Yeah. The problem with leaking data is that you cannot unleak it really. Gotta break the correlation by changing habits.

Better to have some defense than none. It’s the usual cat-and-mouse game, sadly, the bad guys are pretty much always a step ahead.

0xbitcoiner

​​Whisper Leak: A novel side-channel attack on remote language models

There's this obfuscation extension built into mullvad called [DAITA](https://mullvad.net/en/vpn/daita) - I'm not sure how well it works though, as with the background noise it's only protecting the tunnel, not the tls going through the endpoint.

At least they built a nonce into these APIs now, that's good for an ***outside*** observer. But many of these chatbot sites require you to log in for more than trivial usage, so they will still correlate all your traffic to your chats anyway. I wouldn't take a bet against these guys selling that data either.

Thus, localhost LLM > intranet LLM > extranet LLM > internet LLM > LLM service.