U of Wyoming Fingerprinting All P2P Traffic 533
mk2mk2 writes "News.com has an article on how they're preparing to shut down P2P sharing of copyrighted content: 'For months, the digital equivalent of a postal censor has been sorting through virtually all file-swapping traffic on the University of Wyoming's network, quietly noting every trade of an Eminem song or "Friends" episode.'" It's scary until one realizes that most P2P traffic isn't encrypted, like back when everyone still used telnet.
Won't work! (Score:5, Interesting)
Sounds to me like this company took a copy of Snort, set up a few rules for the "fingerprints" and sold it to the University of Wisconsin. What a waste of money!
Re:Well, heres the new testbed for freenet. (Score:2, Interesting)
How many bits before you own something ... (Score:4, Interesting)
It's pretty obvious you can't copyright a length 1 bit string, so how many bits do you need before you own it and I don't? 10? 100? 10,000? I know you can't trademark a number, can you coprright one?
Wyoming....Leading the way???? hahahahahaha (Score:5, Interesting)
Perhaps with this 'fingerprinting' technology the big boys can just charge us the ($.50/$1/whatever) a song they want from us anyways? Instant delivery system for them that they didn't even have to build!
This whole deal about copyrighted material somehow reminds me of the war-on-drugs... Making criminals of all the users didn't work there... Trying to stop the supplies at the street level didn't work either. The only thing that will work is legalizing the controlled substance... then taxing the hell out of it... hehee
"Isn't" encrypted, or is? (Score:5, Interesting)
If the notion of privacy in our communications is going to be utterly discarded, I rather wish the school had elected to eavesdrop on every phone call made on campus to help catch thieves, domestic abusers and other violent criminals, etc.
There are plenty of people who say what goes on the internet shouldn't be private; that there's no expectation of privacy there. I guess we'll get into this issue a bit on this topic. Just please don't forget to have a little imagination. This is all new. We're making the rules as we go along. Sometimes I think if the phone had been invented last year there wouldn't be an expectation of privacy on phone calls either.
Remember this is a "private" institution doing this, i.e. not a law enforcement agency. Remember that just because they can write a fancy terms of service that authorizes them to do whatever they want with the network, it doesn't make their actions legitimate, let alone moral.
Finally, most interestingly, remember that Fasttrack (i.e. Kazaa, etc) is encrypted over the wire (see this link [levillage.org]). There's nothing saying that the whole thing won't be reverse-engineered and cracked sooner or later, but to my knowledge, that hasn't happened yet... of course, that could just be last I checked.
Over here in Blacksburg... (Score:5, Interesting)
Instead, there is an upload bandwith limit. Upload more than a CD's worth of data and you get put on the equivalent of a DSL line that you share with all the other big sharers. Manage to beat all your friends still and you get put on the equivalent of a 56k with the high distributors. Note that your download speed isn't affected, just uploading speed.
I think it's a much fairer system than being monitored...
Won't compression defeat this? (Score:5, Interesting)
Now, Joe Pirate simply
Exactly how would they then block the
Methinks WinZip is the Sharpie for this expensive DRM.
This is just silly. (Score:3, Interesting)
Youre going to wind up filtering everything but *porn*. I can't really see that being what they intended to do.
Better solutions! (Score:5, Interesting)
In one 24-hour period, for example, the most popular file traded using the Gnutella network was an MP3 by rap artist "Big Tymers," which passed the network monitor 188 times.
The students should really set up their own, internal P2P network. This would put less tax on the University's external bandwidth, downloads would be quicker, and, assuming it's restricted to local users, the RIAA couldn't really prove any wrongdoing. (Although their FUD generally scares universities enough.)
Universities are generally big enough to support a network on their own. They should.
Re:Isn't this illegal? (Score:5, Interesting)
We need to respect and uphold copyright laws (Score:4, Interesting)
Re:Well, heres the new testbed for freenet. (Score:4, Interesting)
Re:Quoth (Score:3, Interesting)
It seems to me any easy way to bypass (or at least extend) quotas at the University level is good old sneakernet -- much like we got our music when I was in School back in the '80s. One would make friends and get to know who liked what -- you want Dead Kennedys talk to Cosmic John, need Billy Joel, talk to someone else. We would build our collections a cassette at a time.
Since CD burners are so common now, why not do the same thing? Pass around CD-Rs with .OGGs or .MP3s around the Dorm (or between classmates) -- instant portable 600MB of "bandwidth" per CD-R. Great way to build up a collection without worrying about sniffers or using up the bandwidth.
Re:Well, heres the new testbed for freenet. (Score:1, Interesting)
I mean think about it... the electrical pulses are going onto the copper connectors on your nic... so why can't you look at it? You own it now...
Privacy IS an issue here (Score:5, Interesting)
Before some of our fellow slashdotters come up again with "They own the network": Yes, they do. But that does not grant them the right to monitor it continuosly and in detail.
Someone always owns a piece of infrastructure, be it an ISP, a University, the interstate authority or your 'landlord'. But they don't have the right to invade your privacy if you are using rented, leased or subscribed equipment. Imagine the owner of your apartment trying to monitor your living habits, to make sure "nothing fishy is going on in your apartment".
Network and telephone lines can transmit very private and sensitive information, and it is a serious crime to snoop that out. If you thought that was the right way, you're had too much time on corporate americas way of life. They are your customers, your contractors, if you like, but not only that, but living feeling humans that deserve to have a private life, one that's none of your business. You can imagine a thousand situations like this:
Let it happen, that on one incident, some very private information about a student is obtained that way and told the public to embarrass him. One lawsuit later, the U has lost 10 Million US$ for a settlement and the bandwitdh savings of 5 years are worth exactly nothing compared to this. Go ahead, wait till someone reacts. I'd do that.
Re:Well, heres the new testbed for freenet. (Score:3, Interesting)
Now a public phone company doesn't have that right, because it's not in their TOS, and if they put it in their TOS, somebody would fight it as being an illegal invasion of privacy. The Internet, and a University network at large aren't seen as a common enough utility, that is necessary for living in the current society to warrent those kinds of protections yet. At some point the Internet might get that kind of protection. However, given the proliferation of networks, my guess is that it will be a market driven thing. Phone companies are monopolies, so they have a lot more regulation then a University network ever will, because you can always get network access from a dozen other places if you don't like the terms of service the University has. A University is also a lot like a place of business. My company has the right to monitor everything I do on their equipment. All their wires, all their harddrives are fair game for them to search. It's a term of my employment. They also own all of the things I do on their computers that's in my IP agreement. They also can restrict my free speech because I signed an NDA agreeing that as a term of my employment, I can't talk about certain areas of expertise I have to other companies.
Technically, you don't need his permission to do record his conversation, you just have to tell him you are doing it (it's subtle, but there's a difference, he doesn't have to concede it's okay, he merely has to hear you say it's the case). If he continues to use the phone, I don't believe there is anything illegal about it.
Kirby
Re:Well, heres the new testbed for freenet. (Score:5, Interesting)
The point is, it's THEIR network. It's not the student network, it's not the taxpayers network, it's not even the Alumni's network. It belongs to the University plain and simple. University is for research, not d/l pr0n or sharing eminem. Students are given access to the internet in their dorm rooms to assist them with their studies.
That certainly is an interesting point. Please allow me to offer a counter point.
Universities are there for learning and growth of their students and faculty. They are not all about books and studying and stuff like that. Universities sponsor football -- why? Student unions and governments -- why? Those are extracurricular activities that help the students grow as people, round them out, etc. Ever meet someone in real life who thought university was there for books and no socialization? I've met one, and let me tell you, communicating to get to the immense book-smarts was tough, and he was not prone to creative, reasonably practical ideas.
The university network is there primarily for learning, but there should be a reasonable amount of respect for personal growth and exploration. I'm not sure I want to argue that pirating friends episodes and pornography are aiding that pursuit, but maybe they are. The university should make a reasonable effort to allow the students to do explore their freedoms and help enforce the law when subpoenaed to do so. I think it can easily be argued that the downloading of friends episodes leads one to think about copyrights and what use they have in the real world. The exploration of pornogrpahy, it can be argued, helps educate the "consumer" what he (or she) thinks about the impact on the models as individuals.
My education was, believe it or not, furthered by playing with a little known Unix clone named "Linux". It wasn't supported on my campus network, and there were times when I used bandwidth for this side project that did not contribute directly to my studies, but I believe it was worthwhile. I played Doom over Kali, and ended up learning something about network latencies and bandwidths. Completely illegal on the campus network, I even ran a password logger for some time -- this turned out to be a very powerful lesson in cryptography and network security. I did not have the money to set up a legitimate private network to explore these issues, but this was education that helped me become the person that I am.
I believe that university and college dorms are there, not for the exclusive pursuits of scheduled academia, but for the students to explore their own educations, as they pertain or do not pertain to their class schedules.
Re:Privacy (Score:4, Interesting)
Funny, ensuring network performance is kinda what university monitoring of traffic is about, isn't it? How do you think QoS or packet-shaping works?
The interesting question was when someone pointed out that it's not your network unless you laid the fiber yourself. I think there'll be some very interesting cases in the next few years with regards to setting up wireless access points. A wireless mesh network, in which 100, 1000, or 10,000 users allow their boxen to be used as access points, is indeed one in which the users "own the pipe".
At 100 users, odds are that "someone else" owns the pipe where stuff eventually goes through. (Like your University owning the pipes through which much of your dorm's P2P traffic eventually goes.)
At 10,000 users, that's not necessarily so. A mesh network composed of 10,000 Freenet nodes scattered throughout a city might be able to cache Titney Spears' "OopsYouGotFuckedbyRIAAAgain.mp3" within itself -- and thus the "pipes" through which the MP3z flow are indeed owned by the users doing the flowing.
Both cases are clearly copyright infringement - but the latter case would be much more interesting from a legal perspective - RIAA has the right to ask the University to sniff its traffic, but do they have the right to sniff your traffic?
(The Feds, of course, suffer from no such restriction, but that's because we've given them the authority to enforce the law and laid down rules that govern when/what/who they can sniff. But unlike the Feds, RIAA has no more authority to sniff than you or I do. Fuck 'em :-)
Not necessarily (Score:2, Interesting)
Some users have already brought this up, but the way around this is to encrypt/re-code the traffic. That is, all the requests, all the listings, all the control stuff, and the file transfer itself. This may lead to an increase in bandwidth consumption just to encrypt everything though
Just like after Napster. When Napster was popular, there was a gradual movement to shut down access to it. So other services started popping up, then completely distributed services such as Gnutella. Gnutella is a tremendous bandwidth hog, as opposed to something more centralized.
I respect the universities that just try to limit the bandwidth consumption of the offenders. But just shutting this stuff down cold turkey is only going to lead to P2P more difficult to detect and filter.
Of course, organizations such as the shitty Adelphia cable should not BY DEFAULT have a 15kps upstream. Assholes.
Re:There's always another way... (Score:3, Interesting)
Re:There's always another way... (Score:1, Interesting)
If you like freenet you should probably check out mnet HERE! [sf.net]
Makes me hate my job at a University (Score:5, Interesting)
We have a limited connection to the internet, which is usually being eaten up by P2P traffic. Today, over an hour period, we had three students that used a total of 4G of traffic in an hour.
I don't care what the traffic is, but when legit work can't get done, such as our payroll system which uses SQL*Net across the WAN (bad idea to begin with, but that's a state bueracracy for you.) and their processes just aren't working, shit is gonna have to happen.
We blocked port 1214 (kaaza) and a week later the port switching version came out.
Right now we are facing the choice of either doing some severe draconian network policies or buyin a packeteer.
And how long will that work before the next fileswapping act runs with ssl over 443?
I feel for the students - it's something fun to do...hell, I remember downloading
Makes my life a pain in the ass - how to be nice and let legit stuff go on, allow some fun and experimenting to go on, at the same time "protect" the network and make sure it is available when need be.
oh ya.. (Score:2, Interesting)
Proud freshman flunkout!
Re:Quoth (Score:2, Interesting)
Suppose that I am married and my wife doesn't like guns. Further assume that in my house, what I say goes (I know, I know...but it's a hypothetical situation!), and I don't want the guns in the house because, though I like guns, I think they're too dangerous to have since we have children. By your logic, what I am really doing is conceeding to my wife, rather than making a decision based on my own beliefs, simply because it furthered her goals. That would be a wrong conclusion.
Now, back to the bandwidth thing. I am a network engineer at a large financial institution. We just upgraded our Internet pipes to 22 meg, because we need the bandwidth. Though we have plenty of money to pay for it, it may not be a cost effective move if we could have elminiated, say, 25% of the traffic (5.5 meg) through any valid (meaning, more cost effective) means. For a university (yes, I am very familiar with university networks and funding issues) this is even more critical, as their funding is much lower than where I work. And, in fact, even we limit bandwidth used by using a web proxy and by restricting sites that employees can go to (which, admittedly, does serve another purpose as well).
My point is, that this type of activity is very common, especially in well structured networking departments, primarily because a dollar that is spent on a recurring charge is a dollar that may be better spent elsewhere. The recurring charges are the budget killers, though some are necessary.
Just my $0.02...
The Real Story here at UWYO (Score:5, Interesting)