top | item 47101468

(no title)

I think this is absolute madness. I disabled most of Windows' scheduled tasks because I don't want automation messing up my system, and now I'm supposed to let LLM agents go wild on my data?

That's just insane. Insanity.

Edit: I mean, it's hard to believe that people who consider themselves as being tech savvy (as I assume most HN users do, I mean it's "Hacker" news) are fine with that sort of thing. What is a personal computer? A machine that someone else administers and that you just log in to look at what they did? What's happening to computer nerds?

discuss

wartywhoa23|8 days ago

Bath salts. Ever seen an alpha-PVP user with eyes out of their orbits, sitting through the night in front of basically a random string generator, sending you snippets of its output and firehosing with monologues about how they're right at the verge of discovering an epically groundbreaking correlation in it?

That is what's happening to nerds right now. Some next-level mind-boggling psychosis-inducing shit has to do with it.

Either this or a completely different substance: AI propaganda.

_yclj|7 days ago

[deleted]

beAbU|8 days ago

I find it's the same kind of "tech savvy" person who puts an amazon echo in every room.

edgarvaldes|8 days ago

Tech enthusiast vs tech savvy

andoando|8 days ago

Whats it got to do with being a nerd? Just a matter of risk aversity.

Personally I dont give a shit and its cool having this thing setup at home and being able to have it run whatever I want through text messages.

And it's not that hard to just run it in docker if you're so worried

paulryanrogers|7 days ago

> And it's not that hard to just run it in docker if you're so worried

There is risk of damage to ones local machine and data as well as reputational risk if it has access to outside services. Imagine your socials filled with hate, ala Microsoft Tay, because it was red pilled.

Though given the current cultural winds perhaps that could be seen as a positive?

hamburglar|8 days ago

The computer nerds understand how to isolate this stuff to mitigate the risk. I’m not in on openclaw just yet but I do know it’s got isolation options to run in a vm. I’m curious to see how they handle controls on “write” operations to everyday life.

I could see something like having a very isolated process that can, for example, send email, which the claw can invoke, but the isolated process has sanity controls such as human intervention or whitelists. And this isolated process could be LLM-driven also (so it could make more sophisticated decisions about “is this ok”) but never exposed to untrusted input.

yencabulator|4 days ago

> computer nerds understand

No, literally no one understands how to solve this. The only option that actually works is to isolate it to a degree that removes the "clawness" from it, and that's the opposite of what people are doing with these things.

Specifically, you cannot guard an LLM with another LLM.

The only thing I've seen with any realism to it is the variables, capabilities and taint tracking in CaMeL, but again that limits what the system can do and requires elaborate configuration. And you can't trust a tainted LLM to configure itself.

https://simonwillison.net/2025/Jun/16/the-lethal-trifecta/

https://simonwillison.net/2025/Jun/13/prompt-injection-desig...

https://simonwillison.net/2025/Apr/11/camel/

PantaloonFlames|7 days ago

I don’t understand how “running it in a vm” Or a docker image, prevents the majority of problems. It’s an agent interacting with your bank, your calendar, your email, your home security system, and every subscription you have - DoorDash, Spotify, Netflix, etc. maybe your BTC wallet.

What protection is offered by running it in a docker container? Ok, It won’t overwrite local files. Is that the major concern?

squidbeak|8 days ago

> and now I'm supposed to let LLM agents go wild on my data?

Who is forcing you to do that?

The people you are amazed by know their own minds and understand the risks.

yencabulator|4 days ago

That's the thing with rampant enthusiasm, nobody has to be forced into it, they'll do dumb things out of their own initiative.

> understand the risks

Here's the director of Safety and alignment at Meta Superintelligence deleting her emails and panicking: https://xcancel.com/summeryue0/status/2025774069124399363

habinero|7 days ago

> and understand the risks

I'm very unconvinced this is true. Ignorance causes overconfidence.

socalgal2|7 days ago

The idea that the majority of computer nerds are any more security conscious than the average normy has long been dispelled.

The run everything as root, they curl scripts, they npx typos, they give random internet apps "permission to act on your behalf" on repos millions of people depend on

esseph|8 days ago

> That's just insane. Insanity.

I feel the same way! Just watching on in horror lol

unknown|8 days ago

[deleted]