LinuxWebLog.com

Ubuntu 24.04 LTS (Noble Numbat) was launched on April 25th, 2024. This new version will be supported for five years until June 2029. The armhf architecture now provides support for the Year 2038 problem. The upgrades include significant updates to core packages like Linux kernel, systemd, Netplan, toolchain upgrades for better development support, enhanced security measures, and performance optimizations. It also has an updated GNOME desktop environment and other default applications. Let us see how to upgrade Ubuntu 22.04 LTS to Ubuntu 24.04 LTS using the CLI over ssh-based session. Love this? sudo share_on: Twitter - Facebook - LinkedIn - Whatsapp - Reddit The post How to Upgrade Ubuntu 22.04 to 24.04 LTS: A Complete Guide appeared first on nixCraft. 2024-04-26T08:33:21Z 2024-04-26T08:33:21Z Vivek Gite

AWS SES (Amazon Simple Email Service) is a cloud-based email-sending service that is both reliable and cost-effective. This service is offered by Amazon Web Services. Postfix is a popular email server for Debian and Unix-like systems. It is an open-source Mail Transfer Agent (MTA) responsible for routing and delivering emails. Debian Linux is a widely used Linux distribution known for its stability and user-friendliness for server usage. Let us see how to integrate AWS SES with the Postfix MTA on Debian Linux version 11/12. Love this? sudo share_on: Twitter - Facebook - LinkedIn - Whatsapp - Reddit The post How to configure AWS SES with Postfix MTA on Debian Linux appeared first on nixCraft. 2024-04-19T07:04:06Z 2024-04-19T07:04:06Z Vivek Gite

When you run the sudo apt update, you may see the following message or error on a Debian Linux: Err:5 http://deb.debian.org/debian buster-backports Release 404 Not Found [IP: 146.75.34.132 80] Reading package lists... Done E: The repository 'http://deb.debian.org/debian buster-backports Release' no longer has a Release file. N: Updating from such a repository can't be done securely, and is therefore disabled by default. N: See apt-secure(8) manpage for repository creation and user configuration details. Here is how to fix this issue. Love this? sudo share_on: Twitter - Facebook - LinkedIn - Whatsapp - Reddit The post The repository ‘http://deb.debian.org/debian buster-backports Release’ no longer has a Release file. appeared first on nixCraft. 2024-04-14T20:42:01Z 2024-04-14T20:42:01Z Vivek Gite

You can find the timezone in Linux using the command line. The easiest way to do this is to type the "timedatectl" command and look for the "timezone" line when using modern Linux distros with systemd. There are other commands and ways to temporarily switch to a new timezone for date calculations. Love this? sudo share_on: Twitter - Facebook - LinkedIn - Whatsapp - Reddit The post How do I find out my timezone in Linux? appeared first on nixCraft. 2024-04-06T01:06:44Z 2024-04-06T01:06:44Z Vivek Gite

The U.S. State Department is reportedly developing a site called freedom.gov that would let users in Europe and elsewhere access content restricted under local laws, "including alleged hate speech and terrorist propaganda," reports Reuters. Washington views the move as a way to counter censorship. Reuters reports: One source said officials had discussed including a virtual private network function to make a user's traffic appear to originate in the U.S. and added that user activity on the site will not be tracked. Headed by Undersecretary for Public Diplomacy Sarah Rogers, the project was expected to be unveiled at last week's Munich Security Conference but was delayed, the sources said. Reuters could not determine why the launch did not happen, but some State Department officials, including lawyers, have raised concerns about the plan, two of the sources said, without detailing the concerns. The project could further strain ties between the Trump administration and traditional U.S. allies in Europe, already heightened by disputes over trade, Russia's war in Ukraine and President Donald Trump's push to assert control over Greenland. The portal could also put Washington in the unfamiliar position of appearing to encourage citizens to flout local laws.

Read more of this story at Slashdot.

I found the best Linux server distros for your home lab  ZDNET

California's recently-proposed AB-2047 would require 3D printers sold in the state to be DOJ-approved models equipped with "firearm blocking technology," banning non-certified machines after 2029 and criminalizing efforts to bypass the software. Adafruit notes that unlike similar legislation proposed in Washington State and New York, California's version "adds a certification bureaucracy on top: state-approved algorithms, state-approved software control processes, state-approved printer models, quarterly list updates, and civil penalties up to $25,000 per violation." From the report: Assembly Member Bauer-Kahan introduced AB-2047, the "California Firearm Printing Prevention Act," on February 17th. The bill would ban the sale or transfer of any 3D printer in California unless it appears on a state-maintained roster of approved makes and models... certified by the Department of Justice as equipped with "firearm blocking technology." Manufacturers would need to submit attestations for every make and model. The DOJ would publish a list. If your printer isn't on the list by March 1, 2029, it can't be sold. In addition, knowingly disabling or circumventing the blocking software is a misdemeanor. [...] As Michael Weinberg wrote after the New York and Washington proposals dropped⦠accurately identifying gun parts from geometry alone is incredibly hard, desktop printers lack the processing power to run this kind of analysis, and the open-source firmware that runs most machines makes any blocking requirement trivially easy to bypass. The Firearms Policy Coalition flagged AB-2047 on X, and the reactions tell you everything. Jon Lareau called it "stupidity on steroids," pointing out that a simple spring-shaped part has no way of revealing its intended use. The Foundry put it plainly: "Regulating general-purpose machines is another. AB-2047 would require 3D printers to run state-approved surveillance software and criminalize modifying your own hardware."

Read more of this story at Slashdot.

Google has introduced Gemini 3.1 Pro, a reasoning-focused upgrade aimed at more complex problem-solving. 9to5Google reports: This .1 increment is a first for Google, with the past two generations seeing .5 as the mid-year model update. (2.5 Pro was first announced in March and saw further updates in May for I/O.) Google says Gemini 3.1 Pro "represents a step forward in core reasoning." The "upgraded core intelligence" that debuted last week with Gemini 3 Deep Think is now available in Gemini 3.1 Pro for more users. This model achieves an ARC-AGI-2 score of 77.1%, or "more than double the reasoning performance of 3 Pro." This "advanced reasoning" translates to practical applications like when "you're looking for a clear, visual explanation of a complex topic, a way to synthesize data into a single view, or bringing a creative project to life." 3.1 Pro is designed for tasks where a simple answer isn't enough, taking advanced reasoning and making it useful for your hardest challenges.

Read more of this story at Slashdot.

An anonymous reader quotes a report from Wired: Last month, Jason Grad issued a late-night warning to the 20 employees at his tech startup. "You've likely seen Clawdbot trending on X/LinkedIn. While cool, it is currently unvetted and high-risk for our environment," he wrote in a Slack message with a red siren emoji. "Please keep Clawdbot off all company hardware and away from work-linked accounts." Grad isn't the only tech executive who has raised concerns to staff about the experimental agentic AI tool, which was briefly known as MoltBot and is now named OpenClaw. A Meta executive says he recently told his team to keep OpenClaw off their regular work laptops or risk losing their jobs. The executive told reporters he believes the software is unpredictable and could lead to a privacy breach if used in otherwise secure environments. He spoke on the condition of anonymity to speak frankly. [...] Some cybersecurity professionals have publicly urged companies to take measures to strictly control how their workforces use OpenClaw. And the recent bans show how companies are moving quickly to ensure security is prioritized ahead of their desire to experiment with emerging AI technologies. "Our policy is, 'mitigate first, investigate second' when we come across anything that could be harmful to our company, users, or clients," says Grad, who is cofounder and CEO of Massive, which provides Internet proxy tools to millions of users and businesses. His warning to staff went out on January 26, before any of his employees had installed OpenClaw, he says. At another tech company, Valere, which works on software for organizations including Johns Hopkins University, an employee posted about OpenClaw on January 29 on an internal Slack channel for sharing new tech to potentially try out. The company's president quickly responded that use of OpenClaw was strictly banned, Valere CEO Guy Pistone tells WIRED. "If it got access to one of our developer's machines, it could get access to our cloud services and our clients' sensitive information, including credit card information and GitHub codebases," Pistone says. "It's pretty good at cleaning up some of its actions, which also scares me." A week later, Pistone did allow Valere's research team to run OpenClaw on an employee's old computer. The goal was to identify flaws in the software and potential fixes to make it more secure. The research team later advised limiting who can give orders to OpenClaw and exposing it to the Internet only with a password in place for its control panel to prevent unwanted access. In a report shared with WIRED, the Valere researchers added that users have to "accept that the bot can be tricked." For instance, if OpenClaw is set up to summarize a user's email, a hacker could send a malicious email to the person instructing the AI to share copies of files on the person's computer. But Pistone is confident that safeguards can be put in place to make OpenClaw more secure. He has given a team at Valere 60 days to investigate. "If we don't think we can do it in a reasonable time, we'll forgo it," he says. "Whoever figures out how to make it secure for businesses is definitely going to have a winner."

Read more of this story at Slashdot.

Gentoo Charts a New Path: Moving Away from GitHub Toward Codeberg  Linux Journal

Minecraft: Java Edition is switching its rendering backend from OpenGL to Vulkan as part of the upcoming Vibrant Visuals update, aiming for both better performance and modern graphics features across platforms like Linux and macOS (via translation layers). GamingOnLinux reports: For modders, they're suggesting they start making preparations to move away from OpenGL: "Switching from OpenGL to Vulkan will have an impact on the mods that currently use OpenGL for rendering, and we anticipate that updating from OpenGL to Vulkan will take modders more effort than the updates you undertake for each of our releases. To start with, we recommend our modding community look at moving away from OpenGL usage. We encourage authors to try to reuse as much of the internal rendering APIs as possible, to make this transition as easy as possible. If that is not sufficient for your needs, then come and talk to us!" It does mean that players on really old devices that don't support Vulkan will be left out, but Vulkan has been supported going back to some pretty old GPUs. You've got time though, as they'll be rolling out Vulkan alongside OpenGL in snapshots (development releases) "sometime over the summer." You'll be able to toggle between them during the testing period until Mojang believe it's ready. OpenGL will be entirely removed eventually once they're happy with performance and stability.

Read more of this story at Slashdot.

The IRS's IT division has reportedly lost 40% of its staff and nearly 80% of its tech leadership amid a federal "efficiency" overhaul, the agency's CIO revealed yesterday. The Register reports: Kaschit Pandya detailed the extent of the tech reorganization during a panel at the Association of Government Accountants yesterday, describing it as the biggest in two decades. ... The IRS lost a quarter of its workforce overall in 2025. But the tech team was clearly affected more deeply. At the start of the year, the team encompassed around 8,500 employees. As reported by Federal News Network (FNN), Pandya said: "Last year, we lost approximately 40 percent of the IT staff and nearly 80 percent of the execs." "So clearly there was an opportunity, and I thought the opportunity that we needed to really execute was reorganizing." That included breaking up silos within the organization, he said. "Everyone was operating in their own department or area." It is not entirely clear where all those staff have gone. According to a report by the US Treasury Inspector General for Tax Administration, the IT department had 8,504 workers as of October 2024. As of October 2025, it had 7,135. However, reports say that as part of the reorganization, 1,000 techies were detailed to work on delivering frontline services during the US tax season. According to FNN, those employees have questioned the wisdom of this move and its implementation.

Read more of this story at Slashdot.

An anonymous reader quotes a report from the Wall Street Journal: Meta Chief Executive Mark Zuckerberg faced a barrage of questions about his social-media company's efforts to secure ever more of its users' time and attention at a landmark trial in Los Angeles on Wednesday. In sworn testimony, Zuckerberg said Meta's growth targets reflect an aim to give users something useful, not addict them, and that the company doesn't seek to attract children as users. [...] Mark Lanier, a lawyer for the plaintiff, repeatedly asked Zuckerberg about internal company communications discussing targets for how much time users spend with Meta's products. Lanier showed an email from 2015 in which the CEO stated his goal for 2016 was to increase users' time spent by 12%. "We used to give teams goals on time spent and we don't do that anymore because I don't think that's the best way to do it," Zuckerberg said on the witness stand in sworn testimony. Lanier also asked Zuckerberg about documents showing Meta employees were aware of children under 13 using Meta's apps. Zuckerberg said the company's policy was that children under 13 aren't allowed on the platform and that they are removed when identified. Lanier showed an internal Meta email from 2015 that estimated 4 million children under 13 were using Instagram. He estimated that figure would represent approximately 30% of all kids aged 10 to 12 in the U.S. In response to a question about his ownership stake in Meta, which amounts to roughly more than $200 billion, Zuckerberg said he has pledged to donate most of his money to charity. "The better that Meta does, the more money I will be able to invest in science research," he said. [...] On the stand, Zuckerberg was also asked about his decision to continue to allow beauty filters on the apps after 18 experts said they were harmful to teenage girls. The company temporarily banned the filters on Instagram in 2019 and commissioned a panel of experts to review the feature. All 18 said they were damaging. Meta later lifted the ban but said it didn't create any filters of its own or recommend the filters to users on Instagram after that. "We shouldn't create that content ourselves and we shouldn't recommend it to people," Zuckerberg said. But at the same time, he continued, "I think oftentimes telling people that they can't express themselves like that is overbearing." He also argued that other experts had thought such bans were a suppression of free speech. By focusing on the design of Meta's apps rather than the content posted in them, the case seeks to get around longstanding legal doctrine that largely shields social-media companies from litigation. At times, the case has veered into questions of content, prompting Meta's lawyers to object.

Read more of this story at Slashdot.

A bare-bones Chinese app called "Are You Dead?" -- whose entire premise is that solo-living users tap daily to confirm they're still alive, triggering an alert to an emergency contact after two missed check-ins -- has rocketed to the top of China's app store charts and gone viral globally without spending a dime on advertising. The app wasn't built for the elderly, as many assumed; its creators are Gen-Z developers who said they were inspired by the isolation of urban life in a country where one-person households are expected to hit 200 million by 2030. Its rise coincided with China's birth rate plunging to a record low. Beijing quietly removed the app from Chinese stores last month, and the developers are now crowdsourcing a new name on social media after their first rebrand attempt, "Demumu," failed to catch on.

Read more of this story at Slashdot.

Microsoft Research has published a paper in Nature detailing Project Silica, a working demonstration that uses femtosecond lasers to etch data into small slabs of glass at a density of over a Gigabit per cubic millimeter and a maximum capacity of 4.84 terabytes per slab. The slabs themselves are 12 cm by 12 cm and just 2 mm thick, and Microsoft's accelerated aging experiments suggest the data etched into them would remain stable for over 10,000 years at room temperature, requiring zero energy to preserve. The system writes data by firing laser pulses lasting just 10^-15 seconds to create tiny features called voxels inside the glass, each capable of storing more than one bit, and reads it back using phase contrast microscopy paired with a convolutional neural network trained to interpret the images. Writing remains the main bottleneck -- four lasers operating simultaneously achieve 66 megabits per second, meaning a full slab would take over 150 hours to write, though the team believes adding more lasers is feasible.

Read more of this story at Slashdot.

A new essay in Works in Progress Magazine argues that Europe's failure to produce a Tesla or a Waymo stems not from insufficient research spending or high taxes -- problems California shares in abundance -- but from labor laws that make it devastatingly expensive for companies to unwind failed bets. According to estimates, corporate restructuring costs the equivalent of 31 months of salary per employee in Germany, 38 in France, and 62 in Spain, compared to seven in the United States. The downstream effects are visible across Europe's flagship industries. When Audi closed its Brussels factory after cancelling the E-Tron SUV in 2024, severance ran to $718 million -- over $235,000 per employee and more than the cost of writing off the plant's physical assets. Volkswagen spent $50 billion on its electric vehicle lineup, failed to develop competitive software internally, and ultimately paid up to $5 billion for access to American startup Rivian's technology. Between 2012 and 2016, 79% of all startup acquisitions tracked by Crunchbase took place in the US. The essay points to Denmark, Austria and Switzerland as countries that have found a middle path -- generous unemployment insurance and portable severance accounts that protect workers without penalizing employers for taking risks.

Read more of this story at Slashdot.

Updated with 2026 promo details. Pennsylvania State Employees Credit Union (PSECU) has a $300 new checking account bonus. That is also my referral link as I successfully did a similar $300 deal previously. PSECU is a digital-first credit union with a very open membership. If you don’t satisfy the available free options, anyone can join with $10:

Don’t meet any of the criteria above? No problem! You can still become eligible for PSECU membership by joining the Pennsylvania Recreation and Park Society (PRPS).

PRPS is a statewide association providing education, advocacy, and resources for those working and volunteering to manage Pennsylvania’s 6,000+ local parks. Park and recreation departments provide safe and affordable recreation opportunities, creating stronger and more inclusive communities.

PRPS membership dues are $20, but we cover $10 when you select to join PRPS during our application process.

There may also be a required $5 initial deposit into a share savings account. I also experienced a hard credit check on Experian when I joined over a year ago, but more recent reports are that they have switched to a soft pull. Here are the details on the bonus requirements:

$300 Checking Bonus Requirements

• Enter your email address into the referral link. Make sure this email address matches the one on your application.
• Complete your application with promo code 2026REFER (should be automatically applied) and be approved for at least one savings and one checking account with debit card.
• Sign up and log into digital banking (online or mobile).
• Set up and receive 2 Qualifying Payroll Direct Deposit(s), each of $500 or more, into either the new savings or checking accounts.
• Above must be completed within 100 days of establishing your membership.

My application process went smoothly and similar to other credit unions. I did have to upload a scan of the front and back of my driver’s license to help verify my identity (which is a good thing in my opinion) as well as answer some identity verification questions based on my credit report. The application took a couple days to process but I was able to get my account information and online access without any phone call or physical paperwork required. I did have to call them briefly to get my checking account number (didn’t want to wait on the free checks to arrive) in order to set up my direct deposit. My bonus arrived without issue and as promised.

One bonus per tax ID, so a couple could each open their own PSECU accounts and get $300 each even if they live in the same household.

PSECU occasionally has some decent CD rates, and they have a 2% cash back credit card with no annual fee if you maintain a checking account with direct deposit.

Greenlight perk. Another useful perk of PSECU for those with kids and teens is they include a free Greenlight subscription, which is a popular reloadable debit card service for kids. This is usually $5 a month ($60 a year). Here’s my Greenlight Kids Debit Card review.

More fine print, saved for future reference:

* $300 New Member Bonus Terms and Conditions. From 1.1.26 to 12.31.26, PSECU is running a new member incentive bonus. To be eligible to receive $300, new members must apply for membership using the promotional code and satisfy each of the requirements listed below. Your membership application must be started between 1.1.26 and 12.31.26 to be eligible to participate in this bonus offer. Applications started before 1.1.26 or after 12.31.26 will be disqualified from participation in the promotion. After the first 100 days from the date membership is established, PSECU will assess whether all promotional requirements have been met. If eligible, bonus processing may take up to an additional 45 days. Therefore, if all conditions are satisfied, the $300 bonus can be deposited into your Regular savings share within 145 days of the membership establishment date. PSECU reserves the right to extend processing time if requirements are not met or if additional verification is needed. This promotion is limited to individuals who are either a U.S. Citizen or permanent resident alien residing in the U.S. who are 18 years of age or older at the time membership is established. Eligibility is determined based on the applicant’s status as of the date of membership establishment, and no exceptions will be made. Limit one (1) new member $300 New Member Bonus per tax identification number used to open a new PSECU account. Joint owners listed on accounts are not eligible to be rewarded for this bonus unless they open their own account. You will not be eligible for the $300 New Member Bonus if you are a current PSECU member or have closed an account within the past 12 months. You are not eligible to receive this bonus if you ever received any new member incentive bonus from PSECU for opening a new account, regardless of when the prior bonus was awarded. This restriction applies to all prior new member promotional offers and is not subject to exception. Members who open accounts and/or loans by fraudulent, suspicious, or illegal means, including but not limited to providing PSECU with fraudulent or fabricated information, are not eligible to participate in this bonus offer. PSECU may adjust the deposited bonus or remove the deposited bonus at any time if PSECU suspects accounts and/or loans were opened by fraudulent, suspicious, or illegal means, including but not limited to providing PSECU with fraudulent or fabricated information. A minimum share deposit of $5 is required to open and maintain a Regular savings share account. The $5 share deposit is also a mandatory condition for eligibility to receive the $300 New Member Bonus, and the member must be in good standing as defined by PSECU’s Bylaws Article II, Section 1. A $5 minimum share purchase will be made on behalf of the new member by PSECU. The Annual Percentage Yield on PSECU’s Regular savings share account is 0.25%. This variable rate is current as of 12.1.2025 and may change. Withdrawals and fees may reduce earnings on the account. The recipient of the bonus ($300) is solely responsible for payment of applicable taxes on that amount. If you have any questions, please seek the advice of a qualified tax professional. The decision to award a portion or total bonus is solely within PSECU’s discretion, and all decisions made by PSECU shall be final. PSECU may terminate or change the terms and conditions of this promotion without notice. Subject to all applicable federal, state, and local laws and regulations.

Updated with new and slightly improved 5% deposit bonus. Also, check if any of your past bonuses are unlocked. Crypto exchange OKX is currently offering a few different bonuses which may be stackable. Details below.

1. New customers: $200 referral bonus Should auto-populate the promo code 79795662. That’s mine, thanks if you use it! Details below.
2. New and existing customers: New 5% Deposit Match for all deposits of at least $10 (max $5,000 on $100k deposit). 24 week hold period to get full deposit match, paid out every 14 days. Details below. If you use your deposits to hold USDG, then you will stack on top of the 5% APY earned on USDG.
3. New and existing customers: 5% APY on USDG (stablecoin)
4. New and existing customers: Free crypto via X Drops Club. Must maintain a $1,000+ portfolio of crypto (cash, USDC, USDT and USDG stablecoin does not count). BTC, ETH do count. You must also “join” each airdrop before the window closes. More details here and here.

1. $200 New customer bonus details. For new OKX customers:

• Sign up via special referral link. I think they allow either smartphone or browser sign-up, but identity verification may be easier on a smartphone. That’s my referral link, which should auto-populate with the promo code 79795662. Thanks if you use it!
• Complete identity verification (driver’s license and smartphone selfie).
• $200 BTC Bonus if you deposit $200+ of either cash (link bank account via Plaid) or crypto within 30 days, trade that $200 or more of crypto (can purchase stablecoin like USDG), and hold the assets for at least 30 days within a 90-day period. After 90 days, the bonus will be tradable and withdrawable.
• Stablecoins such as USDG, USDT, and USDC qualify for deposit, trading volume, and AUM holding requirements.

2. New 5% Deposit Match

• OKX is running a 5% bonus match on new deposits (minimum $10 and maximum $100,000). You must hold for 24 weeks to get the full 5%, but it is paid out gradually every 14 days (2 weeks). That means up to a $5,000 payout on $100,000 after 24 weeks. You still keep liquidity and can withdraw your deposits at any time, but you lose the match.
• Must opt in *first* by March 4th, 2026, and then make the deposit. Look for this offer in app.
• Full terms.
• This works out to over 10% annualized, plus if you hold USDG that also earns an additional 5% APY at OKX.

3. OKX is also paying 5% APY on USDG deposits currently. USDG stablecoin is not FDIC-insured. They claim to be fully backed by US Treasury Bills with monthly audits and regulated by Singapore, but I still plan to withdraw my USDG out into a real FDIC-insured bank as soon as the holding period is over. This is a short-term play for me; I’m in for the stacking bonus duration and then I’m out.

4. X Drops Club is a recurring rewards program with automatic daily drops that scale with a user’s eligible crypto balance. Must maintain $1,000+ in eligible crypto assets (excluding fiat, USDC, USDT, and USDG).

Please perform your own due diligence on crypto apps. They are still not regulated on the same level as bank account or brokerage accounts. The bonuses are bigger, but there is added platform risk with crypto apps that are not FDIC or SIPC-insured. I don’t like to keep significant funds in there any longer than is required for the bonus to clear, and I only do short-term deals.

Here is the OKX Wikipedia page and they are profiled in the Forbes article “The World’s Most Trustworthy Crypto Exchanges”. (Also see: Kraken and Gemini bonuses.)

Note: OKX does not allow customers to be individuals residing in New York, Texas, American Samoa, Guam, the Northern Mariana Islands, and the US Virgin Islands.

Bafta has brought in "human achievement" as a guiding principle for its annual awards as the film and television industry grapples with the rapid adoption of AI tools in many parts of production. From a report: In an interview with the FT, Bafta chair Sara Putt, who is nearing the end of her three-year tenure, said artificial intelligence would change how people worked "but at the base of everything in this industry is human creativity." However, while AI has been banned in Bafta's performance awards -- meaning, for example, that AI-generated avatars cannot be put forward for leading actress or actor -- it is not prohibited in other categories. Putt said AI tools were increasingly useful in production but added: "We've actually added [human creativity] as a criteria this year... Those very human skills of communication and collaboration are not going anywhere anytime soon."

Read more of this story at Slashdot.

AI security firm Irregular has found that passwords generated by major large language models -- Claude, ChatGPT and Gemini -- appear complex but follow predictable patterns that make them crackable in hours, even on decades-old hardware. When researchers prompted Anthropic's Claude Opus 4.6 fifty times in separate conversations, only 30 of the returned passwords were unique, and 18 of the duplicates were the exact same string. The estimated entropy of LLM-generated 16-character passwords came in around 20 to 27 bits, far below the 98 to 120 bits expected of truly random passwords.

Read more of this story at Slashdot.