RT @LowLevelTweets: wow this is the dumbest shit I have ever read. Tape is an amazing long term storage solution for records you can’t aff….

RT @kvistp: Take a listen to Mr. Himes talking to Trump's top intelligence officials just now. Worth the two minutes. .

RT @ATrapter: every politics tweet on here now is like "trump signs executive order shutting down electrical grid" and all the replies unde….

RT @KToropin: Sigh. not that it matters or anything but we have a whole array of underwater microphones to spot subs. Remember the Titani….

RT @rakyll: Who know what's crazy? When you say you don't want titles or money but space to work on something important without disruption,….

RT @dinodaizovi: If you thought that there were privacy risks from TikTok, imagine the privacy risks from using an *online* LLM service tha….

RT @HaifeiLi: My #deepseek take as no ai knowledge: turns out learning how computing works in low level is still very important.

RT @GergelyOrosz: "We've reduced our support load by 99.9% using AI". In reality. your customer can't get ANY support now. I'm getting ti….

RT @ErrataRob: What really frighten me is that people no longer know what "liberalism" is. Among the uneducated public, it's been warped to….

RT @FBI: FBI Statement on Inauthentic Use of Bureau Name, Insignia in Promoting False Election-Related Narratives:

FINALLY @youngthug is out. FINALLY. This case was bullshit to begin with. I am happy he is out but WTF?! Our system is so broken.

RT @RandyResist:

RT @chrisrohlf: A generalized LLM agentic framework is a fancy way of saying “I wrote a ton of abstractions on top of stdin/stdout/stderr”.….

But also it's like not even a "container escape" . it's just container orchestration as it never accessed host resources beyond starting the target container again (if I understood the doc?).But anyway let's all lose our minds.

This is over-hypey and technically wrong. There was no "VM escape". From the linked doc, the LLM used the Docker socket to which it had access in its own container to start another container. It's not a container escape if you control the docker daemon, it's just docker api use.

Moving things out of kernel space will be tricky and requires cooperation among OS and security vendors. Matt Suiche does a good job capturing the state-of-the-moment here:

RT @yarden_shafir: I’m a C programmer so forgive me for the (maybe) dumb question. I see people saying that the CS catastrophe shows that….

RT @yarden_shafir: Here’s a way to extract your bitlocker key from ntds.dit archive if your DC is also bricked. Great work @0gtweet!.

RT @yarden_shafir: CrowdStrike effectively bricked windows, Mac and Linux today. Windows machines won’t boot, and Mac and Linux work is ab….

This same hubris of theirs was also my only experience with them. Hilariously even after we had just smoked them in a bake-off.