BSA Accuses OpenOffice Mirrors

sqrt529 writes "A German university was accused by the BSA of pirating MS Office, because they mirrored OpenOffice.org. The scripts from the BSA only check for "Office" in the filename and then automatically send out notices to the ftp admins. Did any of you get similar notices from the BSA?"

Open Office Outlawed

[Almace (216500)]

This is really funny actually. I'm going to start uploading mp3s named "office.mp3" to ftp sites now for fun.

Re:Open Office Outlawed

[ketamine-bp (586203)]

/me think we should setup some sort of ftp server that fakes every microsoft software's files, like

SlashDOT_MS_OFFICE_2K_1_of_37.zip

heh.

Re:Open Office Outlawed

[caseydk (203763)]

Why doesn't the RICO Act apply to the BSA (not the Boy Scouts)?

Re:Open Office Outlawed

[jdiggans (61449)]

The Racketeer Influenced and Corrupt Organizations (RICO) Act [ricoact.com]

The BSA is certainly morally corrupt but I must admit I don't understand what the parent poster was trying to say by suggesting they should fall under RICO.
-j

Re:Open Office Outlawed

[WindBourne (631190)]

Many of the tactics that BSA employs would actually be illegal if the law was applied in an even-handed approach. BSA operates be threats and false premises. The problem is that they have the backing of our current admin (Clinton's admin was not much better). If they treaten you and you do not comply, they get a warrent and come back with Ashcroft's FBI, who then take ALL of your computers for the next year. I have been told by somebody that they can hold the equipment up to 5 years. We used to get upset when these kind of actions were done in Soviet Union, Nazi Germany, and a number of third world dictatoships. Now, it is all in the name of security.

Re:Open Office Outlawed

[anthonyrcalgary (622205)]

What I find funny is this...

BSA represents that the information in this notification is accurate and states, under penalty of perjury, that it is authorized to act in this matter on behalf of the copyright owners listed above.

Does the BSA represent OpenOffice.org? Perjury it is then...

Re:Open Office Outlawed

[jasonditz (597385)]

"Do you prefer they eliminate the middle step and go straight to the FBI when you learn about your illegal copy of Office?"

Why not? They already eliminated the first step where they actually make sure you have an illegal copy of office.

Re:Open Office Outlawed

[dohcvtec (461026)]

But regardless, if you are doing nothing wrong there is no harm.
Bullshit... if they have some reason to believe I'm pirating software, even if I'm not using said software, it can be tough for me to prove I'm innocent. After all, their standard is "guilty until raided and proven innocent." So they can come in and raid me, and even though I'm innocent, they can disrupt my business and confiscate my computers. Who else has the power to do this? Nobody I can think of, definitely not legally.

Do you prefer they eliminate the middle step and go straight to the FBI when you learn about your illegal copy of Office?
Actually, yes. I think that's what everyone wishes would happen. If the BSA is accusing you of less than $5,000 worth of piracy, the FBI will tell the BSA to f'off. If they're accusing you of more than $5,000, then the FBI will conduct a proper investigation, unlike the BSA's slash and burn approach. The BSA is a vigilante group, and they should be stopped.

Re:Open Office Outlawed

[moncyb (456490)]

You misunderstand what a cease-and-desist letter is all about. But regardless, if you are doing nothing wrong there is no harm.

If the BSA sent a false complaint to your ISP / hosting provider saying you violated copyright laws, there would be no harm? Even if they take down your site or cut off your internet access?

Whats wrong with that? Do you prefer they eliminate the middle step and go straight to the FBI when you learn about your illegal copy of Office?

If they went straight to the FBI with a false complaint like this, they'd probably end up in jail.

Re:Open Office Outlawed

[forgetful_ca (554717)]

I would think we should add a link to open office with the comment "My word, this version of office really does excel".

Re:Open Office Outlawed

[infront314 (598911)]

"Click here to Access it."

Re:Open Office Outlawed

[phatlipmojo (106574)]

"Because I can't post it on the FrontPage."

Wow. That's stupid.

[nitehorse (58425)]

"I've got an idea! Let's write scripts that will automatically log in on FTP servers, waste bandwidth, cost people money, and also do a shitty job looking for pirated software!"

Yeah, that's really bright. If I were operating any servers that had been raped by the BSA's scripts like this, I'd be extremely pissed off. They should realize that bandwidth isn't exactly free, especially not in countries != US.

Re:Wow. That's stupid.

[Angry White Guy (521337)]

Google:
Searched the web for Office.
Results 1 - 10 of about 78,600,000. Search took 0.10 seconds.
Start sending the letters!

as an interesting side note, the first link is US Copyright Office [loc.gov]

No one claims they've got a brains monopoly

[twilight30 (84644)]

If you read Ms Beck's reply carefully, you'll notice that she -- and not the bot -- seems to think the name 'Louis' refers to a female. Talk about adding insult to injury...

Re:Harrass them right back!

[gmuslera (3436)]

Sue them for diffamation. In some moment they should learn that accussing someone for things nobody did have a cost (at least a generous salary for the one that had to check their affirmation, administrative costs, etc).

Terrorists don't have to send bombs around to spread terror and cause economic chaos... just mail in the name of BSA letters to all companies that inform that illegal software was detected in their systems and next week will go a team to check licenses, and billons of dollars will be lost.

In fact, I think BSA is fitting very well in the "terrorist" definition, could US army invade them to avoid further damage?

Re:Harrass them right back!

[lfourrier (209630)]

not for defamation, for perjury:

from the mail :
BSA represents that the information in this
notification is accurate and states, under penalty of perjury, that it is
authorized to act in this matter on behalf of the copyright owners listed
above.

they (BSA) obviously played it very softly(apologies and thanks), cause they feel a little weak on this one.

Re:Harrass them right back!

[Marc2k (221814)]

A net spider would appeal to me, but you can be damn sure i wouldn't be mailing out legal threats the moment the spider caught the word "office" in the filenames. Why wouldn't they just plop the server name and file name into a database where human eyes can check it out before mailing threats?

Re:Harrass them right back!

[sbaker (47485)]

Yeah - but at least I'd have my software check some checksums on the allegedly pirated files - then have a human go check them out BEFORE mailing out threatening letters.

This sort of harassment needs to stop.

The problem is that it's cheaper to send out a threatening letter than to check carefully and THEN send letters only to true offenders. You just bet that 99% of recipients will stop doing whatever it is you suspect them of - which makes it a cost-effective way to work. The BSA doesn't have these people as customers - so what does it care if it pisses them off?

I suppose, what the world needs is a law to say that if you send someone a letter threatening legal action if they don't do something - then if they don't do it, you should be REQUIRED to take them to court - and to be liable for their costs, pain & suffering, mental anguish, etc, etc if they turn out to be innocent.

Re:analogy time

[nomadic (141991)]

No, it's more like this:

After college you use a small inheritance to open up a wicker basket shop. What's wrong with that? Just because you're a man doesn't mean you can't sell wicker bastkets! It has NOTHING to do with your sexuality. Anyway, one day an odd man walks into your shop, picks up a basket, and starts screaming "You haff stolen mein design! Look at zis basket!"

Quickly you rush over to get him to stop screaming. He looks at you oddly for a second, then mutters "my mistake" and shoves the basket into your hands and stumbles out. As you start to put the basket back on the shelf, you notice a strange capsule on the bottom. "Odd." you think.

Since it's your lunch hour the next time the shop is empty you put up your closed sign and sit back in your office. Examining the small capsule you realize that you can open it. When you do so a small piece of translucent plastic pops out. "Wait a minute," you think, "that almost looks like microfilm..." This has turned into a strange day. You put the plastic back in the capsule and hide it in the office safe, behind the picture of dogs playing poker. All through the rest of the day you puzzle over the odd events. Finally, you close up shop and leave; since tomorrow is Saturday, you open up late. Maybe you can head over to your alma mater, the local community college where you studied Wicker Science and use one of their microfiche machines to see if that strange strip of plastic really is microfilm.

As you stop by your office early Saturday morning you sense something is wrong. Quickly entering your office you're horrified to find that the place is trashed; papers are strewn about, furniture has been moved, and figurines from your porcelain kitten collection have been thrown to the ground, and now lay in shards. Breathlessly you check your safe; apparently they didn't check the painting, and the capsule is still there. You feel a cold ball of fear settle in your stomach; what the hell is going on?

If you've read this far you'll find it's not really an analogy, but I wanted to write a little story featuring a wicker shop. Maybe next time a post on slashdot mentions a wicker basket shop I'll write part II of the story.

Re:Wow. That's stupid.

[nitehorse (58425)]

Public FTP servers usually have the restriction that the user enter a valid email address, which the BSA's spidering/searching software faked in order to gain access.

Hell, isn't that illegal under the DMCA? They're circumventing a protection measure to gain access to digitally protected work. Heh. That'd be awesome, if someone would sue the BSA for breaching the DMCA...

Also, here in the US, it's very common to be charged a flat fee for internet service, such that one would pay (say) $400 a month for a guaranteed pipeline of 3Mbits (numbers are made up, but you get the idea.) Whereas, in other parts of the world, billing is much more commonly based on the amount of data transferred. Which means that if I host a server here, I pay for the line to it - no matter if the machine is accessed once or two million times in a month, whereas in other countries (especially Europe, including Germany), the difference between once and two million accesses is quite large, and may result in higher bills due to more data transfer.

My point is that the BSA wasted bandwidth, needlessly scared a sysadmin at a German university, and may have even violated the DMCA in doing so. Again... Wow, that was stupid of them.

Funny!

[tempest303 (259600)]

Shouldn't this be filed under "It's Funny. Laugh."?

It made *me* chuckle, anyhow... ;)

not funny

[twitter (104583)]

It's not very funny when you consider the power the BSA has to harass. Here in the states they could pull an audit of all your systems based on information like that. I'm afraid of what they could do elswhere. Of course it's stupid, but dumber things have happened.

The BSA obviously has a problem doing it's job. Do you think they can trust the names people put on files? No, if they are going to do their repulsive job they have to dig deeper than that. It looks like they felt they could not do that practically and so decided to make everyone else do their work for them by proving their innocence. I hope it bites them in the ass.

At least vigilante retaliation isn't legal yet

[lavalyn (649886)]

And imagine what the BSA would have loved to do to these servers if they were allowed to hack the offending boxes.

FTP is a file-sharing protocol, isn't it?

Change the LA for ftp sites

[binaryDigit (557647)]

I know that some search sites "spider" ftp sites, but couldn't ftp site owners change the license agreements for their sites to disallow the spidering of their site for the explicit purpose of trying to find specific files. In this way the search spiders can still work, but a spider "looking" for anything specifically would not be allowed? I don't know if this type of thing is common in other contexts that may negatively be impacted by such a change though?

Up for penalty?

[Espen (96293)]

From the letter:

BSA represents that the information in this notification is accurate and states, under penalty of perjury, that it is authorized to act in this matter on behalf of the copyright owners listed above.

So the BSA has perjured itself; now what is the penalty?

Re:Up for penalty?

[ketamine-bp (586203)]

Actually, they are UP for their penalty. This is because they announced that they are representing the Openoffice.org, but actually they do NOT.

Re:Up for penalty?

[dschuetz (10924)]

BSA represents that the information in this notification is accurate and states, under penalty of perjury, that it is authorized to act in this matter on behalf of the copyright owners listed above.

Ha!

I'd've spent DAYS scouring every open directory on the aforementioned server, just to verify that no copy of MS-Office was on there, then send them the bill. And use that clause as justification. Run it through court, and you've got a decision against the BSA showing that, at least once, their practices were shoddy and their information unreliable.

Wouldn't *that* be a great thing for the next recipient of a BSA-extortion-threat to point to?

This beggars belief

[Hittite Creosote (535397)]

Excerpt from the BSA email...
Filename: /mandrake_current/SRPMS/OpenOffice.org-1.0.1-9mdk. src.rpm
The above computer program(s) is/are being made available for copying, through downloading, at the above location without authorization from the copyright owner(s).

It seems almost astonishing that even the BSA can be as utterly incompetent as this (does BSA stand for Bloody Stupid Alliance?). Unless you go for the conspiracy theory that they're deliberately hassling their clients rivals...

50 million people download OpenOffice

[monkey_tennis (649997)]

Quote: "As you know, illegal on-line activities can result in 50 million people on the Internet accessing and downloading a copyrighted product worldwide without authorization - a highly damaging activity for the copyright holder."

Well I suppose 50 million people downloading OpenOffice would damage Microsoft's Office sales :)

invalid e-mail address?

[by Anonymous Coward]

From the BSA letter in the article:
>> FTP Login Name: anonymous
>> FTP Login Password: guest@nowhere.com

Hmm. Using a spoofed (or at least, invalid) e-mail address?
As most FTP servers allow anonymous access if you "Please provide e-mail address as password", I'd call that gaining access under false pretences. Is the BSA representing those same companies that get so pissy when people (for privacy reasons) use spoofed details on web "please register" forms?
If they can do it, so can we. I won't feel so guilty - not that I did anyway - next time I install software and register it to "nobody@mindyourownbusiness.com"..

The BSA aren't without Sin here

[doctor_oktagon (157579)]

If you check the BSA e-mail, they logged into the anonymous FTP resource with the address "guest@nowhere.com", which is obviously fake.

In the UK this could be construed as attempting to access a system un-lawfully ... they have lied when asked for their e-mail address!

In Yo Face

[4of12 (97621)]

It's clear the much feared BSA has made a mistake.

However, since their actions in the past have caused untold scrambling to find licenses on the part of many law-abiding but sloppy businesses, I think it is only fair that BSA likewise be caused to scramble. Because the BSA, likewise, has now been sloppy.

The university should have lawyer draft up some pompous letter indicating that

1. the BSA has not done its homework,
2. is accusing the university falsely,
3. has maligned the reputation of the university,
4. is beginning to cause the university to incur expenses to deal with the BSA's flimsy and false accusations and to repair its reputation as a law-abiding university, and
5. that, furthermore, the BSA should expect an invoice shortly for these expenses.

[I know, it will be only a paper tiger and never stand up. But I'm sure I'm not the only one that fantasizes about seeing the BSA have to eat their own dogfood for a change.]

Re:In Yo Face

[igaborf (69869)]

6. That BSA must allow uni unrestricted access to BSA premises for the purpose of auditing BSA spider systems to ensure they will no longer falsely detect uni's legitimate files.

This is too much...

[Raetsel (34442)]

I don't know what's funnier... that they're claiming copyright infringement of OpenOffice, or that they thought Microsoft Office came as RPMs!!

This is the part I refer to:

• What was located as infringing content:

  Filename: /mandrake_current/SRPMS/OpenOffice.org-1.0.1-9mdk. src.rpm
  (199,643kb)
  Filename: /mandrake_current/i586/Mandrake/RPMS/OpenOffice.or g-libs-1.0.1-9mdk.i586.rpm
  (35,444kb)

  The above computer program(s) is/are being made available for copying, through downloading, at the above location without authorization from the copyright owner(s).

Oh hell, I needed a laugh this morning...

Time to make some "Special" zip files...

[CSG_SurferDude (96615)]

Just remember everyone, Unix-like operating systems (Free-BSD, Linux, GNU/Linux, HPUX, Solaris, etc.) have the capability to have "Empty" files. When you do an `ls`, they CAN show up as huge....

I think I'll go making a download page at my website with "Office.zip", "Word.zip", and "Outlook.zip", which all will appear to be 600 megs or larger.....

Then go the next step...

[tellezj (612044)]

and put in the public/pirated/ms directory. Maybe the files can be filled with repeat copies of the US Constitution and the GPL. Add links from your website. Put out advertisements for it on Kazaa.

What the script probably found was...

[XTaran (70498)]

.../mandrake_current/SRPMS/OpenOffice.org-1.0.1-9m dk.src.rpm

Hmmm, seem's as if their regexps need some fine-tuning...

So what would you ask the BSA?

[Clovert Agent (87154)]

As it happens, I'm due to meet with the chairman of the BSA in the UK, a fortnight from now, to grill him about issues like this. What would you put to him, in that position?

Re:So what would you ask the BSA?

[Wee (17189)]

Tell him to take off the jackboots and brown shirt and stop harassing people.

OK, seriously: Tell him to presume innocence rather than immediately assume guilt. Tell him that, believe it or not, there are a lot of people and businesses that use software which is not only ok to copy freely, but such copying is highly encouraged. He needs to find a way to get his mind around that and set policies in place to deal with it.

If I were grilling him, I'd ask him something along the lines of "So if you find this small business that is using illegal copies of non-free/commercial software, do you immediately persecute them or do you suggest free alternatives? Why not? You want businesses to stay in business, right? Well then why not show them the error of their ways, and then show them how not to get in trouble again -- without causing any artifical financial hardships on them? If they pirated MS Office because they couldn't afford it, why try to get blood from a stone?"

Pipe dream, I know. The BSA is basically the brute squad, and exists only to enforce "taxes". But it sure would be nice if they were at least slightly constructive, and actually helped businesses build the economy.

-B

Re:So what would you ask the BSA?

[Bastian (66383)]

What would you put to him, in that position?

I don't know. . . stuff. Nothing grandiose or complicated - just simple things like leg irons, hot pokers, thumbscrews. . .

sue them.

[kevin lyda (4803)]

seriously. they sent you a legal notice that was false. they logged into your ftp server with false information.

if you sent the bsa a legal document that was false, could you get away with, "oops, sorry?"

BSA using bad anonymous login

[RichMan (8097)]

I note that the BSA email includes the details of how they accessed the "violating" software. This includes the anonymous ftp login using
login: anonymous
password: guest@nowhere.com

I doubt that the address guest@nowhere.com connects to the person that runs the script for the BSA. If servers had the policy requirement that all anonymous access required a valid email address as the anonymous login password the letter from the BSA would provide a valid point to charge the BSA with illegal access to a system.

Also if the BSA does not represent the copyright/left holders for OpenOffice then the BSA is open for a claim of false representation.
>> Based upon BSA's representation of the copyright owners in anti-piracy
>> matters, we have a good faith belief that none of the materials or
>> activities listed above have been authorized by the rightholders, their
>> agents, or the law. BSA represents that the information in this
>> notification is accurate and states, under penalty of perjury, that it is
>> authorized to act in this matter on behalf of the copyright owners listed
>> above.

Who is infringing who?

[Halvard (102061)]

From the BSA apology: (italics and emphasis mine)

Apparently our system detects the OpenOffice files as MS Office programs and alarms me, which in turn sends the notices. I failed my part by not reassuring clearly enough which property was infringed and now that I am aware of that fact we will try and fix the search terms of our system and of course be more aware of the possible mistake.

Apparently, they automatically assume that some one/organization is a crook by the "which property was infringed" statement. No human oversite of the 'bot, no extensive verification routines, etc. and the result is frivolous threats and accusations. This isn't the first time I've heard of this happening. To me, this sounds like routinely making false accusations against innocent people and businesses.

IANAL, however let's see if I can layout objectional behavior and possibly illegal behavior:

Frivolous accusation of wrong doing without due diligence to verify allegations made by threat. This cost the University money because employees had to deal with a claim without merit. At least 2 employees, and a potentially expensive number of man-hours. No doubt, the person who received the threat sent it to their boss, who either sent it to their boss or the legal department. At least one meeting would have ensued as well as researching the claim that the University stated that they did to check that in fact they were not distributing MS Office. That could be several thousand Euros or even more that ten thousand Euros based on time involved where these people could have and would have been engaged in productive work.

Despite the point of entry being anonymous FTP, the BSA engaged in what might possibly be theft of service (by consuming a finite resource for other than the purpose the allowed reason of access that the University pays for). This may also prevent others from using the system legitimately because of the expense of the system.

Trespassing possibly. SPAM has been cited as trespassing due to the use of others assets for transmittal and storage. Perhaps this can be construed like this as well.If in fact accusations like these directed against the University of Muenster have been occuring for some time against others for doing similar things, than the apology (from the organization since I can't speak for the individual) most likely is not sincere and means that this behavior will in all likelihood continue, the the University and others. I believe we can be reasonably sure that the BSA has not ceased this behavior because of this incident.

I feel that this situation is akin to this scenario: I give or sell a dozen cookies to people or organizations in Boston. Then, I walk into every office in New York City and exclaim that because there is some food on a desk, food waste in the trash, etc., that they obviously stole my cookies because cookies are food. Cookies are the metphor for software and an unlocked door at an office is the metaphor for anonymous FTP.

What this shows is that the BSA is engaging in activities in multiple countries. Because their membership is dominated by the major software companies, and here they threatend the distribution of a competing, if free, product, perhaps this can be construed as collusion by the software giants and anticompetive behavior. Can someone cite other similar instances?

Re:MS copyrights speech! (Word Up!)

[gosand (234100)]

We should be thankfull they don't issue cease and desists to everyone who uses the term 'Word'.

Yeah, but think of the money they could collect from Vanilla Ice, Cameo, and the various other early 90's rap stars.

OpenOffice to your mother.

Re:MS copyrights speech!

[llamalicious (448215)]

Mr. Simon Hibbs
1 Slashdot Way

Re: Unauthorized use of "Word" in Slashdot comment "MS copyrights speech!"
URL: http://yro.slashdot.org/comments.pl?sid=55437&cid= 5405509

Dear Mr. Hibbs:

I am writing to inform you that you are using Microsoft's (MSFT) copyrighted term "Word" (TERM) in your postings without authorization. This reproduction of MSFT's TERM violates federal copyright law.

Be advised that federal copyright law provides substantial protection for authors against the unauthorized use of their work. Registration of a copyright is unnecessary; the Copyright Act provides such protection from the moment an author's ideas are reduced to tangible form. Only MSFT has the right to reproduce, adapt, distribute and publicly display TERM. Anyone who infringes upon an author's exclusive rights by copying and/or unlawfully appropriating the work can be judicially restrained from making such improper uses of the work, subject to the impounding of unauthorized copies of the work and held accountable for monetary damages incurred and/or profits earned as a result of these unlawful acts.

MSFT hereby demands that you immediately cease and desist from making any further use of any MSFT copyrights in your postings or elsewhere. If you want to make any use of TERM, you must secure MSFT's permission to do so before proceeding. Please immediately contact us regarding appropriate compensation for your past unauthorized use of TERM.

William Gates (billg@microsoft.com)
1 Microsoft Way
Redmond, WA 98052

Here's an idea: Let's sue the BSA!

[NetDanzr (619387)]

I agree, IP should be protected. However, in this case the BSA is in direct violation of intellectual property. By sending out that cease-and-desist letter, they have pretended that they own the rights for Open Office, which they clearly don't. So who's the thief here? People who distribute Open Office or those who claim they have the right to control its distribution?

Re:Guilty of Perjury

[TheMidget (512188)]

OpenOffice should sue for "unlauterer Wettbewerb". A competitor of theirs is using scare tactics to dissuade people from distributing OpenOffice. It's as if Burger King employees disguised as FDA inspectors raided a Mac Donald, showed phony badges, and told all customers standing in line that the hamburgers were infested with salmonella...

Not really.

[PrimeNumber (136578)]

Not too much of a stretch. Microsoft has been a major contributor to the BSA since its inception [microsoft.com]. It harasses companies based on rumors [detritus.net] of software non-compliance [nwfusion.com] co-opting US Marshalls to act as a the gestapo. It is also growing power and influence worldwide [motherjones.com].

Read this interview [educause.edu] with Gates himself for more insight on Microsoft and the BSA.

To sum it all up, the BSA *is* Microsoft.

Re:my rights online

[someone247356 (255644)]

They couldn't have.

If memory serves me correctly, and it has been known to fail me at times, one of the requirements under the DMCA is that an expedited "takedown" notice has to be stipulated "under penalty of perjury" to be valid.

Arguably, this was to prevent people from making stuff up to get other people's sites taken down. Otherwise I could send a letter to your ISP claiming that your site infringed on a copyright that I or someone who employed me held. The ISP would immediately take your site offline, doesn't want to loose its "safe harbor" immunity. By the time you contested it, your site would have been off line for a day or longer. This way, if you do send out a "take down" notice that you haven't checked and made sure that it did indeed contain infringing materials, you could be punished.

I think that the BSA should be taken to court. If they can have a program automatically generate notices to hundreds or thousands of sites automatically, whether or not they are actually infringing, it makes a mockery of swearing to something under "penalty of perjury".

Scripts shouldn't be allowed to threaten legal action. The DMCA is bad enough as it is. If someone doesn't put a stop to this soon, a large swath of the net could be censored by bogus "take down" letters. Saying "Opps, so sorry 'bout that" when some one calls you on your lie isn't good enough. What about all of the other sites that may have or will get taken down because of things like this that weren't caught?