Aces High Bulletin Board
General Forums => The O' Club => Topic started by: MrRiplEy[H] on November 02, 2005, 12:22:21 PM
-
Proof that record companies are really the criminals. Read more. (http://www.sysinternals.com/blog/2005/10/sony-rootkits-and-digital-rights.html)
-
It was like reading an article in French. All I understood was "Sony bad!"
-
Sounds like Sony is putting some crappy stuff on your system to protect their crappy music.
The story. (http://www.sysinternals.com/blog/2005/10/sony-rootkits-and-digital-rights.html)
-
You really should do some more research before pointing fingers. It is the reason I did not link to that when I posted about this issue in the Tech Support forum.
If you want to blame anyone, then blame Microsoft. They are the ones who are shoving DRM down our throats. Game companies are also using copy-protection devices and not telling you about it either. Sony is just the first of the rest of the CD music industry implementing some form of copy protection.
-
HA! HA!
URL=http://www.hitechcreations.com/forums/showthread.php?s=&threadid=163665]My link![/URL]
Skuz,
You may want to combine here?
-
You might want to read this (http://www.hitechcreations.com/forums/showthread.php?s=&threadid=163658) or even this (http://www.hitechcreations.com/forums/showthread.php?s=&threadid=163589). ;)
-
Hmmm well yeah, lol
Tech support? Who reads that crap!?
;)
-
Not only does this particular Sony copy protection program fit completely in the definition of spyware and malicious software, which is illegal in most countries and could get you locked up. It also has active program (eats some 2% of CPU resources all the time, or so im told), that hides all filenames beginning with $sys$ from inspection, providing ready platform for some virus to take advantage of.
The comment portion of the page is the most informative. If this would hit headline news, there could be some serious trouble coming for Sony as their EULA is not properly refitted to refuse liability of problems caused by this software. This virus was ironically developed by branch of Symantec corporation. All the money, yet they fail to do this kind of silly thing right.
-
Originally posted by Tuomio
This virus was ironically developed by branch of Symantec corporation. All the money, yet they fail to do this kind of silly thing right.
Say WHAT?! I'd be fascinated to see a citation for this. I work for Symantec, and I'm pretty sure we detect this root-kit as an infection. Why the hell would we CREATE it?
-
All this means for me is I will never buy another Sony Music CD.
Though I have not bought a sony music CD in years so it is a non issue.
-
Originally posted by Chairboy
Say WHAT?! I'd be fascinated to see a citation for this. I work for Symantec, and I'm pretty sure we detect this root-kit as an infection. Why the hell would we CREATE it?
This is in the comments portion, i dont know if its actually true:
Sent an email earlier today to New Media Manager, Stein Vegusdal @ SonyBMG Norway. In his reply he states that Mark has violated the DMCA act when he tried to find the installed rootkit and manually removed it. As per, he states that it clearly says in the EULA that customers have to contact Sony customerservice for getting removalinstructions. As to try to remove it yourself, Sony seems to think of it as a breach of the DMCA act and other applicable laws around the world. Further he states that First4Internet is a Symantec-partner and that Symantec has posted it as not harmful.. Seems like we can wait for forever for a Symantec removal tool against this **** then.
-
Originally posted by Chairboy
Why the hell would we CREATE it?
For money?
-
1) Sony licensed the technology, as are many other companies. It is not a virus, and cannot be construed as a virus. It is a public piece of software which any company can license. It uses techniques which Microsoft has used for years to hide things from the end user.
2) Sony does not have to declare a thing as it is covered in the Microsoft license about DRM.
The upshot is this; Basically Microsoft has granted any company the right to install software under the DRM tent which is intended to help protect copy-righted works.
How many of you who are complaining also playe Silent Hunter III? It installs its own copy-protection software without telling you about it as well.
You guys really have not been keeping up with DRM have you? You think this is bad, you might want to take a serious look into Vista, as it gets worse as this goes forward.
-
Originally posted by Skuzzy
1) Sony licensed the technology, as are many other companies.
2) Sony does not have to declare a thing as it is covered in the Microsoft license about DRM.
The upshot is this; Basically Microsoft has granted any company the right to install software under the DRM tent which is intended to help protect copy-righted works.
How many of you who are complaining also playe Silent Hunter III? It installs its own copy-protection software without telling you about it as well.
You guys really have not been keeping up with DRM have you? You think this is bad, you might want to take a serious look into Vista, as it gets worse as this goes forward.
Sad stuff really. I didnt buy Silent hunter 3 for this reason.
You think Microsoft will push this crap far enough that people will start looking at linsux and Macs an alternative?
-
Apple is fighting it, but it does not appear they will for much longer. There appears some type of legal agreement between them and Microsoft which may force Apple into supporting DRM.
Dunt quote me on that one yet. I am still digging.
As far as another OS goes.s No chance. 99% of the people who use an MS OS have no idea what goes on in the background.
-
Oh, but the copy-protection, besides hiding the registers, it also portreys itself in misleading name "Plug and Play Device Manager" if anybody stumbless across it in some process manager. No removal tools are shipped with the CD nor does EULA tell anything about such software.
Virus it is, there is no way around this. We all know how virus programmers and distributors should be prosecuted with harshest means, or even hanged on the spot, i dont know why Sony should be any different. They knowingly did this and if somebody would dig it up further by legal means, im sure there would be hard evidence, that they wanted this program to be very permanent and unremovable on client end.
-
Tuomio, first of all, listing them as a "partner" does not mean they are a subsidiary of Symantec, just that they're a company that has some sort of a business relationship. Regarding the comment about Symantec software categorizing it as non-harmful, that may be true, but I'll have to research that more. I had heard a rumor saying exactly the opposite, but I'll have to get back to you. This program may be non-harmful on its own, but I have grave concerns about the vulnerabilities it opens on systems. It's possible that, and I speak not as an employee but for myself, that when the determination was made to mark it as non-harmful (if that happened), it was before the risks were known.
-
Industry is also pushing hardware based DRM. So, switching to other OSs may only delay inevitable.
-
Originally posted by Tuomio
Oh, but the copy-protection, besides hiding the registers, it also portreys itself in misleading name "Plug and Play Device Manager" if anybody stumbless across it in some process manager. No removal tools are shipped with the CD nor does EULA tell anything about such software.
Virus it is, there is no way around this. We all know how virus programmers and distributors should be prosecuted with harshest means, or even hanged on the spot, i dont know why Sony should be any different. They knowingly did this and if somebody would dig it up further by legal means, im sure there would be hard evidence, that they wanted this program to be very permanent and unremovable on client end.
Wrong. I suggest you read up the licensing on DRM from Microsoft. Sadly, Sony is not violating anything within the terms of DRM. If you own a copy of XP, and have installed it, then you have accepted the DRM EULA.
Let me be clear. I hate/detest DRM. I think it is highly intrusive and wreaks of big brother.
-
all because dirtballs have to pirate games and music ( and the music industry robs you on the price, but thats not a good reason to steal it, just don't buy it)
Always how it goes, the dirtbags ruin it for everyone. :rolleyes:
-
If, of course, you are of the mind that EULAs are enforcable. Courts seem to increasingly disagree with the manufacturers on that matter.
-
Originally posted by Chairboy
Tuomio, first of all, listing them as a "partner" does not mean they are a subsidiary of Symantec, just that they're a company that has some sort of a business relationship. Regarding the comment about Symantec software categorizing it as non-harmful, that may be true, but I'll have to research that more. I had heard a rumor saying exactly the opposite, but I'll have to get back to you. This program may be non-harmful on its own, but I have grave concerns about the vulnerabilities it opens on systems. It's possible that, and I speak not as an employee but for myself, that when the determination was made to mark it as non-harmful (if that happened), it was before the risks were known.
Yeah i used wrong wording with this one, altough its still ironical. I dont agree with the non-harmfull one, but the intention surely was not to cause harm on the client, what they say about good intentions.. There are probably thousands of "real" viruses, that are less harmfull than this one..:) For example if i'd had such program on my computer, i would hard delete it. This would spell disaster if the user comments about this are true. As an power-user-nerd, i would not have even slightest clue how to get rid of this program, disturbing.
This is just the beginning, too much of money to be made in the distribution of information for it to remain free. :noid
-
There is that Chairboy, but you want to take MS to court? hehe. I can pretty well bet you how that would turn out.
-
Lets be honest here... who actually reads an entire EULA for an OS, game, browser, whatever? I know I tend to read them at a few thousand words per second as I flick my scroll-wheel like crazy to make the agree button appear.
Blizzard & Microsoft can come fight over who has the rites to my soul later.
-
Originally posted by indy007
Blizzard & Microsoft can come fight over who has the rites to my soul later.
Sadly this is true, i would not have balls to do anything about it even if i had the money. Thus, one day i might connect to the internet with the newest MS-WIN_XX and see text "Your licence for use of MSN internet protocol has expired, please contact your local authorized MSN internet licence dealer"
-
Well, seeing how this is about DRM, more than anything else.
You folks might want to know about this. (http://arstechnica.com/articles/culture/analog-hole.ars//url)
-
Originally posted by Skuzzy
How many of you who are complaining also playe Silent Hunter III? It installs its own copy-protection software without telling you about it as well.
It does tell it installed something, although it doesn't ask from user before installing it.
However Starforce drivers and stuff can be removed with a tool provided by the company developing it.
Starforce doesn't either try to totally hide itself and it works passively (when launched by SF protected program).
It's not something I like, but it is somewhat different than what Sony is doing.
-
All they are accomplishing is motivating people towards sourcing cracked software/media without protection. The MPAA and RIAA are 3 steps behind the kids that crack this stuff.
They also make themselves look greedy by the licensing schemes they are dreaming up. Public sympathy for piracy grows with every step the MPAA and RIAA make.
-
Conceptually it is the same thing though Fishu, and it will become more and more prevalent and pervasive, if the powers that be continue to get thier way.
Do not make the mistake of singling out Sony for being the bad guy here. The real bad guys would like nothing more than to have all this attention directed away from them.
EDIT: Vulcan, the real problem is for the ninety-nine percentile who have no idea what 'cracking' is. All they know is they have been handicapped from using the media they purchased and the big-bad-boogy-bear is going to come take thier children away if they do not abide by the law.
I know what cracking is, but guess what? If they go forward in the manner they are moving, I'll just stop purchasing any media at all. Games, music, and videos. No skin off my nose.
-
Skuzzy, i think i will be seeing nightmares tonight about that law proposition, thank you! :o
-
Originally posted by Skuzzy
installs its own copy-protection software without telling you about it as well.
The question is Skuzzy, how many of us seek copy-protection bypass technology for our legitimately owned games? Almost everyone I know has sought to bypass the copyprotection in BF2, even though they own legit copies, and in doing so have ventured into the wicked world of piracy. Do these software companies realize they are encouraging illegal activities?
-
Vulcan, I don't. I just do not buy a game which has any type of copy-protection implemented. I prefer to send the message to the producer/distributor.
I do not own BF2, nor SHIII, nor any game which has copy protection and I never will. If you buy a copy-protected game, you are subsidizing copy-protection schemes
-
Yeah I agree with you on that Skuzzy. But what I am saying is in the real world, a friend of mine got 20 copies of BF2 at good price for a group of us. Almost every person in that group has installed the bits from gamecopyworld to bypass the copy protection. People in this group range from geeks to complete newbies.
Its a good indicator that the public is becoming more educated and their stance on DRM is diverging from that of the big companies.
-
Interesting read. Thanks skuzzy.
Now a question for you. If this legislation is passed, do you think it will lead to a revolution?
-
The best part of this Sony rootkit is that if your rootkit detector detects it and tries to clean it - whaddam you lose your CD-Rom drive functionality.
Meaning a few thousands of computer illiterates will run their virus scan, choose 'delete' and end up with a broken computer.
-
quick techie question about this whole thing....
would you be able to run and listen to the previous mentioned CD's on a linux system, and be safe from the invasive software being installed?
-
Originally posted by Skuzzy
I just do not buy a game which has any type of copy-protection implemented. I do not own BF2, nor SHIII, nor any game which has copy protection and I never will.
i dont understand this, its a game, nothing more.
in 2 year nobody will remember that game anyway,
why dont get a rig only for gaming like i do? (see it as a playstation)
Games should not affect your real life, play it and have fun,
tomorrow it will be old and you will buy a new one.
-
Vulcan, that 20 copy purchase sent a message to some marketing analyst which says, copy-protection is a good thing. It does not hurt sales. Let's do more!
Busting it after-the-fact is not going to stop it. If you want it gone, and I presume everyone would like it gone, then vote with your wallet. It's simple really.
You can bet it would not take long for the producers/distributors to knuckle under and drop these schemes if a concerted effort to avoid those products was made by the consumer.
However, it appears consumers will not make that choice, which allows these schemes to propagate and become more nefarious with each iteration.
-
Originally posted by Mustaine
quick techie question about this whole thing....
would you be able to run and listen to the previous mentioned CD's on a linux system, and be safe from the invasive software being installed?
Yes.
Originally posted by Gh0stFT
i dont understand this, its a game, nothing more.
in 2 year nobody will remember that game anyway,
why dont get a rig only for gaming like i do? (see it as a playstation)
Games should not affect your real life, play it and have fun,
tomorrow it will be old and you will buy a new one.
I do not purchase those products as I refuse to support these copy-protection schemes. Greed is driving these schemes, and when you buy it, you are subsidizing that greed.
-
Gh0stft its because if consumers won't fight DRM software, it will become a part of everything. And it will control everything.
What if your handgun will be DRM controlled, refusing to shoot unless authorized by RF? :D
-
its a game, not something i really need to survive.
-
Exactly. That is why it is no big deal for me to walk away from it. Gives me more time in the wood shop at home.
-
I say bring the DRM. It'll just push everyone into linux/OSS software that much faster. Speaking of which... Skuzzy any chance you guys will port to *nix or xbox 360 or something? Cause Aces High is the ONLY reason I still have windows. Seriously.
g00b
-
Originally posted by MrRiplEy[H]
What if your handgun will be DRM controlled, refusing to shoot unless authorized by RF? :D
well, i never owned a handgun, and i doubt i will own a gun in the
future, i just cant imagine why i should own one here ? no need.
But what have the Software control to do with real hardware stuff?
zero
-
Guys I dont mean to come across as stupid but is there a list or way to tell from the cover, if a game/ software product is protected?
It seems to me that it will come to a point that you wont be able to buy anything and have a legit back-up copy. At that point what fun is it to have a computer anymore.
-
Originally posted by Gh0stFT
well, i never owned a handgun, and i doubt i will own a gun in the
future, i just cant imagine why i should own one here ? no need.
Ghostft, look up "Kristallnacht" some day.
In regards to the sony issue, they've just announced a 'service pack' to remove the offending software. Hopefully this'll discourage others from following with their own DRM software.
-
Chairboy, i understand that some people have issues with Sonys
DRM, i cant change it.
But why you come up with the Kristallnacht is beyound me, sorry.
-
Wired Followup article.
Wired News Staff | Also by this reporter
02:07 PM Nov. 02, 2005 PT
Sony BMG is facing a cacophony of criticism this week following the revelation that some of its CDs are packed with special copy-protection software that conceals itself with an advanced hacker cloaking technique. We think the company is getting off easy.
The firestorm began when Mark Russinovich, a computer security expert with Sysinternals, discovered evidence of a "rootkit" on his Windows PC. Through heroic forensic work, he traced the code to First 4 Internet, a British provider of copy-restriction technology that has a deal with Sony to put digital rights management on its CDs. It turns out Russinovich was infected with the software when he played the Sony BMG CD Get Right With the Man by the Van Zant brothers.
A rootkit is a particularly insidious type of Trojan horse that hides its existence from users and programs by tampering with the operating system on the most fundamental level. Where normal malicious code might be content to choose a deceptive file name, a rootkit "hooks" operating system calls that might reveal its presence, and essentially reprograms them to lie -- like bribing the coroner to conceal a murder.
And the lie the First 4 Internet code tells is a whopper. Under the program's influence, Windows will deny the existence of any file, directory, process or registry key whose name begins with "$sys$." Russinovich verified this by making a copy of Notepad named "$sys$notepad.exe," which promptly vanished from view.
That means that any hacker who can gain even rudimentary access to a Windows machine infected with the program now has the power to hide anything he wants under the "$sys$" cloak of invisibility. Criticism of Sony has largely focused on this theoretical possibility -- that black hats might piggyback on the First 4 Internet software for their own ends.
On Wednesday, Sony answered its critics by promising to issue a patch that allows antivirus software to pierce First 4 Internet's cloaking function. But in our view, the hacker and virus threat is something of a red herring. The harm of the Sony DRM scheme is not that it enables evildoers, but that Sony itself did evil.
We needn't go skulking through the computer underground to find malicious action here. By deliberately corrupting the most basic functionality of their customers' computers, Sony broke the rules of fair play and crossed a bright line separating legitimate software from computer trespass. Their actions may be civilly actionable.
!! IMPORTANT PART !!
Sony may even have committed a crime under the U.S. Computer Fraud and Abuse Act, which can carry fines and prison terms for anyone who "knowingly causes the transmission of a program ... and as a result of such conduct, intentionally causes damage, without authorization, to a protected computer." Corrupting Windows so it misreports the contents of a hard drive sounds a lot like "damage," and the click-wrap license agreement on the Sony disk amounts to pretty thin "authorization" -- disclosing only that "this CD will automatically install a small proprietary software program ... intended to protect the audio files embodied on the CD."
Nor are we comforted by assurances from First 4 Internet's CEO Mathew Gilliat-Smith, who, in an interview with CNET's News.com, defended his software this way: "For the eight months that these CDs have been out, we haven't had any comments about malware (malicious software) at all." Rootkits, like other cover-ups, rarely generate complaints before they're discovered.
!! Rest of the BS !!
Sony should immediately disclose the full details of its deployment of the First 4 Internet software, and assure the public that it will not use similar tactics in the future. Honest programs have no need to conceal themselves or their actions from users. Honest companies, too.
-
I don't recall having these issues when my living room was full of Vinyl and Cassette Tapes :)
-
See Rule #7
-
Originally posted by Skuzzy
Vulcan, that 20 copy purchase sent a message to some marketing analyst which says, copy-protection is a good thing. It does not hurt sales. Let's do more!
You're forgetting the 20 guys that didn't buy because they've learn't about warez, and that next time round this group will shrink too from their BF2 experience.
-
1. You can uninstall the rootkit software by going to http://cp.sonybmg.com
2. The movie and music industry tried as hard as they could to ban the manufacture of video tape recorders and cassette recorders. They lost in court. They do not need the legal system anymore since they have a virtual partnership with Microsoft, and Microsoft has more power than all the laws and any court.
3. What is wrong with the owners of copyrighted material protecting their material? I say nothing, as long as all caveats and restrictions on the material are clearly spelled out at the time of sale. The problem could be solved in about a month if a reasonably intelligent mix of legal and technical people sat down and thought about it in good faith.
-
Nothing better than the EULA changing with a patch, or you buying the product without being able to read the EULA inside it beforehand, only to realize, once it's bought, that you disagree to it.. no refund.
-
The media proving ignorance sells. The reason people are using the 'piggy-back' argument is due to Sony not breaking any laws at all. They are well within thier right, as any company is, to install anything they want to install, without your knowledge, under the auspice of DRM.
Nobody really cares about the true source of the problem here. Amazing. You think DRM just magically appeared in the operating system one day? Each phase of the implementation has been adding more and more to the structure of DRM.
Vista/Longhorn will see the completion of the implementation, with not only software support, but support for the new hardware implementations coming from AMD/Intel.
This is not paranoia at work. If you have been keeping up on DRM, you would know about what is coming and how it is going to be implemented. The reason it is happening is due to no one really taking any time to write thier various representatives and complain about it. The media only covers what they can exploit, such as this fine example. Providing any press coverage which could hurt it would be akin to shooting themselves in the foot.
And the sheep shall follow.
-
Don't we use MS products under license? You don't really own your copy of Windows, or any other MS product......or am I mistaken?
-
Good for them! Maybe folks can go back to actually paying for music and movies again! Maybe better games will be the result!
-
A new set of DRM laws created huge controversy here in Finland. The record industry lobbed a new set of laws that take basic rights of the consumer away and hand them to content creators.
Starting from next year it will be punishable by law to circumvent any copy protections, sell equipment for that purpose or even discuss cryptography in public. That's right, the people are forbidden to write books, web pages or whatever if the subject is cryptography/DRM.
At the same breath they banned importing media from other regions for sale. Which effectively means total market control for the corporations - they can price their products for the region as they wish along with being able to fully choose which media we can buy / see and use.
The e-mails, snailmails and phones were flooded with complaints. There were demonstrations on street (which is unheard of in Finland - I've never heard of anything being demonstrated) and still the DRM law was pushed through in record breaking (pun intended) time.
One of the arguments during preliminary processing of the law was 'but only 1-2% of the media is digitally protected'. After the law was passed by the president BMG announced that every future title to be sold would be DRM controlled.
They're criminals. They are our enemy. Fight them. Don't just write to your congressman - they can and will be bought by them. Only way we can affect is by refusing to buy their crap.
-
Originally posted by Skuzzy
Nobody really cares about the true source of the problem here. Amazing. You think DRM just magically appeared in the operating system one day? .
what is the true source of the problem?
-
The true source of problem is the stock exchange. People who stop at nothing to maximise profit. And the fact that we're moving to Orwell society slowly but surely if big money gets its way through.
-
Originally posted by MrRiplEy[H]
The true source of problem is the stock exchange. People who stop at nothing to maximise profit. And the fact that we're moving to Orwell society slowly but surely if big money gets its way through.
Maybe Finland is, but I don't buy it.
I want to know what Skuzzy feels is the problem, because I don't see a problem.
-
Nuke, Skuzzy linked this article: http://arstechnica.com/articles/culture/analog-hole.ars//url
That article links to other articles, including
http://arstechnica.com/news.ars/post/20020527-2141.html
and
http://arstechnica.com/articles/culture/i-tunespaper.ars
and
http://arstechnica.com/news/posts/1042652465.html
-
Links don't tell me what Skuzzy thinks. I'm just wondering what he thinks is the source of the problem. I don't really see a problem.
-
Umm.. seeing the problem and understanding what it is are two different things NUKE. You can lead a cow to water but you can't force it to drink.
You had DRM and DMCA way before our government introduced the very notion. Only difference is that nobody in US seemed to care. :huh
-
Originally posted by MrRiplEy[H]
Umm.. seeing the problem and understanding what it is are two different things NUKE.
Like global warming? Some people see a problem, others see reality.
-
Originally posted by Skuzzy
There is that Chairboy, but you want to take MS to court? hehe. I can pretty well bet you how that would turn out.
umm no we will bother HT with " we wanna AH live CD" :D
-
AH live cd.. now there's a great concept. No more 'enditall' or other crap. Awesome.
Now if HT would just add Openoffice to the clipboard map menu, who needs windoze anymore? :D
-
Originally posted by MrRiplEy[H]
AH live cd.. now there's a great concept. No more 'enditall' or other crap. Awesome.
Now if HT would just add Openoffice to the clipboard map menu, who needs windoze anymore? :D
Well live CD might have some problems with storing configs, but selfwritable image for USB storage would be fine. FAT16, 256MB USB pendrive with bootable image, you can easily customize it in your "whatever support USB mass storage" and thats it.
Download, plug, execute, upload custom files, reboot & Vulch dweebs.
:cool:
-
But Lada livecd's don't have a problem with accessing HD for information. Nothing stops from storing config data there just as usual. Only the enviroment gets loaded live.
-
But it will prevent you from using it on your PC at work...... for example :D
Keep it at one place, plug&Vulch... anytime anywhere..
[btw this is serious hijack isnt it ? :D ]
-
Microsoft and AMD/Intel have the means to fight this, but instead, they are supporting it. The DRM license in XP allows any content provider to take any means neccessary to protect that content within the guidelines of DRM.
This includes, and is not limited to, installing software on your computer without your knowledge.
If you think it is bad in XP, wait until you see Vista.
-
To be honest I don't want to see Vista. Ever.
But I'm afraid my line of work means I'll have to work on it.
-
Originally posted by Skuzzy
Microsoft and AMD/Intel have the means to fight this, but instead, they are supporting it.
{
Sure .. because if Intel will fight them, then AMD will be best choice by Microsoft for Vista.
"Vista run best on AMD"
and so on...
Every comercial company go toward bigger profit. If there will be someone who will figure profit out of oposing to MS, then he will do it for sure.
But untill it happen you can "rely" only on non-profit "players"
}IMO
-
Originally posted by Skuzzy
Microsoft and AMD/Intel have the means to fight this, but instead, they are supporting it. The DRM license in XP allows any content provider to take any means neccessary to protect that content within the guidelines of DRM.
This includes, and is not limited to, installing software on your computer without your knowledge.
If you think it is bad in XP, wait until you see Vista.
They install software on your operating system, which you use under lincense.
-
Originally posted by Wolfala
Wired Followup article.
Wired News Staff | Also by this reporter
02:07 PM Nov. 02, 2005 PT
Sony BMG is facing a cacophony of criticism this week following the revelation that some of its CDs are packed with special copy-protection software that conceals itself with an advanced hacker cloaking technique. We think the company is getting off easy.
The firestorm began when Mark Russinovich, a computer security expert with Sysinternals, discovered evidence of a "rootkit" on his Windows PC. Through heroic forensic work, he traced the code to First 4 Internet, a British provider of copy-restriction technology that has a deal with Sony to put digital rights management on its CDs. It turns out Russinovich was infected with the software when he played the Sony BMG CD Get Right With the Man by the Van Zant brothers.
A rootkit is a particularly insidious type of Trojan horse that hides its existence from users and programs by tampering with the operating system on the most fundamental level. Where normal malicious code might be content to choose a deceptive file name, a rootkit "hooks" operating system calls that might reveal its presence, and essentially reprograms them to lie -- like bribing the coroner to conceal a murder.
And the lie the First 4 Internet code tells is a whopper. Under the program's influence, Windows will deny the existence of any file, directory, process or registry key whose name begins with "$sys$." Russinovich verified this by making a copy of Notepad named "$sys$notepad.exe," which promptly vanished from view.
That means that any hacker who can gain even rudimentary access to a Windows machine infected with the program now has the power to hide anything he wants under the "$sys$" cloak of invisibility. Criticism of Sony has largely focused on this theoretical possibility -- that black hats might piggyback on the First 4 Internet software for their own ends.
On Wednesday, Sony answered its critics by promising to issue a patch that allows antivirus software to pierce First 4 Internet's cloaking function. But in our view, the hacker and virus threat is something of a red herring. The harm of the Sony DRM scheme is not that it enables evildoers, but that Sony itself did evil.
We needn't go skulking through the computer underground to find malicious action here. By deliberately corrupting the most basic functionality of their customers' computers, Sony broke the rules of fair play and crossed a bright line separating legitimate software from computer trespass. Their actions may be civilly actionable.
!! IMPORTANT PART !!
Sony may even have committed a crime under the U.S. Computer Fraud and Abuse Act, which can carry fines and prison terms for anyone who "knowingly causes the transmission of a program ... and as a result of such conduct, intentionally causes damage, without authorization, to a protected computer." Corrupting Windows so it misreports the contents of a hard drive sounds a lot like "damage," and the click-wrap license agreement on the Sony disk amounts to pretty thin "authorization" -- disclosing only that "this CD will automatically install a small proprietary software program ... intended to protect the audio files embodied on the CD."
Nor are we comforted by assurances from First 4 Internet's CEO Mathew Gilliat-Smith, who, in an interview with CNET's News.com, defended his software this way: "For the eight months that these CDs have been out, we haven't had any comments about malware (malicious software) at all." Rootkits, like other cover-ups, rarely generate complaints before they're discovered.
!! Rest of the BS !!
Sony should immediately disclose the full details of its deployment of the First 4 Internet software, and assure the public that it will not use similar tactics in the future. Honest programs have no need to conceal themselves or their actions from users. Honest companies, too.
WOW that is deep! This is the kind of stuff i like to read while i have one hand on the scroll mouse and the other in a bag of cheetos puffs. :aok
-
Heh just wait untill the RFID in your cheetos puffs bag sends a notice to cheetos agents that you're violating EatingUserLicenceAgreement by munching the stuff and reading about DRM. :D
-
Originally posted by NUKE
They install software on your operating system, which you use under lincense.
Tell me Nuke, if that's ok, then why isn't it ok for a virus to be installed on your computer? Your argument seems a bit shaky, just because you don't actually own the OS means that you have no control over what gets installed on it? Respectfully, I disagree. By that logic, antivirus software would be illegal.
-
Prediciton....
Amd / Intel markets slump in asia due to drm hardware trojan action..
asia cuts out USA chip design process thru corporate espionage and then controls entire process of fabbing the chips including now design and manufacture (i could see china do this..) (or Korea)
USA tries to bully china/korea... China/korea stop buying cheap loans..
USA networks broadcast madonna's "Dont cry for me Argentina" as we have a meltdown..
Microspy melts down becuase of currency devaluation...
Untill that nostrodomus event..
Knoppix.net
apt get *********
DoctorYo
-
takes drag off ciggy.....
Well, now i think i know why silent hunter III wouldnt ever install on my puter....the thing saw i had 2 dvd burners and crapped out even tho i was using the plain jane dvd "player" even tech support couldnt figure out WHY it wouldnt insatll. Instaed they blew me off and closed the discussion :furious
Im with wolf14 in wanting to know if they put on the box about this software...cause i wont buy it if it has it, The problem is how do you know it has it?
As for avis/longhorn ...they cant even get XP right and from what i have heard longorn is supposed to be a whole new os, Im thinking its gonna be qwhile yet before we see it come out.
-
Most copy-protected software/music/video will say it is copy-protected on the box (check closely though, it could be in the fine print).
The other option is to put the onus on the store you are buying it from. Ask them, "If this software is copy-protected, can I return it for a refund or exchange on something else?".
-
We're lucky in NZ, we have some good consumer laws. "If the goods aren[t fit for the purpose they were brought for" is all we need.
-
Originally posted by Skuzzy
Most copy-protected software/music/video will say it is copy-protected on the box (check closely though, it could be in the fine print).
The other option is to put the onus on the store you are buying it from. Ask them, "If this software is copy-protected, can I return it for a refund or exchange on something else?".
Don't try that at wally-world. Their return policy for media is that they don't have a return policy. Exchange for the same title only.
YOU CAN'T STOP THE WAL-MART....
(but that's a whole other thread)
-
That is why you ask before you buy it.
-
http://www.star-force.com/protection/protection.phtml?c=256&id=658
The above was Starforces reply to the article posted below...
(http://www.tgdaily.com/2005/10/01/the_war_on_game_pirates/index.html)
Both interesting stances...
-
Har har har, Sony's rootkit bites em in the ass.
From Slashdot
http://yro.slashdot.org/yro/05/11/03/187215.shtml?tid=158&tid=206
Your Rights Online: Blizzard's Warden Thwarted by Sony's DRM Rootkit
Posted by CmdrTaco on Thursday November 03, @02:16PM
from the why-openness-matters dept.
shotfeel writes "First, news of Warden -a bit of code from Blizzard's WoW to trounce game cheats. Then, a Sony rootkit to make your computer safe for music. Now, news that you can use the Sony rootkit to make your game cheats safe from the Warden."
-
Two Class-Action Lawsuits Filed Against Sony BMG Music
Posted on Tuesday, November 08 @ 13:25:03 GMT by tinfoil
300x250
The first, filed in state court in California, alleges:
1. Violations of the Consumer Legal Remedies Act (Cal Civil Code Section 1750 et seq.);
2. Violations of the Consumer Protection against Computer Spyware Act (Business and Professions Code Section 22947-22947.6); and
3. Violations of the California Unfair Competition law (Business and Professions Code section 17200 et seq.)
The second, filed in the Southern District of New York, alleges:
1. Computer fraud under 18 USC 1030;
2. Deceptive Business Practices under New York Law (Sections 349/350 of the GBL); and
3. Common law fraud.
For information on how to join in these Class Action lawsuits:
Consumerlaw1@earthlink.net
-
Friggin' A!
First time I feel like I could kiss an attourney. :D
-
http://news.yahoo.com/s/ap/20051111/ap_on_hi_te/sony_copy_protection
"Viruses Exploit Sony CD Copy-Protection
By MATTHEW FORDAHL, AP Technology Writer Thu Nov 10, 8:49 PM ET
SAN JOSE, Calif. - A controversial copy-protection program that automatically installs when some Sony BMG audio CDs are played on personal computers is now being exploited by malicious software that takes advantage of the antipiracy technology's ability to hide files.
ADVERTISEMENT
The Trojan horse programs — three have so far been identified by antivirus companies — are named so as to trigger the cloaking feature of Sony's XCP2 antipiracy technology. By piggybacking on that function, the malicious programs can enter undetected, security experts said Thursday.
"This could be the advanced guard," said Graham Cluley, senior technology consultant at the security firm Sophos. "We wouldn't be surprised at all if we saw more malware that exploits what Sony has introduced."
The copy protection program is included on about 20 popular music titles, including releases by Van Zant and The Bad Plus, and disclosure of its existence has raised the ire of many in the computing community, who consider it to constitute spyware.
Sony BMG Music Entertainment and the company that developed the software, First 4 Internet, have claimed that the technology poses no security threat. Still, Sony posted a patch last week that uncloaks files hidden by the software.
On Thursday, Sony released a statement "deeply regretting any disruption that this may have caused." It also said it was working with Symantec and other firms to ensure any content-protection technology "continues to be safe."
Neither Sony spokesman John McKay nor First 4 Internet CEO Mathew Gilliat-Smith returned messages seeking additional comment.
Windows expert Mark Russinovich discovered the hidden copy-protection technology on Oct. 31 and posted his findings on his Web log. He noted that the license agreement that pops up said a small program would be installed, but it did not specify it would be hidden.
Manual attempts to remove the software can disable the PC's CD drive. Sony offers an uninstallation program, but consumers must request it by filling out two forms on the Internet.
"What they did was not intentionally malicious," Cluley said. "If anything, it was slightly inept."
The copy-protection software, which Sony says is a necessary "speed bump" to limit how many times a CD is copied, only works on Windows-based PCs. Users of
Macintosh and
Linux computers are not restricted.
The viruses also only target Windows-based machines.
The infection opens up a backdoor, which could be used to steal personal information, launch attacks on other computers and send spam, antivirus companies said.
Sony also is facing legal headaches. On Nov. 1, Alexander Guevara filed suit in Los Angeles County Superior Court seeking class action staus. He claims Sony's actions constituted fraud, false advertising, trespass and violated state and federal laws barring malware and computer tampering.
His attorney, Alan Himmelfarb, did not immediately return calls seeking comment.
The Electronic Frontier Foundation, an online civil liberty group, said it is hearing from people who have run into problems with the copy protection software. It is considering filing its own lawsuit, said EFF staff attorney Jason Schultz.
"You can't uninstall it, you can't find it, and it's vastly more invasive in terms of privacy and personal property than any other (digital rights management) program to date," he said."
-
Welcome to last week: http://www.hitechcreations.com/forums/showthread.php?s=&threadid=163658
-
Welcome to this week.
Did you even read the title? It says:
"Viruses Exploit Sony CD Copy-Protection"
-
Originally posted by rabbidrabbit
Welcome to this week.
Did you even read the title? It says:
"Viruses Exploit Sony CD Copy-Protection"
Last week explained that this is NOT a Virus, but a Trojan Horse. You ever watch Groundhog Day?
Karaya
-
No there are other virus' and trojan horses exploiting the shoddy code, in Sonys trojan
-
Just say "no" to DRM.
-
:huh
-
Originally posted by Pooh21
No there are other virus' and trojan horses exploiting the shoddy code, in Sonys trojan
Then I retort. My apologies Rabbi. <>
Karaya
-
http://www.viruslist.com/en/weblog?weblogid=173731778
Analyst's Diary
More on Backdoor.Win32.Breplibot.b
Yury November 10, 2005 | 12:00 GMT
comments (1)
We've been analysing the backdoor program which uses the Sony rootkit technology.
Trend Micro has told us that the backdoor was mass mailed using spamming technologies. The message sent was as follows:
Message subject:
Requesting Photo Approval
Attachment name:
article_december_3621.exe
Message body:
Hello,
Your photograph was forwarded to us as part of an article we are publishing for our December edition of Total Business Monthly. Can you check over the format and get back to us with your approval or any changes? If the picture is not to your liking then please send a preferred one. We have attached the photo with the article here.
Kind regards,
Jamie Andrews
Editor
http://www.TotalBusiness.co.uk
**********************************************
The Professional Development Institute
**********************************************
Breplibot.b is 10240 bytes in size, and packed using UPX.
When launching, the backdoor copies itself to the Windows system directory as $SYS$DRV.EXE. Using this name makes it possible for the rootkit technology used by Sony to hide the activity of the malicious program. Of course, the backdoor's activity will only be hidden if the 'Sony rootkit' has been installed on your computer.
Once launched, the backdoor creates the following system registry key:
[HKEY_LOCAL_MACHINE]
"WkbpsevaXImgvkwkbpXSmj`kswXGqvvajpRavwmkjXVqj"="$SYS$DRV.EXE"
-
Saw on google news that the PR and even some legal heat is building on Sony. My favorite line went something like, "Sony ahs a right to protect their content, but they do not have a right to damage people's property while they do it."
-
More about Sony's way to open up their customer's computers for viruses and trojans:
http://www.theregister.co.uk/2005/11/11/secfocus_sony_analysis/
-
heh.. thank you..>
Thats the point of the article.
It's not about Sony's insidious DRm it's about how hackers are exploiting it to hit you with Virus'.
-
http://www.hitechcreations.com/forums/showthread.php?s=&threadid=164338
-
Here's some temporary good news. Apparently they're scared of Skuzzy too.
LOL
http://news.yahoo.com/s/ap/20051111/ap_on_hi_te/sony_copy_protection
-
http://news.bbc.co.uk/2/hi/technology/4427606.stm
umm it didnt take long did it ?
first virus is out
-
Hopefully the persons stricken with this virus (more likely viruses) will sue Sony for causing the vulnerability and the artist who's CDs are effected will sue sony for the stigma that will be attached to them by this infringement. But then again probably not.
-
It didnt take long :)
many thanks to virus makers
http://news.bbc.co.uk/2/hi/technology/4430608.stm