New Kazaa Lite Protects Identity 668
Denver_80203 writes "Found this story about the new Kazaa K++ 2.4.0 and it's new sister program which claim to protect your identity while sharing files. Any of you folk know how legit this could be? We all knew it wouldn't be long... is this the war or just another battle?"
Score one for us? (Score:5, Funny)
Re:Score one for us? (Score:3, Funny)
Track my IP all you want, I was simply looking for a torrent file... I didn't download "The Matrix Reloaded.mpg", I downloaded "The Matrix Reloaded.torrent", not to mention the fact that by the time they could get your ass to court, the torrent would be dead, and they would have no evidence, (other than a torrent that has nowhere near enough data to reconstruct the video), and no leg to stand
Security Through Obscurity (Score:5, Insightful)
Although it blocks users from browsing your files and blocks queries from known malicious IP's It would not stop the RIAA from downloading from you from a not yet known malicious IP, Proxy, wierd "Save the Music Industry" Campaingn where they pay you to hunt down P2P Users, ETC.
Basicially if they do a search for "St. Anger" on Kazaa, Download it, and verify that it is "St. Anger" they have an IP going to somewhere. And that IP now has a big red Bullseye on it whether it's a proxy, a user or whatever else that could obscure your idenity.
The only way to truthfully be anonymous is to be encrypted, swarmed and stored all over the place by hundreds of users like Freenet does it, and even that gives them an IP to paint a target on with the excuse that even though you dont know what your PC is sending thats no excuse to infringe. Although the courts would have to decide that.
Re:Security Through Obscurity (Score:5, Insightful)
Well, some courts have decided that: http://www.ca7.uscourts.gov/op3.fwx?submit1=showo
From the decision, in relevant part: (emphasis added)
Small wonder this opinion is by Posner from the 7th Cir., known for being an industry goon. (He's from the Chicago school of 'screw the little guy' economists, as is Scalia, and many other jurists with sway.)
The point however is that merely encrypting files does not provide a defense. Likely, you'll still get sued, if you infringing use becomes large enough to attract one of the factory robot lawyers the RIAA is about to retain.
I would urge developers to read the 7th circuit opinion carefully. It lays out some tests for what a 'safe' p2p application can show to avoid liability. If others are interested, I'll follow up with a list of suggests for a bittorrent sister app I'm making that carefully follows the rules of the 7th circuit.
You don't have to give them an IP... (Score:5, Informative)
I think there was a paper on
Of course, your ISP/firewall wouldn't necessarily be happy about sending out all those fake UDPs, and many university networks throttle them. Also, the
Perhaps one should point out that this is practically a new internet protocol, requiring root access and stuff... it might be better for them just to use IPSec with address hiding.
Re:You don't have to give them an IP... (Score:5, Informative)
This is a really good idea. You can extend it to make it even better though.
Part of the good thing about the erasure-correcting code approach is that if you use a big enough very low-rate code (although its quite tricky to do that with good CPU and memory efficiency) then you can have downloading from several servers concurrently without having to tell each server which parts of the files you want (just send random parts of the encoded data and theres a low chance of overlap from multiple servers).
Now, here's the clever part: you use IP Multicast with multiple sources spoofing the same sender address. This means that (a) you save quite a lot on bandwidth since many P2P clients will be downloading the same source file (this is important since a big reason many ISPs and Universities have banned P2P is the bandwidth); and (b) it is MUCH harder (not impossible, but hard enough if you are not an ISP or a router at the very end) to find out who either the source or the destination is.
I don't know if anyone has thought of this idea and tried to implement it. Someone should; maybe I'll give it a go when I have time.
PS. There is a sparser and more CPU-efficient solution than VanderMonde matrices, look for Low-Density Parity Check codes.
That's what I needed (Score:5, Funny)
Re:That's what I needed (Score:5, Funny)
> How can you fake your IP address?
"And honey, I faked every IP address!"
-- Anonymous Coward, as written on a note left on Hilary Rosen's bedstand.
Re:That's what I needed (Score:4, Insightful)
The whole idea of "stealing" a public hotspot is stupid - if it's public, then your access to it isn't stealing. If it's private, it's got 128-bit WEP encryption and is closed - right?
It's like leaving the water on in your house, watching it flow out onto the street and then crying foul when people line up with buckets...
Re:That's what I needed (Score:5, Insightful)
If I lock my door on my house, you can still easily get in. That doesn't mean me not locking (or forgetting to lock) the door is inviting you to come in.
Re:That's what I needed (Score:4, Informative)
The law does see a difference between locked and unlocked doors. Entering an unlocked door without permission (or reasonable assumption thereof, such as a place of business' front door) is trespassing. Defeating a lock and entering is breaking and entering.
This isn't surprising. . . (Score:5, Insightful)
Just in time for the next move in this move-countermove chess game. . .
Re:This isn't surprising. . . (Score:3, Informative)
Re:This isn't surprising. . . (Score:5, Informative)
HTH!
Re:This isn't surprising. . . (Score:5, Interesting)
Re:This isn't surprising. . . (Score:3, Interesting)
Few weeks?? In today's economy, and with the RIAA's budget, I'd put the figure at a few hours!
Re:This isn't surprising. . . (Score:5, Interesting)
Really, I'm not sure why I haven't seen this used yet. Almost all the major sites out there that provide music content will let you play a 10 or 20 second sample of the music for free (and as far as I know, they don't have to license it), so why can't filesharing system users legally do the same?
It just so happens that each user has a different clip... and the software is intelligent enough to piece them back together into one music file instead of me having to do it by hand
Re:This isn't surprising. . . (Score:3, Informative)
Re:This isn't surprising. . . (Score:5, Insightful)
Actually, I would be surprised if Amazon and others do the sampling themselves. Most likely, they are supplied with the samples by the record companies themselves. Check out several web sites. Are the images, audio samples, and even copy about the albums any different from one site to another?
B) Intent also enters into sampleing under fair use. If I write a review of the new Harry Potter book that quotes from the scene when a certain character dies, and uses a quote to reveal the ending of a book, I could be sued if it seemed my intent was to get people not to buy the book. Extracting material from a work for the expressed purpose of damaging the commercial viability of the work is not allowed.
Now, do you want to face a judge and explain why you and your friends were hosting random 20 second perfect quality samples of music in light of the fact that a system exists that would recombine them into a perfect copy? What compelling 'fair use' intent could you claim? Throwing up your hands and saying "lordy! the law lets us use samples as fair use" isn't going to cut it.
Re:This isn't surprising. . . (Score:4, Informative)
Re:Suppose one doesn't... (Score:3, Informative)
And in the end, you have the whole file on your computer, which is clearly in violation.
This is a dead end. Fight the battle in trying to establish real fair use laws, not in trying to find wierd loopholes that will just be easily closed
Re:This isn't surprising. . . (Score:5, Insightful)
Re:This isn't surprising. . . (Score:3, Insightful)
which is something that really doesn't sit well with me, and certainly wouldn't sit well with the uber-rich lobbyists who got the DMCA signed in the first place.
Ok, as soon as you figure out how to beat the uber-rich at the lobbying game, you let us know. Yeah yeah... go vote, I know. I already do that. The problem is that there are so damn many laws out there that nobody can understand it all or even form an opinion on most things anymore. Unless you're a lawyer, and even then you have to specialize
Re:This isn't surprising. . . (Score:3, Funny)
Afraid, are you? (Score:3, Funny)
Re:Afraid, are you? (Score:5, Funny)
Dude, You seriously need to cut down on Star Wars.
(Star Wars, you seriously need to cut down on.)
Re:Afraid, are you? (Score:4, Funny)
Re:Afraid, are you? (Score:5, Funny)
Great! (Score:5, Interesting)
Re:Great! (Score:4, Insightful)
Kazaa K++ is an excellent program (Score:5, Informative)
Re:Kazaa K++ is an excellent program (Score:4, Informative)
Re:Kazaa K++ is an excellent program (Score:3, Informative)
Re:Kazaa K++ is an excellent program (Score:3, Insightful)
Well, something on your system is clearly re-installing Gator without your permission. Most adware-funded packages crippled if you forcably remove the spyware components. They will attempt to repair themselves if this happens.
The fact is, AdAware found it and removed it. You check back a few weeks later and it was back. How is that AdAware's fault?
Re:Kazaa K++ is an excellent program (Score:3, Informative)
FWIW, Ad-Aware isn't supposed to work that way. It's on-demand only. If you want the on-access scanner (Ad-Watch), you have to actually pay the $20 for Ad-Adware Pro (which I highly recommend, by the way, as it works *great*). Oh, and just like your favorite anti-virus, you have to keep the signatures up to date.
Just blocks IPs (Score:5, Funny)
Re:Just blocks IPs (Score:5, Funny)
Either way, a tin foil hat is still a good security supplement even if this hype is true.
Re:Just blocks IPs (Score:3, Interesting)
However I'm not sure how a client could tell whether one IP address was 'suspicious' or not, and I can't see it would be feasible to collect all IP addresses that connect to all clients to find those that couldn't possibly be legitimate Kazza clients.
Re:Just blocks IPs (Score:5, Funny)
What if I make a tin foil cover for my modem?
After My DMCA Letter Scare (Score:5, Funny)
~S
Re:Bittorent exlpained..... (Score:3, Insightful)
K++? (Score:4, Funny)
What's needed.. (Score:3, Insightful)
K++ edition (Score:5, Interesting)
I would think that extending on that principle, they could write protect or just dump gabarge into the memory space where idenities are stored.
Of course, I don't have the K++ source, so how would I know, it's just a theory.
Re:K++ edition (Score:5, Insightful)
Re:K++ edition (Score:3, Insightful)
I don't agree with this because even with kazaa lite, you are sharing by default. So everything you download is automatically shared unless you click that 'don't share' box or move it from your shared directory. And considering that most kazaa users are average folks, they won't bother to configure the application
Re:K++ edition (Score:5, Interesting)
What this article says is not entirely true. While the leechers do not harm or take anything away from me, they do take bandwidth away from the people who are not leeching. And I do not have infinite bandwidth, because even if I left my computer on 24/7, more people will que up and try to upload than I ever could upload to.
Since I cannot upload to everybody, it is in my best interests to upload to the people who share. Because the people who share are the only one who will actually make the network grow. Also, when they share a file they uploaded from me, it also makes that file more available on the network and takes a little bit of the load off myself.
So there are practical reasons to kick freeloaders , besides just the moral ones. If I truly had infinite bandwidth (I interpet that as enough bandwidth to send my files to everyone who wants them, regardless of them sharing or not), then maybe I wouldn't care about freeloaders. But since I don't, I will continue to block leechers from uploading from me.
Re:K++ edition (Score:4, Informative)
RIAA Should be commended (Score:5, Insightful)
RIAA Should be commended (Score:5, Informative)
So now the RIAA have several choice.
1. Try to roll back the technolgy that enables this new distribution channel. This is possible but not very likey.
2. Use more draconian law enforment techniques. Posibble but I mean whata ya gonna do... start sending colleage kids to prison ? For what stealing a Brittney track ? Is this what we want ?
3. Try to adapt to the new medium. Be creative and come up with new profit channels that take advantage of the medium.
Personally I dont think 3 is very likely either... I think RIAA is going to have to be dragged kicking and screaming into the 21st century.
Re:RIAA Should be commended (Score:5, Funny)
Girl: That will be 28.10 please, how will you be paying?
Me: Credit Car
Girl: Please swipe your car through the reader
umm (Score:5, Insightful)
Database of IP addresses is going to protect us ?
Cmon now. What prevents RIAA from using anonymous IP blocks that they can purchase legally for use?
Re:umm (Score:5, Funny)
Stupidity?
Re:umm (Score:3, Funny)
Stupidity?
Lack of operating funds? No, wait.
Re:umm (Score:5, Insightful)
How would using a different IP be in anyway entrapment?
The only way a case could be thrown out for entrapment is if the RIAA IM'd you and asked you to download a file, then turned around and sued you for copyright violation.
Re:umm (Score:5, Insightful)
Entrapment laws are very specific and have nothing to do with this.
The DMCA does not apply because they are the copyright holder and because they would not be circumventing any recognized encryption method (TCP is not an encryption method, regardless of how one tries to twist the definitions of the words).
This is probably quite legal, and IMO as an occasional trader of copyrighted files, fair play. Unfair play would be if they located my IP address, coerced my ISP into providing my physical address, and then came over for a visit.
Of course, all they would find is an 'accidentally' unsecured wireless access point connected to my cable modem and a tinfoil hat.
Re:umm (Score:3, Interesting)
If ROT-13 is an encryption scheme under the DMCA (see Adobe Vs. Elcomsoft), it could be argued that TCP is an encryption scheme under the same rules.
Re:umm (Score:3)
Even if you did, the RIAA could 'decrypt' (ROT13, whatever) the file and if it isn't theirs, delete it. If it is theirs, they have broken no law, even if they choose to share it on the network. Its thei
Re:umm (Score:5, Informative)
Still isn't available for Linux though... (Score:3, Funny)
Is there an alternative I am unaware of?
Re:Still isn't available for Linux though... (Score:5, Informative)
Re:Still isn't available for Linux though... (Score:5, Informative)
Runs on anything, has a decent following, so there's a good chance the song/file/app you're looking for is available.
Re:Still isn't available for Linux though... (Score:3, Informative)
Re:Still isn't available for Linux though... (Score:3, Informative)
For a while there was giFT, an attempt at implimenting an open Fast Track client. But due to some of the same changes that broke kza, which were an at
Re:Still isn't available for Linux though... (Score:5, Informative)
mlDonkey is better anyhow (Score:3, Informative)
I'm utterly impressed with it. Very easy to use, and I really like being able to hit all the differnt networks at once. It's also pretty cool having native guis available for linux AND windows.
Seems pretty weak to me (Score:4, Insightful)
Not letting people see what other files a user has might be a bit more useful, but I don't think either of these measures is going to do much to stop the RIAA from prosecuting people.
Privacy and Filesharing (Score:3, Interesting)
Also, I don't mind sharing the music on my hard drive (it's all indie and OK'd to be there), but that said, do firewalls protect your IP identity or are they useless for that? Unclear about what tools may be used in conjunction with p2p to cover your identity.
Peace.
All this seems to do... (Score:5, Interesting)
This doesn't seem to be anything revolutionary, or, interesting.
If the services went through some kind of anonymizer, that would be cuter. Of course, the bandwidth demands would be huge.
What may be an alternative is to produce a collaborative download system. I request a download, which is proxied by another random user (provided I return the favor). Even if you had RIAA sniffers, all that could be proven is that MY IP address downloaded something, but not the ultimate destination of the data.
Of course, if I have illegal music on my PC, then I am still screwed. But I leave solving that problem to the reader
How legit? (Score:3, Interesting)
As legit as sharing copyrighted files? ;) IANAL, but I doubt that the Recording Industry Ass. of America can use existing laws to prevent this being done (although I doubt that'll stop them trying).
If the Kazaa guys have done it right they may even be able to wave the good old DMCA under the Recording Industry Ass. of America's nose if they try to crack the system as well (oh the irony!)
But this is just the latest volley in what is going to be a very drawn-out and bloody Information Cold War.
I'm Safe (Score:5, Funny)
*knock* *knock*
Umm.. yeah.. I'll finish this post la.. *ouch* Not so tight with the handcuffs.
Not true. (Score:5, Insightful)
The new feature that blocks users from seeing ALL files, however, is VERY smart. All 50 million users (pulled that number out of thin air, should be close) now appear to be sharing only the ONE file you searched for. Makes hiding in the sea of users fruitful.*
* Disclaimer: Don't steal music. :)
How? (Score:5, Informative)
I doubt there is a way... netstat kills your privacy
Re:How? (Score:4, Interesting)
- Client contacts hub and requests a file
- Hub contacts available servers with details
- Server(s) sends data blocks to client
- Client receives data blocks and ticks off the file bitmap, making additional requests of the hub until all sections are retrieved.
Therefore, if the servers fake their originating IPs and all data verification is done by the client only the hub needs to know the IPs of the servers. Apparently there is already a UDP based P2P client in development that does something like this - it's mentioned in this very thread in fact.Quite how you get around the issue of the RIAA et al operating a hub and looking at the traffic though is another matter. Ultimately, something *must* bring the source and destination IPs together to initiate the transfer, and that's the point that the copyright police are going to be working at. I think it's a problem with a solution though - the similar issue of public key exchange had people stumped for an age before it was first solved by James Ellis' team at GCHQ.
In fact, that's another way of looking at the problem - who cares if Eve can see an ISOs worth of data transferred between Alice and Bob if they can't tell whether its the latest distro or the latest Hollywood movie DivX? They can't pursue every P2P downloader on the off chance it's a copyright violation, can they? And encryption is and essential feature of communications software to gain mainstream business acceptance in this paranoia ridden world, right?
A Most Important New Feature (Score:4, Informative)
Stop trying to flood my P2P network...
Now we have blacklisting and whitelisting (through Sig2DAT). Though both of these methods together would seem to defeat P2P "spammers", the easiest way for them to get around this might be to spam the whitelist. The next move in the P2P wars remains uncertain.
And the arms race begins... err .. continues (Score:3, Interesting)
It's just going to go on and on and on.
To bad kazaaa can't patent the communication protocol, and not license it to RIAA... <SARCASM>Maybe we should enact a law to explicitly enforce these patents</SARCASM>
Is it a good thing to not share? (Score:3, Insightful)
If everyone did this, wouldn't that kill P2P file sharing? Isn't that what the RIAA wants to happen anyway?
Re:Is it a good thing to not share? (Score:4, Informative)
Hate to Burst your Bubble (Score:5, Insightful)
To borrow from the other scourge of the internet, They'll just pay people to work from home for $1000s a week!
All they'll do is pay some one who wants money to run their program using their home DSL, Dial up or Cable Modem. Then the blocking of RIAA's 'known' addresses would become as big as every high speed residential network on the planet.
Quote from article (Score:4, Funny)
Is this a new euphemism for "ownz0r3d and h4X0red out of existence, again"?
Re:Quote from article (Score:5, Funny)
Umm...
doesn't fix the problems, it's a band-aid (Score:3, Interesting)
This is a nice idea, and one way to approach things. I'm just not positive that it's effective.
The RIAA won against Verizon in court, and can now request IP addys, logs, and user contact info. So, this doesn't really slow them in that sense.
Additionally, what's to stop the RIAA from getting a bunch of DHCP home accounts under a subsidiary's name instead of their own? The possibilities for playing catch up here to add more IP ranges are endless.
This is a neat little effort, but doesn't fix the greater problem of balance in copyright law/infringement/fair-use.
It's the proverbial finger in the hole in the dam.
Lulu.com- publish your stuff! Creative commons compliant. [lulu.com]
anonymity is available (Score:5, Informative)
In other P2P networks. Freenet [sourceforge.net] and GNUnet [ovmj.org] both offer crypto and anonymity. Freenet isn't a P2P app in the pure sense. It's more of an underground www. GNUnet has better anonymity (theoretically - due to it's ability to resist traffic analysis attacks), but it is a younger project.
When it's time to retreat from gnutella, these represent the next stage in the information war.
Fanning the flames (Score:5, Insightful)
Is this legal? If so, should we really advocate it?
If people are stealing music, and a company attempts to block the people from whom the music is being stolen, with the intent of protecting the identity of the pirates, isn't there some line that's being crossed somewhere?
And even if it
No, I don't think music piracy is the big reason why CD sales are falling. It's a larger issue than just p2p apps, but it gives the RIAA
I digress.
This is really stupid of KaZaA to do, bottom line, I'd say.
So Why Is Everyone Negative Toward Peer Guardian? (Score:3, Interesting)
What I can't understand is why so many people here seem to be down on it. Here is a project that's free as in beer, free as in speech, receiving a great number of contributions from a tech-savvy community, helping to maintain privacy rights, and is making a solid attempt to send a message to the **AAs. This sounds like something the Open Source community would jump on as an example of community action to solve a problem. The fact that K++ is offering it will increase participation among users.
(By the way, the list is not only being constantly updated, a number of times a day, but it's being continually scrutinized for bad or inappropriate ranges. Congrats to eremini, dingdongding, and c00kies2000 for some great work on getting rid of inappropriates and dupes.)
It's not perfect, but it's a good stopgap until a better solution can be found.
The Spie
The RIAA's Not-So-Secret Agenda (Score:4, Interesting)
From this perspective something like a proxy for file transfers is not so important (not to mention fairly impractical). If other users can't see your full library and can't see your IP address in their search results (the latter might enable smart bots to "guess" what your library contains), the only way they can determine that you are sharing massively is to download tons of files and see which IP addresses crop up. This is because they will only see your IP when they actually start downloading.
All this to say that with the latest changes in K++ and Kazaa Lite, even big time file sharers can probably rest easy.
Submitted for your approval: (Score:5, Interesting)
Sanity check, anyone?
Re:Submitted for your approval: (Score:3, Insightful)
Of course, eliminating the ability of the *AA to trawl the networks with bots would yield an escalation, two of which I'll guess:
Blacklisting RIAA's (and friends) networks (Score:5, Interesting)
The blacklisting should be done at a higher level than machines only - the whole network of the ISP providing RIAA with access should be blacklisted if one or more machines in the network are being used by RIAA (or related entities) to scan for filesharing.
Also, the user of the filesharing program should be given a choice - "Do you want to block access to and from networks where RIAA is scanning filesharers (Yes/No)?"
My basic idea goes down to a bit of social engineering - please follow me on this one:
- RIAA contracts with an ISP to provide it with network connectivity to the Internet.
- RIAA then uses machine(s) over that network connection to scan filesharing networks.
- Said activity is detected (exactly how i don't know)
- The whole network for that ISP (or at least a significant portion of it) is blacklisted in millions of machines (all those running the filesharing app). This can be scalled up to bigger sub-networks (the ISP of the ISP) if needed.
- Other entities hosted on the same ISP are also in practice cut-off from some of their (potential) customers. Mostly their websites are ineccessible from millions of machines. This is especially bad for online shops and ASPs.
- They complain to the ISP.
- The ISP, faced with the choice between keeping RIAA as a customer and loosing several other customers or simply dumping RIAA will find that the choice that makes more business sense is dumping RIAA.
- Eventually, RIAA and it's associates will become persona non grata to most ISPs (as in, they choose to not take RIAA's business).
The nice thing about it is that it's all absolutelly legit:
- Each individual user chooses to accept an autometed cut of contact with those networks that provide access to filesharing scanning. Everyone is in their right to do so.
- ISPs choose to not sell their services to RIAA. It is their right to do so.
Now, this whole theory has some holes in it, and a couple of weak points (not to mention no solutions for the technical problem) - still, a distributed, voluntary system that makes it bad business for ISPs to provide access for companies that do filesharing scanning would leverage the power of those "hundreds of millions of users" of the filesharing apps.
Comments please
A Plan for RIAA (Score:3, Interesting)
What Kazaa Lite has now is equivalent to blacklists of spammers and spammers domains. We have already determined this strategy alone won't solve the problem.
The next logical step is to combine the lists with a distributed statistical filter capable of identifying RIAA hosts by search pattern and IP pattern. Since it is happening in a connected network, each peer filter can then broadcast its guesses and receive other peers guesses. Locally you can build a trust list based upon the likehood of search comming from a RIAA host.
Obviously this have problems.
One problem is the lack of significant search samples to make decisions. We would have to see an implementation to discover if it is mathematically feasible.
RIAA can also start trying to close down sharers by broadcasting their IP as "riaa-like" from a great number of peers. The way to avoid this is having all peers checking "the evidence". If the sharing IP and its searches do not match RIAA pattern, the call is probably bogus and those IPs broadcasting it are probably RIAA's. Backfire on them...
Another danger is RIAA using a range of IPs large enough to endanger the network connectivity. This is probably too expensive, but RIAA is probably too rich too.
Anyway, my point is that since the data is there (RIAA is searching the networks for the sharers), one can always analyse this data and try to extract as much information as possible from it.
If only... (Score:5, Insightful)
The RIAA(meaning the record companies) only exists because the artists and the consumers haven't really questioned their existence. Artists stand to make a lot of money without the RIAA in place. Why not make all music free? If you want to brave the p2p networks for different quality mp3s and such help yourself. OR, you can pay $5 directly to the artist to download the cd from their website.
Artists can make MORE than enough money from licensing their music(think movie scores, and commercial soundtracks), and live performances. Without having to pay large portions of their income to the record companies, artists stand to make a LOT more money, once the RIAA is gone.
The artists you see fighting p2p etc, are the ones that NEED the RIAA to survive. I'm talking about the sell-out corporately manufactured groups that wouldn't last if the RIAA wasn't there to spam their name all over the radio and mtv every 10 minutes. Those are the only artists that NEED the RIAA, and if we lose them, frankly, here is one slashdot poster that could care less.
It's not that I mind paying for music, but isn't it about time for a paradigm shift? Natural selection has provided an easier and better way to get new music and the record companies are a dying breed.
I have a couple thousand mp3's on my hard drive that I didn't pay for, but I also have heard a lot of new artists that I will jump at the chance to see live, or buy merchandise from.
I'm a bit of an aspiring dj, and I buy records from artists that I've heard and liked through p2p. If it wasn't for p2p those artists wouldn't have had my purchase.
The problem doesn't lie with the consumer.
spare us the theoretics and justifications (Score:4, Informative)
now that the wall is being torn down, the RIAA is going out of its way to try to ensure its relevancy. (payola, tighter distribution contracts with artists, destroying the credibility of digital distribution, etc) it sucks - but it's all legal.
all that aside this is about theft. downloading mp3s for material you haven't paid for -is- theft. whether it -should-be- or not is debatable. but under the law, it is. bummer.
so this little arms race may be between the good intentioned hackers vs the big bad corporation - but legally it's just pirates against copyright holders.
the fault -doesnt- lie with the consumer, it lies with the pirate. if you've noticed, not even the RIAA is saying 'p2p is bad' anymore. the specific practice of illegal distribution of music is what they're fighting now.
they logistically can't (and don't even try to) sue -you- for downloading. it's not obvious from the information available within a p2p app whether or not you are downloading a song you have fair use rights to (if i own nevermind, i can legally download the mp3s for that album) - and it would be financially prohibitive to even try to figure that out.
-however-, sharing the files is absolutely illegal. the RIAA -owns- the distribution rights for signed artists, and you are infringing on their copyrights by pirating that right.
sure, maybe some day the artists will wise up - but until then, you -are- breaking the law. get used to it, get an ipod, or uninstall kazaa. check your justifications at the door.
and whether or not p2p affects CD sales is irrelevant. discussing that is like trying to justify theft from a profitable business because they're still profitable despite the theft. sure - it's a neat little communistic self-delusion - but it's still theft under our laws.
Cutting off your nose... (Score:3, Interesting)
K++ is touting as a major feature being able to block law enforcement's (you think the RIAA won't play it as their lawyers attempting to do the work of the police?) attempts to crack down on its illegitimate (yes, yes, I know everyone thinks it's legitimate but the law doesn't) uses.
Surely they've just handed the RIAA a victory? They've said, "We've been sneaking in by claiming we have legitimate uses, trading all types of file - and now we've proved that our real purpose was piracy all along."
Yay. In one step, you've got 15% of users back for the couple of months before the policy offers the RIAA all the justification they need to shut you down entirely.
Comment removed (Score:5, Informative)
Re:!!!WARNING!!! New Kazaa-Lite turns file sharing (Score:4, Interesting)
I'm sure you're just using it to put up scans of your art work you've put in the public domain, get the latest linux, and share open source PHP scripts.
Right?
You're not trading music, warez, and other stuff you don't have legal rights to.
Right?
Wait just a darned minute... (Score:4, Funny)
Those BASTARDS! This is a conspiracy of machiavellian proportions!
Judge Posner's Aimster Analysis Isn't Helpful (Score:5, Insightful)
My problem with the Napster, and now Aimster, opinions is simply this: the 9th Circuit adopted a broader view of the liability of a technology manufacturer in the Sony Betamax case, essentially a "substantial infringing uses occur means infringement by vendor" test, which was discredited and reversed in Sony, which adopted the "substantial noninfringing use possible means no infringement by vendor," almost the very opposite result. It is hard for me to understand why, when the 9th Circuit essentially brought back the same analysis in its Napster opinion that got "sent home" in Sony, that Judge Posner would so freely adopt it here. To be fair, he explains his reasoning very, very well -- I just don't find it persuasive in view of the law and its underlying policies -- contribution isn't about expanding copyright to permit technology regulation.
To me, the question isn't whether the technology is being used poorly -- even by most users -- if it is capable of a substantial noninfringing use -- in which case there should be NO liability for contribution. (To get a sense how far the Supreme Court went, there was survey evidence before the District Court showing that 50% of the Betamax users were doing some infringement.) The question should be whether the technology vendor was affirmatively and actively inducing others to engage in infringement, as was the case in Napster and, arguably, Aimster.
Time will tell. But until the Supreme Court gets to this, it looks like the Posner account of Napster will be the final word on this question of law. Note, however, that his remarks on identity protection as indicia of wrongdoing are very troubling -- one of these days, perhaps in a few more years, perhaps, if we don't have any more tall buildings hit by planes, we really need to affirmatively try to get the courts and the Congress focused on privacy again.
Do the EULA (Score:5, Interesting)
I don't belong to any organization related to RIAA.... I won't use any information obtained from the use of this program, or the study of the way this programs works, to sue others users of this or related program... I don't suck
And then require, from some point in the near future, that everyuser of kazaa has accepted this EULA
IANAL, and I don't know how an EULA like this would stand in a court, but should work for a time at least.
In the worst case, if the EULA doesn't stand in a court, it would provide a good case against crazy EULA's
It's a win-win!!
trust and reputation management (Score:5, Interesting)
How do you know which IP's to blacklist? How do you know that the file you're downloading isn't a trojan?
I don't think the answer is in a centralized database of 'evil-doers'. That's an arms race that can eventually get everybody censored. Especially with dynamic IPs.
What needs to happen is you have to earn a reputation before you end up in those search results. You do this by people vouching for the quality of your files and not being a mole. Trust is gained by WHO vouches for that person and their metric of trustworthyness.
There should also be an option to restrict access to a given file to those within your web of trust so when the death squads in your country are looking to kill people serving up books about democracy, they can't just do a search real quick.
After we achieve a trust framework. I believe the next step will be dealing with traffic analysis. However, I'll rant about that when the time comes.
Re:Check out UDPP2P (Score:5, Informative)
I've checked the web site. It basically says "we broadcast all the queries and if someone has the file we meet each other by using secret codes hidden in those queries".
A peer-to-peer network that does queries in terms of network-wide broadcast is always doomed to fail. Gnutalla failed (and was redesigned) the same way. Even Novell NetWare was unable to scale because of SAP (service advertising protocol).
Nevertheless, the web site says "peers will somehow know each other". This is also a big problem in P2P networks. -- No design only big words.
Anyways, if I were you, I'd use freenet [freenetproject.org]. It's anonymous, and it works much better than the scheme explained on the web site.