Comment on Data contamination expert đ
eager_eagle@lemmy.world â¨7⊠â¨months⊠ago
Good move, but anyone using public data already applies a simple spam filter to reject âdumbâ data poisoning. Also, hatred and other negative comments as responses will be penalized in a language model training, so an effective data poisoning takes effort. Iâll just throw some ideas here how poisoning could hypothetically have a tangible negative impact in their results.
The best one can do in terms of data poisoning is make comments that are not easily discernible from usual comments - both for humans and machines - but are either unhelpful or misleading. This is an âin-distributionâ data poisoning attack. To be really effective in having any impact whatsoever for training, they need to be mass applied using different user accounts that also upvote each othersâ comments in a way that mimics real user interaction: if applied in a simplistic way, a simple graph analysis on these interactions can highlight these fake accounts as a christmas tree.
I was contemplating the merits of botting with the current model with slight vectorization offsets so the data becomes prone to overfitting.
I would think it would alao work to post using valid, but non-standard syntax so it muddies the n-gram searches.
greenskye@lemm.ee â¨7⊠â¨months⊠ago
Honestly that just sounds like a lot Reddit users in general
TseseJuer@lemmy.world â¨7⊠â¨months⊠ago
yea we know thatâs why he said that because thatâs ârealâ reddit content