Those who understand binary and those who don’t?

Quite some AI questions coming up in selfhosted in the last few days…

Here’s some more communities I’m subscribed to:

• !localllama@sh.itjust.works
• !fosai@lemmy.world
• !stable_diffusion@lemmy.dbzer0.com

And a few inactive ones on lemmy.intai.tech

I’m using koboldcpp and ollama. KoboldCpp is really awesome. In terms of hardware it’s an old PC with lots of RAM but no graphics card, so it’s quite slow for me. I occasionally rent a cloud GPU instance on runpod.io Not doing anything fancy, mainly role play, recreational stuff and I occasionally ask it to give me creative ideas for something, translate something or re-word or draft an unimportant text / email.

Have tried coding, summarizing and other stuff, but the performance of current AI isn’t enough for my everyday tasks.

Free Software, proprietary, open-weight models, source-available, FLOSS, copyleft, permissive license.

I think “open source” should mean what the OSI wants it to say, since they coined that term. But not all people agree and since they use it for different things and marketing, it’s lost some of its intended meaning. I don’t want to confuse people. And I also don’t like to use terms that can be (mis)used by the source-available people or people who add the commons clause, so I always try to include “free” as in freedom or “libre”.

True. Sadly the article is over 2 years old and not much has changed since.

I think an LLM integrated into the IDE would be better suited when it comes to projects that aren’t backed by a company like Microsoft who have a large amount of GPU compute to spare for their users.

Or it’d be bart of a CI pipeline. AFAIK that is theoretically already possible. You could configure the existing CI to feed the code through some form of AI code check.

HDMI 1.4 has a less than half the bitrate of the oldest DisplayPort standard. And regarding the newer HDMI standard: read the article. The forum are being jerks…

I think you’re completely right with that assessment. Journalist used to be a reputable profession. And explaining things and processing raw information into something that can be consumed by the reader, deemed important. Especially getting it right. There is a whole process to it if you do it professionally. And curating content and deciding what is significant and gets an audience is equally as important.

Doing away with all of that is like replacing your New York Times with your 5-year-old and whatever she took from watching the news.

😆

My Eternity has that feature. If I search for something with the magnifying glass icon, the next screen that opens has 3 tabs: Posts, Communities and Users…

Thanks. I don’t think I’m looking for anything in specific. I’m just always keeping my eyes open. And I don’t know if other clients have more features or other benefits. I get along with Eternity reasonably well but I’m also not set on it. If you say there’s nothing clearly superior, I’ll stay on it.

And which one is the best? I can’t be bothered to try them all. (I’m currently using Eternity, should I switch to something else?)

https://support.google.com/googleplay/android-developer/answer/1085703?hl=en

Uh yeah, I’m not sure. I’ve tried summarizing with AI tools. And there is the bot here on Lemmy that summarizes stuff… I never liked any of that. It’s really a mixed bag, from pretty okay summaries to entirely missing the point of the original article to bordering on false information. I think we’re far from there yet. However, it’s a common use-case for AI. Maybe in 1-2 years I can stop being afraid of misinformation being fed to me. Currently, I think the incorrectness of the information still outweighs any potential benefit. The more complicated it gets, thus making you in need of a summary in the first place, the more biased and skewed the results get. So I don’t see that happen in the very near future. But we definitely should keep up doing the research and pushing that.

Tagging and organizing is something I’d like an AI for.

What is it? A metasearch engine? A distributed or central database and crawler?

Cloudflare, Pagekite, a cheap VPS with a reverse proxy. Maybe IPv6-only access if your CGNat does that, ngrok, serveo, rathole, sish, a VPN… I also found portmap-io, webhook relay, packetriot and countless other smaller companies. There are quite some tools and services available. And which one is right for you might depend on the exact situation and what you’re hosting. I’m not an expert on this. I have an internet connection without a NAT, and additionally a really tiny VPS with a mailserver, a small website and wireguard. I just use that to tunnel through NAT if i need to. But that means I haven’t compared all the other services since I don’t need them (yet.) I’ve learned a bit about Cloudflare from this discussion.

Thx for explaining. I think I halfway know what this is about now. I don’t think I’m their target group. But I learned something about web application firewalls in the process and that is a good thing. I think I’m going to activate that for some of my private services since it’s so easy and look up if there are good ip ban lists. It’s a bummer that I don’t get to see proper documentation on this, since security is all about exact facts and scenarios. But I guess no answer is also an answer. If they just feed buzzwords to me, either my initial skepticism was warranted, or I’m just not their target audience and they only target enterprise users. Either way I’m better off with my current approach. I appreciate I got to learn something :-)

I tried to look it up but I wasn’t very successful. What they do in their free tier keeps being a mystery to me. In the $20/month is the the core ruleset from ModSecurity. I don’t need to pay them $20 to deploy that for me, the dataset is free and publicly available. I’ve just installed it on my VPS… It’s only a few lines in Nginx to enable that.

And what you’re talking about is $200 a month. I seriously doubt anyone here uses that plan for their homeserver. I wouldn’t pay $2400 in a year for it.

I still don’t get how that would work. Sure you can filter spam that way. And migitate attacks while the worst wave washes through the net. Or do machine learning and find out if usage patterns change. But how would it extend to 0-days faster than the software gets patched? This sounds more like snake-oil to me. If someone finds a way to inject something into a Nextcloud plugin and change things in the database so they have access… And then they do it to 100 cloudflare customers… How would Cloudflare know? If it’s a 0-day, they -per definition- don’t know in advance. And they’re just WAF, they don’t know if a user is authorized by mistake or if they’re supposed to have access. And they don’t know anything about my database, since it runs on my machine. And they also don’t know about the endpoints of the software and which request is going to trigger a vulnerability unless this manifests in some obvious (to them) way. Like 100 machines immediately start blasting spam through their connection and there is one common request in the logfiles. Otherwise all they can do is protect against known exploits. Maybe race the software vendor and filter things before they got patched. I just don’t see any substantial 0-day protection that extends to more than “keep your server up to date and don’t use unmaintained software.” Especially not for the home-user.

https://www.namecheap.com/support/knowledgebase/article.aspx/10128/2237/how-to-create-an-alias-record/

https://kb.porkbun.com/article/85-how-to-connect-your-root-domain-when-your-web-host-wont-provide-an-ip-address

Took me a while to remember… I think other providers don’t call it CNAME flattening, but ALIAS records. And namecheap lists them in their documentation. You maybe need to look it up if you’re interested, but I think they do in fact offer it. (I mean I’m not advertising for or against anything here. If you’re happy with your provider and your setup works, that’s fine. It’s definitely not available everywhere.)

I mean theoretically… I guess, if they do it right? It depends a bit. Some Linux distributions are crazy fast with patching stuff. And some stable channels have a really good track record of open vulnerabilities. Nowadays that’s not the only way of distributing software, vulnerability might depend on your docker container setup etc.

Are there actual numbers what Cloudflare adds on top? What 0-days they focus on? I mean do they have someone sitting there, reading Lemmy CVEs and then immediately getting to action to write a regex that filters out such requests?

And how much does it cost? They also list the same ModSecurity in their lower plans. I don’t think 0day protection would help people like me if it’s $200 a month.

Thanks. I read a lot of people recommending cloudflare. I believe a substantial amount of that group is on the free tier and not exactly making informed choices. Being a registrar, DNS provider and offering tunneling / port forwarding or some mechanism to traverse your home NAT are valid use-cases.