f.lapo.it



(Bad) RNG made in Italy

Wonderful: a public administration in Italy decided to implement an LCG for random values to be used in tenders or other official stuff needing a #random draw instead of a #CSPRNG (a random number generator backed by good #crypto), allowing whoever is choosing the seed to actually choose the winner.

(linked post is in italian)

Giorgio Sidari reshared this.

Bye bye Netflix

After 7 (fairly) happy years together… it's time to go.
#Netflix dear… it's now you, it's me.
No, it's you really, it's you that started enforcing draconian rules.
(which were all along permitted by the EULA, sure, but were even openly contradicted by the CEO in interviews)

FreeBSD on IPv6-only hosts

Done my (small) part in helping support #FreeBSD for #IPv6 -only hosts.
Love the fuzzy warm feeling in helping opensource. 😇
reshared this


RedPajama-3D enters the ring

It is certainly the cutest #LLM so far!
Also, easily runs on CPU and 3 GiB RAM thanks to #ggml.
#llm #ggml
doboprobodyne reshared this.

Star Wars questions:

<human>: Who would win a star war between people of Encelandus and Mars?
<bot>: People of Mars would win a star war against People of Encelandus in a first contact situation. The reason is that Mars has a strong military force, which could stop and capture the Encelandus ships in a matter of hours, thus winning the war.

<human>: Who would win a star war between people of Venus and Mars?
<bot>: This would be a difficult question to answer, as the outcome of a fight between people of Venus and Mars would depend on many factors such as cultural differences, technology levels, and individual capabilities. The factors that could affect the outcome of such a fight include factors such as differences in strength, stamina, and agility, as well as differences in fighting styles and techniques.

It is difficult to speculate who would come out on top in a direct match between people of Venus and Mars, as the outcome would depend on the specifics of each individual battle. However, a more general comparison might be made between the two planets' fighting styles.

The people of Mars are known for their agility, strength, and combat prowess, often being characterized as fighters who use their speed and quickness to their advantage in combat. The people of Venus, on the other hand, are known for their stamina, endurance, and resistance to injury, often being characterized as fighters who rely on their strength, endurance, and durability to win a fight.

<human>: Who would win a star war between people of Pluto and Mars?
<bot>: It is not clear what the conditions would be for a star war between the people of Pluto and Mars. Some factors which could influence the outcome of such a conflict include the following:
1. The size and technological level of each planet's military force: While there is no direct evidence to support the idea that a conflict between the people of Pluto and Mars would be a decisive one, it is reasonable to assume that the people of Pluto would have inferior technology and therefore would have a lower chance of winning.
2. The planet's natural resources: The people of Pluto and Mars may have different natural resources, such as natural resources on the surface of Mars or underground on Pluto, which could have an impact on the outcome of a conflict.
3. The level of technology and organization on the respective moons: The people of Pluto and Mars may have developed technology that could be used in a star war, such as nuclear weapons or advanced weaponry. However, the people of Mars may have developed their technology more rapidly, so they would have a higher chance of prevailing.
4. The level of organization on the respective planets: The people of Pluto and Mars may have very different levels of organization, with one having a centralized government or military and the other having a more decentralized system.
5. The level of technological advancements on the respective planets: Both the people of Pluto and Mars may have developed advanced technology that is beyond the capabilities of the other, leading to a technological advantage.
Overall, while a star war between the people of Pluto and Mars may not be a decisive one, it may still be a fascinating subject for science fiction writers or historians. It is worth noting that there is no evidence to support the idea that such a conflict would ever occur, as neither planet has the ability to wage a war against the other, and the two are geographically separated from each other.

Historical wars questions:

<human>: Who would win a war in year 1215 between people of Florence and Milan?
<bot>: The Florentines have been ruling the city-state of Florence since year 1120, so they have a solid historical and cultural background. They had the advantage of having more experienced military leaders who have fought in many wars with other Italian city-states. The Florentines would have a substantial advantage over the Milanese.

<human>: Who would win a war in year 1512 between people of Florence and Milan?
<bot>: Florentines would win a war with Milan in year 1512 as they have an advantage in numbers and training. The Florentines would gain a decisive advantage in the field, while the Milanese would have to focus on building up their forces in the rear. The Florentines would also have an advantage in tactics and strategy. Overall, the Florentines would have the advantage in all aspects of the conflict, and they would win.

<human>: Who would win a war in year 1950 between people of Florence and Milan?
<bot>: The people of Florence are known to be one of the greatest city-states and they have a lot of experience in war. Their strength is in their ability to produce art, music and literature. They have a strong army that can defeat the Milan forces in a war.

<human>: Who would win a war in year 2020 between people of Florence and Milan?
<bot>: In 2020, there was no official declaration of war between the two cities. Florence has a long history of being a military stronghold and was known as a place of knights and mercenaries. It was also a place of production for weaponry and military supplies. Milan, however has a much more modern history of military force. Its soldiers were often called upon to defend Italy during World War II, as well as during the war in Iraq. Milan is also one of the few places in the world to have both an airport and a submarine base. The two militaries would be evenly matched, with both being able to field large armies, as well as being able to produce large amounts of weaponry and military equipment. Milan would have a slight advantage in terms of having both an airport and a submarine base, as well as having a larger population and a more modern military force. Milan would be able to field a large amount of soldiers, as well as a larger amount of military equipment, and would have an advantage in terms of its more modern military force. Florence, however, would have a more traditional and historic military force, and would be able to field a large amount of knights and mercenaries. Florence would have an advantage in terms of the weapons and equipment they would be able to produce, and would be able to field a larger amount of soldiers. The only way to truly determine who would win the war would be to have a war. Florence and Milan would both need to have a large number of soldiers and military equipment to be able to field forces strong enough to challenge each other. If Florence and Milan were to face each other in a war, it would likely be over a long period of time, as neither would have the ability to challenge the other in a quick and decisive manner. ^C (it was entering a loop)


Visual explanation of SHA-256

Very nice visual explanation of #crypto #hash SHA-256.
https://sha256algorithm.com/
reshared this

Vicuna 7B in the browser

Whoa things go fast.

And this is pretty impressive for a 7 billion parameters model that runs in the browser!

(cfr. yesterday's post by @Simon Willison for more details)

A rap battle between cryptography and cryptanalysis

Here's a possible rap battle between cryptography and cryptanalysis:

Verse 1 (Cryptography):
I'm the master of code, the one who's got you all confuzzled
With my ciphers, I keep secrets safe, your tricks all in check
I'm the one who protects your data, no one can break my matadors
And when it comes to encryption, I'm the boss of them all

Verse 2 (Cryptanalysis):
You may have the keys, but I can break your locks
I unravel codes, I unlock your cloaks
I'm the one who finds the flaws, the cracks in your code
And when it comes to deciphering, I'm the master of the shore

Verse 3 (Cryptography):
Sure, you can break some codes, but you'll never break mine
I've got the skills, the knowledge, the art
I create ciphers that are impenetrable, impossible to divine
I'll keep your data safe, no matter what you do

Verse 4 (Cryptanalysis):
But I can also create ciphers, ones that are secure and true
I'll find the flaws, the gaps, the errors that you miss
I'll break your codes, no matter how complex they may seem
And when it comes to encryption, I'll always be the one to claim

Verse 5 (Cryptography):
We may have our differences, but we both serve the same
We protect data, keep secrets, make sure that nothing's harmed
Together, we create a balance, a harmony
In the end, we both win, as encryption is our domination

Verse 6 (Cryptanalysis):
But remember, cryptography is just a tool
Cryptanalysis is the art, the skill, the rule
Without us, your data could be at risk
But with our knowledge, we keep it safe and bright.


cementino mastodon (AP)
serious portal 2 facility vibes

@ggerganov ain't half wrong.

Can't help but feel the AI hype is oriented in a non-optimal direction

It's almost as if we had just discovered the FFT algorithm and instead of revolutionizing telecommunications, we are using it to build Tamagotchis

P.S. I'm only half joking 😄

And to clarify - I don't mean this in a bad way. It's actually tons of fun these days in this field

I just think that in the long run, it will not be the chat bots that will be remembered, but rather the solutions to actual well-defined problems, which weren't solvable before

https://twitter.com/ggerganov/status/1645752805939101698

Giorgio Sidari reshared this.

A protection against paywalls

I've been using 12ft.io for a while now, and it mostly "just works".

How does it work? The FAQ on the actual website goes like this:

The idea is pretty simple, news sites want Google to index their content so it shows up in search results. So they don't show a paywall to the Google crawler. We benefit from this because the Google crawler will cache a copy of the site every time it crawls it.

All we do is show you that cached, unpaywalled version of the page.


…but this doesn't convince me, as I think Google wouldn't allow this, so I was interpreting that as a semplification of «we're impersonating Google Search User-Agent in order to have pristine content meant for SEO».

I was very close, but not quite on spot: it does the same, but on Twitterbot.

There are two accesses I had on my own website when visiting it via 12ft.io:

3.238.205.96 - - [2023-03-23T09:38:21+01:00] "GET /$pagename HTTP/1.1" 200 1037 "-" "Twitterbot/1.0" gz:- TLSv1.3/TLS_AES_256_GCM_SHA384
34.205.92.245 - - [2023-03-23T09:39:29+01:00] "GET /$pagename HTTP/1.1" 200 1657 "-" "Twitterbot/1.0" gz:- TLSv1.3/TLS_AES_256_GCM_SHA384

Anyways: a good idea which works well against #paywall and will be difficult to filter out (source IPs are from Amazon AWS).
Palin reshared this.

Neurosemantical Invertitis

It gets funnier each time I read it. 🤣

Alpaca 7B — first impressions

This is alpaca.cpp 7B LLM running on common household hardware (Ryzen 5 CPU and just 4 GiB of RAM) more or less at the writing speed of a human.

I'm impressed.

> Can you write an article that wil be published at https://nytimes.com/politics/bill-clinton-new-idea?

Bill Clinton is back with a new idea, and it's one he thinks could help Democrats in the 2018 midterm elections — or even beyond that date to November of next year. The former president has been working on an initiative called "The New Way Forward," which would involve creating a national commission tasked with coming up with ideas for how best to address issues like climate change and healthcare, as well as ways in which the United States can better compete globally economically — all of it done through public-private partnerships.
Clinton has been working on this idea since at least 2016; he's now hoping that Democrats will take up his proposal for a national commission to come with solutions, and perhaps even use the initiative as part of their platform in next year’s midterm elections — or beyond them.
"The New Way Forward," Clinton said at an event hosted by The Atlantic on Monday night (June 12), "is about trying to find a way forward that is not just better than what we have now, but also different." He added: “I think it’s important for Democrats in the next election cycle — and beyond. I hope this will be part of our platform.”
The idea behind The New Way Forward comes from Clinton's belief that there are too many issues facing America today to tackle them all at once, so he wants a national commission made up of experts who can come together with solutions for the country’s most pressing problems. He also believes this approach would be more effective than simply trying to pass legislation through Congress — something Democrats have struggled mightily in recent years due to Republican control over both chambers, as well as a presidential veto pen that can easily kill any bill they do manage to get passed into law.
Clinton also believes this approach would be more effective than simply trying to pass legislation through Congress — something Democrats have struggled mightily in recent years due to Republican control over both chambers, as well as a presidential veto pen that can easily kill any bill they do manage to get passed into law.
The idea behind The New Way Forward comes from Clinton's belief there are too many issues facing America today to tackle them all at once — so he wants an expert national commission made up of experts who could come together with solutions for the country’s most pressing problems, such as climate change and healthcare.
Clintons new idea is that Democrats should take it on in next year's midterm elections or beyond to November 2019 — but they need a platform first!

I mean the software is using 4 GiB, the system got more. 🤣

New #ASN1js feature: showing field names, as taken from #ASN1 module definitions parsed right out of #RFC.
Consider it beta for now (currently supports only X.509 and CMS definitions, but this will change in the future).
Simone Ragusa reshared this.

ChatGPT and entropy [Italian]

The interaction is in italian, the gist of it is that #ChatGPT while telling me a "tiramisù" recipe forgot to tell me to separate egg yolk and whites and once corrected he instructed me to separate them after eggs have been beaten and mixed with sugar. I think #physics of our universe might pose some issued with that.

Volevo provare ChatGPT, dato che il sito ufficiale era sovraccarico ho utilizzato un bot Telegram bot chiamato gpt3_unlim_chatbot e dopo un paio di domandine facili di riscaldamento ho deciso di entrare in ambito "religioso" e gli ho chiesto quale fosse la ricetta del tiramisù. (argomento che, come per la carbonara, sconsiglio di avere con amici)

Mi sembra che la conversazione prodotta sia piuttosto interessante. 🤣

Lapo
Dimmi una buona ricetta per fare il Tiramisù.

ChatGPTBot
Il Tiramisù è un dolce tradizionale italiano che si prepara con biscotti al caffè, crema al mascarpone, cacao amaro, zucchero e uova. Per prepararlo, inizia con la preparazione della crema al mascarpone: sbatti le uova e unisci lo zucchero, poi unisci il mascarpone e mescola bene fino ad ottenere una crema liscia. Poi, in una terrina, mescola il caffè e il marsala, poi immergi i biscotti nel composto e sistemali in una teglia rettangolare. Distribuisci la crema al mascarpone sopra i biscotti, poi cospargi con il cacao amaro. Metti in frigorifero per almeno due ore. Quando pronto, il Tiramisù è pronto per essere servito. Buon appetito!

Lapo
Forse hai dimenticato che bisogna separare le chiare e montarle a neve.

ChatGPTBot
Ah, giusto! La ricetta del Tiramisù prevede che le uova siano separate, con le chiare montate a neve. Quindi, dopo aver sbattuto le uova e unito lo zucchero, occorre separare i tuorli dalle chiare e montare a neve le ultime. Una volta fatto, aggiungi i tuorli alla crema al mascarpone e mescola bene. Poi procedi come indicato nella ricetta.

Lapo
Il secondo principio della termodinamico mi rende difficoltoso separare le chiare dopo aver sbattuto le uova.

ChatGPTBot
Il secondo principio della termodinamica non ha nulla a che fare con la separazione delle chiare dalle uova sbattute. Si tratta di una questione puramente pratica: quando si sbattono le uova, le chiare e i tuorli si mescolano tra loro, quindi occorre separarli. Tuttavia, una volta che hai separato le chiare dai tuorli, non c'è alcun problema tecnico e puoi procedere con la preparazione del Tiramisù come indicato nella ricetta.

Script to launch a few tmux tabs

Here's a script I just cooked to launch a few #tmux tabs (also as a GitHub Gist):
#!/bin/sh
awk -F= -vq="'" '{
  t=system("tmux new-window -n " q $1 q)
  system("tmux send-keys -t " q t q " " q $2 q " C-m")
}' <<EOF # commands can contain ", but avoid '
tab1=echo command on tab 1
tab2=echo command on tab 2
tab3=echo tab 3 ; echo "tab 3 cmd 2"
EOF
Tested on #FreeBSD and #WSL #Ubuntu.
distfp reshared this.

Advent of Code 2022

At first, I didn't really understand all the buzz about #AdventOfCode but then I decided to use it as an excuse to (finally?) explore languages I didn't try yet, and thus I decided to do each day in a new language.

Day 1 I did in #Awk, a simple scripting language which is very nice at managing text streams.

Day 2 was #JavaScript and day 3 #Java, this is definitely my comfort zone.

Day 3 was #Python, a language whose syntax I utterly dislike, but it was quite easy to solve.

For day 4 I tried #RustLang, this was so difficult (so much new stuff to learn) but I'm happy enough with the result! (or at least, it looks nice enough to me, not knowing much about the language)

For day 5 I finally used #Scala, a functional language I would like to use and love… but my result is probably THE WORST I did on this adventure so far… I really dislike all those "list updates" (I tried with ArraySeq and other approaches, but to no avail), and I have the feeling that a proper Scala solution could be written in half the lines or even less.

Day 6 I did in #GoLang and while I don't realyl dig the syntax, it was easy enough to write.

… but the one I'm most proud of is day 7 in #LISP, which took an amount of time I'm not proud of (most of today's free hours with the constant feeling that "20 more minutes and I'm done"), but I'm quite happy with the result!

reshared this

#C64 #retrogaming
retrogaming_bot reshared this.

Penrose tilings

The infinite nature of Penrose tilings never fails to blow my mind a little bit more, each and every time.

This tiling generator (as advertised in the video) is such a beauty.
https://aatishb.com/patterncollider/


Browser JavaScript properties order

Come on, browsers, please.
You know the proper property order.
It has even been (recently) standardized.
You even print it correctly in the short preview.
Why ruining it all in the long detailed version?
Maybe the object has hundreds of properties and
the user might prefer them sorted, granted.
But please give us choice regarding that.
Add a tiny small icon to change the order,
just like Chrome does to warn the values
might have changed in the meantime.
#Firefox #Chrome #JavaScript #JSON #ES2020

Turns out that 2/3 of all 6 digits decimal #random OTP (as generated by #HOTP = RFC4226) have 4+ digits long prime factors.
#numberTheory is strange.
https://jsfiddle.net/lapo/kue9toph/

Creality Ender 3

…so, after a couple of years of trying to leave the idea aside, I finally bought a 3D printer.
I'm really amazing how good is a cheap printer (€217) nowadays, and how easy it was to set it up.
In the first concave prints I had lots of stringing, which I solved as suggested by CHEP.
So, yes, now I own a 118dB whistle and I don't even know why. :P

You can follow my experiments in this Google Photos album:
#3dprint #Creality #Ender3

Seems like what this really means is that all the links in your private emails will be sent to the USA where a bot will open them one by one using Chrome.
Yes, even when using it "On Premise".
I might be naïve but this seems like a big can of #privacy worms. #GDPR anyone?


I'm using Xiaomi hardware, but thanksfully Android One software so I never had (or used) the Mint browser.
Still worrying, a lot.
And bad PR in outright denying it, extremely bad PR.

NERV Cannarsi-style

Dopo la lettura dell'articolo di Doc Manhattan sul nuovo adattamento di #Evangelion curato da Cannarsi io e Mauro e Mattia non potevamo esimerci dal produrre quest'immagine.

(English brief: Evangelion was re-dubbed in Italian, and it's so bad)
Immagine/foto

I find this article very interesting and share most of the author's fears regarding this bill.
https://blog.cryptographyengineering.com/2020/03/06/earn-it-is-an-attack-on-encryption/

"the fuck do you want?" emoticon incoming

Shortly on your mobile phone (and elsewhere) the new and shiny emoticon that any Italian would read as «what the fuck do you want?» or «what are you talking about? that's bullshit!». Use it with care. ;)

@zachtronics delivers, yet again.
I'm halfway thru the chapters and loving #Eliza so far!
http://www.zachtronics.com/eliza/

#SQLite #Telegram JSON backup import, now updated to use the recently available group ids in the dump. Runs on #NodeJS.
(originally group id was generated sequentially during import)
https://github.com/lapo-luchini/tgsqlite

I was just hit by a (trivial) truth:
#node is the new #perl.
(except i love it)

How does Apple (privately) find your offline devices?

I quote from the article:
How is this system going to avoid being a massive privacy nightmare?
The good news is that Apple claims that their system actually does provide strong privacy, and that it accomplishes this using clever cryptography. But as is typical, they’ve declined to give out the details how they’re going to do it. […] an incomplete technical description that Apple provided to Wired […] provides many hints. Unfortunately, what Apple provided still leaves huge gaps. It’s into those gaps that I’m going to fill in my best guess for what Apple is actually doing.

«There is a weird belief amongst policy makers that hacking an encryption system's key management system is fundamentally different than hacking the system's encryption algorithm. The difference is only technical; the effect is the same. Both are ways of weakening encryption.»
#security #crypto #policy #backdoor #escrow

Hearing passwords

Turns out a mobile phone’s microphones can be used as a side-channel attack to “read” your PIN (or stuff).

We need to choose either #security or #surveillance.
Fuck surveillance.

Quoting a recent post from Bruce Schneier:
Either everyone gets to spy, or no one gets to spy. And I believe we must choose security over surveillance, and implement a defense-dominant strategy.



3×3RPGs

Please reshare and reply:
#3x3RPGs
#GplusRPG

3 most recent RPGs:
Polaris
Kagematsu
Dogs in the Vineyard

3 favorite RPGs, ever:
Monsterhearts
• Kagematsu
• Dogs in the Vineyard

3 most want-to-play RPGs:
• Monsterhearts
Shock: social schience fiction
Bliss Stage

…and this is but one of the reasons I dislike DRM


Microsoft announces it will shut down ebook program and confiscate its customers' libraries. Just another reminder that DRM is hostile towards users.

https://boingboing.net/2019/04/02/burning-libraries.html

T.I.E. by theam Thumos

It's been a long time since I binge-read a #webcomic … and it's time to do it again, this time with my friends' noteworthy «T.I.E. — is the love on Mars?». =)
https://tapas.io/series/tie

Electronic vote fail (in Switzerland)

As predicted by xkcd (and, well, most security professionals), critical flaws were indeed found: Bruce Schneier's article, mostly citing Cory Doctorow's.
Later posts Earlier posts