More on Kazaa and Brilliant Digital Spyware 223
Vertigo01 writes: "There is an interesting article from CNN.com on the current state of the Kazaa controversy, and Brilliant Digital's plans for the future. Interesting quotes from the article include a statement saying that 'Altnet's seeded software [will be] awakened some time in May' and that 'Brilliant is negotiating with music labels and movie studios to market their material as well. The files will be copy-protected in some way, using Microsoft's digital rights management encryption technology.'"
Cancerware Ascendant (Score:2, Interesting)
Interesting quote... (Score:3, Interesting)
So maybe they did listen to everyone after all? I await to see what "warnings" are given and how easy the opt out is...
Thinking of this - I have a question
How does altnet know what is "unused" in bandwidth terms?
as far as I was aware there was no prioritising in the windows tcp/ip stack where by one application does not get any bandwidth while others wish to use it
That would imply to me that they will just use ANY bandwidth they can - not just "un-used bandwidth"...
Spyware is bad, but... (Score:2, Interesting)
Interesting... (Score:4, Interesting)
I found this interesting, although not surprising... If companies such as Brilliant and Sharman Networks were to release 'clean' versions of their products, and they were totally upfront in an easy to read EULA (who reads those anyway right?), would you use it? Would you swap bandwidth and disk for the privilege?
Furthermore, would the 'average' person? Spyware, what's that? etc...
Why shouldn't they? (Score:4, Interesting)
They won't realise that their bandwidth and disk space is eaten away slightly, they wont care when they do cos they're still getting free music. It is far too hard for the average user to install a new sharing program let alone find the name and site of one. "It's all too hard and this program works and im confortable with it."
Anyway if they are using Microsoft's digital rights management encryption technology then I look forward to having a look at what they send.
Corporate bandwidth, yum (Score:2, Interesting)
Then again, perhaps it only activates when there are no other applications using the network.
XP has QoS enabled by default, though, right? It can be installed on w2k too.
Harm? (Score:2, Interesting)
Don't mix correlation with causation please. I'm as most tired of having that kind of "trues" thrown at my ears.
And you can't prove that all downloads from kazaa are illegal (i could download a music of which i own the cd. under the fair use and format shift resolutions, it is legal for me to do it - at least in US - other countries may have legislative environments to the contrary).
I'm perfectly aware that the majority of the kazaa users use it illegally, but there are legal uses of it as well, they aren't just the "mainstream"
On the other hand, a download isn't mandatory to mean a cd that isn't brougt (even if some would like to make that relation).
Most people will use kazaa to download music to preview it before buying it. It more pratical then go to the disco and preview the cd there. There are more offer for preview.
Those that like the music and that can aford it, will eventually start to buy the new found authors music (another falacy is that everyone that downloads music can afford it and thrus represents a forfeit cd sell).
But i digress... Mayhappen some should go to economic universities and study macro-economy... Mayhappen they start to understand what a market is!
Cheers...
P.S.- And... what on the hell has spyware to do with "harm musicians"?
Infocalypse Now (Score:5, Interesting)
Assumption One: Cancerware authors are amoral miscreants. Given the track record of the likes of Brilliant Digital, we can safely say that this is a given.
Assumption Two: One of the biggest advantages of a modularised Windows OS appears to be the ability to switch out the insecure MSHTML renderer as used in Internet Explorer to replace with Gecko and their ilk. Forcing Microsoft to publish the full API would enable a seamless changeover between rendering engines.
Let's follow this closely. The rendering engine runs as locally executed code, which brings with it additional security issues. I imagine, when push comes to shove, there will be plenty of Microsoft oriented warning messages along the lines of "It may be dangerous to change your rendering engine!" should a user want to make the switch.
However, fully expect the AOL / Netscape hegemony to complain loudly to the courts that this is FUD, and that it is PERFECTLY safe to switch to Gecko without notifying the user short of a generic EULA type click-through. Microsoft, having received a battering from all corners, will be forced to comply and take the warning out.
Which brings us back to Assumption One - Cancerware. Cancerware authors are forever looking for increasingly sneaky and devious ways to install their filthy code onto previously stable computers.
So, take one 'killer app', currently a P2P client, but who knows what the next one will be. Add a clause during installation that some vague 'browser enhancement' software will be installed as a requirement of the killer app. Many people will click through without reading, or just think "Enhancement - Cool!" and let it install.
What does this browser enhancement do? It acts as a fully functional replacement for the MSHTML module. Thanks to the efforts of Microsoft's competitors, it will install seamlessly, running code with local privledges.
What can it do? Anything that cancerware does already. Spying, gathering important data like CC numbers, taking control of your machine, uber DDoS, etc. etc. The possibilities rest purely with the devious malevolence of the author. It will, of course, be auto-updating, so even if it's caught out initially as being just another Purple Ape, it can download enhancements to itself to get past most security problems.
Remember that NO-ONE in the hacking community knew about Brilliant Digital's plans until they made their press releases. Sleeper cancerware, ready to awaken when the stars are right. As MSHTML is part of the Operating System now, for good or ill, it will be loaded on startup, even if the user doesn't open a browser.
But won't this be noticed by firewall software? Well, assuming consumer-grade firewalls work like Zonealarm, then no. Zonealarm checks for EXE files attempting to access parts of the net that they shouldn't be. But of course, Internet Explorer, being the most common Internet application, will be allowed through. The
And of course, the only way to uninstall this version of MSHTML would be to delete it, thus breaking anything that wants to use it. Like, err, everything!
Regardless of any non-Microsoft eliteness, the fact remains that Windows is the most popular PC Operating System for now, and shall be for a long time. This scenario outlined above is one of many potential fallabilities. I can assure you that minds far more devious than my own are concocting their own plans.
Cancerware is nothing more than barely-legitimized cracking. It seems that replacing "3133t hax0r sp33k" with the terse pseudo-legalese wording of EULAs makes this all acceptable. It isn't. And the sooner more people realise this, the better.
Of course, any company releasing something like this shall eventually become a target for the authorities. But the arrest of the author of the Melissa Virus didn't magically undo all the damage it caused, right?
Re:Corporate bandwidth, yum (Score:2, Interesting)
Future apps will have this as standard... (Score:2, Interesting)
How is this not terrorism??? (Score:5, Interesting)
I don't understand this at all. When a university student launches a program out into the net, and that program sneaks onto your machine and mucks with your registry and steals your CPU cycles, it's a "virus." The kid is labeled a hacker and is arrested. And now, thanks to 9/11, the kid has the additional dubious classification of a "terrorist."
However, if this EXACT SAME THING is done by a corporation, in the name of profit, it is viewed completely differently! Why? What's the difference? It's a VIRUS! Software forces itself onto your machine and changes things without your permission. That's a virus. That's illegal. Why are we tolerating it???
So which is worse? (Score:3, Interesting)
OR
Another company making a profit off of this supposed theft?
*** DANGER DANGER DANGER WILL ROBINSON *** (Score:3, Interesting)
Microsoft DRM (Score:3, Interesting)
Re:Infocalypse Now (Score:2, Interesting)
How close are we, for that matter, to some of these bozos putting a line in their EULA stating "you may not uninstall this software or reformat your HD" and sealing the uninstaller with a DMCA-enforcable mechanism, so that the software can't be uninstalled w/o violating the DMCA?
Violation of ISP's terms of use? (Score:2, Interesting)
(This does give ISPs a valid reason to block Altnet at their routers for such customers, though. Tempting!)
Privacy Issues? (Score:5, Interesting)
Some victim company should sue Brilliant (Score:3, Interesting)