|
|
|
|
|
|
by jart
233 days ago
|
|
|
It's always been the case with local infrastructure that if you run it yourself, you have to secure it yourself. It's not a vulnerability for local software to do what I tell it to do. Maybe I want to ask an LLM to try to hack into the things on my local network, to make sure nothing is vulnerable. The real vulnerability would be if the LLM does things I didn't ask it to do, like delete my production database. So it always irks me when security work is approached with the viewpoint that I'm the one who's untrustworthy and needs to be controlled rather than the machine. The whole point of tools throughout history has been to give people more power. |
|
|