MPAA Requests Immunity to Commit Cyber-Crimes 1180
The news has been buzzing around for the last couple of days that Representative Berman, whose palm has been crossed with silver by the entertainment industry, would introduce a bill permitting copyright holders to hack or DoS people allegedly distributing their works without permission. Well, the bill has been introduced - read it and weep. Although the bill wouldn't allow copyright owners to alter or delete files on your machine, they would be allowed to DoS you in essentially any other way. Let me restate that: the MPAA and RIAA are asking that they be allowed to perform what would otherwise be federal and state criminal acts and civil torts, and you will have essentially no remedy against them under any laws of the United States.
What this might mean..... (Score:5, Interesting)
What crap (Score:1, Interesting)
If they distrupt my internet connection, they get immunity. The hell with buying a CD if this happens. They have a monopoly and are not playing fair. It isnt the consumer's fault that the market that their product is changing all the time.
This is just as ludicrous as if the candlemaking industry would have protested thomas edison inventing the light bulb. They would have thugs with hammers break lights so people just use candles.
DOJ vs RIAA NOW!
What about... (Score:1, Interesting)
If the screw with my computer, will I be able to sure them senseless since I live in a different country?
Fair Warning (Score:3, Interesting)
The young man gone to town.
Turned from hunted into hunter.
Gone to hunt somebody down.'"
-Van Halen
Corporations fuck Americans, news at 11 (Score:5, Interesting)
When will the American people wake up? It's so blatantly obvious to the rest of the world that your corporations are out of control. When are you going to finally realize it's time to put a leash on them?
new p2p scheme (Score:3, Interesting)
More questions and a film at 11.
Re:Unconstitutional on it's face (Score:5, Interesting)
Yeah!
This article [theregus.com] over at The Reg gives a satiric slant on that.
Go get yur black hats, podners!
MjM
Of course this will be fought (Score:2, Interesting)
If they do not do this, then is it not true that they have proven that they (the senators) are no longer protecting and standing by the principles upon which the united states of america's constitution was written?
What's the purpose of having the right to bear arms again? (rhetorical question)
Good bye internet... (Score:3, Interesting)
This had better not pass into law because it's an open invitation to civil war on the net. I can't believe such stupidity makes it this far in Congress, no, wait, yes I can believe it in the context of UCITA, DRM, etc., etc., seemingly ad infinitum.
Not a chance in Hell, Jack and Hilary (Score:1, Interesting)
You can DoS all the p2p kittens you like, and keep on giving capitalism a bad name. Why? Real fsckin' simple:
So... DoS the kittens all you like. But if you DoS me there's no immunity: only vengeance as I show Edmond Dantes how we do things in New York City.
Re:What's the big deal? (Score:3, Interesting)
I think it's the duplicity that the government is showing is what everyone has a problem with.
"DoS'ing people is bad. Bad bad bad bad bad. Oh wait a minute... except for them."
It's just another instance of someone trying to have it both ways.
Loophole (Score:3, Interesting)
So if you managed to place the files in question on a server which also had some commercial purpose (say, hosting images for an eBay auction) might this trip the $50 limit and allow prosecution or civil action? I am only the son of a lawyer and not one myself, but this seems like a low threshhold for such a bill
Lets see how this would work (Score:5, Interesting)
These consulting firms would attack and disable some script kiddies computer who is serving MP3s.
So, what does the script kiddie do? He and his bunch of script kiddies go and shut down the offending consulting firms internet connection(s) with a DoS that's about 100 times more massive (because they can use everyone elses poorly protected servers to do it). And that's just if they pick on a teenager in the US.
Say they try and shut down some actual knowledgable hacker in, say, Russia. Wait a second... why are the bank account numbers, credit card numbers, home address and telephone for the head of the MPAA up on MPAA.com? Weird.
My question is, how does this web site [mpaa.org] even stay up?
I'm sure the script kiddies internet provider will just be pleased as punch that the MPAA just hacked one of it's customers and possibly used a DoS attack to do it (there by degrading the quality of service for all their clients)
Sounds great to me. It'll work like a charm this new law (if passed).
And why does the MPAA sound like a police orginization to me?
From their website:
To battle the problem, in 2000, the MPA launched over 60,000 investigations into suspected pirate activities, and more than 18,000 raids against pirate operations in coordination with local authorities around the world.
The MPAA/MPA directs its worldwide anti-piracy activities from headquarters in Encino, California. Regional offices are also located in Brussels (Europe, Middle and Africa), Mexico (Latin America) Canada and Hong Kong (Asia/Pacific).
Uhmm... that scares me
Letter to the 6th District of North Carolina (Score:5, Interesting)
######
To The Editor,
For years, Congress and law enforcement has been telling us about the dangers posed by computer hackers. They have warned computer users about how you should be on guard for the damage that hackers can do to your computer systems.
However, Rep. Howard Coble is preparing to submit a bill in Congress that would grant almost complete immunity to large music and movie companies to hack into your computers, if they have the suspicion that you might be sharing copyrighted files. No proof or involvement by law enforcement will be needed. And what's more, if they damage your computers in this vigilante action, you'll need to prove real damages of over $250 and get the permission of the US Attorney General to file suit against them.
What Rep. Coble is saying is that computer hacking is bad, unless you're a rich corporation with lots of money to provide in campaign donations. The hypocracy of such a bill is stunning. The voters of Congressional District 6 need to decide whether Rep. Coble is looking out for their interests, or Big Hollywood's.
Re:Unconstitutional on it's face (Score:5, Interesting)
Actions speak louder than /. posts ... (Score:3, Interesting)
Remember that technically they are supposed to represent US, not the person/corporation with the biggest checkbook.
It may also do well to write your senators -- A similar bill will likely start up there eventualy, or if this mess passes the house it will wind up in the senate eventually.
Find your Representative [house.gov] and your Senators [senate.gov] and make your opinion known.
(BTW - remember that paper letters are far more difficult to ignore than outraged emails. Especially en masse.)
Punishment without verification of a crime? (Score:3, Interesting)
Re:What this might mean..... (Score:4, Interesting)
In practice the DOJ will say no to the little guy by stating some procedural BS reason. You may then sue the DOJ to have their decision reversed, but that will take forever and all that will result is that the law "as applied" might be struck down.
Re:Letter to the 6th District of North Carolina (Score:3, Interesting)
The People have been hearing for years about how computer hackers are evil, evil scum. If we can associate the *AA with hackers, it'd be a good PR win.
Re:The MPAA is declaring war (Score:1, Interesting)
Re:Loophole (Score:2, Interesting)
Re:bill number? (Score:3, Interesting)
Re:new p2p scheme (Score:5, Interesting)
Re:Unconstitutional on it's face (Score:2, Interesting)
Push the handle in the intended direction, just push it harder than expected.
Re:Unconstitutional on it's face (Score:1, Interesting)
Well that won't work. They'll just say their loss of sales is because of pirated music (er, wait) and then they WILL pass the bill.
BS (Score:5, Interesting)
But that doesn't really matter, because the few people who seem to really take notice and care have historically shown that they aren't going to do shit about it, either. Remember when the DVD CCA had a kid arrested for helping to create DeCSS? There was indignation and outcry for all of a month, maybe, and then everyone put their DeCSS source code and anti-DVD CCA t-shirts back in their closets and bought themselves a brand spankin' new DVD player and a stack of movies.
They haven't declared war at all. They've got us eating out of their hands because when it came down to it, very few people would be willing to give up their Big Name movies and music in order to fight back.
Lets get specific to who is getting DOS'ed here (Score:5, Interesting)
Okay by law they were given the right to DOS me but not the ISP which can still file criminal charges. So, it sound like they are still shit out of luck unless the law gives them a "get out of jail free card" for all acts commited during the execution of a plan to attack the offender. Wow, now if that were the case it would open up a huge new can of worms.
Trusted Peer, Encrypted P2P Networks (Score:3, Interesting)
Assume that the MPAA and RIAA will be able to block packets from any P2P network that they identify as containing their works. I'm not sure how they'll do it, but it probably involves paying off the backbone owners and/or ISPs.
It seems to me that the obvious counter-measure is to use encryption and "trusted peer" techniques to preclude their ability to join the P2P network and/or identify who is trading what.
Massive Civil Disobedience (Score:3, Interesting)
Folks, it is clear to me that the legislative process is so corrupted by the Copyright special interests that the laws that it produces are not legitimate representations of the will of the people.
I believe that the only moral response in such a case is to violate those laws. Screw the MPAA. Screw the RIAA. Screw Congress. It is time for freedom loving people to declare openly that they will not recognize copyrights held by the MPAA and RIAA.
Remember, folks, GPLed code is copyrighted. (Score:3, Interesting)
Here's your chance to legally hack Microsoft and see if they're using your GPLed code.
Here's what I want to see happen:
Re:Oh I get it....BOYCOTT TIME (Score:2, Interesting)
Jeez, does this mean after the boycott week we can run back to the record store with a wad of cash and buy up all those CDs we went without for a week?
Do you really think "a week" boycott will matter one bit to these nazis? No, the only thing which will work is a boycott of these clowns and their "products" for the forseeable future.
Re:Unconstitutional on it's face (Score:5, Interesting)
Here is the simul email/fax I sent today:
Dear Representative Combest,
Recently, your colleague, Representative Howard Berman from California, introduced a bill that would allow copyright holders such as movie studios, publishers, or record labels to take 'technological measures' against computer networks they suspect of violating their copyrights.
These 'technological measures' are computer 'Denial of Service' or 'DOS' attacks, computer cracking, and other actions that are otherwise considered computer crimes. Right now, if an individual did the same thing that these content industries are asking to do via Berman's bill, he would be investigated by the FBI and put in prison for harming a computer network or a computer. These 'technological measures' are no different. Besides harming an individual's computer, who may or may not be guilty of copyright violation, they also harm Internet Service Providers, Universities, or any other business that is connected to the Internet. The bandwidth lost to 'Denial of Service'-type attacks doesn't affect just people the content industry suspects being guilty of copyright infringement, but everyone connected to the Internet by reducing the amount of bandwidth available for legitimate data.
Worse, if these industries are allowed to start perpetrating these kind of attacks on individuals or companies, it will become impossible for computer administrators, police forces, or federal investigators to differentiate illegal attacks from sanctioned attacks. Computer 'hacking' and cracking will rise in frequency and volume simply because malicious criminals will be able to take advantage of the 'noise' generated by legal attacks.
There is no difference between malicious computer attacks and the 'technological measures' proposed by Representative Berman. I urge you to oppose his bill in the strongest possible terms.
Google/Scientology (Score:2, Interesting)
Implications for Google (Score:2, Interesting)
Silver Lining? (Score:2, Interesting)
--hsm
They have no idea... (Score:3, Interesting)
Even if this laughable bill doesn't become law, the very fact that the MPAA and RIAA are pushing for it is probably going to land the IP address ranges of both companies in an awful lot of locally-maintained E-mail and web proxy blacklists, just on principal alone.
As for their tactics; Any SysAdmin worth their salt can easily detect, isolate, and block a DoS attack at the router level. Such an attack has little effect if the attacking system gets no response whatsoever from the target IP.
In any case, that's really beside the point. The way I see it, this kind of crap has the potential to release a widespread public-relations and consumer backlash that the industry as a whole may never recover from.
Re:How low? (Score:3, Interesting)
IIRC - the Arctic National Wildlife Preserve has nothing at all to do with global warming. Whether they drill there or not doesn't make one bit of difference in the overall global warming picture. All drilling up there is going to do is kill a bunch of endangered (or soon to be endangered) species, which are pretty crucial to the ecosphere up there, which is already on the verge of collapse due to effects of global warming which has already happened. So basically, it doesn't really matter whether they drill up there anyway. Those animals are already living on borrowed time. Pity.
Untrue (Score:4, Interesting)
Not true this time, because:
a) "Fighting back" this time doesn't involve lengthy and corrupt political processes.
b) We can do it while sitting on our fat (proverbial) asses.
I advise everyone here to start creating and publishing your own content right now, so you have a convenient excuse to legally hack and DoS wherever you please. Come on, even if you don't have a creative bone in your body, think about it this way: Neither does the RIAA/MPAA.
Re:Good bye internet... (Score:4, Interesting)
INTERVIEWER: Deputy minister, what do you believe is behind this recent increase in terrorist bombings?
HELPMANN: Bad sportsmanship. A ruthless minority of people seems to have forgotten certain good old fashioned virtues. They just can't stand seeing the other fellow win. If these people would just play the game, instead of standing on the touch line heckling -
INTERVIEWER: In fact, killing people -
HELPMANN: - In fact, killing people - they'd get a lot more out of life.
INTERVIEWER: Mr. Helpmann, what would you say to those critics who maintain that the Ministry Of Information has become too large and unwieldy
HELPMANN: David
INTERVIEWER: And the cost of it all, Deputy Minister? Seven percent of the gross national product
HELPMANN: I understand this concern on behalf of the tax-payers. People want value for money and a cost-effective service.
INTERVIEWER: Do you think that the government is winning the battle against terrorists?
HELPMANN: Oh yes. Our morale is much higher than theirs, we're fielding all their strokes, running a lot of them out, and pretty consistently knocking them for six. I'd say they're nearly out of the game.
INTERVIEWER: But the bombing campaign is now in its thirteenth year
HELPMANN: Beginner's luck.
INTERVIEWER: Thank you very much, Deputy Minister.
HELPMANN: Thank you, David
Re:Corporate Republic (Score:5, Interesting)
Um, hello? They already do. Microsoft has not paid Federal income tax for 5 years. And Washington State does not have State tax. Therefore, Microsoft pays NO FUCKING TAXES.
Think of how many government resources ($) have been funnelled TO Microsoft:
Copyright enforcement
Spending time listenting to the BSA
Playing games with standards committies
Antitrust lawsuits and consent decrees that went ignored (ahem 1995).
SEC and FTC investigations of fraud and insider trading (all dropped).
Money spent on Microsoft product for government use because they're basically offered no alternative by the HOLY HOLY HOLY market.
DOD to defend the US from attack from foreign countries who would change the economic structure of the nation if they took over, such that Microsoft and other rich corporations would suffer - the average Joe probably would not notice in most cases. Might even benefit.
Re:Legal way to destroy Microsoft? (Score:2, Interesting)
What about us furriners? (Score:2, Interesting)
Right now I'm fantasizing about DMCA vs. EU cybercrime directives, the latter _explicitly_ making (d)DoS illegal.
But, as the old saying goes:
-- Q: What is the DMCA, exactly?
-- A: The Copyright Lawyers Lifetime Employment Act.
Functional requirements for next generation P2P (Score:4, Interesting)
They will probably direct their DoS attacks against the internals of the P2P protocols, rather than the users machines. They will use disposable (and anonymous) nodes to do so--they may be unscrupulous, but they are not stupid.
Nonetheless, the proposed law is extremely prone to being abused.
What we need to do is start designing the next generation P2P systems that will be immune to things like legitimate-looking users posting bogus files, etc.
----------------
Here's what I can think of on the spot
1) Community-based systems (akin to slashdot) where some nodes have more "credibility" points.
Node "karma" would be based on
-Total Kbytes streamed out
-Moderation by other "trusted" nodes
The community aspect must not get in the way of reaching a "critical mass" of users, without which any P2P system is bound to fall.
2) Ability to randomly sample small segments of files on remote nodes in order to determine whether they are legit. This would stop them from uploading complete garbage, or legitimate-looking beginnings followed by garbage.
3) Distributed method of establishing trust. This is the tricky part. We could use public-key crypto in some fashion. Perhaps nodeID blacklists or whitelists could be distributed among the users, or uploaded to FreeNet. Before downloading a song from an unknown node, my machine would query 10-20 random nodes for blacklist info. This would make it a lot more difficult to set up random nodes hosting garbage.
5) Other heuristics to determine the trustworthiness of nodes and/or files.
7) Doing all of the above in a relatively speedy (i.e., not impractically slow such as gnuTella) and relatively anonymous/pseudonymous way.
-----------
Please reply (i.e., follow-up to the post) with any further ideas. Perhaps we can seed the minds of the developers who'll be coding the next generation of P2P software. Are there any ideas we can glean from eBay's trust management system?
The RIAA and MPAA don't realize (Score:3, Interesting)
WE pay their salaries, WE pay their employees, WE pay their artists when WE buy their products.
If they get us sufficiently mad, WE will not spend our hard-earned money on their products any more and THEY will feel it.
It's about time to organize a month-long media boycott. Show the "big boys" exactly how much power we have over "their business". Pick a nice date like January, 2003, and just swear off ANY CD/Movie Ticket/DVD purchases for a month.
Easy to do - if you wanna watch a movie or listen to some music, just borrow it from a friend, but don't spend a RETAIL DIME purchasing anything.
Other actions to take. (Score:2, Interesting)
Writing to our elected officials is important. We also need to remember that there are some very good organizations that really understand these issues and are out there fighting for our rights every day. They need and deserve our support.
Even small donations will make a difference. There are a lot of us, people; once we get into the habit of putting our money where our mouths are, the **AA's will be in deep trouble.
If you can afford it, consider donating $100 a year to each of these organizations, as I do. It's really worth it.
- The Free Software Foundation [gnu.org]
(click on "Donate", or volunteer, or contribue hardware or expertise)
- Electronic Frontier Foundation [eff.org]
Mostly harmless (Score:2, Interesting)
a) restrict people from trading works to which they are the copyright owner (meaning every company that owns copyrighted material will have to employ these countermeasures or have someone do it on their behalf)
b) intervene only on the P2P network itself (deleting files on file traders PC's is expressly prohibited by the legislation) as those files may have been created via fair use.
c) only affect "Public" P2P networks (e.g. Gnutella)
What they are trying to get approval for basically amounts to running programs (some kind of bot maybe) that interrupts or interferes with downloads of whatever files they are trying to prevent from reaching public distribution. They can only
"block, divert or otherwise impair the unauthorized distribution, display, performance, or reproduction of his or her copyrighted work on a publicly accessible peer-to-peer file-trading network, if such impairment does not, without authorization, alter, delete, or otherwise impair the integrity of any computer file or data residing on the computer of a file trader."
This will deter casual users from trading files with P2P, and the most popular media will probably be very hard to obtain for some time after its release. I don't think they'll give a shit about your rare old Morrissey bootlegs or anything that's not on the Bestsellers lists.
Re:Functional requirements for next generation P2P (Score:3, Interesting)
Trust/Karma should be open ended and climb with diminishing returns making it more difficult to whore.
I trust the bank to meet my cheques, I don't trust it to keep my privacy. I may trust a usenet poster to paraphase articles accuratly, but not his judgement in drawing conclusions. I may trust a poster to debunk UFO myths, but not his Politics. Therefore, Trust/Karma should against a set of seperate attributes/objectives.