Sure, in Firefox itself it wasn’t a severe vulnerability. It’s way worse on standalone PDF readers, though:

In applications that embed PDF.js, the impact is potentially even worse. If no mitigations are in place (see below), this essentially gives an attacker an XSS primitive on the domain which includes the PDF viewer. Depending on the application this can lead to data leaks, malicious actions being performed in the name of a victim, or even a full account take-over. On Electron apps that do not properly sandbox JavaScript code, this vulnerability even leads to native code execution (!). We found this to be the case for at least one popular Electron app.

Huh? What do you mean “if”? Such a PDF vulnerability literally did happen a few months ago; fixed in Firefox v.126: https://codeanlabs.com/blog/research/cve-2024-4367-arbitrary-js-execution-in-pdf-js/.

There’s no real need for pirate ai when better free alternatives exist.

There’s plenty of open-source models, but they very much aren’t better, I’m afraid to say. Even if you have a powerful workstation GPU and can afford to run the serious 70B opensource models at low quantization, you’ll still get results significantly worse than the cutting-edge cloud models. Both because the most advanced models are proprietary, and because they are big and would require hundreds of gigabytes of VRAM to run, which you can trivially rent from a cloud service but can’t easily get in your own PC.

The same goes for image generation - compare results from proprietary services like midjourney to the ones you can get with local models like SD3.5. I’ve seen some clever hacks in image generation workflows - for example, using image segmentation to detect a generated image’s face and hands and then a secondary model to do a second pass over these regions to make sure they are fine. But AFAIK, these are hacks that modern proprietary models don’t need, because they have gotten over those problems and just do faces and hands correctly the first time.

This isn’t to say that running transformers locally is always a bad idea; you can get great results this way - but people saying it’s better than the nonfree ones is mostly cope.

Incredibly weird that this thread was up for two days without anyone posting a link to the actual answer to OP’s question, which is g4f.

The thing I said I did? Yes; here’s the processed image:

If you mean the math in the post, I can’t read it in this picture but it’s probably just some boring body-of-rotation-related integrals, so basically the same thing as I did but breaking apart the vase’s visible shape into analytically simple parts, whereas I got the shape from the image directly.

This roughly checks out. I’m getting 66%, based on the methodology of cutting out the jug’s shape from the picture and numerically integrating the filled and empty volume (e.g. if a row is d pixels wide, it contributes d^2 to the volume, either filled or empty depending on whether it’s above or below the water level).

Ivermectin is a human antiparasitic too. But more importantly, I’m pretty most of this is just a myth. The stories I’ve seen about mass ivermectin hospitalizations turned out to be hoaxes, see e.g. here. If you literally took an entire horse-sized dose (200μg/kg for a 700kg horse, so 140mg) as a 60kg human, you’d get a dose of 2.3mg/kg, 11x the recommended amount for infestation - which has been tested in humans to be safe. Ivermectin is amazingly safe for a drug; you have to really try to get an overdose.

So I think a few people (seems to be ~several hundred for all of US in 2021) did somehow manage to actually get themselves poisoned (I’d love to know how; I think I saw a statistic once about what dosages were found in ivermectin poisoning cases but I can’t find it in my bookmarks, and the few actual case reports I can find don’t provide a dosage), but most of the “horse dewormer” stories in the media were just political propaganda.

(The above isn’t getting into the question of whether ivermectin is effective against COVID, though. I think it was reasonable to think so back during the start of the pandemic, since the studies were really quite suggestive, and it was a safe drug to try, and the studies weren’t even debunked at the end - rather, it was found that the improvements were most likely due to the drug treating the coincidental parasite infestations the patients had. It’s not so reasonable now that we have better studies and real working anti-COVID drugs, and the people who suggest taking ivermectin for COVID nowadays sure are crazies, but I personally would not shame people for doing it back in 2021 or so. Taking one of the only drugs that seemed to be effective against a terrifying pandemic is just a smart thing to do, if it’s this safe.)

Hmm, interesting. Somewhat compelling, but:

• it’s a rather small (n=38) Chinese pilot study
• the effect on the sleep latency is sizable (a latency decrease from 31±14 to 18±12 minutes, effect size of 0.85), but there’s no effect on actual sleep duration.
• the sleep measurements were subjective (sleep diaries, not actigraphy)

I’m also a bit concerned why it’s the only study with this methodology in this later meta-analysis - all of the other “behavioral intervention” studies in it experiment with stuff like “extended time-in-bed”. In other words, there seems to not have been any followup or replication of this study.

Security as in cybersecurity, yes. Security as in not getting caught violating government bans, not so much - if you’re in a country where getting repressed by your government is a real possibility, it helps a lot for it to not be possible to see exactly what sites you visit. Reminder: even over HTTPS, the domain name (like lemmy.world) is normally not encrypted. Encrypted Client Hello can solve this, but it has only started being commonly used a year ago or so, and more importantly requires the host to support it.

For jobs behind the camera, there are something like, only 13% of women employed in the film industry.

That doesn’t necessarily imply sexism at all, note. If it turns out women are just 6 times less likely than men to want to have these jobs, then this percentage would be 13% in a perfect non-sexist world. (Though 13% is concerningly low; the percentage of women that go into computer science is around 20-25% and that’s one of the strongest effects. Plausibly the remaining 1.5-2x difference here is due to sexism; I can buy filmmaking being one of the most sexist industries).

It kills parasitic infections caused by worms. Cancer is not a parasitic infection caused by a worm. It’s like asking if a mouse trap can fix climate change. No, because they are in no way related.

That’s not a convincing argument. It suffices to say that ivermectin was considered as a candidate for a cancer drug as early as 2018, with a proposed mechanism of action and everything. It’s not as simple as “cancer is not a parasitic infection”, because pharmacology is never this simple. That paper also mentions positive study results both in vitro and in vivo. There is also a lot of later research (search ivermectin cancer on google scholar), but it’s potentially biased by the horrifying memetic war that happened in America during the covid pandemic.

My conclusion from ten minutes of googling is that quite possibly it’s a real weak anti-cancer drug much like the already-known ones. It’s hard to be sure of those things - we’re in an age where there’s enough research and publication bias and politics that you can’t trust individual studies¹. And you can’t fully trust meta-analyses either, but I can’t even find a meta-analysis of ivermectin as used for cancer, so.

(It’s pretty safe to say that it’s not an amazing cancer drug much better than all existing ones (like some people seem to think) - both on priors, and because if that was the case it’d be extremely obvious from all of the studies already made.)

¹ I don’t mean fraud, I mean that if a hundred teams over the globe try a study of something that doesn’t work, five of them will find p<0.05 results by pure chance and quite possibly only those teams will publish it - so until several good replications come along, it’ll look like there’s a real and well-supported effect. And there can be much subtler problems than this - see, say, how well the studies of psychic powers go.

I wouldn’t generally require people to “compile their findings into a report”, but in this case the messages are weirdly devoid of any checkable information and then the reddit user in question mysteriously lost a laptop full of findings, so, yeah, these claims are not compelling. I don’t think the reverse engineer in question was lying, per se, but I do think they were very wrong at first by random chance, the story gained traction, and then they were too embarrassed to admit they fucked up.

Note that openai’s original whisper models are pretty slow; in my experience the distil-whisper project (via a tool like whisperx) is more than 10x faster.

Really? This is the opposite of my experience with (distil-)whisper - I use it to generate subtitles for stuff like podcasts and was stunned at first by how high-quality the results are. I typically use distil-whisper/distil-large-v3, locally. Was it among the models you tried?

How’s musk related to this one?

Yet, people suffering from it can lead happy and fulfilling lives.

Sure, it’s possible for a person with a severe disability to grow up happy. But when one is making a decision in real life (like having a child), one should consider an average case, not a exceptional one. And the average case for an example like Down’s Syndrome is pretty bad. It is a bit unclear how to quantify the suffering in this particular disease’s case because the main harm to the child is lifelong mental impairment and assorted physical disabilities - but it is at least going to inflict suffering on the child’s family, since caring for a child with a severe disability for their entire life isn’t exactly fun.

It is a slippery slope that, if not navigated carefully, has historically leaded to atrocities.

I don’t see the relation. You’ll notice that I’m not proposing killing off disabled people for the “improvement of society” or whatever it was that nazis called it. I am not doing this because nonconsensually killing a person is a harm to them. But deciding not to have a child isn’t the same thing as murdering a person - it’s not harming anyone who exists, and hence may well be morally better than having a child.

(Oh, I suppose you might mean that I’m arguing that there are circumstances in which it’s morally bad for a person to have a child, which is similar to nazi eugenics in that I’m deciding whether or not people should have children? In that case, my answer is that the difference is that I’m a person, not an authoritarian government, and I don’t have power (nor, indeed, the desire) to force people to obey my personal moral judgements.)

I see. No, I don’t think I have any specific questions at this point.

I agree that there’s a lot of space between “considered disabled” and “horrible life”, but OP said “suffer their whole life” which I associated with the latter.

Is there some feature comparison of lemmy vs mbin vs other reddit-like platforms? There was some major reason why I didn’t like kbin, but I forgot why.