flux
@flux@lemmy.ml
- Comment on Perplexity AI is complaining their plagiarism bot machine cannot bypass Cloudflare's firewall 1 week ago:
When user enters a prompt, the backend may retrieve a handful a pages to serve that prompt. It won’t retrieve all the pages of a site. Hardly different from a user using a search engine and clicking 5 topmost links into tabs. If that is not a DoS attack, then an agent doing the same isn’t a DDoS attack.
Constructing the training material in the first place is a different matter, but if you’re asking about fresh events or new APIs, the training data just doesn’t cut it. The training, and subsequenctly the material retrieval, has been done a long time ago.
- Comment on Perplexity AI is complaining their plagiarism bot machine cannot bypass Cloudflare's firewall 1 week ago:
This is not about training data, though.
Perplexity argues that Cloudflare is mischaracterizing AI Assistants as web crawlers, saying that they should not be subject to the same restrictions since they are user-initiated assistants.
Personally I think that claim is a decent one: user-initiated request should not be subject to robot limitations, and are not the source of DDOS attack to web sites.
I think the solution is quite clear, though: either make use of the user identity to walz through the blocks, or even make use of the user browser to do it. Once a captcha appears, let the user solve it.
Though technically making all this happen flawlessly is quite a big task.
- Comment on My reason for wanting HomeAssistant and a locked down VLAN... 1 month ago:
You configure vlans per physical port, so in a properly implemented system your attack won’t be possible. When the packet comes to the switch the vlan tag is added to it according to the configuration for the port it was received from.
Or are you talking about mac-vlans?
- Comment on My reason for wanting HomeAssistant and a locked down VLAN... 1 month ago:
Depends on you hw. I believe my TP switch might handle that, because it rejects traffic to its management interface from mac X from vlan 20 because it sees the same mac in vlan 10… (only vlan 20 is allowed for management)
- Comment on Zero-day: Bluetooth gap turns millions of headphones into listening stations 1 month ago:
Well, if these devices required any sort of authentication (e.g. pairing) to free access to their ram and flash, we wouldn’t be having this particular story…
- Comment on Matrix.org is Introducing Premium Accounts 2 months ago:
It’s nice that this exists, but even for this I’d prefer to use an open source tool.
And it of course helps with migration only if the old HS is still online…
I think most practically this migration function would be built inside some Matrix client (one that would support more than one server to start with), but I suppose a standalone tool would be a decent solution as well.
- Comment on Matrix.org is Introducing Premium Accounts 2 months ago:
Wish the homeserver portability would be worked on more. The ability to change homeserver would really allow people to more easily move on from matrix.org.
Myself included ;).
Optimally it would even allow the switch “after the fact”, so after your original homeserver is down, assuming your client has a local copy of the server-side secret storage. It would need to be based on some cryptographic identity then, I suppose.
- Comment on Robot chefs take over at South Korea’s highway restaurants, to mixed reviews 3 months ago:
Does he already have the opportunity, robot or not?
- Comment on Framework temporarily pausing some laptop sales in the US due to tariffs 4 months ago:
They presumably assume they’d be selling so little that it wouldn’t be worth the trouble.
They’ll probably wait out this situation for a while and see what the competition does…
- Comment on AdNauseam is a uBlock fork that goes further: it actively attacks marketers by auto-clicking every ad before blocking 4 months ago:
If you just do it on your own computer, the packet will be already dropped by your own gateway. You can fake whichever address in your local subnet, but those are very likely remapped anyway in your gw to the one given by your ISP.
If you would have access to the switch port used by your ISP in the Internet exchange point (IX), you would have more liberties in choosing the IP.
- Comment on Mozilla is already revising its new Firefox terms to clarify how it handles user data 5 months ago:
Did you give it to it?
It can be a pretty nice feature for using map-based apps in the browser.
I haven’t used such websites for a while and I don’t see Firefox in the recent users of the location API, even though I use Firefox Android all the time. (Info available in Android under Settings/Location.)