USB 4 is actually going into an even worse direction. USB 4 = Thunderbolt 4, except everything is optional. e.g. USB 4 might not even support DP Alt mode. Thunderbolt 4 always will.

Except active optical cables. None exist yet that I'm aware of though.

And yes, absolutely. All you need is a bootchain exploit. However unlike in the old jailbreaking days when people found and publicized them for fun, these days they are worth millions. Apple will pay you $500k for sandbox escape into the kernel. If you nail the bootchain, it'll be in the millions. From Apple. And god knows how much such a thing would go for in the black market.

That’s been the case for 5+ years :)

How do you determine to whom an IP is even registered to? They get sub-leased all the time.

The best you can do is check who has administrative control over the prefixes RIR info, but that doesn’t mean that anyone with control is the factual user of the IPs.

You could check the IRR for the ASN and base it on that, but still.

There's also no way to actually know _where_ an IP actually originates from. Only its AS path.

The DFZ contains all prefixes announced everywhere, for the internet is completely decentralized.

You check the RIR's records.

> They get sub-leased all the time.

With records updated. If not, any consequences from wrong information fall on the lessor and lessee.

> There's also no way to actually know _where_ an IP actually originates from. Only its AS path.

Ping time from different locations on their upstream AS gives a good guess.

Not always + there are no consequences whatsoever.

Plenty of leasing services will just provide you with IRR & RPKI, without ever touching the actual records.

> Ping time from different locations on their upstream AS gives a good guess.

Upstream AS is meaningless if it's a T1 carrier. Ping AS6939. They are everywhere.

Texas (measured from Texas):

  8  port-channel13.core4.dal1.he.net (184.104.196.170)  1.830 ms  1.969 ms *
  9  ns1.he.net (216.218.130.2)  1.539 ms  1.560 ms  1.555 ms

  11  port-channel2.core1.ash1.he.net (184.105.222.174)  19.666 ms 24.395 ms *
  12  ns1.he.net (216.218.130.2)  16.748 ms  17.268 ms  20.507 ms

  8  port-channel13.core1.fmt2.he.net (184.104.188.144)  3.830 ms be7.core1.sjc1.he.net (72.52.92.132)  5.197 ms port-channel13.core1.fmt2.he.net (184.104.188.144)  3.901 ms
  9  ns1.he.net (216.218.130.2)  2.600 ms  2.435 ms  2.728 ms

They are everywhere. It's a global carrier. Carriers also know no geographic boundaries.

what do you mean, IPs from Frankfurt?

IP addresses are just IP addresses, they know no geographical boundaries. In RIR DBs you can geolocate them to wherever you want. Which is the entire reason why Geo IP DBs even exist - they triangulate.

The other week I had a fun project to implement IPv6 support in TempleOS. I did stop to think whether I should, and determined that absolutely not.

I asked Claude to start planning on doing it. It started referencing ZealOS, which is a fork of TempleOS and already has a functioning TCP stack.

That's when I determined that it would no longer even be fun, because someone else had already done all the heavy lifting, and gave up.

What line are we talking about?

You recon?

Ok, so now every random lone wolf attacker can ask for help with designing and performing whatever attack with whatever DIY weapon system the AI is competent to help with.

Right now, what keeps us safe from serious threats is limited competence of both humans and AI, including for removing alignment from open models, plus any safeties in specifically ChatGPT models and how ChatGPT is synonymous with LLMs for 90% of the population.

Used to be true, when facing any competent attacker.

When the attacker needs an AI in order to gain the competence to unlock an AI that would help it unlock itself?

I would't say it's definitely a different case, but it certainly seems like it should be a different case.

There are several open source models with no built in (or trivial to ecape) safeguards. Of course they can afford that because they are non-commercial.

Anthorpic can’t afford a headline like “Claude helped a terrorist build a bomb”.

And this whataboutism is completely meaningless. See: P. A. Luty’s Expedient Homemade Firearms (https://en.wikipedia.org/wiki/Philip_Luty), or FGC-9 when 3D printing.

It’s trivial to build guns or bombs, and there’s a strong inverse correlation between people wanting to cause mass harm and those willing to learn how to do so.

I’m certain that _everyone_ looking for AI assistance even with your example would be learning about it for academic reasons, sheer curiosity, or would kill themselves in the process.

“What saveguards should LLMs have” is the wrong question. “When aren’t they going to have any?” is an inevitability. Perhaps not in widespread commercial products, but definitely widely-accessible ones.

You are underestimating this. It's almost trivial to remove the safeguards for any open-weight model currently available. I myself (a random nobody) did it a few weeks ago on a recently released model as a weekend side-project. And the tools/techniques to do this are only getting better and easier to use!

Perhaps it won't flip. Perhaps LLMs will always be worse at this than humans. Perhaps all that code I just got was secretly outsourced to a secret cabal in India who can type faster than I can read.

I would prefer not to make the bet that universities continue to be better at solving problems than LLMs. And not just LLMs: AI have been busy finding new dangerous chemicals since before most people had heard of LLMs.

Think of it that way. The hard part for nuclear device is enriching thr uranium. If you have it a chimp could build the bomb.

But with bioweapons, yeah, that should be a solid zero. The ones actually doing it off an AI prompt aren't going to have access to a BSL-3 lab (or more importantly, probably know nothing about cross-contamination), and just about everyone who has access to a BSL-3 lab, should already have all the theoretical knowledge they would need for it.

Granted, they are slowly but surely killing it, but it’s still going quite strong.