I really liked LM Studio and then I realized it’s closed source.
When LM Studio contacts external servers, is what sent clear or encrypted? Is there any proof there is not really telemetry forced by the government providing information on what I type?
One of the reasons I fear closed source software is because of backdoors. Another reason is that the US government can require backdoors using court orders and force corporations to lie about backdoors existing or telemetry when it’s closed source code and can’t be reviewed.
In other words, if they were sending my discussion with an AI femboy “CyberPunk Gemi” to a server, which could flag me as Trans or LGBT friendly “threat” under a Christian Nationalist government at the rate the US country is going, could I see that in the packets being transmitted by the program via wireshark or would I just not know because anything going to their server has encrypted packets from https?
Does this present any sort of real risk with LM Studio?
Would it be possible for the government to order LM Studio to upload data only when certain keywords are used (like “Cyberpunk Femboy” or “Leftist on Lemmy”)?
LM Studio is based out of New York so backdoors could already forced and I would never know.
US Corporations that receive secret court orders are required by law to violate their privacy policies. A US-based privacy policy and closed source software doesn’t really tell anyone much if the government is sliding into authoritarianism. There are lots of queries in LM Studio and small packages that get updated and data is sent and received during that, there is no proof that data about the user is not sent if the data is encrypted. That is the core of my stupid question: is the data to their servers encrypted?
Sounds like you’re looking for a reason to not use this application.
Nope, I’m looking for a reason to keep using it when I hate closed-source software! It’s the exact opposite!
Are you old enough to remember all the machiavellianisms committed by Microslop corp?
As a relatively-recent example, their Windows Vista would secretly inform MS of all the search-queries done within windows.
And … for some incomprehensible reason, that wasn’t prosecuted as a criminal offense.
So, MS was being informed of things like …
hospital searching for “William Smith, bone cancer” & the search found the right file, & THAT kind of information was being forwarded back?
police searching for “Bob and Alice, classical physics violators”, & THAT kind of information would be forwarded back to MS?
You don’t engineer-in machiavellianism like MS has done, for … it’s 40-years now? something like that … without making SOME people understand just how religious some corporations are, about being DarkTriad ( narcissism/machiavellianism/sociopathy-psychopathy ), in nature.
& they aren’t the only ones.
Nowadays, any corporation which violates DarkTriad … is considered … perhaps “mentally ill”, by market standards?
I’m only using MS as an example.
Remember when OpenOffice.org became the property of Oracle?
LibreOffice.org was born in a week or 2?
Cynicism absolutely is warranted, nowadays.
I’m old-enough that MS’s stealing of Stac Electronics’ disk-compression algorithm, but they fucked-it-up, in their DOS 6.20 bit me.
Assuming altruism on the part of some company … that is mental-illness, nowadays.
I’m not agreeing with the assumption-river of the person you’re replying to, but I am saying that their reaction has basis/validity, nowadays.
I found out, after using LM Studio, that LLM’s can access everything on one’s own system.
I don’t know to what degree that’s true with LM Studio, but 1 time I gave an internet-address, & the LLM told me what it had found on the site I just told it of.
I hadn’t known it had unrestricted internet-access.
Later, I learned it could probably read every file on my system, too, & some AI-attacks get the LLM to get info from people’s personal files, single-out the credit-card, address, contacts, etc, information, & have the LLM forward that to a server out there…
That isn’t a security-concern that normals would even consider.
NOW I know that if I ever fire-up my desktop again, I’ll have to rip-out the LLM’s from my normal user-account, & create a completely-separate locked-down account, with NOTHING ELSE in it, only for them.
& keep EVERYTHING personal in a different account, that they can’t even see.
That isn’t an LM Studio specific thing, that is apparently required for ALL the things.
& nobody’s warning anybody about this?
I think it was on The Register that I found that out, last year…
_ /\ _