Tom Thorogood
@tmthrgd.at
I'm a mid-tier corporate nobody doing nothing for no one.
ADL, AUS // tomthorogood.net
ADL, AUS // tomthorogood.net
Reposted by Tom Thorogood
It turns out that refusing to accept patches that work with the existing ecosystem doesn't magically result in a separate ecosystem emerging!
November 7, 2025 at 6:09 AM
It turns out that refusing to accept patches that work with the existing ecosystem doesn't magically result in a separate ecosystem emerging!
Reposted by Tom Thorogood
If I ever interact with the CFRG again or try to rely on it to get actually useful work done, somebody please slap me.
I knew this. I managed to remember it for a year or so. And then.
They are now re-re-re-re-litigating the invisible strings to hash with hybrid KEMs. age PQ is blocked on that.
I knew this. I managed to remember it for a year or so. And then.
They are now re-re-re-re-litigating the invisible strings to hash with hybrid KEMs. age PQ is blocked on that.
This is not the first time the CFRG slows things down to the point they are too late for most of their useful applications.
The PAKE selection process started in 2019 and the two winners (OPAQUE and CPace) are still drafts.
Hedged ECDSA has been a draft since 2019.
ristretto255 took five years.
The PAKE selection process started in 2019 and the two winners (OPAQUE and CPace) are still drafts.
Hedged ECDSA has been a draft since 2019.
ristretto255 took five years.
October 30, 2025 at 10:21 AM
If I ever interact with the CFRG again or try to rely on it to get actually useful work done, somebody please slap me.
I knew this. I managed to remember it for a year or so. And then.
They are now re-re-re-re-litigating the invisible strings to hash with hybrid KEMs. age PQ is blocked on that.
I knew this. I managed to remember it for a year or so. And then.
They are now re-re-re-re-litigating the invisible strings to hash with hybrid KEMs. age PQ is blocked on that.
Reposted by Tom Thorogood
Great article about how TEEs are providing much less security than folks believe they will. arstechnica.com/security/202...
New physical attacks are quickly diluting secure enclave defenses from Nvidia, AMD, and Intel
On-chip TEEs withstand rooted OSes but fall instantly to cheap physical attacks.
arstechnica.com
October 29, 2025 at 4:30 PM
Great article about how TEEs are providing much less security than folks believe they will. arstechnica.com/security/202...
Reposted by Tom Thorogood
So much for retirement
October 25, 2025 at 10:30 PM
So much for retirement
Reposted by Tom Thorogood
3 years ago this tech was going to change the world and the best use case they have is "I'm too lazy to read this email" and "porn bot"
October 14, 2025 at 6:48 PM
3 years ago this tech was going to change the world and the best use case they have is "I'm too lazy to read this email" and "porn bot"
Reposted by Tom Thorogood
This is amazing research by Nadia Heninger and her co-authors Wenyi Morty Zhang, Annie Dai, Keegan Ryan, Dave Levin and Aaron Schulman. TL;DR a huge number of satellite links over our heads are totally unencrypted. satcom.sysnet.ucsd.edu
🛰️ SATCOM Security
Research project homepage for SATCOM Security: papers, source code, and recent satellite communications vulnerabilities.
satcom.sysnet.ucsd.edu
October 14, 2025 at 1:16 AM
This is amazing research by Nadia Heninger and her co-authors Wenyi Morty Zhang, Annie Dai, Keegan Ryan, Dave Levin and Aaron Schulman. TL;DR a huge number of satellite links over our heads are totally unencrypted. satcom.sysnet.ucsd.edu
Reposted by Tom Thorogood
It’s 2050 and a teen girl is torrenting a .tar.gz file of all the consciousnesses of all the tech bros who uploaded themselves into the cloud in a bid for immortality and modding them into The Sims 4
August 14, 2025 at 4:24 PM
It’s 2050 and a teen girl is torrenting a .tar.gz file of all the consciousnesses of all the tech bros who uploaded themselves into the cloud in a bid for immortality and modding them into The Sims 4
Reposted by Tom Thorogood
Gonna start a thread of articles I re-read every time I have an excuse, because after this thread I am thinking a lot about @cormacmccafe.bsky.social's "No Yanks on the Thread" piece.
Feel free to add your own.
Feel free to add your own.
I Should Be Able to Mute America
The rest of the world should not have to know the name Bari Weiss
www.gawkerarchives.com
October 13, 2025 at 9:44 AM
Gonna start a thread of articles I re-read every time I have an excuse, because after this thread I am thinking a lot about @cormacmccafe.bsky.social's "No Yanks on the Thread" piece.
Feel free to add your own.
Feel free to add your own.
Reposted by Tom Thorogood
why do people post such esoteric nonsense on social media when they could be posting extremely relatable content like this
Current status: oh god why am I in the BRCM2837 interrupt controller docs all I wanted was a higher degree of graphical fidelity in Doom
October 11, 2025 at 12:36 PM
why do people post such esoteric nonsense on social media when they could be posting extremely relatable content like this
Reposted by Tom Thorogood
I write because I love writing. I love writing even when I'm struggling with a writing problem that is killing me. Finding a way through that problem is both intensely rewarding and also helps me become a better writer. There is no reason for me to ever outsource that.
there’s this weird idea a lot of people seem to have about how all of us writers and artists must secretly want to use AI and are merely resisting temptation for ethical reasons, and like, no, it’s not hard for me to resist drinking the bowl of Piss With Glass In It actually
October 9, 2025 at 9:45 PM
I write because I love writing. I love writing even when I'm struggling with a writing problem that is killing me. Finding a way through that problem is both intensely rewarding and also helps me become a better writer. There is no reason for me to ever outsource that.
Reposted by Tom Thorogood
David Simon, creator of ‘The Wire’, being interviewed by Ari Shapiro (NPR)
October 9, 2025 at 4:42 AM
David Simon, creator of ‘The Wire’, being interviewed by Ari Shapiro (NPR)
Reposted by Tom Thorogood
IMPORTANT UPDATE: Your age was potentially leaked as a result of a highly sophisticated and targeted cyber attack. As a security measure, please choose a new age at your next login. You will not be able to reuse your existing age, or any previous age.
October 4, 2025 at 2:06 AM
IMPORTANT UPDATE: Your age was potentially leaked as a result of a highly sophisticated and targeted cyber attack. As a security measure, please choose a new age at your next login. You will not be able to reuse your existing age, or any previous age.
Reposted by Tom Thorogood
I asked a Christian baker to write Charlie Kirk on a gay wedding cake and we've been staring at each other for 39 straight hours now
October 4, 2025 at 7:50 PM
I asked a Christian baker to write Charlie Kirk on a gay wedding cake and we've been staring at each other for 39 straight hours now
Reposted by Tom Thorogood
whatever the most embarrassing wokoid 2014 tumblr post you could find doesn’t come close to this. Republicans are the googoo gaga party now
October 4, 2025 at 4:25 PM
whatever the most embarrassing wokoid 2014 tumblr post you could find doesn’t come close to this. Republicans are the googoo gaga party now
Reposted by Tom Thorogood
The UK is demanding another backdoor in Apple’s encryption. www.ft.com/content/d101...
UK makes new attempt to access Apple cloud data
Order issued in September comes after Trump administration said London had backed down in fight over encryption
www.ft.com
October 1, 2025 at 1:14 PM
The UK is demanding another backdoor in Apple’s encryption. www.ft.com/content/d101...
Reposted by Tom Thorogood
I know it’s been said again and again, but what does it say about ChatControl that its backers keep explicitly *exempting* law enforcement and national security accounts from content scanning?
September 17, 2025 at 5:10 PM
I know it’s been said again and again, but what does it say about ChatControl that its backers keep explicitly *exempting* law enforcement and national security accounts from content scanning?
Reposted by Tom Thorogood
the UK’s Internet age verification law has led to the effective censorship of all LGBT content on Reddit
what a shocking and unexpected turn of events!
what a shocking and unexpected turn of events!
July 25, 2025 at 2:01 AM
the UK’s Internet age verification law has led to the effective censorship of all LGBT content on Reddit
what a shocking and unexpected turn of events!
what a shocking and unexpected turn of events!
Reposted by Tom Thorogood
Not just art. Talking. Writing. Editing. Designing. Coding. Thinking.
Doing well at anything takes years of practice. Ceding that to a machine defeats the whole purpose of taking pleasure from one's chosen path in life.
Doing well at anything takes years of practice. Ceding that to a machine defeats the whole purpose of taking pleasure from one's chosen path in life.
just saw someone sincerely arguing that they need AI bc they don't have "natural" artistic talent and idk how to make you understand that nobody comes by this shit naturally. it's just...work. it's being bad at it for a really, really, really long time. it's intention, pursued over time! wtf!!!
August 18, 2025 at 10:09 PM
Not just art. Talking. Writing. Editing. Designing. Coding. Thinking.
Doing well at anything takes years of practice. Ceding that to a machine defeats the whole purpose of taking pleasure from one's chosen path in life.
Doing well at anything takes years of practice. Ceding that to a machine defeats the whole purpose of taking pleasure from one's chosen path in life.
Reposted by Tom Thorogood
just saw someone sincerely arguing that they need AI bc they don't have "natural" artistic talent and idk how to make you understand that nobody comes by this shit naturally. it's just...work. it's being bad at it for a really, really, really long time. it's intention, pursued over time! wtf!!!
August 17, 2025 at 1:57 PM
just saw someone sincerely arguing that they need AI bc they don't have "natural" artistic talent and idk how to make you understand that nobody comes by this shit naturally. it's just...work. it's being bad at it for a really, really, really long time. it's intention, pursued over time! wtf!!!
Reposted by Tom Thorogood
If you send me a 3000 word essay based on a 20 word prompt you are transferring information in an incredibly inefficient way. I'm going to have no idea what you actually wanted to convey. Just send me the prompt. I promise the outcome will be better.
August 3, 2025 at 10:57 PM
If you send me a 3000 word essay based on a 20 word prompt you are transferring information in an incredibly inefficient way. I'm going to have no idea what you actually wanted to convey. Just send me the prompt. I promise the outcome will be better.
Reposted by Tom Thorogood
If you're going to send me something written by an LLM then save us all time and resources and just send me your prompt instead. I'll value a text that says "Heartfelt condolence message with reference to a list of events" more, because this way I at least actually know what you were thinking
August 3, 2025 at 10:50 PM
If you're going to send me something written by an LLM then save us all time and resources and just send me your prompt instead. I'll value a text that says "Heartfelt condolence message with reference to a list of events" more, because this way I at least actually know what you were thinking
Reposted by Tom Thorogood
What’s going to happen here is that crime will happen. And the people who are currently saying “end-to-end encryption is unsafe” will demand exceptions and de-anonymization tools “for real criminals” and it’ll be oh so easy to build.
June 27, 2025 at 9:03 PM
What’s going to happen here is that crime will happen. And the people who are currently saying “end-to-end encryption is unsafe” will demand exceptions and de-anonymization tools “for real criminals” and it’ll be oh so easy to build.
Reposted by Tom Thorogood
A very nice summary by the Let's Encrypt folks of where the Certificate Transparency ecosystem is going with Sunlight and the Static CT API.
Reflections on a Year of Sunlight
The Certificate Transparency ecosystem has been improving transparency for the web PKI since 2013. It helps make clear exactly what certificates each certificate authority has issued and makes sure…
letsencrypt.org
June 11, 2025 at 5:11 PM
A very nice summary by the Let's Encrypt folks of where the Certificate Transparency ecosystem is going with Sunlight and the Static CT API.
Reposted by Tom Thorogood
If all you need from education is a credential, who cares about the assignments?
Five years ago you'd copy paste someone else's essay and change a few words into synonyms. Today you're getting LLMs to do essentially the same thing.
But it's not a writing use case. It's a plagiarism use case.
Five years ago you'd copy paste someone else's essay and change a few words into synonyms. Today you're getting LLMs to do essentially the same thing.
But it's not a writing use case. It's a plagiarism use case.
June 3, 2025 at 1:20 PM
If all you need from education is a credential, who cares about the assignments?
Five years ago you'd copy paste someone else's essay and change a few words into synonyms. Today you're getting LLMs to do essentially the same thing.
But it's not a writing use case. It's a plagiarism use case.
Five years ago you'd copy paste someone else's essay and change a few words into synonyms. Today you're getting LLMs to do essentially the same thing.
But it's not a writing use case. It's a plagiarism use case.
Reposted by Tom Thorogood
If all you need from a reader is an ad impression, who cares about the actual text on the page?
Five years ago you'd drive the cost per hit down by outsourcing to a content farm. Today this is done by an LLM.
But this is not a WRITING use case. It's a grift use case.
Five years ago you'd drive the cost per hit down by outsourcing to a content farm. Today this is done by an LLM.
But this is not a WRITING use case. It's a grift use case.
June 3, 2025 at 1:18 PM
If all you need from a reader is an ad impression, who cares about the actual text on the page?
Five years ago you'd drive the cost per hit down by outsourcing to a content farm. Today this is done by an LLM.
But this is not a WRITING use case. It's a grift use case.
Five years ago you'd drive the cost per hit down by outsourcing to a content farm. Today this is done by an LLM.
But this is not a WRITING use case. It's a grift use case.