Post by @Architeuthis

In reply to 2 earlier posts

@BlueMonday1984@awful.systems on awful.systems Open parent

Stubsack: weekly thread for sneers not worth an entire post, week ending 19th April 2026

Want to wade into the sandy surf of the abyss? Have a sneer percolating in your system but not enough time/energy to make a whole post about it? Go forth and be mid. Welcome to the Stubsack, your first port of call for learning fresh Awful you’ll near-instantly regret. Any awful.systems sub may be subsneered in this subthread, techtakes or no. If your sneer seems higher quality than you thought, feel free to cut’n’paste it into its own post — there’s no quota for posting and the bar really isn’t that high. The post Xitter web has spawned so many “esoteric” right wing freaks, but there’s no appropriate sneer-space for them. I’m talking redscare-ish, reality challenged “culture critics” who write about everything but understand nothing. I’m talking about reply-guys who make the same 6 tweets about the same 3 subjects. They’re inescapable at this point, yet I don’t see them mocked (as much as they should be) Like, there was one dude a while back who insisted that women couldn’t be surgeons because they didn’t believe in the moon or in stars? I think each and every one of these guys is uniquely fucked up and if I can’t escape them, I would love to sneer at them. (Credit and/or blame to David Gerard for starting this.)

Open parent Original URL

@scruiser@awful.systems on awful.systems Open parent

The security blog I linked the other day has more criticisms of Anthropics mythos cybersecurity claims: -Apparently Opus 4.6 may have found the FreeBSD Anthropic has made a huge deal about Mythos finding? And Anthropic didn’t clarify that there older model had found the bug as well: flyingpenguin.com/freebsd-cve-2026-4747-log-sugge… -More explanation about why Anthropic’s entire approach with Mythos and cybersecurity is more oriented around marketing than good (or any) cybersecurity practices. Also, the author makes the point that if you did have a tool that could rapidly refactor code into other languages, the solution to the vast majority of bugs and vulnerabilities Mythos found isn’t bug hunting one by one with Anthropic’s (much more expensive) LLM, it is to refactor code into a memory safe language. (I think the author is too credulous of LLM coding agents code quality here, but given those assumptions I think there point is correct.) flyingpenguin.com/how-sans-mythos-marketing-disap… -Bonus, MCP (model context protocol, a standard for tools for LLM agents Anthropic has developed and tried to push) is insecure by default and Anthropic has refused to fix it! flyingpenguin.com/ox-security-report-anthropic-mc…

Open parent Original URL

Architeuthis in !techtakes

@Architeuthis@awful.systems · 14h

The MCP thing feels like an I like to leave my keys as a huge bulge under the welcome mat type vulnerability. It seems really easy to not do that and also something that is kind of out of scope for both lock makers and mat salesmen to address directly. Maybe the MCP ecosystem is such that it’s hard to both avoid this and keep the impression that you’re doing magic and not just implementing a heavily annotated API, ideally secured and with specific and well-defined functionality, and also they are all hacks.

View on awful.systems

Loading comments...

About Community

TechTakes

!techtakes@awful.systems

Big brain tech dude got yet another clueless take over at HackerNews etc? Here’s the place to vent. Orange site, VC foolishness, all welcome.

This is not debate club. Unless it’s amusing debate.

For actually-good tech, you want our NotAwfulTech community

2539

Members

1265

Posts

Created: June 30, 2023

View All Posts