Slashdot Log In
SunnComm Says Pointing to Shift Key 'Possible Felony'
Posted by
CowboyNeal
on Thu Oct 09, 2003 05:56 PM
from the same-shift-not-different-dmca dept.
from the same-shift-not-different-dmca dept.
The Importance of writes "A couple of weeks ago BMG released an audio CD with a new type of DRM. Earlier this week, a computer science graduate student at Princeton wrote a report showing the DRM was ineffective - it could easily be defeated by use of the 'shift' key. The stock of the DRM company (SunnComm) has since fallen by 20%. Now, SunnComm plans to sue the student under the DMCA and claim that SunnComm's reputation has been falsely damaged. According to SunnComm's CEO, 'No matter what their credentials or rationale, it is wrong to use one's knowledge and the cover of academia to facilitate piracy and theft of digital property.'"
This discussion has been archived.
No new comments can be posted.
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
Full
Abbreviated
Hidden
Loading... please wait.
SunnComm == ZomboCom ? (Score:5, Funny)
http://www.sunncomm.com/index2.html [sunncomm.com]
http://www.zombo.com/ [zombo.com]
Re:SunnComm == ZomboCom ? (Score:5, Insightful)
But they can't have it both ways -- either pressing the shift key doesn't do a damn thing, in which case the student "falsely damaged" their reputation but did not violate the DMCA, or pressing the shift key breaks their 'copy protection' scheme, in which case he may have violated the DMCA but he did not damage their reputation, their lame product did. But not both.
Parent
Re:SunnComm == ZomboCom ? (Score:5, Informative)
It's not about the shift key, it's about deleting a few files from your own computer. SunnComm doesn't believe you are allowed to remove the Trojan Horse they put onto your computer. It's far from obvious if they are wrong or not, as the Trojan Horse is certainly an effective way to restrict copying on a machine on which it has been installed.
(This reminds me that I should write an IETF draft for a very simple DRM scheme for HTTP which relies on the DMCA and other laws for effectiveness.)
Parent
Perfect test case... (Score:5, Interesting)
Re:Perfect test case... (Score:5, Insightful)
In a sensable world, they would have to prove beyond all doubt that the student made the report with full intention to facilitate piracy, and not simply "Hey guys, this software is crap and here's why"
I hope they don't expect their stocks to go back up after filing this lawsuit!
=Smidge=
Parent
Re:Perfect test case... (Score:5, Insightful)
Parent
Re:Perfect test case... (Score:5, Insightful)
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Servic es\Cdrom
Set the Autorun key to 0. Done. One of the first things I do on any machine I install or have to use. I absolutely hate Autorun and find it one of the most useless "innovations" of the last decade.
Parent
Re:Perfect test case... (Score:5, Funny)
No, wait, the real winner is hiding file extensions by default. _That's_ the most useless innovation.
New user: Gee, there's three icons called "setup". I don't know what these cryptic little icons mean.
Microsoft: But file extensions are confusing, and at Microsoft we stole^h^h^h^h^h learned a trick from Apple: Anything that confuses the user should simply be hidden.
New User: Then explain why you completely and arbitrarily rearrange Windows configuration every two years. And what about wireless setup on XP... it's cryptic _and_ useless. Why can't _that_ be easy?!
Microsoft: Shut up, that's why!
Parent
Re:Perfect test case... (Score:5, Funny)
Parent
Re:Perfect test case... (Score:5, Insightful)
You've latched onto something important. Everybody is focusing on how idiotic suing someone over the shift key is, but they haven't read the original paper. The paper is chock full of an explanations about how to defeat the copy protection scheme. Prime fodder for trial by DMCA. However, since the copy-protection scheme relies on a mechanism within windows that has historically been frequently disabled by many users, the history of such may be used in defense of the author. The author did not actually do anything to disable the copy protection. He merely pointed out that protection method wouldn't work on a significant number of machines right out of the box.
Parent
Cannot use stock market as evidence (Score:5, Insightful)
What's really insane is that they are actually using the stock market to justify the damages they supposedly endured. Any judge with any ounce of sense will reject this as bullshit. The market is so damn volatile these days that you cannot use it as evidence unless it could be proven that the accused performed actions specifically to manipulate the market.
If the market did go down because of his actions, it was only because investors saw the company had a crappy product to begin with and it was only a matter of time anyway.
Parent
Re:Cannot use stock market as evidence (Score:5, Funny)
Parent
Ever get that (Score:5, Funny)
Re:Ever get that (Score:5, Funny)
1) What the fuck?
2) What the fucking fuck?
3) What the fucking fuck fuck?
4) Cowboy Neal doesn't even know what the fucking fuck fuck
(I have no point, I just like banging my head against the desk, screaming "What the fucking fuck fuck?" at the top of my lungs)
Parent
Re:Ever get that (Score:5, Insightful)
credentials
I just want to copy the CD I BOUGHT.
one's knowledge and the cover of academia
So becasue some grad student discovered this in "academica" it should have been kept as a secret?
cover of academia to facilitate piracy
Yes, we all belive that what he really wanted was to commit "piracy" not to expose some stupid non-working restrictions technology.
theft of digital property. For the umteenth time: Copyright infringement is not theft.
This must be The Most Erroneous and Counterfactual statement of the year.
Darl McBride had some nice rants but this is a masterpiece.
Parent
Option #6 (Score:5, Funny)
SunnComm Technologies Inc., Phoenix
Kimberly Faulkner, 602-267-7500
and express... "You've got to be fucking kidding me?"
Parent
What total bullshit (Score:5, Insightful)
Stop the ride. I want off.
Re:What total bullshit (Score:5, Insightful)
Good analogy. I'm not sure if your Emperor and tailor are the same as mine though. My Emperor is all of the music studios, and the tailor is all the companies peddling this useless DRM crap to them. What amazes me is that the studios don't (or won't) see the way that they are being duped in the same way as the Emperor of the fable.
Let's face it, a CD with DRM must still work on an audio CD player, no matter what, or there point is no point in producing the CD in the first place, although for some of the pap being pushed at present that would not be a bad thing, but I digress... That means that the raw CD audio data must be accessible to a CD audio drive. If it's accessible to a CD audio drive, then it must *also* be readable as raw data by a CD ROM drive (which is often the same thing anyway), even if you have to resort to a raw sector read. If you can read the CD audio data, then you can create a copy, and guess what? It's just raw audio data! Open it your favorite audio editor as 16bit, 44.1KHz stereo raw audio and you can MP3/OGG it, save it as WAV and burn to CDR, whatever.
Then again, this is the same industry that's allowing its trade association to sue its own customers. As was pointed out [slashdot.org] earlier today, this tactic didn't work too well against Henry Ford either. Hopefully this latest debacle might encourage them to see the light, but somehow I doubt it very much indeed.
Parent
Re:What total bullshit (Score:5, Informative)
Tell them what I told them: the use of the DMCA against a student who exercised his right to free speech and his right to publish an academic paper has made me strongly decide not to invest in their company, and tell most people I know to avoid their stock like the plague.
On a side note, wasn't the DMCA supposed to specifically protect academic research? Of course this same question was asked when SDMI pulled this shit too, so I guess we all know the answer.
Parent
Dude, where's my question mark! (Score:5, Funny)
1. Market defective product
2. Watch the news
3. Sue the messenger
4. Profit!
This one seems to be a sure thing; no question marks required.
So I guess... (Score:5, Insightful)
Magic markers and shift keys asside, I guess using a "slim-jim" to gain access to one's own car is wrong too. The car door was certianly never designed to allow entry using this method. Where's the DMCA when you really need it??
They obviously have no case, but is there a way for Hamilton to effectively defend himself in case it's allowed to go to trial?
Re:So I guess... (Score:5, Informative)
so basically, he's being sued even though he didn't do anything to their DRM software at all.
Parent
Re:So I guess... (Score:5, Insightful)
I wonder if the fact that so many companies are making their living selling digital snake oil could be part of the problem -- sue one of 'em, and the whole house of cards could come down around all their ears.
Parent
Re:So I guess... (Score:5, Insightful)
Clearly this DRM was not tested with the single most common user behaviour (negating autorun with the shift key) -- demonstrating that the designer was less than fully competent.
Check this [cnn.com] out:
Not only did they test. They *knew* it could be done and *still* released. They have no room to talk.
Parent
Just a guess... (Score:5, Insightful)
I mean, a judge would have to be wacky to find for the SunnComm if only because:
1) Microsoft published these directions to bypass the SunnComm protection years ago
2) The publishing of opinions is generally considered freedom of the press isn't it?
My first reaction is that this is an April Fool's joke, except its the wrong time of year.
Re:Just a guess... (Score:5, Insightful)
I know it sucks for the kid who felt all smart about writing his paper, but that's how f*cked our market is right now. If you do anything to hurt any business entity, no matter how silly the issue, expect it to spend resources on trying to make an example out of you.
By the wording of the DMCA, yes, even suggesting how to defeat that pitiful copy protection is illegal. 'Circumvention' doesn't have to be complex lines of code. It can be and is something this simple. This law has got to go. I am amazed at how little mass media coverage it's gotten. It's one of those issues that isn't just 'geek', it's a serious rights issue that can impact people in ludicrous situations like this one.
Now, I would just like to be able to legally remove the CD check from my Battlefield 1942 installation. I've got a $450 DVD burner and wasting it's spin-life while the damned game makes sure I'm not stealing every MP game launch and every level change. Have a little respect for me for a change, why don't ya?
Parent
Shareholders need to sue THEM... (Score:5, Interesting)
Please tell me this is a "Friday FUnny" (ahead of schedule) or something like that...
However it could be a good thing: if the DMCA is used to protect this type of trash, people will see it for what it is and MAYBE the law will be shot down for being too broad by protecting dumb-ass business models.
If the DMCA prevents me from telling someone how to use A BASIC FEATURE OF WINDOWS to prevent malware from being run on my computer, then I'm moving to a different country. (Oh wait, I already did... my VISA ran out!)
MadCow.
Time to do something. (Score:5, Insightful)
yeah, yeah (Score:5, Insightful)
No matter the organization or rationale, it is wrong to use purchased legislation and the cover of law to deprive people of their rights.
No matter the organization or rationale, it is wrong to use purchased legislation and the cover of law to hide the fact that your product is shoddy, and very likely will not work as advertised.
No matter the organization or rationale, it is wrong to use purchased legislation and the cover of law to exagerate the dammage caused by saying 'hold the shift key.'
But who's counting?
New, equally robust copy protection idea (Score:5, Interesting)
Try telling people that they're not allowed to make copies, or allow copies to be made.
If anyone lets loose with the secret that hearing a request doesn't force one to obey it, sue 'em under the DMCA. After that, anyone who doesn't obey you is obviously using a circumvention device (their brain), which you can have confiscated by the authorities.
Stolen Functionality (Score:5, Funny)
After all, how else could you defeat the Oscar the Grouch in the Trash can?
SunnComm sues Linux users... (Score:5, Funny)
SunnComm CEO: They ought to recomplie the kernel with the support for our software because we all know that you are a pirate if you use any OSes that doesn't use DRM.
On the other news, SCO sues SunnComm because SunnComm has letters S C O in it and also for violating SCO's patent on stupid lawsuits.
Countersue for tresspass (Score:5, Insightful)
Chilling effect (Score:5, Insightful)
Here is something that a judge will actually understand: a graduate student publishing a plain-English report of research into DRM being sued (and bankrupted) under the DMCA for pointing out a shift key.
- No Eeeeeeevil "hackers" at 2600
- No that-can't-be-speech "code"
- No funny Commie (Russian) names
- Nothing for sale, even speculatively
This is the test case we've been waiting for.So... (Score:5, Insightful)
This case will answer the question; if you uninstall something, or refuse to install something, does that constitute as a circumvention of the security of digital media (meaning, if you don't view it with a certain app), and hence, is it a felony? This could go as far as to say that by opening a Game cd with the explore function in windows that you are circunventing the copy protection schemes of the game by viewing the raw content, such as movies, without agreeing to the eula (generally, a 2nd time around thanks to package lisencing). Could Trillian be considered circumvention of MS's MSN messanger service? How rediculously far do they want to take this?
This case is different than skylov's case. Skylov went ahead and (I believe this is the one) broke Adobe's encryption schemes and published the weakness. This is a direct, purposful circumvention. Now we're extending the law to accidental and really nitpicky issues, and forcing the user to do certain things without even really telling them.
And just think of what corperations like microsoft will do with stuff like this. "Since they had linux installed and since linux ignores autorun, they circumvented the cd copy protection." Can we say "Fok me"? They're getting so far away from what people think is right and wrong. It's getting real ugly now, I'm curious if they'll set a precident for or against the people and how far they'll go with this before they start outright revoltes. Pretty soon cd's will have all kinds of protection schemes, and users won't buy them because they can't do what they want with them. They'll still go for the indie cd's and stuff their friends burn for em'. For those who aren't interent savvy, I hope they have internet savvy friends to teach them.
Remember this guys, help your buddies, get them setup with p2p apps and talk with them. Teach them how to use a computer.
From Microsoft's website (Score:5, Interesting)
This article describes how to disable the feature that allows CD-ROMs and audio compact discs (CDs) to run automatically when you insert them in your CR-ROM drive.
MORE INFORMATION
How to Disable the Feature That Allows CD-ROMs and Audio CDs to Run Automatically
To disable the feature that allows CD-ROMs and audio CDs to run automatically:
Click Start, point to Settings, click Control Panel, and then double-click System.
Double-click the CDROM branch on the Device Manager tab, and then double-click the entry for your CD-ROM drive.
On the Settings tab, click to clear the Auto Insert Notification check box.
Click OK, click Close, and then click Yes when you are prompted to restart your computer.
Read a Whitepaper? WTF? (Score:5, Insightful)
It's as if someone said you can secure your house by tying the door shut with a piece of twine in a bowknot. When people happen to notice you can bypass this fortification by tugging on the knot, the "knot idea" man tells you you'd see that conclusion is erroneous if you read the knots section of the Boy Scout Handbook.
What really boggles the mind is this:
Concluded Jacobs, "This cat-and-mouse game that hackers and others like to play with owners of digital property is over..."
Holding down SHIFT is HACKING? You can't even point out an obvious flaw anymore? "We want to make lame-ass, shitty software, and don't you DARE point that out!"
20% stock drop = 4 cents (Score:5, Informative)
Stupid Question Time (Score:5, Insightful)
If it does interefere with other programs that use the CD-ROM drive, can't the government prosecute them for terrorist activity now that hacking has been declared a terrorist activity? After all, they've created a program that tricks users into executing it and is designed to damage the computer's normal functions.
SunnComm is truly pathetic (Score:5, Insightful)
If anything should be illegal, it should be their shoddy technology. First, they create a CD that is obtensibly a music compact disc, but is in reality a CD-ROM that surreptitiously installs programs onto a user's computer without the computer owner's attempt, in a deliberate attempt to sabotage the functionality of the computer. This is what is known as a "virus"*.
Then they present this ill-concieved technology to their clients and shareholders as some sort of panacea, knowing all the while that it is utterly ineffective. This is what is known as "fraud".
To top off their audacity, they then threaten a lawsuit against the researcher who alerted the public to this fraud. This is completely ridiculous. What next, a medical researcher's tests prove that Quack Corp.'s Snake Oil does not really enlarge your penis, so the researcher is sent to prison?
This is a technology that is dependent on an unrealistic number of constraints. If the user of the CD is running Windows AND has autorun turned on AND doesn't press the shift key while putting the disc in AND allows the SunnComm virus to infect their computer AND leaves it running AND tries to copy the music, it won't work, otherwise it will. Oops I just pointed out how flawed their scheme is too, I guess that's a "possible felony"
.* To be pedantic it's more of a trojan than a virus because the malicious code does not self-replicate beyond installing from the disc, but you get the idea.
Executive dumping? (Score:5, Interesting)
Re:Executive dumping? (Score:5, Insightful)
Parent
SunnComm breaking UK law ? (Score:5, Interesting)
Paraphrasing via the Register http://www.theregister.co.uk/content/6/33298.html
"He found that when the disc was first inserted, it auto-installs a device driver that subsequently interferes with attempts to
copying the songs on the CD.
'"The driver examines each CD placed in the machine, and when it recognizes the protected title, it actively interferes with read
operations on the audio content,'"
From the Computer Misuse Act http://www.hmso.gov.uk/acts/acts1990/Ukpga_199000
"3.-(1) A person is guilty of an offence if-
(a) he does any act which causes an unauthorised modification of the contents of any computer; and
(b) at the time when he does the act he has the requisite intent and the requisite knowledge.
(2) For the purposes of subsection (1)(b) above the requisite intent is an intent to cause a modification of the contents of any
computer and by so doing-
(a) to impair the operation of any computer;"
Unauthorised modification - check.
Impairs the operation of the computer - check.
Requisite intent and knowledge - check.
But it is of course a crime being committed by a large company, so I guess it doesn't really count.....
If anyone can tell me of any CDs that use this technology and are available in the UK, please let me know so that I can report these EvilDoers to the appropriate police department.
Say it with me now... (Score:5, Informative)
We tah ded.
Considering that this is a documented feature of Windows which is has already been published all over the Internet as a quick way of squelching the AutoPlay feature and an attempt at a lawsuit on these grounds would have a snowball in Hell commenting, "Wow! That was over with fast". Searching for this information is ridiculously easy...
Sample Google Search #1 [google.com]
Sample Google Search #2 [google.com]
...and for once, a lawsuit clearly filed for the purposes of harassment is highly likely to result in a successful counter-suit for damages, simply by the fact that this is a documented feature of Windows. Demonstrating that SunnComm's suit had absolutely no merit on the basis that the information in question was already common knowledge should be a walk in the park.
DMCA "Violation" #1 [americatoday.com]
DMCA "Violation" #2 [synapseadaptive.com]
What makes this especially stupid is that they'll be suing someone who has very little (if any) money, although I imagine that may well change after the counter-suit. If the people at SunnComm weren't complete idiots, they'd go after someone who has money, like Jeffrey Richter, who writes books on using Windows as well as articles for the MSDN network and who already published this information in 1998.
Yet Another DMCA "Violation" [microsoft.com]
I know what you're thinking right now, but even really stupid companies don't try to sue Microsoft over things this trivial.
Jesus Tapdancing Christ (Score:5, Insightful)
Why don't you just sue Microsoft? They created Windows with this "don't load custom drivers" hole! Also, let's sue manual writers! I'm sure there has to be a manual somewhere which desctibes (IN DETAIL NO LESS) this method for circumventing CD security. And why don't we sue keyboard manufacturers, they're the ones who give users that fscking shift key IN THE FIRST PLACE!
This company is just pissed that their half-assed solution to a problem that cannot be fixed by means of a technological barrier was so easily defeated. One keystroke...jesus...and they actually went ahead and spent the money on the R&D for this? Is ANYONE awake over there?
They deserve what they got, and the RIAA should be pissed at them for pawning off this assinine scheme to them as a reasonable solution.
PS: This makes me realize exactly how bad a law the DMCA is; It is an attempt to, by law, enforce security through obscurity. If answers are outlawed, then only outlaws will have answers.
Re:Or they could learn..... (Score:5, Insightful)
Mother nature cannot be appealed (with apologies to Feynman).
Parent
Re:Or they could learn..... (Score:5, Insightful)
Parent
Maybe they should sue Slashdot (Score:5, Informative)
Parent
Re:Did Jacobs just say something really stupid? (Score:5, Insightful)
When you boil it all down, Sunncomm is dancing, but the RIAA are calling the tune. It is the RIAA and affiliated labels who need to be boycotted until they reform, or perish. [dontbuycds.org] Sunncomm will die on their own. Sunncomm alredy lost Sound Choice Karaoke as a customer. Using the previous DRM scheme, Mediacloq, caused a backlash that really hurt them, and karaoke is a niche market.
Parent
Re:Did Jacobs just say something really stupid? (Score:5, Funny)
That is such an excellent summary of copyright. I'm going to register it.
Parent