[ReactiveJelly]

Interesting. Since I'm behind Tor I will probably pick my own https client for sending json requests, instead of trusting this python client.

How will you ban bad actors if there's no keys and no registration?

[aortega]

Sure, the API is a very simple json request.

Currently, registration is needed for the sharing of AIs, as you rightly mentioned, to prevent malicious individuals from distributing malware links. However, accessing the AIs does not necessitate registration. This is because, depending on your definition of "bad actors," users have limitations in terms of what they can presently accomplish with an AI, even in an uncensored state.

[LoganDark]

But they can stress your servers with tons of requests. The point of requiring registration is usually to prevent DoS, not to prevent the models from being used for certain purposes.

[aortega]

I can handle that with automatic throttling, unless you want to spend a lot of resources doing a malicious attack.

[LoganDark]

> unless you want to spend a lot of resources doing a malicious attack

I don't want to perform an attack at all. I just think you probably underestimate the resources that any random darknet hacker possesses.

[aortega]

You can easily limit the damage with a Captcha or similar. Anyway, it survived being in the from page of Hacker News for a couple hours, so I think it's fine.