Posts by Erik Beall

Re: Meanwhile...

And when China takes Taiwan since there is no longer any unified bloc to impose sanctions on them, resulting in far bigger problems than Trump was thinking of, his supporters will doubtless contort their excuses so it's all somehow "part of the plan", with nary a hint of surprise, shock or embarrassment (or any other kind of self awareness). 50% odds China's leader has decided to start final preparations to take Taiwan. I'm hopeful the risk of Europe imposing sanctions keeps them at bay because it surely isn't us anymore.

Re: At least equally probably

Well hold on now, this was a known vulnerability in a running service. That's not the same as saying it was completely unpredictable. I've deprioritized known vulnerabilities but only if it wasn't a library and only if there was literally no process running with it and no other process could trigger it, let alone no network socket (even restricted to localhost, never assume redirection won't happen), which might have been all they looked for in deciding to not patch it. And even then it's a risk unless you remove all traces of the vuln-containing process or lib. sorry to quibble but they should have made the red team work just a little harder.

Re: Doublespeak

Great links, I didn't realize users couldn't even enable encryption mode unless the recipient was also online on telegram at the same time. I'm sure almost no one else does either. I did know that it was limited to person to person and switches back to non encrypted unless you click thru four menus every time you or the recipient rejoins.

Another thing is telegram has most definitely shared data with governments in the past, the German government is confirmed as having done so well before Durov's arrest. He seems to care deeply about his and telegrams image; details and fibs don't matter much if they can be drowned out by the marketing messages...

Re: I hope Musk travels to France

I don't think it's that absolutist, just selective depending on who's asking. Apparently telegram has given user data in response to court demands (and governments that don't bother with any process at all) in several countries. I started feeling suspicious when Moxie Marlinespike claimed telegram backend is designed to keep far more user data than would be justified for a privacy preserving platform, then Durov's response was eerily gas-lighty (suggesting that signal has nsa backdoors instead of constructive response). Then today I read this 1.5yr old article: https://www.wired.com/story/the-kremlin-has-entered-the-chat/. Given how hard the Russian govt is allowing and now sending more diplomats to complain than they'd ever bother for a regular citizen, I wouldn't touch telegram with a ten meter pole.

Re: Only domestic spying allowed?

I agree we need to keep pressure on our elected officials to eliminate unconstitutional spying on citizens. But please don't use whataboutism to alleviate the pressure on elected officials to block spying done by governments that are the poster children of exactly why we need to fight government spying. The big difference between what is done by our government spying on us now (and the legitimate concern is absolutely that it'll gradually get worse and worse) and certain other governments is that today and the last few years, what you say online absolutely can get you locked up and possibly killed in other countries (or even if living outside that other country). That is a very big, very real difference. I agree with the principle but the massive difference in degree means this is two distinct battles both of which we need to fight.

Re: Impact...

I've been stuck in an airport with my two kids for three solid days, still hoping our flight this evening and connection gets us back home after seeing family. There were hundreds of people on those thin camping mattresses all over the airport at noon on Saturday and Sunday (when we came back to the airport for our last two attempts to fly home), including one couple with what looked like a six month old using a pair of mattresses. Let me tell you, the impact most definitely was nonzero. We were lucky to have family in town. Hotel rooms and cars were booked solid. It's not been a fun extra vacation, although at least I brought my laptop so I could keep working on-call when needed.

Re: Oh good

That is so bizarre, that's not a likely place for a reputable think tank at all. I lived in Cleveland to 2015 and used to go to melt bar a block east of there and know that area well. Great area but good Lord that is an odd location to be based out of.

Re: "it'll take [..] about a million physical qubits just to compete with modern GPUs"

Have an upvote for the link to the Aaronson-informed comic!

Re: “Everybody and their dog is coding”

I tell Junior devs my most important coding is done on paper. I've found walking them thru my thinking is sometimes helpful but more important is to make them walk me through their thinking, and if they're a known copy-paster, to repeatedly point out how much better it is when they're done (thus far, it's always much better code).

Re: Would it not be possible to give a patient list to the police...

After 9/11, law enforcement was explicitly told that in order to combat terrorism which could happen anywhere, they needed to be able to control every interaction with a civilian, just in case. The unintentional consequences were a mirror of those of the Patriot act, which meant warrantless and warrant-light surveillance on the one hand, and massively increased aggression in traffic and random stop and searches, with an explicit okay. Police were objectively scarier to interact with by 2010 versus 2000, many Americans can tell you. And by 2015 more states had concealed carry so now cops really do have good reason to assume their encounters with civilians have much a greater than negligible chance of involving a weapon. There's no going back, but on the plus side for our politicians on both sides, they both get to claim they and only they can make us safer by (not addressing root causes) doing "something" (something that fits with one or the other narrative). More people have guns, police are trained to dominate interactions, and more adults act like entitled toddlers in every walk of life, and bullied kids think the answer is to emulate the entitled adults who get their way by force. I like the high school training they're doing in Finland and other states to recognize gaslighting on the Internet but that's a drop in the bucket and really I do not see this getting much better in my lifetime.

Re: Money, money, money

During the United States civil war a series of fraudulent military contractor stories, like rotten meat for soldiers, led to the passing the law that allowed anyone to sue the perpetrator on behalf of the federal government and then if successful to win a portion of the award. That had been watered down for a while, then brought back after world war II, and it's still in place today. Of course, I don't see any political interest in fixing this problem in that matter (or any other). Would be nice though. Maybe you could go after Amazon or Oracle for their various government contacts for engaging in fraud against the federal government by not cleaning up their compliance, but I suspect they've documented where they need and found loopholes where else they need...

Re: Internal budgets

I would think the large reputation hit of failing to migrate a web service they'd bought onto their own azure, which they claim is the best target for migrating, would be big enough nadella and the board would insist on a deviation from their standard in house pricing. I bet they just weren't making enough headway, kind of like every other Windows release until they went to continuous...

Re: Microsoft's investment was mainly in kind

Well he did convince those scientists to sign on to a startup in return for massive future pay out, which was suddenly jeopardized (and now cut by as much as 50%). They'll follow that promise if he can repeat it while he's now I guess at Microsoft. If he really is an employee of Microsoft he, as someone who ran Y Combinator as effectively as Graham, I'm sure will finagle some similarly remunerative way to incentivise colleagues to follow him or they'll stay at OpenAI. And maybe that's not such a bad deal after all, so someone who joined in year three will only cash out 5M instead of 10M, but the alternatives are far more risky. I doubt openAI will fail to cash out high enough for stock-incentivizes employees to have leveled up in the silicon valley skunkworks.

The religion of confirmation bias

Filippo, that was an excellent discourse, well done. Many people who argue like anonymous coward believe "picking confirmatory _literally anything in print_ is equivalent to doing research". There are certainly scientists and businesspeople who fall for confirmation bias, heck we all do pretty regularly, but it's tempered by some awareness of it and humility of or opinions. The people who make a religion out of it of course are something else, thank you for trying to explain to one of them eloquently and patiently.

Re: Personally, I don't pay for ads.

Well hold on now, those are comparatively ridiculously easy to ignore. I'm not saying it's not an advert, but it's not like most ads where significant effort goes into making them non ignorable. If I open a terminal and an advert across by, there's zero delay in getting to the prompt (for now, would be sad to see that change for users who don't want to modify their login environment). I'm just saying I've not seen anything in the same ballpark of attention stealing the Linux world that I do elsewhere.

Re: Follow the money

I see how that comment came off as praising his ability in business, but I did not mean to. His biggest strengths are in manipulation of people and businesses, which some (dangerous) business types seem to praise as just as good for humanity as actually creating value in the first place.

Re: functionality

I love how you concluded Android fixed one of the two major reasons preventing uptake, by forcing it on users...

Re: Fingerprinting....NO.....Destruction.....Maybe.....

You can change Mac addresses, in fact Android and apple devices do it by default, so if you have a device monitoring system in place (I use firewalla to better limit my kids ipad usage, and just general security), you have to explicitly turn that off for the SSID in the settings. Fortunately turning it off for a selected network leaves Mac address randomization in place when traveling.

Re: End of an error

This is my very cynical take, what these corporate and non-pro investors (and often also the professional investors) were knowing investing in was the chance to be part of the largest pool of funds with the best chance at bullying/buying/hopefully also inventing (but this is the least important to them) their way into market dominance for a new and potentially massive and lucrative industry. They don't care if the company needs to fake it until they can buy it off an inventive company with much smaller liquidity behind them. Fake it until you can take it. I'm hopeful that interest rates at or higher than inflation will help tamp this kind of bullshit extractive investment down and leave space for actual value creating investment.

Yes, this! The line "it works great until it doesn't." I use it often when clients want to use neural networks is any kind. They're great for many use cases, deceptively and potentially existentially risky for a great many others.

Re: Just hear me out...

I agree, it just doesn't arrive at the same meaning a talking human would. So the problem is deeper than garbage in/garbage out or just training a bigger model. I believe the models and systems around them will get better and better at avoiding undesirable behavior but it'll always be there, just more subtle. Humans are susceptible to manipulation as well, just typically not this simple-appearing kind of Simon says failure mode. And many people seem delight in becoming more susceptible to flat earth style "it's true because I want it to be" mental hijacking that various blowhards love to take advantage of.

Because he knows the regulators are so swamped they can barely keep up with device and drug applications, so defanged they can barely do anything except issue warning letters and very very rarely ask other branches if the government to block wrongdoing, finally have been directed to do no more than rubber stamp applications as long as those applications can say "of course this data is real, and of course we follow the relevant international standards". The weakening started in the 2000's when they stopped adding capacity to address the rising tide of new things, then accelerated during obama when they were told to increase approvals, then they were just shot to hell when they were ordered to stop standing in the way of entrepreneurs and big drug companies. I wish the stupid aducanumab decision was the bottom but the ship appears to be pointed firmly downwards thanks to industry capture of most of the directors. Thanks Janet Woodcock (the Ajit Pai of the FDA).

Re: Sorry Kahng, Goldie & Mirhoseini's AI work is legit BUT

Good points and you've convinced me. Proper replication can be hard work, and the limitations on Kahng's study are big enough to explain his results. You pointed out that some of the limitations weren't insurmountable, it sounds like Kahng is a researcher who isnt careful enough or doesn't care about results as much as press, both of which describe more than half of researchers I've worked with.

Re: How did they think

I think their plan was mostly wishful thinking about not imploding and thus not being able to quash complaints about financial crimes. The amount they straight up transferred to their personal accounts was over 10x the amount they transferred to politicians on both sides (apparently thinking wishfully that they had purchased some control over future investigations, which maybe if it hadn't blown up so completely they just might have...). Based on what's being revealed about how SBF viewed the political contributions transactionally (sadly large ones nowadays certainly are), it's clear he thought he was playing the game the biggest criminals play, he was paying a percentage in protection for when some investors get burned and the SEC comes after him. He miscalculated the strength of his position just a smidge.

Re: Federal Spending > Inflation > Rising Interest Rates

I keep trying to explain this same point to people, as long as the debt is structured this way, which is true right now and likely will continue for at least a few more years, the USA essentially rules the world and doesn't really have that debt on its balance sheet in the way most people think it does. Most people seem to prefer worrying that it's actual debt. That doesn't mean the structure will continue to work in our favor, and there are absolutely inflation effects from spending that isn't productive. But this inflation is more than half caused by us losing the just in time inventory methods (our still-accordioning supply chains) and the biggest war Europe has seen in a long time leading to a complete reshuffling of the energy markets. Anyone who says it's primarily driven by gummint spending is delusional.

Re: My take on "AI"

I think you've hit the nail on the head. Google have long only been good at exactly one thing, hoovering up ad revenue. They've got a set of slam dunk/grand slams in traditional search, docs/Gmail, maps, YouTube and Android but it's all in support of the same business model - they exist to keep people using search (in whatever domain they serve) and in generating exploitable targeting advert data to increase the value of ads. They suck at any other business they've dumped tons of money into. And the reason their search has gradually come to suck is their A/B testing led product development has evolved their search into a corner they can't back out of. In short, they've crippled the product for short term revenue boosting by boosting crap search.