replacement for the deployment you decided not to roll…
To clarify, I'm not trying to imply that I definitely wouldn't have made the same decision, or that cowboy decisions aren't ever the right call. However, this preliminary report doesn't really justify the decision to…