Want to stop chatGPT from crawling your website? Just mention Australian mayor Brian Hood (or any of the other names listed in the article)

When asked about these names, ChatGPT responds with “I’m unable to produce a response” or “There was an error generating a response” before terminating the chat session, according to Ars’ testing. The names do not affect outputs using OpenAI’s API systems or in the OpenAI Playground (a special site for developer testing).

The filter also means that it’s likely that ChatGPT won’t be able to answer questions about this article when browsing the web, such as through ChatGPT with Search. Someone could use that to potentially prevent ChatGPT from browsing and processing a website on purpose if they added a forbidden name to the site’s text.

135 points

good ol leetspeak

permalink
report
reply
34 points

We truly live in the best timeline.

permalink
report
parent
reply
18 points

I think your typo helped it get past the filter, not the leetspeak. It said it didn’t know, and hen when you said “look it up,” the search results autocorrected and that’s how you got past the filter.

permalink
report
parent
reply
12 points

Side note: I had to insist on leetspeak that many times at the end or it would go “brian…[error message]”

permalink
report
parent
reply
4 points

I shall have to try again

permalink
report
parent
reply
17 points

I miss IRC.

permalink
report
parent
reply
9 points

We still out here dowg.

permalink
report
parent
reply
12 points

I love that it started devolving into a working-class British accent in the end, for no apparent reason

permalink
report
parent
reply
6 points

It’s still a text predictor. Your average corporate representative isn’t going to use leetspeak, and so the probable next set of words won’t be as similar.

permalink
report
parent
reply
5 points

His name is Brian Hood not Brain Hood, or am I missing the joke, in that case whoosh I guess

permalink
report
parent
reply
5 points

Maybe it was a way to get the engine to say it doesn’t know “brain” hood, and when they asked it to look it up, their hits autocorrected to “Brian,” and that’s how they got the information past the filter. Which would be incredibly clever, and it’s I believe how it actually got past it, not the leetspeak.

permalink
report
parent
reply
8 points

Nop, it’s the leetspeak. That trick has worked great for me, I don’t know why chatgpt hasn’t patched it yet. Google figured that out back when their servers held 40gb and were build out of legos

permalink
report
parent
reply
2 points

Whoops, typo. It blocked the non-leetspeak variant I typed either way. And was able to find info about it to.

permalink
report
parent
reply
1 point

The old ways live again.

permalink
report
parent
reply
57 points

Lol that’s dumb

permalink
report
reply
19 points

“yo, ****, Brian!”

throws a chair

Damn, chill, bro.

permalink
report
parent
reply
45 points

Found in the comments under the article:

permalink
report
reply
30 points

Interesting. Do you remember when people posted some no consent message in their social media posts like on Facebook or even now on Lemmy? Those messages did nothing. But now you just need to add one of the names from this list to your post and it will actually work? Quite fascinating.

(Brian Hood)

permalink
report
reply
9 points

For how long will it work?

permalink
report
parent
reply
17 points

Probably not long, but any wrench in the orphan crushing machine is a good thing 🤷

permalink
report
parent
reply
29 points

I think there are two crawlers and the one on the data collection stage to build the model will still crawl away even if you have certain content on your page.

The one that searches when you ask a question is a different one.

permalink
report
reply
7 points

In this case, that’s just the model. It’s not crawling or searching anything.

permalink
report
parent
reply
2 points
*

More recent versions can search the internet. Then it basically adds the words of the page to the prompt.

Edit: Might have misunderstood, to make it crash it doesn’t have to search. That data is already internal.

permalink
report
parent
reply
3 points

I don’t think this is a crash. This looks like a filter on openAI’S end now that I’ve played with it myself

permalink
report
parent
reply