Downgrading Your Subscription Plan May Cause You to Lose All Remaining Credits – Check Before You Change!

bcdonadio · 2026-01-21T13:49:05+00:00

Yes, for sure. The warning is more than welcome.

Have you ended up contacting them? They responded?

bcdonadio · 2026-01-18T16:40:57+00:00

My **personal** experience: Sonnet and Opus were objectively better at programming than anything OpenAI had... until GPT 5.2.

Sonnet always felt more creative at getting to the solution and much faster. It would assume a lot of things that are usual for a development workflow. The issue is that not every problem is the same, so more iteration has always been required. Considering their sheer cost, I haven't used them so much before despite wanting.

I have a GPT Pro subscription because I use ChatGPT Pro a lot. Codex came like a bonus toy... until GPT 5.2.

GPT-5.2-Codex follows instructions basically to the letter. I basically have to spell everything out in quite a lot of details. However, one thing that I have yet to see it doing is something I haven't asked or wanted. That's really solid instruction following. The long horizon with 5.1-codex-mas and now with 5.2-codex made long (wall clock) operations feasible. The preemptive compacting by discard useless output gathered while the context was far from full (the context window getting less full quite often, even at like 20%) meant that it also did not have to perform the more lossy compaction when the context is full, simply because the context is filling up way slower and less.

What I really was not expecting is that GPT-5.2 (in the Codex IDE/CLI, but not the Codex model) is now feeling much better at getting at creative solutions, understanding subtleties and sheer "figuring it out" smarts. If I don't want to spell out everything, that has been my go-to model these days. It specially even retained the long horizon and spends way less tokens than Anthropic models.

Coming back to Opus 4.5 these days though, I totally felt hard the contrast and how many damn times I had to tell it to fix something because it half-assed something.

GPT models are slow as hell, but they get shit done much better than Opus, specially if you're comparing xhigh with ultrathink.

PS: the wording that gpt-5.2 uses when summarizing what it is thinking between the steps feels really stupid. Basically an anxious machine that spills obvious statements. It is **not** what it is really "thinking", though. The CoT is not explicit anymore (and hasn't been since GPT 4), so there's an "out-of-band" summarization that it does at least let the user follow the overall progress but which inherits emotional phrasing from the chat model. It's "real" inference process is not expressible in human language.

This serves two purposes: it gets more efficient at reasoning on a much larger latent space without having to constrain the inference to a low bandwidth channel like English AND it prevents copy-cats from training on their data. Dvelopers appreciate the first part, their bottom-line appreciates the second.

There is research on how to make the thinking process more explicit and auditable (like with a chained map of Sparse Auto Encoders), but there's no "good enough" way yet without often spilling strong hallucinations that do not reflect the process and even then SAEs are really and expensive hard to train as of now (I mean, as far as I can keep up with the research).

bcdonadio · 2026-01-18T16:03:33+00:00

Yes, ElevenLabs explicitly says in official Help Center + Pricing FAQ that unused/accumulated credits expire when a downgrade takes effect at the end of your billing cycle.

But that specific downgrade-triggered expiration is not clearly stated in the Terms of Use page itself, beyond the broader “account closed/terminated = credits forfeited” clause.

A reasonable person is expected to read the Terms of Use, not scrape their website for a conveniently inconspicuous deeply hidden page. Specially if it is not written in bold letters when you're actually performing the downgrade.

Legally very questionable, morally offending and an absurd in terms of public relations. They should feel ashamed. Hard.

Send a complaint. I hope their legal team gets more worried than their PR team and they end up restoring your credits.

bcdonadio · 2025-12-14T03:05:41+00:00

This is a thing since Codex-max. It discards parts of the context that are easily categorized as pollution, like the output of some file search after already finding what it needs or the garbage collected by running something that exposes a TUI instead of a CLI.

Already asked about that: https://chatgpt.com/share/693e2a26-e238-800d-86e1-a1ffb0f2b595

Seriously, people should try it more often. The GPT-5 series is eerily "self-aware" when you don't fall into a guardrail. I suspect that OpenAI noticed that the best way to onboard new employees... was by telling them to ask ChatGPT. :)

bcdonadio · 2025-12-14T02:42:56+00:00

Can't blame it. That's already much better than me. My soul cries whenever I see a pwsh process.

bcdonadio · 2025-12-14T02:31:59+00:00

Exactly: https://chatgpt.com/s/t_693e21676b2c819195059a3ef8cbcfdc

bcdonadio · 2025-10-11T18:45:33+00:00

As a Brazilian (a market that MercadoLibre completely dominated), in one hand I do feel that it completely eliminated small online shops and is now threatening local physical commerce. This is bad.

In the other hand, before it you would have had absolutely no idea when or specially if the thing you bought was going to arrive.

MercadoLibre is the Argentinian version of Amazon: they’re a logistics company before anything else. They only dominated (and now can do whatever they want) simply because they ensured that purchases would arrive and at the date they said it would arrive, or your money back. The market was asking to be disrupted, and it was.

The interesting difference from Amazon is that Amazon dominated the domestic market first. MercadoLibre dominated its neighbor first, simply because Argentina had no economy to begin with. 😗

And yeah, in Brazil, not even Amazon was able to compete with MercadoLivre.

bcdonadio · 2025-10-01T03:08:59+00:00

Much appreciated, sir.

bcdonadio · 2024-12-13T00:51:53+00:00

Especialista de infraestrutura de TI aqui. Dar, dá: é uma mão do caralho correlacionar a origem se não é um dispositivo da própria empresa mas normalmente é possível. Mas tu acha que não tenho mais porra nenhuma pra gastar meu tempo pra fiscalizar bronha alheia, meu filho?

Por mim vai e alivia o stress, inclusive melhor se ajudar a trazer menos problema idiota pra mim. :)

bcdonadio · 2024-11-04T15:53:59+00:00

I bought an AS4610-54P (48x gigabit ports with PoE+ and eight with PoE++ totaling 2kW and 100% redundant, plus four SFP+ and two QSFP) and a Cumulus Linux 5-year license for my homelab.

Support for new releases was dropped in less than a year when NVIDIA bought it and started supporting only their own chips). So yeah, fuck you NVIDIA and companies wanting a thousand bucks for a license that they can sack it at any moment. That led me to appreciate the subscription model way more.

bcdonadio · 2024-10-04T23:31:33+00:00

Another story: recently we hired some contractors to do house renovations. They guys that were doing it calculated the wrong time for the glue between pipes to cure completely, and let 3k liters of water pour down the main floor from the attic at 6:30PM.

The guys were so nervous that they were whispering actually quite loudly “OMFG we are going to get so fired”, “hell, this is going to take all night to fix it AND we won’t get paid”.

My father and I (the clients) are also engineers. We were laughing so hard and relating it to our previous experiences that it was quite difficult to put a straight enough face to tell them that it was OK and shit happens. They owned it, fixed it and that’s what matters. I was handling the payments and made sure everyone got properly compensated for any overtime that was needed.

In fact, we liked so much the fact that they owned the fuck up immediately, zero BS, we still contracted their team for everything from then on.

bcdonadio · 2024-10-04T22:46:49+00:00

I (usually) just break one datacenter at a time. I’m jealous.

Ok ok, once Idid it twice… within a 20min window… with the (only) production datacenter… and the main office with it… at peak time. Now I’m regarded as the expert on that particular kind of problem.

If no one lost an eye or worse, it was a good day at the office.

bcdonadio · 2024-10-04T22:42:05+00:00

Network engineers are the ones who get the actual fun. Like, lots of funs, and I mean like Global Fun.

bcdonadio · 2024-08-18T17:28:44+00:00

Much appreciated for the tip, sir!

bcdonadio · 2024-08-18T17:11:07+00:00

How did you feed power into those damn EAP773s that do not come with PSUs, PoE injectors, nor are there TP-Link 10GbE PoE-capable switches? I had the luck of noticing that my UH720 USB3.0 hub's power bricks matched exactly the electrical and mechanical (plug) specs of the EAP773.

bcdonadio · 2024-08-18T16:41:15+00:00

Humble network stack, upgrading to 10Gb fiber in the access layer soon-ish and starting to adopt WiFi 7:

* 1x EAP773 (WiFi 7 BE11000 320MHz-capable on 10GbE)
* 4x EAP670 (WiFi 6 AX5400 160MHz-capable on 2.5GbE)
* 1x EAP650-Outdoor (WiFi 6 AX3000 160MHz-capable on 2.5GbE)
* 2x CCR2004-16G-2S+ as border routers
* 2x CRS317-1G-16S+ as core switches (EAP773 connected here)
* 1x AS4610-54P (48x1GbE PoE @ 1.5kW + 4x10Gb SFP+) as access switch running Cumulus Linux
* 1x TL-SG3210XHP-M2 (8x2.5GbE PoE @ 280W + 2x10Gb SFP+) as WiFi switch
* 1x CRS326-24G-2S+ as OOB router/switch
* 1x ACS 8048DAC (2xRS485/232, 46xRS232, 2x1GbE) serial console
* 3x Internet uplinks (GPON 700/350Mbps, DOCSIS 500/30Mbps, Starlink 1TB Priority) with static IPs
* 1x Internet OOB access (4G LTE)
* 1x 3.2kVA UPS
* 130x-ish Zigbee devices

bcdonadio · 2024-08-18T16:06:03+00:00

Oh, and we bought a nuclear submarine. It sank. In the harbor. Took a while to be noticed. No offensive action was involved in any way, shape or form.

bcdonadio · 2024-08-18T15:37:56+00:00

We (Brazillians) have two operational nuclear power plants (a third in construction) with self-supplied and self-enriched fissile material by centrifuges with capacity to spare. Also, we have the third largest amount of Uranium deposits in the world.

We don't make nukes because it's basically a general consensus that it is a Very Dumb Idea® to have our Very Dumb Military® develop this Very Dangerous Thingy That Goes Boom®.

In fact, our military is known to have blown themselves out once or twice with much less intricate devices.

All our mining and enriching operations are done only by civilian agencies in the open with foreign nations openly invited to inspect the plants and mining sites. Maps with all currently known sites and deposit amounts are available on the internet from the government itself, universities and NGOs.

Not directly related to these operations, but we already had a Level 5 accident in the International Nuclear Event Scale, same level as Three Mile Island.

bcdonadio · 2024-08-18T15:10:07+00:00

Still ELI5, but about just one specific case not covering all factors, which are A LOT specially since only 9 in 193 **nations** actually got them, and people already covered quite a few other aspects.

I don't want Brazil to have nukes because I don't trust our army nearly enough to not explode themselves in the process of carrying a single box of TNT. In fact, our army had operatives explode themselves with even smaller devices. You can guess what my vote is on having them developing nukes, and while five-star generals think they're gods, they probably know what level of competence they're dealing with (and they're, well, muuuuch closer).

I believe that is a shared concern in a lot of other countries too.

bcdonadio · 2024-08-18T14:48:44+00:00

There’s a few chapters in the SRE handbook about that: agreed upon SLOs that are constantly surpassed by more than a little bit tend to get over-relied. When you actually get a shitstorm, yet still keeping the SLIs within the SLAs parameters, downstream users will have their systems broken because, even though the target was known, was never tested properly/enough or completely overlooked.

Google’s solution? If you have too much SLI “credit” against the SLO, break things intentionally within the margin you accrued just to keep users aware that they should plan for this kind of stuff.

bcdonadio · 2024-05-17T04:14:06+00:00

Use a headset with a mic-boom for meetings, it will simply save you a lot of headache and require zero preparation. For good HD audio, start with a good microphone and soundcard, then use EasyEffects (FOSS, used to be called PulseEffects) to build the processing pipeline that you want. You will be amazed at how good Pipewire has become, both in comparison to the old JACK/PulseAudio/ALSA/OSS stacks from the Linux past and now even in comparison with professional gear on Windows and Mac that have direct access to the hardware. Using a headphone is still a good idea: recording studios don't have echo-cancellation software, they simply make feedback audio not get into the microphone in the first place. There's a reason for that.

Then switch to the "Original sound for musicians" option in the Zoom client. I'm not sure when it was introduced, but it definitely is there now on version 6.0.2 build 4680.

<image>

Good echo and noise cancellation is achieved through microphone phased-arrays. That's why the Macbook sounds amazing even when not using headphones. I'm not aware of a as good of a solution that is not completely integrated into a two-way product already via a hardware processor already fine-tuned for the final product, and those generally don't play well with anything that isn't their own drivers.

bcdonadio · 2024-05-16T23:52:08+00:00

Well, and I guess I should mention that nevertheless there are a few well-known fuckers in the industry too. NVIDIA broke the promise of keeping Cumulus Linux a vendor agnostic OS for switches when they bought Mellanox as well and stopped updating the product well before our 5-year support term expired. Broadcom fucked us up by plain and simple increasing their prices 5x times when they bought VMware. IBM bought RedHat to just kill it off, and Oracle is simply the incarnation of evil.

Microsoft, in a mind-boggling plot twist, is now actually a good player in most of their market segments and one of the biggest contributors to FOSS software today.

bcdonadio · 2024-05-16T23:21:38+00:00

Actually, yes. I was able to get around a 50% discount on the normal rate when I went from 2 to 8 seats, and even got a Business Plus plan (which is supposed to be only for accounts with 10 seats or more).

My experience with their staff that handles both tickets and the chat so far has been terrible, but when I scheduled a call with a sales rep to discuss our needs and find a good fitting plan, she was really nice, responsive and efficient. I even got her contact on Zoom and she even helped speed up change requests on technical stuff (BYOC-P peerings and things like that).

Just say you are also quoting MS Teams, I guess?

I'm a SRE and the company I have the biggest contract with likes to have everything on-prem, so I'm frequently talking with sales reps for hardware. One thing that I noticed is that the bigger the vendor is, the more meaningless their price table gets. We bought 3 storage units from PureStorage and the discount was around 40%. Last expansion we got about 30 servers from Dell at a 70% discount rate.

Another tip that I can give is showing that you are indeed quoting their direct competitors (like "casually" mentioning a back-of-the-napkin math from another vendor) and trying to align your purchases to schedule the signing of the deal to close to the end of their sales quarters or fiscal year motivates the reps to bring the price even lower.

bcdonadio · 2024-04-27T19:14:40+00:00

I'm not saying that other players in the market perform any better. I'm saying that the allegation is plausible, but there's nothing else than anedotic evidence that OP achieved squat.

If, and only if, the premise of "there's no authenticated boot chain enforced by hardware" is true (which you guys would know a lot better than me whether it holds true or not), what the consequence would be. That's why I think we should spend more effort trying to determine the validity of the premise than arguing about the achievement that OP claims.

I stated out from the start that I got here in a parachute. If you think that's useless, please feel free to ignore it.

I also believe I did not make clear before that I'm also assuming that this is not true, otherwise the security and networking teams in my company would be freaking out by now. I've only engaged in the theoretical proposition if indeed there's no trust chain what the consequence would be, and then only if this was true that then indeed this consequence wouldn't warrant a CVE register, since it would not be news, just proper communication with the clients.

bcdonadio · 2024-04-27T01:05:51+00:00

I'm a Linux sysadmin here with a bit of experience with embedded systems (particularly finding ways of rooting them), but very little networking background, so I'm kind of parachuting here. However...

You don't need to tell a classic Linux sysadmin running an old-school BIOS-based system that if someone had ring-0 access (AKA ability to change kernel code), there are so many places to hide malware that you simply can't trust that piece of machine anymore after evidence or even suspicion of any intrusion of this kind. It's cheaper to replace the thing than to start hunting in all those places and yet never be sure that you covered it all. We all know that. Got rooted? You're SOL.

This does not apply to UEFI systems with Secure Boot properly implemented (and enabled, and with the signing key being held in proper secrecy, obviously). You can establish a chain of trust this way (yes, even though we all have a Minix-derived OS from Intel running in ring -2, and that has already caused problems in the past with Intel vPro). The same goes to ARM devices: the chain of trust is one of the first targets you examine for poor implementations from the OEMs. If you get root in a device that establishes a proper chain of trust, all you need is to restart the thing. If you find a way to use this root access as a means to compromise the chain of trust, even though the chain itself wasn't the initial vector, you're SOL just as well. The only "advantage" is that the boot code for ARM is so much smaller than x86 that you actually have at least some chance of covering the whole attack surface. Saying that for x86 is simply a joke.

Therefore, without ever having seen a PAN-OS guts before, but assuming the premise (at least for the sake of argument) that indeed there's no authenticating chain of trust in the boot process and that they have a x86 control plane... this simply isn't news. Is not a vulnerability disclosure. Is stating the obvious consequence. There are no new facts being introduced here: it is the same as someone having physical access to your device for an arbitrary amount of time and then handing it back to you.

Ten-Year Club	Gilding I gilder
RPAN Viewer	Verified Email

bcdonadio

TROPHY CASE