Sir. Haxalot

I’m like 90% sure that this post is AI Slop, and I just love the irony.

First of all, the writing style reads a lot like AI… but that is not the biggest problem. None of the mitigations mentioned has anything to do with the Huntarr problem. Sure, they have their uses, but the problem with Huntarr was that it was a vibe coded piece of shit. Using immutable references, image signing or checking the Dockerfile would do fuck-all about the problem that the code itself was missing authentication on some important sensitive API Endpoints.

Also, Huntarr does not appear to be a Verified Publisher at all. Did their status get revoked, or was that a hallucination to begin with?

To be fair though the last paragraph does have a point, but for a homelab I don’t think it’s feasible to fully review the source code of everything you install. It would rather come down to being careful with things that are new and doesn’t have an established reputation, which is especially a problem in the era of AI coding. Like the rest of the *arr stack is probably much safer because it’s open source projects that have been around for a long time and had had a lot of eyes on it.

Worth noting that despite the headline this does not have anything to do with the huge outage in the end of 2025.

The company said the incident in December was an “extremely limited event” affecting only a single service in parts of mainland China. Amazon added that the second incident did not have an impact on a “customer facing AWS service.”

Neither disruption was anywhere near as severe as a 15-hour AWS outage in October 2025 that forced multiple customers’ apps and websites offline—including OpenAI’s ChatGPT.

I would also have felt some level of schadenfreude if it turned out that any of the really big incidents in the end of 2025 was a result of managements aggressive pushes for AI coding. Perhaps that would cool off the heads of executives a bit if there were very real examples pf shit properly hitting the fan…

The free version is mainly just a number of user and device limit. Although the relaying service might be limited as well, but that should only matter if both of your clients have strict NAT, otherwise the Wireguard tunnels gets directly connected and no traffic goes through Netbirds managed servers.

You can also self-host the control plane with pretty much no limitations, and I believe you no longer need SSO (which increased the complexity a lot for homelab setups).

That seems to be the terms for the personal edition of Microsoft 365 though? I’m pretty sure the enterprise edition that has the features like DLP and tagging content as confidential would have a separate agreement where they are not passing on the data.

That is like the main selling point of paying extra for enterprise AI services over the free publicly available ones.

Unless this boundary has actually been crossed in which case, yes. It’s very serious.

That is kind of assuming the worst case scenario though. You wouldn’t assume that QA can read every email you send through their mail servers ”just because ”

This article sounds a bit like engagement bait based on the idea that any use of LLMs is inherently a privacy violation. I don’t see how pushing the text through a specific class of software is worse than storing confidential data in the mailbox though.

That is assuming that they don’t leak data for training but the article doesn’t mention that.

They’re probably not going to use it…

… but if they do it’s going to be a hell of a good starting point in motivating people to leave Facebook

Honestly you pretty much don’t. Llama are insanely expensive to run as most of the model improvements will come from simply growing the model. It’s not realistic to run LLMs locally and compete with the hosted ones, it pretty much requires the economics of scale. Even if you invest in a 5090 you’re going to be behind the purpose made GPUs with 80GB VRAM.

Maybe it could work for some use cases but I rather just don’t use AI.

Working at home since 2020, and while I agree with the advantages most people post here, I definitely miss talking with people over lunch, or even getting out for After Work beers now and then. (Obviously that depends a lot on if you like your coworkers or not)

This is apparently a super controversial opinion but I wouldn’t mind working somewhere that forces people to the office 2, maybe 3 days a week. Just not every day.

Maybe i misunderstand what you mean but yes, you kind of can. The problem in this case is that the user sends two requests in the same input, and the LLM isn’t able to deal with conflicting commands in the system prompt and the input.

The post you replied to kind of seems to imply that the LLM can leak info to other users, but that is not really a thing. As I understand when you call the LLM it’s given your input and a lot of context that can be a hidden system prompt, perhaps your chat history, and other data that might be relevant for the service. If everything is properly implemented any information you give it will only stay in your context. Assuming that someone doesn’t do anything stupid like sharing context data between users.

What you need to watch out for though, especially with free online AI services is that they may use anything you input to train and evolve the process. This is a separate process but if you give personal to an AI assistant it might end up in the training dataset and parts of it end up in the next version of the model. This shouldn’t be an issue if you have a paid subscription or an Enterprise contract that would likely state that no input data can be used for training.

For now, BMW is defaulting to a more traditional approach. If it requires a data package of some sort, it will probably have a recurring fee—and BMW says its customers are already comfortable subscribing to such add-ons.

Sounds like a fairly reasonable position imo, and that they listen to the outrage about heated seats (which tbh was ridiculous). I get the feeling that everyone who commented on this didn’t actually read the article, lol.

Full disclosure: I own a fairly recent BMW and do like it a lot. Would I have bought it with subscription based heated seats? Maybe not, but I do appreciate other things like having a physical button to go into battery save mode and not having to dive 3 touch screen menus down… or that it’s one of the most powerful hybrids in electric only mode (though not anymore I think)… or being generally more dialed back when it comes to driver assist features.

That said I will admit that it has a physical button that tells me to pay up when pressed, to enable automatic high beam control… though it’s not like it was an advertised feature (got it used).

I can’t really tell if you’re joking or not but no, I’m saying that it’s a bug, and at no point anything is sent off your computer

The first one was my an experimental instance and I will shut it down soon. Initially I planned to migrate the database to new hosting but I also regretted using a domain that was essentially a reference to reddit (.red). So I decided to start clean on another domain while it was only me who used it for a limited time.

I like that the article excerpt clearly says that it’s simply about files not being removed when the trash bin is emptied, and it’s a problem specific to the Canonical snap system… Yet every single other comment in here rants about Microsoft spyware. Not many people read beyond the headline, lol.

As someone who has been exploring the Fediverse for about 2 weeks, it’s been an overall good experience. I’ve been trying to use it instead of Reddit as much as possible, but it’s also apparent that there’s a lot less content.

I hope that the verse will continue to grow and that it will solve the content problem.

Otherwise the clients feel like a breath of fresh air and less enshittified than Reddit…

edit: Also the first comment talking about experiences that are just too jarring. I haven’t encountered anything like that but maybe I am just a sweet summer child.