Philosophy Mondays: Human-AI Collaboration
Today's Philosophy Monday is an important interlude. I want to reveal that I have not been writing the posts in this series entirely by myself. Instead I have been working with Claude, not just for the graphic illustrations, but also for the text. My method has been to write a rough draft and then ask Claude for improvement suggestions. I will expand this collaboration to other intelligences going forward, including open source models such as Llama and DeepSeek. I will also explore other moda...
Intent-based Collaboration Environments
AI Native IDEs for Code, Engineering, Science
Web3/Crypto: Why Bother?
One thing that keeps surprising me is how quite a few people see absolutely nothing redeeming in web3 (née crypto). Maybe this is their genuine belief. Maybe it is a reaction to the extreme boosterism of some proponents who present web3 as bringing about a libertarian nirvana. From early on I have tried to provide a more rounded perspective, pointing to both the good and the bad that can come from it as in my talks at the Blockstack Summits. Today, however, I want to attempt to provide a coge...
Philosophy Mondays: Human-AI Collaboration
Today's Philosophy Monday is an important interlude. I want to reveal that I have not been writing the posts in this series entirely by myself. Instead I have been working with Claude, not just for the graphic illustrations, but also for the text. My method has been to write a rough draft and then ask Claude for improvement suggestions. I will expand this collaboration to other intelligences going forward, including open source models such as Llama and DeepSeek. I will also explore other moda...
Intent-based Collaboration Environments
AI Native IDEs for Code, Engineering, Science
Web3/Crypto: Why Bother?
One thing that keeps surprising me is how quite a few people see absolutely nothing redeeming in web3 (née crypto). Maybe this is their genuine belief. Maybe it is a reaction to the extreme boosterism of some proponents who present web3 as bringing about a libertarian nirvana. From early on I have tried to provide a more rounded perspective, pointing to both the good and the bad that can come from it as in my talks at the Blockstack Summits. Today, however, I want to attempt to provide a coge...
>300 subscribers
>300 subscribers
Share Dialog
Share Dialog
Comments and forums seem like an odd place for spam especially when they don’t permit HTML. What could a spammer gain? The only thing I can think of is possibly a link to their profile. Yet, last week a company I know was hit by a massive spam attack on its forums. Based on volume and frequency and the inclusion of HTML (even though it clearly didn’t render) it appears that the attack was fully automated, including the creation of user profiles. User profile creation required an email account and clicking on a confirmation link to activate the profile. So likely there was nothing to gain here at all, just a spam bot plugging away.
A first hint that the attack was emanating from China was that the bulk of the email accounts used in the attack were with a Chinese portal. Since the company wanted to keep its profile database clean, the first defensive step was to add a Recaptcha to account creation. Implementation of Recaptcha was easy and did successfully stop bogus account creation (the company is still evaluating how much this impacted overall registration). As a second step IP checking was implemented to prevent posting to forums from China to provide time to clean out existing bogus profiles.
Together the two measures succeeded in fending off the attack. Curious to hear from other people who have experienced such attacks and what measures worked for them.
Comments and forums seem like an odd place for spam especially when they don’t permit HTML. What could a spammer gain? The only thing I can think of is possibly a link to their profile. Yet, last week a company I know was hit by a massive spam attack on its forums. Based on volume and frequency and the inclusion of HTML (even though it clearly didn’t render) it appears that the attack was fully automated, including the creation of user profiles. User profile creation required an email account and clicking on a confirmation link to activate the profile. So likely there was nothing to gain here at all, just a spam bot plugging away.
A first hint that the attack was emanating from China was that the bulk of the email accounts used in the attack were with a Chinese portal. Since the company wanted to keep its profile database clean, the first defensive step was to add a Recaptcha to account creation. Implementation of Recaptcha was easy and did successfully stop bogus account creation (the company is still evaluating how much this impacted overall registration). As a second step IP checking was implemented to prevent posting to forums from China to provide time to clean out existing bogus profiles.
Together the two measures succeeded in fending off the attack. Curious to hear from other people who have experienced such attacks and what measures worked for them.
No comments yet