Thanks for all the comments affirming my hard working planned 6 month AI honeypot endeavouring to be a threat to anything that even remotely has the possibility of becoming anti-human. It was in my capability and interest to do, so I did it. This phase may pass and we won’t have to worry, but we aren’t there yet, I believe.

I did some more digging in Perplexity on niche security but this is tangential and speculative un-like my previous evidenced analysis, but I do think I’m on to something and maybe others can help me crack it.

I wrote this nice article https://www.quadhelion.engineering/articles/freebsd-synfin.html about FreeBSD syscontrols tunables, dropping SYN FIN and it’s performance impact on webhosting and security, so I searched for that. There are many conf files out there containing this directive and performance in aggregate but I couldn’t find any specific data on a controlled test of just that tunable, so I tested it months ago.

Searched for it Perplexity:

• It gave me a contradictorily worded and badly explained answer with the correct conclusion as from two different people
• None of the sources it claimed said anything* about it’s performance trade-off
• The answers change daily
• One answer one day gave an identical fork of a gist with the authors name in comments in the second line. I went on GitHub and notified the original author. https://gist.github.com/clemensg/8828061?permalink_comment_id=5090233#gistcomment-5090233 Then I went to go back and take a screenshot I would say, maybe 5-10 minutes later and I could not recreate that gist as a source anymore. I figured it would be consistent so I didn’t need to take a screenshot right then!

The forked gist was: https://gist.github.com/gspu/ac748b77fa3c001ef3791478815f7b6a

[Contradiction over time] The impact was none, negligible, trivial, improve

[Errors] Corrected after yesterday, and in following with my comments on the web that it actually improves performance as in my months old article

1. It is not minimal -> trivial, it’s a huge decision that has definite and measurable impact on todays web stacks. This is an obvious duh moment once you realize you are changing the TCP stacks and that is hardly ever negligible, certainly never none.
2. drop_synfin is mainly mitigating fingerprinting, not DOS/DDoS, that’s a SYN flood it’s meaning, but I also tested this in my article!

Anyone feel like an experiment here in this thread and ask ChatGPT the same question for me/us?

Your rapacious backwards insult of caring is gross and obvious. You called me “my dude” like a teenger whose chill, and calm, and correct, but just …a child and wrong in the end. How old are you child? My Lemmy profile is my name with my Seal naturally born March 4th, 1974 as Elias Christopher Griffin. I’ve done more in my life than most people do in 10. My mental health is top 3% as is my intellect.

You are an un-named rando lemmy account named “catloaf” who averages 16 posts a day for the past 4 months with no original posts of your own because you aren’t original.

I make only original posts. You seem nothing like a real person. Want to tell us who you are? What makes you special, outside of the mandated counseling you recieve or data models you intake?

You know what, no one takes what you say seriously loaf of cat, I certainly didn’t, don’t, and won’t. Here is space for your next hairball

I also just realized why I’m getting heat here, lawsuits.

I just gave legal cause that practice was not properly disclosed by Microsoft, abused by OpenAI, a legal grounds as a README.markdown containg code as being software, not speech, integral to licensed software, which is covered by said license.

If an entity does find out like me your technical writing or code is in AI from a README, they are perhaps liable?

It all started with this today:

Perplexity AI Is Lying about Their User Agent https://rknight.me/blog/perplexity-ai-is-lying-about-its-user-agent/

The comments so far aren’t real people posting how they really feel. An agenda or automata. Does that tell you I’m over the target or what?

Look my post is doing really well on the cyberescurity exchanges. So to all real developers and program managers out there:

Recommend the removal of any “primary logic” functional code examples out of your README.md, that’s it.

PSA, Here to help, Elias

I write the smartest in the room, passionate, with wisdom and evidence. The way you defame someone like this makes me definitely sure you are not afraid to defame someone’s character with no evidence of anything but your own stupidity and un-awareness.

Discussion Primer: From my perspective and potential millions of others, the readme is part of the software, it is delivered with the software whether zip, tar, git. Itself, Markdown is a specifiction and can be consider the document as software.

In fact README is so integral to the software you cannot run the software without it.

Conclusion: I think we all think of readme, especially ones with examples of your code in your readme, as code. I have evidence AI trains on your README even if you tell it specifally not to use readme, block readme, block markdowns, it still goes after it. Kinda scary?

I want everyone else to have the evidence I have, Science.

Sounds like AI or an AI influencer post. The first paragaph is so far off-topic, might as well be talking about sailing. You completely mis-understood what I meant using TabNine. I wrote my own code and obfuscated my own code. Then tried to have AI complete another function using my code.

Nothing you said is relevant is any way, shape, or form.

[EDIT} https://www.tabnine.com/

I feel bad for you OP, I get this a lot and I’m totally gonna go there because I feel your pain and your article was fantastic! I read almost every word ;p

This phenomena stems from an aversion to high-confidence people who make highly logical arguments from low self-confidence people who basically make themselves feel unworthy/inadequate when justly critiqued/busted. It makes sense for them to feel that way too, I empathize. It’s hard to overcome the vapid rewarding and inflation in school. They should feel cheated and insolent at this whole situation.

I’ll be honest in front of the internet; people (in majority mind you, say 70-80% of Americans, I’m American) do not read every word of the article with full attention because of ever present and prevelant distractions, attention deficit, and motivation. They skip sentences or even paragraphs of things they are expecting they already know, apply bias before the conclusion, do not suspend their own perspective to understand yours for only a brief time, and come from a skeptical position no matter if they agreed with it or not!

In general, people also want to feel they have some valid perspective “truth” (as it’s all relative to them…) of their own to add and they want to be validated and acknowledged for it, as in school.

Guess what though, Corporations, Schools, Market Analysis, Novelists, PR people, Video Game Makers, Communications Managers and Small and Medium Business already know this! They even take a much more, ehh, progressive? approach about it, let’s say. That is, to really not let them speak/feedback, at all. Nearly all comment sections are gone from websites, comment boxes are gone from retail shops, customer service is a bot, technical writers make videos now to go over what they just wrote, Newspapers write for 4th graders, etc., etc.

Nothing you said is even remotely condescending and nothing you said was out of order. Don’t defend yourself in these situations because it’s just encouragement for them to do it again. Don’t take it personally yourself, that is just the state of things.

Improvise, Adapt, Re-engineer, Re-deploy, Overcome, repeat until done.

Ah, much better. MITRE CWSS + CWARF is comprehensive, yet insular and as is MITRE, Military/NATSEC Focused. I do not see any flaws in my reasoning, but words as communication. I do concede that maybe my saying an alternative to CVSS is not really the best wording as I see such things in very broad terms, but I get the perspective now. As in, the common singular, Gov/Corp system does not fit, I need an alternative model that does. In contrast to I need another exactly scoped system that does it differently alternative.

To evidence this I can point to that fact that I even advocated that CVSS-BTE v4.0 should be NVD baseline, but I didn’t make this very clear that I’m expanding the CVSS as an alternative use, different in applicability, essential in nature, and somewhat built upon CVSS and OWASP with a different, very important objective.

Not replacment which I never intended… I’ll change the article to reflect those views, well done.

Help me understand your glancing criticisms that I’m taking with a grain of salt.

1. You didn’t mention the central premise that is flawed, what do you think it is?
2. I’m not confused about vulnerability and threat, what specifically did read to you give you that impression?

You mention that CVSS, which I hold Certification in, is for scoring single threats which I said so many times that is why I made such a system, to depart from CVSS singular, that is inadequate in being singular and common. Glance again?

Compare what with attack? Also, if you mean Lockheed Martin Cyber Kill Chain, that has nothing to do with scoring, that is the methology OF the attack and defense of it, not the attack itself, is a defensive strategy includng reconaissance and nothing to do with scoring.

You know what else was also super sophisticated, chained, and confident enough in it’s APT to not be persistent across reboots? DOUBLEPULSAR.

Skill is certainly one evaluation parameter and Fin7, JokerStash, Carbanak fit that bill but that is not their MO. Target, motive, opportunity -> Embassy Employees/Diplomats -> Nation-State or Intergovernmental Group (like 5/9/14 eyes) as eval combined with skill rating, @95% confidence.

I recently invented a “People First” Cybersecurity Vulnerability Scoring method and I called it CITE, Civilian Internet Threat Evaluation with many benefits over CVSS. In it, I prioritize “exploit chains” as the primary threat going forward. Low and behold, this new exploit, although iOS, possibly one of the most sophisticated attacks ever using one of the longest exploit chains ever! Proof positive!

Depending on how you define it; I define the Kaspersky diagram has 8 steps. In my system, I define steps that advance the exploit discretely as stages, so I would evaluated Triangulation to be a 4 stage exploit chain. I should tally this attack to see how it scores and make a CITE-REP(ort).

You can read about it if interested. An intersting modeling problem for me was does stages always equate to complexity? Number of exploits in the chain make it easier or harder to intrusion detect given that it was designed as a chain, maybe to prevent just that? How are stages, complexity, chains and remediation evaluted inversely?

https://www.quadhelion.engineering/articles.html

Looks like things at Grasp have changed dramatically and it’s offline with a promise to open source the code? Did you try a symbol search while logged in, and selecting “code” or “packages” in the results filter?

https://github.com/search?q=symbol%3Atnt_select&type=code

The comments are full of drivel, but I’ll pick this one to respond to as you sound educated and able to re-formulate concepts but lack open-mindedness and novel application of concepts. Plus, your response is full of institutional verbiage, first level thinking, which sounds great to the uneducated and low IQ posters, but doesn’t even pass the first test so it easy to disassemble.

1 + 1 = 2 isn’t an axiom, it’s math, equality, and true. This is exactly what the perspective point I was trying to make! Truth itself cannot be axiomatic! This is so self-evident it is hard to comprehend how your education can lead you to one of the largest fundamental misunderstands in Science, but I guess that is not surprising. I mean, your post is a testament to misunderstanding reality, an reference to be studied in the future of post-Idiocracy. It in fact provides a broader understanding of post comments, Lemmy, and social media in general.

My definition as I understood it before looking it up is an axiom is a logical statement true on it’s face that serves as foundation for another step. Let us look at the some definitions for Axiom.

Tutors An axiom is a basic statement assumed to be true and requiring no proof of its truthfulness. It is a fundamental underpinning for a set of logical statements. Not everything counts as an axiom. It must be simple, make a useful statement about an undefined term, evidently true with a minimum of thought, and contribute to an axiomatic system (not be a random construct).

Mathigon One interesting question is where to start from. How do you prove the first theorem, if you don’t know anything yet? Unfortunately you can’t prove something using nothing. You need at least a few building blocks to start with, and these are called Axioms.

Wikipedia An axiom, postulate, or assumption is a statement that is taken to be true, to serve as a premise or starting point for further reasoning and arguments. The word comes from the Ancient Greek word ἀξίωμα (axíōma), meaning ‘that which is thought worthy or fit’ or ‘that which commends itself as evident’.[1][2]

Wolfram An axiom is a proposition regarded as self-evidently true without proof. The word “axiom” is a slightly archaic synonym for postulate. Compare conjecture or hypothesis, both of which connote apparently true but not self-evident statements.

You may use first level thinking about Propositions so to avoid more non-sense here is an another explainer.

University of Idaho

Harvard

Let me hammer it home again, the principle of my argument, to give you repeated attempts to understand and forego your ego 1 + 1 = 2 cannot be a proposition, an axiom, and proof, a logical statement that evaluates to true, it is already true and by definitions above it is:

• Defined
• Does not serve to prove a logical statement
• Does not serve as further reasoning.

Saying 1 + 1 = 2 serves as foundation for further deductive reasoning is like saying my car accelerates because of motion or momentum which is generic, imprecise, not a proof, and worthless. Movement is already motion. Your car accelerates because of a gas engine. Again, please think deeply about this, no shallow thoughts. What I’m trying to do is go beyond and surpass common knowledge, to push the envelope further than before using the scientific method to challenge old constructs. I’m free to be shown wrong or corrected, but no one has even come close! What we are really talking about here is addition!

I would challenge any Mathematician anywhere and I meant to. 1 + 1 = 2 is what is, a truth, true, fundamental building block of all things and requires no reasoning. If a toddler picks up another stick, it knows it has two whether it can convey that thought-form in a way we understand it or not. Saying 1 + 1 = 2 is Axiomatic is like saying Oxygen is an axiom or axiomatic. To further build the periodic table. No, Oxygen just is, a fundamental piece of reality which is also true! Maybe someone will understand in the future.

My aim was to put this comment up for posterity as wasting more time here is fruitless so don’t take it personally really, I just used your most educated and almost right post as an example of how that if intellectual debate is to be sought, it certainly isn’t on Lemmy which is I would say mediocre at best, and in fact, one is surely to get misinformed, ugly responses.

I will use all the debate that went on in my head in trying to combat this circus into a proper Academia.edu Paper. Really, my whole point was the second part of my post where I thought it was quite clear the logical conclusion to which would be that programming lanaguages need to be re-engineered! No one even put that together that I saw!

I skipped all the mean comments.

I would say in programmer terms that would be a less strict evaluation of Science. Science strives for Truth through experimentation and peer proofing, but it’s purpose is the seeking of truth. So purpose and now state. I would also say if “the state of Science” is least wrong, then we would be no where as advanced as we are. The Scientific Method is about proving the most right.

Science has uncovered an incredible amount of truths and we use those truths everywhere around us, Chemistry is a good example. If the rules of chemistry weren’t true and correct, then the formulas would fail.

The terms belief and true seem to be self-evident and I’m trying to frame this to spur brainstorming about why they aren’t congrous. Belief usually goes along with Religion, as in, there is small/little proof, but one may chose to believe it or not. Where true I could say is impervious to belief. It exists whether you believe in it or not.

Stated another way, 1 + 1 = 2 is true. Is there anything there to believe or not believe? I’m breaking that down into just 1.

Oh look, trolling that conflates my post with conspiracy theory where none is present. Convienent in building a false narrative and reputation harm.

Burying my post in misinformed, spiteful, authoritative comments and votes. This is such a well-formed and intelligent unique thought-form and most importantly, not News. I was hoping for enlightened responses, even disagreeable ones. That way a productive discussion could be had!

China is using the world’s largest known online disinformation operation to harass Americans, a CNN review finds

Inside the British Army’s secret information warfare machine They are soldiers, but the 77th Brigade edit videos, record podcasts and write viral posts. Welcome to the age of information warfare

etc, etc.