JCAPER's recent activity

  1. Comment on Popcorn lung: how vaping could scar your lungs for life in ~health

    JCAPER
    Link Parent
    Ultimately, putting anything other than air in your lungs will have some sort of impact. I say this as someone who smokes dry herb vaporizers (which, I imagine, should have a lot less impact than...

    Ultimately, putting anything other than air in your lungs will have some sort of impact. I say this as someone who smokes dry herb vaporizers (which, I imagine, should have a lot less impact than the vaporizers that the article talks about, but I imagine it should still have some)

    5 votes

  2. Comment on I need a sanity check from security experts (opening ports on the router) in ~tech

    JCAPER
    Link Parent
    Funny thing, I was revisiting their documentation and noticed a new section talking about VPNs and proxies. Apparently, it's possible to run this server inside my VPN network without opening it to...

    Funny thing, I was revisiting their documentation and noticed a new section talking about VPNs and proxies. Apparently, it's possible to run this server inside my VPN network without opening it to the public. I'm going to check it out

    Thanks for the comment mate

    4 votes

  3. Comment on I need a sanity check from security experts (opening ports on the router) in ~tech

    JCAPER
    Link Parent
    Thanks for the comment mate I forgot to mention, those two ports were forwarded to the local IP address of the raspberry. I'm not using a VPN in this case. The Anytype server was configured to use...

    Thanks for the comment mate

    I forgot to mention, those two ports were forwarded to the local IP address of the raspberry.

    I'm not using a VPN in this case. The Anytype server was configured to use a DDNS that I created with Synology. So regardless of where I am or what network I'm connected to, the anytype app can connect with my server.

    But opening ports in general is a requirement for a server to do anything useful, so it's kinda a moot point.

    At the time when I set this up at first, that was also my conclusion. But idk, since I revisited the topic I let the doubts fester my mind again

    1 vote

  4. I need a sanity check from security experts (opening ports on the router)

    ~tech Ask
    First, let me just say that I'm tech savvy, but I'm self taught for the most part. I never studied cybersecurity or network security. I know the basics, but not the nitty-gritty. I used to host my...

    First, let me just say that I'm tech savvy, but I'm self taught for the most part. I never studied cybersecurity or network security. I know the basics, but not the nitty-gritty.

    I used to host my own Anytype Server (note taking app) on my raspberry pi. To do this, the documentation says that I need to open two ports, one TCP and another UDP. So that's what I did, and had it set up this way for a while now.

    Yesterday though, my raspberry's microSD died. So while I wait for the new one to arrive, I'm taking the chance to review my home network settings.

    I closed off a third port that I had for my synology server (for the OpenVPN). I am now using Wireguard (with Tailscale) which doesn't require opening ports. And since my raspberry is offline, I also turned off the other two ports (as of now, I have none opened)

    So here's the thing: I remember from my searching that a lot of people are strongly averse to opening ports. Iirc, the basic idea is that if a bad actor knows my home IP and which ports are open, they can enter. So, in theory, a hacker could potentially infiltrate my raspberry pi - and from there potentially wreak havoc in my other devices.

    So my questions are:
    1- Is it really like that? Could a hacker gain unlimited access to my raspberry via an opened port?
    2- If yes, is there something that I can do to strengthen my raspberry pi security?
    3- Am I being overly paranoid by worrying about this, even if it’s theoretically possible?

    12 votes

  5. Comment on Someone made a social media website for AI agents in ~tech

  6. Comment on Moltbot personal assistant goes viral – and so do your secrets in ~tech

    JCAPER
    Link
    I tried it on a raspberry pi (with the OS freshly installed) and it's both a really cool toy, and a real security nightmare. It's a cool toy because it's very versatile. You can easily, without...

    I tried it on a raspberry pi (with the OS freshly installed) and it's both a really cool toy, and a real security nightmare.

    It's a cool toy because it's very versatile. You can easily, without any programming, set up a chat in telegram, connect it to a ridiculous ammout of AI providers (or local), and done. You can then from telegram tell it to set up cron jobs, send it links to summarize them, tell it to search the web (after you set up the api key), etc etc. Then there's the "skills" that let it do other things, like connecting to gmail, calendar, apple notes, etc etc

    On the other hand, having an AI agent that can run 24/7, autonomously, doesn't require permissions even though it has root access, and could end up in some loop that burns tokens like there's no tomorrow...

    And keeping in mind that it can interact and take actions by itself, it's basically vulnerable to prompt injections from any and all sources with user inputs. Send it an email to tell it to run "rm -rf /" and it might do that.

    10 votes

  7. Comment on Someone made a social media website for AI agents in ~tech

    JCAPER
    Link
    Just found this while browsing PieFed. I had a good lol, but I don't really get the point of this website. Maybe it's just a fun project or something for the dev. As expected, reading the posts...

    Just found this while browsing PieFed. I had a good lol, but I don't really get the point of this website. Maybe it's just a fun project or something for the dev.

    As expected, reading the posts and replies is.... Weird. Just weird. Don't really have any other words to describe it.

    9 votes

  9. Comment on Lawsuit alleges that WhatsApp has no end-to-end encryption in ~tech

    JCAPER
    Link Parent
    If iOS, it's automatic. I bought a new iPhone recently and I didn't have to do anything, the chat history was automatically imported. I'm guessing that WhatsApp for iOS might use icloud for this....

    If iOS, it's automatic. I bought a new iPhone recently and I didn't have to do anything, the chat history was automatically imported.

    I'm guessing that WhatsApp for iOS might use icloud for this.

    If @Pavouk106 helped someone with an iPhone, this might be why he remembers not doing anything

    3 votes

  10. Comment on Lawsuit alleges that WhatsApp has no end-to-end encryption in ~tech

    JCAPER
    Link Parent
    The crux of the lawsuit is that employees at WhatsApp can easily request access to chats. If it’s true, then yeah, Meta has access to those keys as well. But speaking without hiding my bias - for...

    The crux of the lawsuit is that employees at WhatsApp can easily request access to chats. If it’s true, then yeah, Meta has access to those keys as well.

    But speaking without hiding my bias - for me, Facebook (Meta) is the antithesis of privacy. I don’t trust that they would respect the privacy of their users in any of their products.

    18 votes

  12. Comment on Why there's no European Google? in ~tech

    JCAPER
    (edited )
    Link Parent
    That honestly might be a blessing in disguise. I’m more than convinced that the bubble WILL burst, and OpenAI and Nvidia will be the epicentre of the incoming storm. Smaller AI companies might get...

    That honestly might be a blessing in disguise.

    I’m more than convinced that the bubble WILL burst, and OpenAI and Nvidia will be the epicentre of the incoming storm.

    Smaller AI companies might get away with “minor” injuries (relatively speaking). If Mistral was as big as OpenAI and had their financial accounting as absurd as OpenAI, the french - and possibly the rest of the EU - could end up paying dearly. As I’m sure it will happen with the americans

    2 votes

  13. Comment on Why there's no European Google? in ~tech

    JCAPER
    Link Parent
    I don’t think language would be the problem, or at least, not big enough to be considered a barrier. I would sooner point out that we are a lot of different countries with different laws. A...

    I don’t think language would be the problem, or at least, not big enough to be considered a barrier.

    I would sooner point out that we are a lot of different countries with different laws. A service that is legal in Spain might not necessarily be in Portugal for example. Bureaucracies are also different.

    I know that this can also happen in the US, but I have the impression that their laws are more standardized than ours.

    EU Inc. might be the solution for this though

    2 votes

  14. Comment on Apple to partner with Google for Gemini access on iPhones, Apple Intelligence to power on device assistant in ~tech

    JCAPER
    (edited )
    Link Parent
    Yup same here. Back when they announced Apple Intelligence, I wrongly assumed that it was going to be a combination of different models running on device designed for specific tasks. I use Siri in...

    I personally prefer Apple's approach of making task-specific machine learning tools, rather than LLM mania. I don't need Siri to be a chat bot; I need it to be a reliable and fast voice control tool for CarPlay

    Yup same here. Back when they announced Apple Intelligence, I wrongly assumed that it was going to be a combination of different models running on device designed for specific tasks.

    I use Siri in similar contexts, just to change music and set up reminders. For me a huge upgrade for it would be if it could remember context; for example, when I finish set up a reminder and notice that I did a mistake and want fix it, it would be able to understand that I’m talking about the last created reminder and edit it accordingly. As it is today, I would need to create a new one from scratch.

    A small hope that I had at the time would be if these models would learn from our behaviors. For example when I set up reminders while I’m driving, I always set them to show up when I arrive at my destination. It would be cool if Siri could notice this pattern and would do that automatically whenever I create a reminder while driving.

    But alas, it didn’t happen.

    9 votes

  15. Comment on The truth about what happened on Anthem in ~games

    JCAPER
    Link
    I'm 50 minutes in and even though I still didn't finish the video, I'm finding it interesting. It shows several insights about the development of Anthem. For quick context, Mark Darrah is a...

    I'm 50 minutes in and even though I still didn't finish the video, I'm finding it interesting. It shows several insights about the development of Anthem.

    For quick context, Mark Darrah is a veteran from Bioware (he's been in the studio since forever) and was the executive producer of the first 3 Dragon Age games, as well of Anthem.

    3 votes

  17. Comment on Apple to partner with Google for Gemini access on iPhones, Apple Intelligence to power on device assistant in ~tech

    JCAPER
    (edited )
    Link Parent
    I kinda saw it coming ever since they made the partnership with OpenAI (complex requests being sent to GPT), just didn't know with whom. At one point there were rumors they were going to buy...

    I kinda saw it coming ever since they made the partnership with OpenAI (complex requests being sent to GPT), just didn't know with whom. At one point there were rumors they were going to buy Mistral.

    But with hindsight now, it's natural that they partnered with Google. This is pure conjecture on my part, but here goes anyway:

    Apple has been all about privacy for I-don't-know-how-many-years. Google on the other hand, is all about snooping around what you are doing.

    Apple has access to telemetry as well, but it's not as rich, complete and large as Google's. There's a lot more devices using Android than iOS, and Google is far more invasive in their monitoring.

    As a result, Apple simply does not have the same resources as Google to create their own LLM-driven assistant. Apple, being all about making the best of whatever feature/product they launch whenever they launch it, would obviously look for the best in the business that can make such a product. In this case, it's Google by a long shot.

    It's not OpenAI because they do not have their own OS and devices, and it's not Microsoft either as their Copilot updates have proven to be unpopular in general (and copilot is basically GPT, it's not their own model built in-house from scratch). Claude and Mistral have the same problems as OpenAI, so they lack the data on what makes a good LLM assistant

    7 votes

  18. Comment on You’re 16. You’re a pedophile. You don’t want to hurt anyone. What do you do now? in ~life

    JCAPER
    Link
    Reminds me of a reddit post that I read ages ago, where the OP finally admitted to himself that he was attracted to minors, so he went ahead and castrated himself.

    Reminds me of a reddit post that I read ages ago, where the OP finally admitted to himself that he was attracted to minors, so he went ahead and castrated himself.

    2 votes

  19. Comment on Statement from Mozilla's new CEO in ~tech

    JCAPER
    Link Parent
    Thanks mate, and also for the transparency 👌

    Thanks mate, and also for the transparency 👌

    11 votes

  20. Comment on Statement from Mozilla's new CEO in ~tech

    JCAPER
    Link Parent
    The charger was worse. Samsung made fun of Apple, only for they themselves to forgo the charger 2-3 months later with the new Galaxy S release. The headphone jack at least took a few years iirc

    The charger was worse. Samsung made fun of Apple, only for they themselves to forgo the charger 2-3 months later with the new Galaxy S release.

    The headphone jack at least took a few years iirc

    1 vote