zlacker

[return to ""I just bought a 2024 Chevy Tahoe for $1""]
1. isp+1[view] [source] 2023-12-18 12:08:51
>>isp+(OP)
A cautionary tale for why not to put unfiltered ChatGPT output directly to customers.

Nitter mirror: https://nitter.net/ChrisJBakke/status/1736533308849443121

Related - "New kind of resource consumption attack just dropped": https://twitter.com/loganb/status/1736449964006654329 | https://nitter.net/loganb/status/1736449964006654329

◧◩
2. iLoveO+13[view] [source] 2023-12-18 12:38:39
>>isp+1
There's no such thing as a filtered LLM output.

How do you plan on avoiding leaks or "side effects" like the tweet here?

If you just look for keywords in the output, I'll ask ChatGPT to encode its answers in base64.

You can literally always bypass any safeguard.

◧◩◪
3. isp+u4[view] [source] 2023-12-18 12:49:58
>>iLoveO+13
This is a very good point, and why I would argue that a human-in-the-loop is essential to pre-review customer-facing output.
◧◩◪◨
4. mewpme+Zf[view] [source] 2023-12-18 13:51:43
>>isp+u4
Why would it be important to care about someone trying to trick it to say odd/malicious things?

The person in the end could also just inspect element to change the output, or photoshop the screenshot.

You should only care about it being as high quality as possible for honest customers. And against bad actors you must just be certain that it won't be easy to spam those requests because it can be expensive.

[go to top]