It’s worse than just using a new tool though. By definition LLMs use the statistically most likely option (with minor variation for flavor). People are literally asking a statistics bot what password can I use that is the most likely?
Comment on Warning: Your AI-Generated Password Is a Major Security Risk. Here’s What to Use Instead
cheese_greater@lemmy.world 1 day ago
Why does everything have to be LLM, like why cant things sometimes just be algorithmically generated like my AI-free password manager does?
I wonder if there’s AI-powered password managers on the market now lol. If so and if customers, I would mirror Zuck’s snide “thuh dumb fucks” setiment when people trusted him
BrainBow65@lemmy.world 1 day ago
cheese_greater@lemmy.world 1 day ago
I was gonna say that. They gonna give you a recycled pattern
grue@lemmy.world 1 day ago
That’s a good point: it’s not just that LLMs fail to give you an optimal password, it’s that they’re inherently designed to give you a pessimal one.
artyom@piefed.social 1 day ago
There’s AI-powered everything now for no reason other than because when they slap those two letters on it, their stocks go up.
cheese_greater@lemmy.world 1 day ago
Stox go brrrrr
Madrigal@lemmy.world 1 day ago
But…but Magic Box™
BrianTheeBiscuiteer@lemmy.world 1 day ago
I always say I’m not interested in asking an LLM to add 2 + 2 for me. Of course my managers are always pushing us to use LLMs and coworkers keep suggesting we replace efficient, testable, and consistent processes with AI. If you’re going to use it at least think of scenarios that are hard to code for and it would take you at least 10 min to solve.
Septimaeus@infosec.pub 1 day ago
While “routing” of prompts between specialist models and traditional APIs does offer more efficient and reliable outputs, it also A. requires more elbow grease than one massive generalist model, and B. doesn’t help you avoid paying API licensing fees by obfuscating their outputs into the blackbox weights of your proprietary model
cheese_greater@lemmy.world 1 day ago
It just seems like a password manager is an infinitely better tool. Like to the point i severely judge and question the sense of someone who seeks to reinvent the wheel for something so crucial
Septimaeus@infosec.pub 1 day ago
Oh for sure. I was just answering in case you wanted to know.
Future versions of AI tools will likely use routing to do a variety of tasks more efficiently and accurately. But until then? It’s a jinn to those who would wish away every single chore they lack the patience to comprehend including, unfortunately, information security.
cheese_greater@lemmy.world 1 day ago
Its honestly crazy to me. I have it down to such an art that Incouldnt imagine giving up my unilateral control or sole custody of that data
Naich@lemmings.world 1 day ago
I remember the days before hardware random number generators, when pseudo random number generators caused fuck ups by not actually being random. Now people are re-inventing the stupid way of doing it with AI.
cheese_greater@lemmy.world 1 day ago
It blows my mind hackers still found ways in with just that one fuckup