Posts by Mike 137

Expertise?

AI assistants were good at reminding humans of key details, "such as committing database changes, that might otherwise be overlooked."

Overlooking such basics says much more about the skills and attention capacity (or lack thereof) of the practitioner than it does about the utility of "AI". I never cease to be amazed by the shallowness of many of the questions on sites such as SO -- they lead me to believe that the software development profession is to a great extent populated with mere 'coders' who are novices at programming (two very different skills).

Another workaround

If you have something important to say, host it on your own web site and get lots of folks to link back to it (the old way the web worked before Grungle took it over). Relying on third parties with unchallegeable "moderation" will always fail you if you're saying something that might annoy the moguls.

Just like the Orangeman

Elon Musk, the boss of SpaceX, fired back: "SpaceX is moving like lightning compared to the rest of the space industry. Moreover, Starship will end up doing the whole Moon mission. Mark my words."

"Never apologise, mister. It's a sign of weakness" ^[1]

_{[1] John Wayne in "She wore a yellow ribbon"}

.

"undertaking due diligence"

Lovely cliché that - "due diligence", but almost universally misunderstood. "Due" in this case means "appropriate and sufficient", so if you palm the decision making off on a machine, your "diligence" is by definition not due, as that would require you to assess the situation, think out what is required to manage it and take responsibility for the outcomes, whether good or bad.

However, I'm not surprised at banks cutting corners like this -- it's not for nothing that the collective noun for them is "wunch".

Errrrrr...

developers are the "ideal victims" because their machines "contain the keys to the kingdom: production credentials, crypto wallets, client data."

All that on the one machine and single account you use for job applications?

Having worked extensively online almost since the web went public (35 years+, ouch!), I've always kept a "dirty machine" for such tasks, with nothing but the basics on it and with a clean backup image that can be used to rebuild it from scratch if it gets contaminated.

In my infosec consulting experience, the key reason most organisations (and folks) get "hacked" is that they have no real proactive defences in place (you need more than a few appliances -- you need forethought, current information about threats and the willingness to make the necessary constant effort).

Highly refreshing

Nice article Rupert. It's delightful to read objective analysis in this bullshit-driven arena.

Amazing, really...

It always strikes me as amazing (being maybe a little sarcastic here) that, as soon as the next version of an OS or application is launched (or at least once "support" for its predecessor ceases), that predecessor suddenly becomes lethal. The reality of course is that [a] it's always been lethal and [b] its successor is also lethal (needing constant repairs for its entire operational life). I think it's safe to assert that there's never been an OS or mainstream application to date that has been fully fixed before it went obsolete, because software development is still crap in engineering terms.

"That's partly because many of these models are sycophantic, telling users what they want to hear"

So we're just dealing with automated con men really. The automation makes them more accessible and potentially more persistent, but the technique is as old as the hills -- find an insecure person and flatter their self-image till they accept anything you say. The real underlying problem is the proportion of the population that's so insecure these days that they can be caught by the scam. That's largely down to education systems that just stuff folks with facts rather than cultivating their ability to exercise attention, perception and judgement. As Dirty Harry said "a man's gotta know his limitations" -- if one does one's less likely to be fooled into fantasies like believing you've discovered a new branch of math without any training in math.

Priorities

""It seems like quite a nice font," he said"

Ultimately, subjective aesthetics should be subordinate to legibility. The job of a typeface is to convey information without imposing strain on the reader. Designers could do worse for a start than take a few lessons from the illustrious Betty Binns (Better Type, Watson-Guptill, New York 1989).

Well...

"Adobe’s AI legalese initially required its customers to assume responsibility for copyright infringements caused by its software and services."

"Occasionally, vendors revisit those multipliers and increase the quantity of credits required to use their services"

"Other vendors require customers to pre-pay for “tokens”, but don’t explain that the cost of inputting a token [...] is much less than the cost of tokens their services create when responding to prompts"

It seems that, in what has long been a saturated market, IT as a whole has become merely a domain of dirty tricks to extract revenue. "AI" is just the latest example.

In the words of the late great Douglas Adams

"your plastic pal who's fun to be with"

Pardon?

"Larger models will always be more generally intelligent," agrees Perez

No they're not. As no LLM is in any way intelligent even using the most liberal definition of the word, "more" "and "generally" here are pure bullshit. Stringing tokens together in statistically probable sequences is not intelligence. It doesn't even need intelligence -- just the ability to count and a lot of data to work on.

Diminishing returns?

Complexity on complexity. At some point the overall mechanisms will become so burdened by multi-layer "protections" that they'll [a] start to slow down or become erratic, [b] lock out swathes of systems that haven't been kept suitably "updated", and [c] become increasingly attackable, leading to yet more layers of "protective" complexity being imposed on them. Result: jump to [a] and repeat loop infinitely. And given the prevalence of short term thinking leading to poor implementation, [c] is the most critical as it's the argument for the burgeoning complexity in the first place.

"Vendor insists passkeys are the future"

They would, of course they would. But...

It's bad practice to use the same secret credential for more than one account, so there'll be millions made by key ring manufacturers as passkey dongles proliferate for every user. And even if the single passkey unlocks a "password manager", not only is it a single identifiable point of attack, but each end application will still be dependent against attack on a password of uncertain quality (and given modern attack methods the bar must be set very high). Realistically, password managers are a convenience, not a security provision.

Duh!

"consumers (and people in general) should be aware that their reactions to AI outputs may depend on their AI perceptions"

In the human space, reactions to advice will always depend on percention of the reliability and trustworthiness of the provider. This is a general truism (but addressing the narrow specific case of "AI" does get another paper published).

Analysis

"anyone can build and monetize total shit code as easily as selling t-shirts"

This is not even innovative. Decades ago there was UK TV retailer sitcom called "Never mind the quality -- feel the width".

Mandatory reading

The "ironies of automation" paper cited in this article and "Does automation bias decision-making?" by Linda J. Skitka (Int. J. Human-Computer Studies (1999) 51, 991}1006) should both be mandatory reading for those developing "autonomous" vehicles, as they both (for different reasons) demonstrate that a monitoring-dominant condition is the worst possible place from which to take action in the face of unexpected events. As both papers were published at least a quarter of a century ago, it's amazing (and deeply disturbing) that the message has not sunk in yet. However a recent article at The Dispatch provides a clue to why this might be (a combination of Dunning Kruger syndrome and arrogance).

"Automating IT operations using AI may not be the best idea at the moment"

"Automating IT operations using AI may not be the best idea " ever.

Maintenance of IT ops (particularly security) relies on recognising anomalies and their significance -- processes that depend on understanding. What we commonly refer to as "AI" cannot think or understand anything, so its chances of success in this domain are minimal. Furthermore, because its "reasoning" is inscrutable, applying "AI" further distances the human expert from what is really going on, reducing ability to verify and validate. We do not live in a "Star Trek" series one world where ten thousand-year old computers still run things unaided and unsupervised (although in those Star Trek episodes where they supposedly did they were typically portrayed as getting things horribly wrong and needing to be shut down by Jim Kirk -- maybe there's a lesson there).

"Jacqueline Samira, CEO at Howdy.com, says [...] employees also need to embrace the new tech that's coming down the pipe"

Why, specifically? Some things that come down some pipes are definitely better not "embraced".

BTW, I've just marketed a snodfangle grunging grabber, so everyone must adopt it (whether or not it's actually useful).

"Firefox's four-weekly release schedule"

Churn for the sake of churn -- who needs it? The safest and most productive tool is in general the one you're most familiar with. OK, so given current dev methodologies (AKA sloppy coding practices) we may need regular bug fixes, but new "features" every month? WTF.

From the paper ( 4 Experimental Results and Discussion, 4.1 Dataset): "the dataset collects the CSI measurements of 14 different subjects"

Rather a small population, but, in all fairness, this work is not about unique identification of individuals but about tracking based on an initial acquired signature. So it's a neat piece of research.

"build the UK into an artificial intelligence powerhouse"

As the intent seems to be primarily focused on LLMs, this really translates as "turn the UK into a leading bullshit merchant". But supposing it actually takes off (which is not at all assured) I guess quite a few pockets will get well lined before its futility becomes apparent.

"Windows 11 is now the most popular desktop operating system..."

Possibly not (a lot of folks hate it, as this article suggests) -- just the most used. And that is most likely because, for quite some time now, if you buy a new machine W11 is all you get offered. In IT, churn, not voluntary choice, drives adoption.

But how?

an "unwaivable right to equitable remuneration for authors and rightsholders whose works are used in such training."

A wonderful idea in principle, but how to make it work is quite another matter. For example, supposing someone hosts an online repository of their own original textual works. Suppose it's free for all to read, but how would the author ever find out that it's been scraped by an "AI" bot for training? It's highly unlikely that the hugely wealthy owners/trainers of the bot will spontaneously volunteer to the "little man" that they've scraped it and the cost of verifying would be prohibitive. As with many good intentioned EU initiatives (e.g. the GDPR) they make the erroneous assumption that big business plays fair. If it did, there would be no need for a law.

WTF?

"a feature that is currently under development and not fully implemented"

As a quite long in the tooth engineer I have to ask -- what on earth is an "under development" "feature" doing in a production release? Or have we reached the bottomless pit where there's no such thing any more as a production release? If so, that would explain a lot about the abysmal quality of current software.

"The stainless steel vehicle can now explode before even leaving the Earth"

Why stainless? What's the need to protect a rocket against rust? Any competent engineer will tell you that stainless steels in general have poorer properties relevant to pressure vessels than steels that have been specially designed for those purposes. But I guess the muskrat has (yet another) arbitrary fixation on "stainless" -- witness that "Chelsea tractor" of his, and, as in that case, he could have gone for a cheap grade.

"... It is unacceptable for foreign officials to issue or threaten arrest warrants on US citizens or US residents for social media posts on American platforms while physically present on US soil" Rubio said.

"It's OK for us to do this though."