Big “if” though, and that would be contingent on the fact that the data is desirable enough that other people are willing and able to host it long-term, even before being able to find a country like that, and set up a torrent. I’ve a few torrents that are dead now, for example, because people weren’t that interested in keeping a copy of what they pointed to/the tracker no longer works.

You’d still need to share the torrent to spread it anyhow, and that runs into the DMCA issue all over again. The pirate bay only hosted torrents and magnet links, but it still got shut down for piracy, way back when. “facilitating pervasive online infringement [of copyright]” is something that can get you shut down, as Limewire found out.

A fair few sites will also wipe image/EXIF metadata for safety reasons, since photo metadata can include things like the location where the photo was taken.

Or, session cookies. They don’t need special privilege to access, and if you grab all of someone’s cookies, you can probably get some valid session cookies for logged in accounts just by checking for some common domains in one/by keyword.

From there, it would be trivial to get into email, social media, and other accounts to do other things with.

It would be trivial to add a “please click ‘yes’ to the UAC prompt to allow verification” screen, so that isn’t really going to stop anyone.

I’ve seen a bit of office malware in the past that did that, where it had a bunch of images instructing you to enable macros and that.

That’s probably why they “helpfully” include a little picture of the symbol on the key, so you know what it looks like.

This feature is extremely insecure now that there’s several AIs that can replicate voices. If a scammer calls you and you say a few words (like if you say “hello” and “sorry, I think you’ve got the wrong number”), a recording of that can be enough for them to replicate your voice.

It honestly wasn’t really that secure to begin with, since the audio would have the daylights crushed out of it through the phone system. Though AI probably makes it easier by just letting you have a computer at the end of it spit out some words.

Someone could probably get away with it by sounding vaguely enough like the person calling.

Or just do the tried and true method of going through the in-person support. Voice recognition, at least in my experience, over the phone, has trouble with accents, so someone calling to get around that isn’t uncommon. It never works with me, for example, it just goes “please try again” until it redirects me to an agent.

From the Browser’s viewpoint, would there be any difference if the webpage has a JS button to put something in the clipboard, or it having code running in the background that puts things into the clipboard at page load?

It’s not like there’s that much of a difference, as far as the Browser is concerned.

Depends on how dedicated they are. It’s not implausible that some might just shuffle it away as “computer verification stuff”, and faithfully paste and execute the code, since it’s the computer doing a computery thing, that it says it is doing, and asks you to do, all must be well.

Just make the screen one gargantuan pixel, and infer the other 2-million.

I have personally found generative-text LLMs quite good for creating titles. As an example, I have a few hundred tweets that I’m trying to put into a file, and I’ll use an LLM to create a human-readable name for them. It’s much better than a lot of the other summarisation mechanisms (like BERT) I’ve tried with it, but it’s still not perfect, because the model tends to output the same thing in slightly different words each time, so repeat runs will often result in the same thing with a different title.

But, that is also a fairly limited use case.

At the same time, the trouble with local LLMs is that they’re very resource heavy. Your average household computer isn’t going to be able to run one with much usability or speed.

What is a “trustworthy software environment”?

Does that mean that it will get mad and fail you for having Developer options enabled? Having F-Droid installed? Having it plugged into a computer?

I didn’t, actually, but thank you.

The Star Trek ones over on startrek.website. They weren’t the most active to begin with, though their activity has dropped a bit more over time.

That “little more complicated” is asking for a lot, though.

Say you’re coming from Reddit, or Facebook, or something.

It would not be unreasonable to believe that, like Reddit, every single Lemmy instance is its own separate, self-contained site.

And that’s even before figuring out federation works, and how to access things from outside of your instance, or all the nuances that come with defederation and all of that. You made the mistake of joining beehaw? Whoops, all the other “subs” are now inaccessible, because beehaw is not connected to any of the others.

Central places like Reddit don’t have that complexity. Reddit communities are singular, and there’s no overarching layer to complicate things. A community that disagrees with another, and blocks them doesn’t affect your experience as an user.

The decentralisation probably doesn’t help either. People coming to Lemmy from other places are coming from a centralised system. That takes some getting used to.

If you’re new to this, you can be forgiven by thinking that all the Lemmy instances are their own separate thing, like the forums of old, rather than that they’re all interconnected (excluding a whole bunch of stuff about defederation and all of that mess).

Part of it is that people also moved on from Lemmy too. Lemmy is nice, but there also isn’t very much by way of activity on it, which feeds back into itself. No activity means there’s nothing to draw people into it, and not enough to keep them around when they are there.

One of the communities and (non-world) instances I frequented is all but dead these days.

It basically gets longer every few years. At this rate, it’ll turn into an Amazon listing.

USB 3.5 Gen 3 2x2 20 Gbit Two-Sided DP PD USB 3 USB 2 USB 1 Compatible

If they somehow succeed, that’s how you know you’ve found a keeper.

Had the company paid for the training data and/or left it as voluntary, there would be less of a problem with it to begin with.

Part of the problem is that they didn’t, but are still using it for commercial purposes.