I wonder who made the list of “don’t touch these repos, they’re propping up our proprietary software sans attribution” for the LLM injectabots to avoid.

I realize that the end game here is SUPPOSED to be “erode all trust in free software” but the ineptitude of those profiting off of proprietary software is such that they WILL fuck this up in such a way that it hurts themselves too, it’s just a matter of when.

PIN is the best way to go there. It only works on that one machine, although you can technically set the same PIN again on another computer.

I believe the typical intent is as follows:

1. It is now possible to brute force things that were previously considered “complex” passwords in a semi-reasonable amount of time.
2. This necessitates longer and more complex passwords
3. People can’t remember those so they have a tendency to write them down or do other relatively insecure things with them.
4. Forgotten passwords can generate a lot of helpdesk calls and are also an attack vector
5. If we insist on really complex passwords that are too long to reasonably brute force with current technology, we need a way for users to log in that’s not going to make 3 and 4 a major issue.
6. If the simpler PIN method is locked to a per machine basis, it matters a lot less if the PIN is compromised because you also need physical access to the computer or the PIN is useless.

This should, in theory, allow workplaces to set requirements for really complex passwords that only need to be reset once a year or so, without breaking helpdesk, inconveniencing users, or leaving gaping security holes.

Whether or not that all happens depends on the workplace, but that’s the general thought process in most of the places I’ve worked where a modicum of sense prevails

I’m curious. Economically speaking, what would happen if Nvidia pulled a “Steam” and had a “February sale” where some models of video card were discounted enough to lead to a massive spike in sales numbers? A big enough discount to generate a greater total net return on sales for the quarter despite the fact that they were sold at a lower profit margin per individual sale? Assuming limitations like “you must create an account with a residential shipping address that can receive no more than x cards at the discounted price per street address” or some such to limit scalping, would simply showing increased profits do them any good?

Or is the problem due to a lack of product quantity?

If nobody can afford anything with more than 8 gigs of ram for their office workers, they’ll all just pay for more AI tokens because otherwise the 900ms keystroke latency in MS Word would make it impossible to work, right?

I would be shocked if that wasn’t on some AI company’s brainstorm board as a positive side effect (for them) of all of this.