Additional explanation: this is primarily a personal setup.
There would be a lot of refinement and contingencies to implement something like this for corporate / business.
Having said that, I still exist on the ruthless side of blocking equation. I'd generally prefer some kind of small allow list than a gigantic block list, but this is how it's (d)evolved.
How is this better than blocking after a certain quantity in a range of time instead?
Single queries should never be harmful to something openly accessible. DOS is the only real risk, and blocking after a certain level of traffic solves that problem much better with less possibility of a false positive, and no risk to your infrastructure, either.
True.. my hope is that open weight models will progress to the point where they become viable coding agents for normies, so that even if open source dies with copyright, we will still nonetheless see a renaissance in people controlling their own computers, being able to create their own programs to solve their own problems. HyperCard on steroids, that anybody can use with no technical background. We're not there yet even for frontier models, but maybe in a few more years..
If any AI's will be sued into oblivion from Copyright holders until the bubble collapses into itself due to LLM rot over time due to the lack of curated human input.
As much as I want to agree with you, the people who like TikTok make up a significant amount of the population, and their opinions do matter--arguably more than yours, due to sheer numbers.
Smugly dismissing them doesn't do you any favors except for making you feel good about yourself for a few seconds.
You’d be surprised how many people don’t give a shit about TikTok. It’s just another blip in history like Facebook, Instagram, Vine, MySpace and others before them.
You say that like the typical 18 year old has any idea what they're doing when it comes to proper encryption and communication safety. That is never going to be the case.
It's a communication channel attached to the most popular social network for young people. Obviously they're going to use it a lot. They use it for the extreme convenience.
Wait a minute, what? What I read from your comment is that on your work machines the screen savers display ads? I mean, I’d heard Windows was getting bad with the ads, but surely it doesn’t work that way out of the box.
I think the winning move is just to ignore the legislation, and drag the government into an EFF or ACLU-funded First Amendment lawsuit if they try to enforce anything.
Looking at their website it seems they're trying to target a slightly less tech savvy audience which are interested in checking on agents while away. Someone willing to blow cash on overpriced AI subscriptions, I could see justifying blowing money on this.
> "pure HTTPS port 443 -- you literally can't block it without breaking the web."
Sure you can, you do Man In The Middle certificate inspection and then filter it aggressively like it was HTTP; that's the product companies like ZScaler offer, and basically any business/enterprise firewall device - internet filtering to protect your company and prevent or detect data exfiltration and malicious activity. Or perhaps you could say that does 'break the web' but companies do it anyway and pay a lot of money so they can do it. (ZScaler is a $23Bn market cap company).
Honestly, at that point I'd just run SSH over WebSockets with websocat. WebRTC only adds extra complexity. Tailscale DERP relay servers also run over port 80/443 anyway.
And corporate IT wonders why employees are always circumventing "security policies"...
reply