More

michaelmrose · 2026-05-07T05:29:42 1778131782

This is a very negative statement and even if it were true it wouldn't belong here. It's unkind and unfair.

michaelmrose · 2026-05-07T05:25:10 1778131510

You are drastically underestimating how hard this is to do if they don't code and the time cost which would be spent actual using the tool.

Also either the difficulty either upstreaming changes or porting these changes to every subsequent version.

fragmede · 2026-05-07T06:22:21 1778134941

I absolutely am, but I've seen non-coders get up to all sorts of mischief using AI these days.

michaelmrose · 2026-05-07T02:35:36 1778121336

First you have to define consciousness. I don't see how you do that without self-reference and state transitions.

michaelmrose · 2026-05-03T17:55:06 1777830906

Russia and the US are currently attacking and threatening their neighbors in their respective wars of aggression.

ponector · 2026-05-04T11:43:50 1777895030

However, only russians are commiting war crimes almost daily to their neighbors.

tardedmeme · 2026-05-04T18:42:43 1777920163

I don't see how the distance is relevant.

michaelmrose · 2026-05-02T08:15:47 1777709747

The world has enough people and can trivially import some from places with too many to places with too few.

lukan · 2026-05-02T09:48:09 1777715289

That process has some social complexities, because as it turns out, human cultures are not all the same.

michaelmrose · 2026-05-02T03:23:38 1777692218

Data Centers in orbit could be the single dumbest idea Musk has ever expressed. They would be in every respect worse than on land and there is just no solution for heat dissapation.

As stupid as the basic idea is the scope he's described is beyond any reasonable endeavor it's nor clear our society could achieve it if it was the singular goal of our species and what for? There is simply no use nor demand for it and it's by no means a durable investment we should have to continue the effort forever to sustain it.

michaelmrose · 2026-04-30T19:20:53 1777576853

It is suggested that they out of an abundance of caution and 5 or 6 emails. If this is entirely to much to expect we can always help them by mandating that they spend 6 figures annually meeting a much more robust set of requirements that will include notifying all possible affected parties down to Hannah Montana Linux devs if any still exist.

Any strategy that assumes that the rest of the world is functional or makes you personally responsible for fixing all of it is equally broken but there is a reasonable middle ground and sending a few more emails lies within it

semiquaver · 2026-04-30T19:23:01 1777576981

  > we can always help them by mandating that they spend 6 figures

Who’s we? Mandate with what authority?

AWS and GCP are downstream another level. Should the reporter also have worked with them? And their customers? And the customers of their customers?

IMO this whole discussion seems like people are annoyed by the security researchers doing god’s work and wish they didn’t exist or think that they should be fully subservient to the projects and companies they are helping for free. The bugs were there before the researchers revealed them!!

michaelmrose · 2026-04-30T19:00:04 1777575604

Local root is part of the path to escaping

michaelmrose · 2026-04-30T18:53:40 1777575220

If it's not a crime I see no reason not to work with partner nations to build responsible disclosure into a legal framework everywhere because it pretty obviously should be.

akerl_ · 2026-04-30T18:57:45 1777575465

If you wanted to somehow make coordinated disclosure into a legal framework, that would be an interesting and complex project.

But it’s not the law anywhere I’m aware of today, and I’d not support it becoming a law.

debugnik · 2026-05-01T06:01:37 1777615297

This is kind of a thing already in the EU. Under NIS 2, vulnerabilities should be notified to a CSIRT as well as upstream, and the CSIRT shall identify downstream vendors and negotiate a disclosure timeline. I don't know whether they're any good at it or not, though.

jodrellblank · 2026-04-30T19:37:42 1777577862

You know companies are allowed to pay people to find vulns, and pay people bug bounties?

Instead of that, you’d rather make the law compel free individuals to limit their speech, or to hand over their work to big companies privately, so big companies can save money?

That doesn’t sound like a nice future, if it’s even enforceable at all.

michaelmrose · 2026-04-30T17:40:44 1777570844

I would expect someone would be critiqued to avoid it re-occurring and the persons money to be refunded. A company which fires so trivially will quickly flush institutional knowledge and team cohesion along with eating substantial recruitment costs.