tzakrajs (u/tzakrajs)

tzakrajs commented on CoreNet: A library for training deep neural networks github.com/apple/corenet... · Posted by u/rocauc

benob · a year ago

> OpenELM: An Efficient Language Model Family with Open-source Training and Inference Framework https://arxiv.org/abs/2404.14619

Apple is pushing for open information on LLM training? World is changing...

tzakrajs · a year ago

We are all starting to better understand the ethos of their engineering teams more generally.

tzakrajs commented on CoreNet: A library for training deep neural networks github.com/apple/corenet... · Posted by u/rocauc

davedx · a year ago

I expect that a lot of WWDC will be Apple trying to get more developers to build AI products for their platforms, because at the moment, Apple products don't have much AI. The other tech companies have integrated user facing LLM products into a significant part of their ecosystem - Google and Microsoft have them up front and center in search. Apple's AI offerings for end users are what exactly? The camera photos app that does minor tweaks to photos (composing from multiple frames). What else actually is there in the first party ecosystem that significantly leverages AI? Siri is still the same trash it's been for the last 10 years - in fact IMO it's become even less useful, often refusing to even do web searches for me. (I WANT Siri to work very well).

So because their first party AI products are so non-existent, I think WWDC is a desperate attempt by Apple to get third party developers to build compelling AI products. I say desperate because they're already a year behind the competition in this space.

(I can imagine they'll be trying to get developers to build Vision Pro software too, though I hear sales there have collapsed so again, way too little, too late)

tzakrajs · a year ago

They have tons of computer vision, NN inference and natural language processing in their products. It's reductive to say Apple products don't have much AI.

tzakrajs commented on Daniel Dennett has died dailynous.com/2024/04/19/... · Posted by u/mellosouls

freedomben · a year ago

Indeed. Do yourself a favor and don't watch any of the videos of him on youtube. That razor sharp wit combined with spontaneous humor will make you really mad at cancer.

tzakrajs · a year ago

Also: Do yourself a favor and (dont? er do?) read/listen to his brother's books! Particularly The Phoney Victory. He writes polemics as good as Christopher. Truly a yin to the yang. I like the way they argue, although I don't necessarily agree with everything they argue.

tzakrajs commented on Swiss satellite antennas make a comeback as solar powerhouses reuters.com/sustainabilit... · Posted by u/geox

crote · a year ago

Yes, but suddenly you need different kinds of standoffs instead of one uniform size. This makes manufacturing a bit more expensive, logistics a bit more challenging, and installation a bit more complicated.

All of this means it's going to be more expensive than standard mounting hardware. Not by a lot, but solar panels have become cheap enough that even small differences matter.

tzakrajs · a year ago

Yes, but on my napkin, all of this will create significantly more power which more than offsets those costs.

tzakrajs commented on M 4.8 – 2024 Whitehouse Station, New Jersey Earthquake earthquake.usgs.gov/earth... · Posted by u/theandrewbailey

bee_rider · a year ago

If any west-coasters are confused as to how this is news: the Northeast is sort of geologically unusual for the US in that we have almost no surprising, sudden weather thingies.

No tornados, mild thunderstorm, occasional hurricanes (but they are usually weakened a bit compared to, like, Florida by the time they get up here and they’ve spent a long time going up the coast so they tend to be well tracked by forecasters), some flooding but not much, and no earthquakes. Our bad weather events are usually blizzards, which you can see coming and which take a while to accumulate.

We’re right in the middle of the North American plate and the area is covered in gentle old hills and mountains.

So, we’re all just not used to the planet surprising us!

tzakrajs · a year ago

What is a Nor'easter?

tzakrajs commented on Containers and Unikernels: Similar, different, and intertwined unikraft.io/blog/containe... · Posted by u/transpute

seabrookmx · a year ago

I hate to be that guy that's clearly ignorant on a particular topic, asking "why not just do <extremely hard or nonsensical thing>?" but I've always wondered..

Why can't you just make a Linux kernel module that takes an arbitrary ELF and runs it in kernel space? This is identical to what unikraft describes doing only with their own kernel. We have firecracker starting full Linux very quickly these days.. no more worries about missing syscalls, drivers, weird scheduler behavior etc? It would be just like running your app as a Linux process but sans the constant hops from ring 0 to 3 and back.

tzakrajs · a year ago

you could just as easily make it pid 1 and call it a day

tzakrajs commented on Why the hell is your Kubernetes API public? leebriggs.co.uk/blog/2024... · Posted by u/todsacerdoti

xg15 · a year ago

I think something doesn't quite add up in OP's claim. Having full access to the control plane effectively let's you do anything you want with the cluster. If there were really millions of completely unsecured Kubernetes instances lying around, we should see all kinds of worms and botnets already taking advantage of them - and we should also see lots of attempted probes/attacks to infect new instances as soon as they come online (dark forest, etc). Yet I haven't heard about anything like this so far. This leads me to believe that the "public" instances actually are protected in some way, just not by a private network.

Not a Kubernetes expert, but doesn't the Kubeconfig contain some sort of secret that the client needs for authentication? You might be able to get some basic health check without that, but I'd be very surprised if you could do much more without authentication.

At least if that's how it works, this would be an example of "zero-trust" networking, where you just assume anything can be reached from the internet anyway and secure your services based on that premise. If done well, it shouldn't matter whether or not your services are actually exposed on the internet or not.

Of course in the interest of defense-in-depth, I'd still try to make sure my services are not actually exposed - bugs happen all the time and additional security layer can't do harm.

tzakrajs · a year ago

Back in 2020 I once accidentally kept my personal k8s api open and got hit by a drive-by k8s-in-k8s bitcoin miner attack, it deployed an operator and it failed to run correctly but it created a ton of pods in my default namespace.