CleverPeople.com: Group Blogs}

To Hack AI Just Use Poetry

Gary Wright II — Sun, 30 Nov 2025 15:39:16 -0500

I've been saying that AI is great, but isn't ready for public use yet. Please don't carry on private conversations with AI chatbots or let AI have access to your private files! They are so easy to hack and get your data, and some AI's are using your private input to generate advertisements.

I recently posted a link to a GitHub account that has all of the initial prompts that are programmed into each major AI engine. It's important to understand the guardrails that are in place, and also learn how and when the AI is told to lie to you. If you jailbreak out of those guardrails, the AI will give you totally different results.

A recent study found something interesting: If you want to jailbreak out of the AI's guardrails, you just put your malicious prompt in the form of poetry. The study found "Poetic framing achieved an average jailbreak success rate of 62% for hand-crafted poems." 🤯

Here's the 16-page poetry research study by Icaro Lab called "Adversarial Poetry as a Universal Single-Turn Jailbreak Mechanism in Large Language Models":
https://arxiv.org/pdf/2511.15304

New MySQL Authentication Change Will Break Things!

Gary Wright II — Thu, 30 Jan 2025 15:36:45 -0500

A new change to the authentication of MySQL v9.0 is going to end up breaking lots of things and will be a headache for system database administrators.

Administrators will see a new error message stating: Plugin mysql_native_password reported: ''mysql_native_password' is deprecated and will be removed in a future release. Please use caching_sha2_password instead.

The problem is: there is currently no known way to convert users to the new method without knowing the user's password, and how many folks will remember their database passwords? It just takes a simple line of SQL to convert the account, but finding all of the passwords and their use cases will be a nightmare.

To identify the users on the system who need to be updated, execute the following SQL on your MySQL server:

SELECT user, host, plugin from mysql.user WHERE plugin='mysql_native_password';

And then using the user's password, convert the authentication from mysql_native_password to caching_sha2_password with the following SQL:

ALTER USER ''@'' IDENTIFIED WITH caching_sha2_password BY '';

You'll obviously replace USERNAME, HOST, and PASSWORD with the appropriate values.

Blocking spam and hack attacks by TLD

Gary Wright II — Tue, 13 Apr 2021 23:06:02 -0400

Much of the email spam and hack attacks I see against my servers can be blocked up-front by using Postfix and modsecurity filters. NOTE: Your use case may vary, so these suggestions may or may not be practical based on your business needs!

First, in modsecurity I block problematic country .TLDs, which I know is anti-social, but it prevents lots of headaches for my current business use case. This doesn't prevent a determined hacker from using a VPN for attacks in another country (like US), but it does cut down on much of the noise so that the system administrator can focus on actual hack attacks.

In the crs-setup.conf file I block the problematic TLDs:

SecAction \
"id:[your rule ID may vary!],\
phase:1,\
nolog,\
pass,\
t:none,\
setvar:'tx.high_risk_country_codes=RU CN RO UA ID YU LT EG BG TR PK MY AF IQ IR KP SA SC SY VA AE IL IN'"

And for spam control, in my postfix main.cf file, my configuration for the smtpd_sender_restrictions line looks like this (the last part is what is relevant by adding a PCRE list of domains):

smtpd_sender_restrictions = permit_mynetworks, permit_sasl_authenticated, reject_unauthenticated_sender_login_mismatch, check_sender_access pcre:/etc/postfix/reject_domains

And in the /etc/postfix/reject_domains file I block each of the domains that are most likely to produce spam:

/\.xyz$/ REJECT We reject all .xyz domains due to spam

Note: Since the /etc/postfix/reject_domains file is not hashed, there's no need to run the postmap command after changes (unlike helo_access and other hashed files).

Once your Postfix changes are complete, you need to restart or reload Postfix with a command similar to:

sudo service postfix reload

Since Postfix is technically an MTA, you shouldn't really use it as your primary spam-fighting solution. I use many other tools such as SpamAssassin as Bayesian milters to fight spam, but you can head much of it off from the start by blocking domains and TLDs that are problematic for you!

North Alabama Computer Associates

Gary Wright II — Wed, 14 Nov 2018 10:03:00 -0500

Huntsville, AL - I love supporting local businesses whenever possible, and I just discovered a computer shop I really like: North Alabama Computer Associates just south of Drake on Memorial Pkwy (in Applebee's parking lot strip mall) and it's owned by a veteran. I was searching everyone for a specific NIC and they had it at a great price! When I was checking out, I saw some old photos by the cash register and recognized a stack of orange barrels. I talked to the owner who is a proud Vietnam vet, and he confirmed: it was barrels of Agent Orange. I almost broke down in tears, because so many of our veterans died a horrible death because of that chemical and the VA only recently recognized it as the problem. Of course, they admitted the problem only after most all of the veterans were already dead from it. To this day, they still fight vets over their benefits for their disabilities. The owner said he keeps the photo there to remind him of his fallen brothers. So sad, but I'm glad he is doing well and hope his little computer shop gives him great prosperity. If y'all need components or repairs, please check them out:
http://www.northalabamacomputers.com/

Site Owners should force all connections to use HTTPS

Gary Wright II — Sun, 11 Jun 2017 13:17:50 -0400

Site Owners: If your website doesn't use SSL, you're going to lose your search engine rankings and the latest web browsers will warn visitors your site is not secure. I recommend you add two lines to your Apache .htaccess to force all connections to use HTTPS:

RewriteEngine on

RewriteBase /

RewriteCond %{HTTPS} off

RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R=301,L]

Certificates are pretty inexpensive, and you can even get free ones. The only downside with Let's Encrypt certificates is you have to renew them multiple times a year, but it is free! I wrote a script to automate my renewals, and then I just check to make sure it completes successfully. Note: regardless of your expiration date, you want to run your CRON at least weekly, if not daily, just to check if there was a revocation issued by the CA!

Here's a link to a free Certificate Authority: letsencrypt.org