Would be cool to run them in freebsd jails
Granted it's a low chance, but it's also similarly low that your bank account will be drained to zero because you codex --yolo'd it. If that DOES happen to someone then yeah, I'd consider changing my behavior.
For example there's no fucking way I would FSD in a Tesla.
You should really just give up all of your freedom. Refusal to give up your freedom is a sign of insecurity and the lack of the ability to just trust and let go of control.
Maybe I'm naive, but the ever-increasing tradeoffs for even more velocity does not seem worth it.
If the AI is running offline and is non-destructive/safe then that's a different story.
This is just a rant about something you absolutely don’t have to do
Depends on the use case, really.
I don't run AI, but anything I don't fully trust 200% runs without access to my home, and if it doesn't really need internet without internet either. bwrap commands can be a mouthful so I suggest making a script for things you commonly do, e.g. "run with this directory as $HOME" or "run with empty home, keeping just this directory as is", with a couple of flags to enable networking or wayland/sound... Once you have this there really is no benefit to not sandboxing. It's probably not as good as running in a full VM, but it's good enough for me.
Sure, comment on the time we're at, but it won't be relevant for a while.
Why would anyone _want_ that?
Or, let’s pretend for a moment they did, wouldn’t it make more sense to grant access to a purchasing account (e.g. Amazon) with payment info pre-linked?
Especially given the “record absolutely everything for evidence” approach companies are taking, giving them auto access to payment info isn’t very smart.
GenZ; publishes every possible detail on TikTok.
In 20 years we've done a cultural 180 on privacy.
I bet in 20 years Gen5 (three generations from now?) will be fine with AI agents running their lives.
Meanwhile I'll be 80 and still not on social media, just message boards like HN. Using new frequent accounts and changing my wirting style to defeat stylometrics (sorry dang).
the results of that has only proved you were right. I'll go on record now that the people who don't want corporate controlled AI in their personal lives today are also going to be proven right when the next generation of suckers comes along and gives up what they had because a corporation told them too.
It's not perfect, as container escape is not entirely unlikely.
I am working in a future version where all agents run inside firecracker VMs, log all actions logged externally.
With Kubernetes it's like having a bunch of virtual employees making git commits, firing up name-spaced ephemeral resources and collaborating like "remote" employees. It's certainly fun, but I haven't quite polished it to the point where I recommend this architecture to anyone.
I agree, I do not want AI anywhere near my Laptop. But there are Operating Systems that do not and probably never be controlled by "AI".
The quote above is curious, there are OSs with strong security. OpenBSD is touted as one, plus there is Linux and other BSDs, which can be configured to be far more secure than the operating systems the article is referring to.
yeputons•5h ago
Are there? Any app on Windows screenshot and access camera, microphone, whatever. Aren't permissions for Windows Store-style apps only?