Uncategorised – Page 2 – Gingercatsoftware

July 11, 2023July 11, 2023

AI secrete source!

So it’s interesting comparing AI’s. I’ve been hacking away and recently I got privateGPT to run locally on my own machine. It’s an old and under powered beast and an average query will take about 15 minutes to process. It uses up all the ram, and the cpu’s sit at about 98% utilisation. The fans turn on and when they stop howling it’s usually an indication that the machine has spat out an answer (I think I saw 42 at one point!).

So this training of the AI and quoting of sources is interesting. PrivateGPT will produce sources – but with that product I’ve also run into my first AI hallucination (basically where an AI trys too hard and brings up false info).

This all begs the question – considering much of the available human knowledge used to train AI came from all of humanity, shouldn’t AI companies be taxed at a very high rate and pay that money back into the community with say the aims of establishing an international sovereign wealth fund that would eventually go on to supporting / establishing a universal basic income for all of humanity (one can dream I know)?

A couple of the publicly accessible AI’s that I’ve been tinkering with will not quote sources and will not tell you much if anything with regards what they have been trained on. But there is now this very interesting development that the Guardian have reported on which is that Sarah Silverman is current sueing OpenAI and Meta claiming AI training infringed copyright

https://www.theguardian.com/technology/2023/jul/10/sarah-silverman-sues-openai-meta-copyright-infringement

I’m going to be holding on to my pop corn real tight as this works it’s way thru the courts, and the big wigs in silicon valley work out what to do and how to do it. I told you 2023 was going to be a very interesting year for AI.

June 21, 2023June 21, 2023

One ring – not a good idea!

There was a fairly famous post once about how Sys Admins are lazy by nature and that automating things is a good habit to have – thus supporting the lazy label. But have we got too lazy, and is that laziness creating environments that are vulnerable?

The reason for this post is that over the last few years I’ve been reading about systems that are designed to “Run the whole network”, “Manage all users and applications”. The problem is, when these systems go wrong you have a huge clean up job – lets look at a couple of examples.

SolarWinds Hack
This was what is know as a “supply chain breach” it is effectively where the software is hacked at the the source level “in other words at the SolarWinds development space” and that compramised software is distributed in good faith buy the company. This created a situation where one piece of software, which gave some users “God” access to the network and all the machines, and all the users. Was compromised (More than 30,000 public and private organisations)! You can read about it in detail on this page.

One of the problems is this attitude of “Single sign on”, one place to do everything. It’s a lovely concept isn’t it? It means that one machine can control all the services and all the users and all the groups and all the network and… well you get the picture. It means that you can have less staff, less skill sets to train and you know just be lazy.

But lets look at the NotPetya attack. If you want to have a few nightmares read up about what happened to the international company that had 150 domain controllers compromised, and the insane amount of money it took to clear this up. It’s one of the few times where slow internet probably saved a multinational company billions.

As someone who is interested in IT security and sysadmin, I keep coming back to the responsibility of an inquisitive person who knows the network, the machines and what they are all up to.

Ai, automation, constant monitoring, automated alerts etc are all importnat and on one level mind blowing. But we still need human intelligence and awareness. How much space is on that server? What is the network throughput on a day to day basis? Has there been a change? If so – go investigate it! NOW

Related links

Notpetya
https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/

SolarWinds

https://www.techtarget.com/whatis/feature/SolarWinds-hack-explained-Everything-you-need-to-know

April 30, 2022

Footscray Ginger

I’m sure this guy would not abuse my web site!

March 23, 2022

Nasty scanning behaviour 37.0.10.202

37.0.10.202 Banned due to http related scanning!
Nasty ip, you little stinker!

37.0.10.202 - - [23/Mar/2022:06:37:54 +1100] "GET /wp-load.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:38:12 +1100] "GET /style.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:38:27 +1100] "GET /wp-admin/style.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:38:50 +1100] "GET /s_e.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:39:06 +1100] "GET /s_ne.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:39:26 +1100] "GET /1index.php HTTP/1.1" 404 193 "www.bing.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, l$
37.0.10.202 - - [23/Mar/2022:06:39:43 +1100] "GET /3index.php?f=/NmRtJOUjAdutReQj/scRjKUhleBpzmTyO.txt HTTP/1.1" 404 193 "www.bing.com" "Mozilla/5.0 (Windows NT 10.0;$
37.0.10.202 - - [23/Mar/2022:06:39:51 +1100] "GET /wikindex.php?f=/NmRtJOUjAdutReQj/scRjKUhleBpzmTyO.txt HTTP/1.1" 404 193 "www.bing.com" "Mozilla/5.0 (Windows NT 10.$
37.0.10.202 - - [23/Mar/2022:06:40:03 +1100] "GET /wp-content/mu-plugins-old/index.php?f=/NmRtJOUjAdutReQj/scRjKUhleBpzmTyO.txt HTTP/1.1" 404 193 "www.bing.com" "Mozi$
37.0.10.202 - - [23/Mar/2022:06:40:15 +1100] "GET /radio.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:40:25 +1100] "GET /lock360.php?daksldlkdsadas=1 HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:40:35 +1100] "GET /wp-load.php?daksldlkdsadas=1 HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:40:46 +1100] "GET /old-index.php?daksldlkdsadas=1 HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:40:55 +1100] "GET /xmrlpc.php?daksldlkdsadas=1 HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:41:06 +1100] "GET /xmlrpcs.php?daksldlkdsadas=1 HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:41:17 +1100] "GET /wp-admin.php?daksldlkdsadas=1 HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:41:28 +1100] "GET /qindex.php?daksldlkdsadas=1 HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:41:39 +1100] "GET /doc.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:41:48 +1100] "GET /wp_wrong_datlib.php HTTP/1.1" 404 193 "www.bing.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 $
37.0.10.202 - - [23/Mar/2022:06:41:59 +1100] "GET /beence.php HTTP/1.1" 404 193 "www.bing.com" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, l$
37.0.10.202 - - [23/Mar/2022:06:42:16 +1100] "GET /ups.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:42:30 +1100] "GET /wp-signin.php?dizo&ping HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"
37.0.10.202 - - [23/Mar/2022:06:42:40 +1100] "GET /media-admin.php HTTP/1.1" 404 136 "www.bing.com" "wp_is_mobile"