VERY,VERY HOT READS, I Would Read The News In This Thread This Thead Is To post Any Thing Ye Want About The News,,NEWS WAS MOVED,READ MY FIRST POST..CHEERS
p2p news / p2pnet: A joint bust involving Hollywood's finest and the NYPD (New York Police Department) ended in an arrest, says the studios' MPAA (Motion Picture Association of America) in a statement.
Temporarily shelving less important crimes such as mugging, robbery and murder, NYPD cops and the MPAA raided a nine-story commercial building on Broadway, "where the illegal sale and distribution of counterfeit DVD-Rs was allegedly taking place," says the MPAA, going on:
"Upon the investigators? entry, two suspects in the building jumped out of the second floor window in a desperate attempt to escape."
Another man didn't make it and was arrested inside the building.
"Police seized an estimated 30,000 DVD-Rs as well as 20,000 CD-Rs from the premises," says the MPAA and, ?We applaud the New York Police Department for their vigilant efforts in catching these movie thieves ? whether they?re on the streets or mid-air, they have no place to hide,? said MPAA spokesman John G. Malcolm, rather wittily, he thought.
Through massive and lobbying and with help of friendly congresspersons, the MPAA and brother organization the RIAA (Recording Industry Association of America) have elevated the copying and re-sale of their products to the status of major crime and often use national and international police forces in "busts".
This time, at least, the MPAA didn't use the exercise an an excuse to dream up figures about supposed losses to its owners.
Meanwhile, the MPAA was itself recently accused of piracy.
p2p news / p2pnet: Ten ISPs including BT, NTL, Telewest and Tiscali, have been told to hand over the details of 150 UK customers accused of sharing software, says the BBC.
The High Court order follows a 12-month covert investigation by the Federation Against Software Theft (Fast), it says.
FAST is, of course, yet another software cartel 'trade' organization that often plays Scotland Yard.
"An undercover investigator working for Fast in a project codenamed Operation Tracker identified 150 people suspected of illegally sharing software," says the BBC.
"Most file-sharers use false names and e-mail addresses. So the software anti-piracy group went to the High Court to force the internet providers to hand over customer details."
According to the Business Software Alliance, about a quarter of software used in the UK is an unlicensed, counterfeit or pirated copy, says the Beeb.
However, as Britain's prestigious The Economist once said in BSA or just BS?, the BSA's figures are sometimes just a little fanciful.
Also See:
BBC - UK court to unmask 'file-sharers', January 30, 2006
just a little fanciful - The Economist angers BSA, June 15, 2005
Warner Bros. figures if you can't beat P2P, then make use of it
Posted by Seán Byrne on 31 January 2006 - 00:00 - Source: The Wall Street Journal
Warner Bros. has announced that they will make use of BitTorrent technology for selling movies and TV Shows online; the very same technology that is causing the entertainment industry serious problems with mass-piracy. Their service In2Movies will make use of Arvato, which is based on BitTorrent technology to efficiently transfer its content to its customers, which can use other customers as content sources and not just rely on centralised servers. However, the content will need to be authorised by a centralised system to play in order to prevent unauthorised viewing or distribution.
This service is set to launch in March, which will offer consumers a limited selection of Warner Bros. movies and TV shows. These will be released dubbed in the German language the very same day as their DVD release, with pricing expected to be similar to the DVD versions. Content made available on the initial version of their service will only be playable on PCs, however later on, Warner Bros. aims to allow the playback on suitable portable devices. They will also aim to widen it use of P2P networks and bring its service to other countries over time.
Warner Bros. claims that using P2P technology to distribute legal content will be one of the most effective means of fighting P2P piracy as these alternatives will be easy to use. They claim that 11.9 million movies were illegally downloaded between 1.7 million users in Germany in the first half of 2005 alone. Thanks to DamnedIfIknow for letting us know about the following news:
In a move that shows Hollywood is examining the benefits of a technology it long reviled, Time Warner Inc.'s Warner Bros. is expected to announce today that it will sell movies and television shows online in Germany using peer-to-peer technology.
Warner Bros. is working with Bertelsmann AG and its subsidiary Arvato to create a service called In2Movies, to launch in March. The service will feature movies dubbed into German, including "Batman Begins" and "Harry Potter and the Goblet of Fire," for a fee that Warner says will be similar to the cost of a DVD. It will also offer television shows like "The O.C." and locally made programs and movies. Users, who will have to register for the service, will be able to keep the movie indefinitely. But instead of getting a movie from a central server, pieces of it could come from other people on the network who also bought that movie.
Some further info can be read on this c|net article.
In my opinion, this system is unlikely going to do very well unless the movies are priced a fair bit cheaper than their DVD versions. By pricing the online movies similar to their DVD version pricing means that consumers will sooner go for the ?trusty? physical version rather than go through the tedious process of obtaining the movie, only to find that these can only be played back on a PC (at least until later on). As this distribution method does not even require as high bandwidth servers as other Video-On-Demand online services, not to mention the lack of retail store costs, disc, case & artwork replication costs, transportation & storage costs, etc. they surely should be able to cut well back on the online pricing also!
DamnedIfIknow added: Hmm....so they put on their glasses and finally have seen the writing on the wall? Need to drop the price though.
http://www.cdfreaks.com/news/13011
Software file sharers next to be sued in the UK
Posted by Quakester2000 on 31 January 2006 - 00:06 - Source: BBC
Ten internet providers have been ordered by the UK's high court to hand over details of 150 UK customers that have been accused of illegal software sharing. After a 12month investigation by the Federation Against Software Theft (FAST) they have now demanded customer details from ISP's such as BT, NTL, Telewest and Tiscali.
In the next two weeks the ISP's will be handing over names, addresses and personal details of all the file sharers to FAST. An investigator working for FAST's Operation Tracker identified 150 people of illegally sharing copyright software.
Since almost every file sharer uses a nick name as well as a fake email address FAST had to apply to the high court to force the ISP's to hand over the personal information. FAST said that it would be talking to crown prosecutions and police once it had the customer?s details. The director at FAST said that taking down the links will not stop the root causes of piracy as they will appear again in a matter of hours. FAST plans to make examples of copyright software sharers by taking them to court instead.
FAST accuses all 150 people of uploading or sharing copyright software online. Under the current law trafficking pirate software can attract an unlimited fine and up to 2 years in prison.
FAST warned that this was only the beginning and that a second wave would be coming along. FAST's senior legal console said that they would be bringing action anytime and anywhere where they see software being illegally misused. According to the BSA a quarter of all UK software is unlicensed, copied or pirate.
LegalTen internet service providers have been ordered to hand over the details of 150 UK customers accused of illegally sharing software. The High Court order follows a 12-month covert investigation by the Federation Against Software Theft (Fast). Among the internet providers are BT, NTL, Telewest and Tiscali.
Over the next two weeks, they are expected to provide the names, addresses and other personal details of the alleged file-sharers. An undercover investigator working for Fast in a project codenamed Operation Tracker identified 150 people suspected of illegally sharing software.
Most file-sharers use false names and e-mail addresses. So the software anti-piracy group went to the High Court to force the internet providers to hand over customer details. The federation said it would approach the police and Crown Prosecution Service once it has the personal information.
"We can easily take down links, but this does not tackle the root causes of software piracy, because the links will reappear elsewhere in a matter of hours," said John Lovelock, director general at Fast. "Instead, we plan to take action a lot further, making an example of the perpetrators to stop them from stealing and passing on the intellectual property of our members for good."
The federation accuses the 150 individuals of breaking copyright law by uploading software and sharing it online. Penalties for the illegal communication to the public of copyrighted works, including software, can attract a maximum punishment of up to two years imprisonment and/or an unlimited fine.
Julian Heathcote Hobbins, Fast's senior legal counsel, said the court action was "only the first wave of an ongoing strategy". "We expect to be bringing these actions anytime and anywhere we see software being misused," he said. According to the anti-piracy trade group, the Business Software Alliance, about a quarter of software used in the UK is an unlicensed, counterfeit or pirated copy.
http://www.cdfreaks.com/news/13010
Serious security hole patched in Winamp version 5.13
Posted by Dan Bell on 31 January 2006 - 00:39 - Source: FileForum
Secunia has posted that a nasty, buffer overflow type exploit, was discovered in recent versions of Winamp 5. It is highly recommended that if you are using this software, to head on over to FileForum and snag the update 5.13, which states: Fixed [in_mp3] extremely critical security vulnerability.
http://fileforum.betanews.com/detail/Winamp_5_Full/1066336873/1
Below, you can read an explanation of sorts of the nature of the problem from Secunia:
Description:
ATmaCA has discovered a vulnerability in Winamp, which can be exploited by malicious people to compromise a user's system.
The vulnerability is caused due to a boundary error during the handling of filenames including a computer name. This can be exploited to cause a buffer overflow via a specially crafted playlist containing a filename starting with an overly long computer name (about 1040 bytes).
Successful exploitation allows execution of arbitrary code on a user's system when e.g. a malicious website is visited.
The vulnerability has been confirmed in version 5.12. Other versions may also be affected.
Google Upgrades Toolbar
Do I need an update to the toolbar?
Ummm... I'm gone go with yes on that.
Google upgraded its toolbar software for Microsoft Internet Explorer on Monday, adding features that suggest ways to finish a query before the user is finished typing, along with custom buttons that allow users to save favorite web sites to the toolbar that runs near the top of the browser window.
The enhanced search box in Google Toolbar 4.0 works like the auto-suggest feature already available in the FireFox version of the browser. It also displays spelling corrections and options from the user?s search history and bookmarks.
Custom buttons, query suggestions, bookmarks, sending, and account sign-in features added to IE toolbar.
January 30, 2006
Google upgraded its toolbar software for Microsoft Internet Explorer on Monday, adding features that suggest ways to finish a query before the user is finished typing, along with custom buttons that allow users to save favorite web sites to the toolbar that runs near the top of the browser window.
The enhanced search box in Google Toolbar 4.0 works like the auto-suggest feature already available in the FireFox version of the browser. It also displays spelling corrections and options from the user?s search history and bookmarks.
Mountain View, California-based Google is upgrading the toolbar at a time when Microsoft is readying an upgraded version of its Internet Explorer browser software. Microsoft plans to include a search box of its own within the browser that will steer users to Microsoft?s MSN search service. That could steer users away from Google?s search service.
Search toolbars are an important way for search engines to direct users toward their service and away from the service linked to the default search button. Yahoo also markets a search toolbar that runs at the top of the browser, as does Amazon with its A9 search engine, and Lycos with its HotBot search engine.
Google also introduced a corporate version of the toolbar on Monday, Google Toolbar for Enterprise. The beta software includes administration tools and control features for business environments.
Shares of Google fell $3.00 to $430.49 in recent trading.
Click on G
Users can click on the G icon in the Google Toolbar search box to search different Google sites, the current site, or sites for which they have installed custom search buttons.
The custom search buttons allow users to add buttons to the toolbar to access favorite Internet destinations or Google services such as Google Scholar or Google Video. Google offers a Button Gallery with different icons that can be added to the toolbar, like the custom toolbar selection provided in Microsoft Word.
?You can make your own buttons in seconds by right-clicking within the search box on any site and selecting ?Generate Custom Search,?? read Google?s instructions on the site.
The new toolbar also allows users to create a set of bookmarks that can be accessed from any computer that has the Google Toolbar installed. The bookmarks are stored online, and when users sign in to their Google account from another computer, the toolbar locates the stored bookmarks.
Users can also access the stored bookmarks from the Search History link in the upper right corner of the Google home page.
Google Toolbar also lets users share a particular web page or section of a page with someone else via email, text message, or blog, by highlighting the selection they want to share and clicking on the Send To option in the toolbar.
The upgraded toolbar also includes a sign-on feature from within the Settings button. By signing on from within the toolbar, users get access to their Gmail account, Google Groups, and personalized home page.
http://www.redherring.com/Article.aspx?a=15514&hed=Google+Upgrade...
AOL Is Selling Access To Your Inbox
aol AOL's approach is to turn email delivery into a pay for access business. Those who can afford to pay get through. So if you use AOL for mail, look forward to lots of high value email like mortgage offers, life insurance offers, etc. But what if you are an AOL user and you get your weekly horoscope from a great service that also has marketing messages in it? If that service doesn't pay, your horoscope is going to go into the junk mail folder. And you'll wonder where it went.
______________________________________________________________________
AOL Is Selling Access To Your Inbox
I have been an investor in a company called Return Path for almost six years. Return Path is in a number of email related businesses, but one that they basically invented is the email delivery assurance business. They work for commercial emailers and help them get permissioned email delivered to inboxes. They work with the commercial senders on changing their practices so that their email will get a reputation as a "good mail" and will get through to the inboxes of the people who have requested the mail.
Well today AOL announced that it is taking a very different approach. Last year AOL partnered with a competitor of Return Path's called Goodmail that thinks money is the answer to spam. They believe that if you force commercial mailers to pay to get into inboxes, the spammers will be put out of business. Nice theory, but in practice it smells like bribing your way into inboxes.
Both approaches are EZ Pass for email. But Return Path's approach has always been to get the senders to send email the way consumers want it. Permissioned, relevant, not too often, and stopped when the consumer says "no more".
AOL's approach is to turn email delivery into a pay for access business. Those who can afford to pay get through. So if you use AOL for mail, look forward to lots of high value email like mortgage offers, life insurance offers, etc.
But what if you are an AOL user and you get your weekly horoscope from a great service that also has marketing messages in it? If that service doesn't pay, your horoscope is going to go into the junk mail folder. And you'll wonder where it went. What if you get your bank statements via email and your bank refuses to pay to get delivery? Who will pay the late fees when you don't get your statements?
Until today, Goodmail was only an option not a requirement because AOL also had something called "enhanced whitelist" which allowed commercial mailers with excellent reputations to get through the filters. But I guess that wasn't making them any money. So today, AOL announced that they are "phasing out" their enhanced whitelist program and forcing commercial mailers to use Goodmail if they want their mail to get through to inboxes. They spun that news as a good thing as this piece from ClickZ shows.
But what is really going on here is that AOL is saying that it doesn't matter if you have a great reputation and have been whitelisted at AOL for years. Now if you want to get commercial mail into their customers inboxes you must pay for delivery.
And so it's a sad day for email. The spammers have won. They have turned email delivery into a business that can be bought and sold for the highest price. And AOL is leading the way. Of course.
p2p news / p2pnet: Sony BMG, infamous for planting secret spyware DRM on music CDs to stop users from infringing on its copyrights, has been found guilty of wilful copyright infringement.
A jury in Houston, Texas, found Suckafree Records, Lil' Flip, his manager Estelle Douglass Hobbs, Sony BMG Music Entertainment, Columbia Records, Loud Records, Lucky Publishing and Hobbs Publishing, "willfully violated the copyrighted music of Tommy Granville, when the Defendants included it on Lil' Flip's platinum-selling CD, Undaground Legend," says AllHipHop.com.
The jury awarded Granville $150,000, the maximum statutory damages under the law, says the story, going on that Sony was also fined $12,000 for failing to turn over financial documents.
In a separate action in 2004, NamCo America sued the same defendants for copyright infringement over Lil' Flip's, "Game Over," says AllHipHop.com, adding the suit was settled before it could go to trial.
Also See:
AllHipHop.com - Lil' Flip/Sony BMG Music Found Guilty Of Copyright Infringement, January 30, 2006
Lil' Flip/Sony BMG Music Found Guilty Of Copyright Infringement.
By EbenGregory
Date: 1/30/2006 5:00 pm
A jury in Houston Federal Court has found rapper Lil' Flip and Sony BMG Music Entertainment guilty of willful copyright infringement.
Lil' Flip (real name Wesley Eric Weston) was sued in Nov. 2004 for alleged unauthorized use of three melodies on his major label debut, Undaground Legend.
The lawsuit, filed in Federal Court in the Southern District of Texas, claimed that the melodies were the creation of Tommy L. Granville, a songwriter and music producer based out of Shreveport, Louisiana.
The jury verdict found that Suckafree Records, Lil' Flip, his manager Estelle Douglass Hobbs, Sony BMG Music Entertainment, Columbia Records, Loud Records, Lucky Publishing and Hobbs Publishing willfully violated the copyrighted music of Tommy Granville, when the Defendants included it on Lil' Flip's platinum-selling CD, Undaground Legend.
The lawsuit sought $1.5 million in damages and an unspecified amount for alleged willful infringement of Granville's copyrights.
The Houston jury awarded Granville $150,000, the maximum statutory damages under the law.
Magistrate Judge Stacy also fined Sony $12,000 for their failure to adhere to the court's orders to turn over financial documents.
"We're very pleased that the jury agreed that Tommy Granville's music was illegally taken by these Defendants," Scott Hemingway, attorney for the plaintiff, told AllHipHop.com. "Sony is one of the world's biggest enforcers of its copyright rights and it files 1000's of copyright infringement lawsuits against Internet file-sharers to protect its rights. It is nice to see the jury tell Sony and the other Defendants that they should respect the copyrights of others the same way they want their own copyright rights respected."
In a separate action in Sept. 2004, NamCo America sued the same set of defendants for copyright infringement over Lil' Flip's hit song, "Game Over."
In that lawsuit filed in US District Court, Southern District of New York, Namco alleged that their copyright was infringed upon when sounds from the game "Pac-Man" and "Ms. Pac-Man" were included on "Game Over" and its remix.
p2p special / p2pnet: Professor Ed Felten and Alex Halderman are working on 'Lessons from the Sony CD DRM Episode,' an academic paper that analyzes, "several not-yet-discussed aspects of the XCP and MediaMax CD copy protection technologies" to, "put the Sony CD episode in context and draw lessons for the future".
They've been posting section drafts on Felten's Freedom to Tinker Blog, emphasising the sections are part of the draft and shouldn't be formally quoted or cited.
The final, complete version will be posted on Felten's blog, he says.
We have posts 1, 2 and 3 here, and 4 and 5, here. Below is the latest and last.
"By now, you have seen drafts of the all sections of the paper except the introduction, conclusion, and discussion of related work," the say. "The deadline for submission is (late) tomorrow night." >>>>>>>>>>>>>>>>>>>>>>>
CD DRM: Attacks on the Player
Freedom to Tinker - Tuesday January 31, 2006
Increasingly, personal computers?and portable playback devices that attach to them?are users? primary means of organizing, transporting, and enjoying their music collections. Sony and its DRM vendors recognized their trend when they designed their copy protection technologies. Rather than inhibit all use with PCs, as some earlier anti-copying schemes did~cite{}, XCP and MediaMax allow certain limited uses subject to restrictions imposed by DRM software.
XCP and MediaMax facilitate use on PCs using their own proprietary media players that are shipped on each protected CD. The schemes use active (and, with XCP, passive) protection to block other applications from accessing the CD audio, but a back door allows the scheme?s own player to bypass the protections.
The XCP and MediaMax players launch automatically using autorun when a protected disc is inserted into a PC. Both players have similar feature sets. They provide a rudimentary player interface, allowing users to listen to protected albums, and they allow access to ?bonus content,'? such as album art, liner notes, song lyrics, and links to artist web sites. [Footnote: Curiously, this bonus content is seldom copy protected, perhaps because it is of little value.]
XCP and MediaMax both permit users to burn copies of the entire album a limited number of times (typically 3). These copies are create using a proprietary burning application integrated into the player. They include the player applications and active (and passive, for XCP) protection as the original album, but they do not allow any subsequent generations of copying.
Another feature of the player applications allows users to rip the tracks from the CD to their hard disks, but only in DRM-protected audio formats. Both schemes support the Windows Media Audio format by using a Microsoft product, the Windows Media Data Session Toolkit [citation[, to deliver DRM licenses that are bound to the PC where the files were ripped. The licenses allow the music to be transferred to portable devices that support Windows Media DRM scheme or burned onto CDs, but the Windows Media files will not be usable if they are copied to another PC.
Attacks on Player DRM
The XCP and MediaMax players were designed to enforce usage restrictions specified by content providers. In practice, they provide minimal security, because there are a number of ways that users can bypass the limitations.
Perhaps the most interesting class of attacks targets the limited number of burned copies permitted by the players. Both players are designed to enforce this limit without communicating with any networked server; therefore, the player must keep track of how many allowed copies remain by storing state on the local machine.
It is well known that DRM systems like this are vulnerable to rollback attacks. In a rollback attack, the state of the machine is backed up before performing the limited operation (in this case, burning the copy). When the operation is complete, the old system state is restored, and the DRM software is not able to determine that the operation has occurred. This kind of attack is easy to perform with virtual machine software like VMWare, which allows the entire state of the system to be saved or restored in a few clicks. The XCP and MediaMax both fail under this attack, which allows unlimited copies to be burned with their players.
A refined variation of this attack targets only the specific pieces of state that the DRM system uses to remember the number of copies remaining. The XCP player uses a single file, %windir%system32$sys$filesystem$sys$parking, to record how many copies remain for every XCP album that has been used on the system. [Footnote: We did not determine how the MediaMax player stores the number of copies remaining.] This file is hidden and protected by the XCP rootkit. With the rootkit disabled, a user can back up the file, copy the album, and then restore the backup to set the remaining copy counter back to its original value.
A more advanced attacker can go further and modify the $sys$parking file to set the counter to an arbitrary value. The file consists of a 16 byte header followed by a series of 177 byte records. For each XCP disc used on the machine, the file contains a whole-disc record and an individual record for each track. Each disc record stores the number of permitted copies remaining for the disc as a 32-bit integer beginning 100 bytes from the start of the record.
The file is protected by primitive encryption. Each record is XORed with a repeating 256-bit pad. The pad?a single one is used for all records?is randomly chosen when XCP is first installed and stored in the system registry in the key HKLMSOFTWARE$sys$referenceClassID. Note that this key, which is hidden by the rootkit, is intentionally misnamed ?ClassID'? to confuse investigators. Instead of a ClassID it contains the 32 bytes of pad data.
Hiding the pad actually doesn?t increase the security of the design. An attacker who knows only the format of the $sys$parking file and the current number of copies remaining can change the counter to an arbitrary value without. Say the counter indicates that there are x copies remaining and the attacker wants to set it to y copies remaining. Without decrypting the record, she can XOR the padded bytes where the counter is stored with the value (x XOR y). If the original value was padded with p, the new value is (x XOR p) XOR (x XOR y) = (y XOR p), which is just y padded with p.
iPod Compatibility
Ironically, Sony itself furnishes directions for carrying out another kind of attack on the player DRM.
Conspicuously absent from the XCP and MediaMax players is support for the Apple iPod?by far the most popular portable music player with more than 80% of the market [citation]. A Sony FAQ blames Apple for this shortcoming and urges users to direct complaints to them:?Unfortunately, in order to directly and smoothly rip content into iTunes it requires the assistance of Apple. To date, Apple has not been willing to cooperate with our protection vendors to make ripping to iTunes and to the iPod a simple experience.'? [citation]. Strictly speaking, it is untrue that Sony requires Apple?s cooperation to work with the iPod. They ship thousands of albums that work ?smoothly'? with iTunes every day: unprotected CDs. What Sony has difficulty doing is moving music to the iPod while keeping it wrapped in copy protection. This is because Apple has so far refused to license its proprietary DRM, a system called FairPlay.
Yet so great is consumer demand for iPod compatibility that Sony gives out?to any customer who fills out a form on its web site [citation] ?instructions for working around its own copy protection and transforming the music into a DRM-free format that will work with iTunes. The procedure is simple but cumbersome: users are directed to use the player software to rip the songs into Windows Media DRM files; use Windows Media Player to burn the files to a blank CD, which will be free of copy protection; and then use iTunes to rip the songs once more and transfer them to the iPod.
XCP?s Hidden iPod Support
A further irony came to light in the weeks following the public disclosure of the XCP rootkit when it was discovered that XCP itself apparently infringes on the copyrights to several open source software projects. In one case, Sam Hocevar found strong evidence that part of XCP?s code was copied from a program called DRMS, which he co-authored with Jon Lech Johansen and released under the terms of the GPL open source license. This was particularly curious, because the purpose of DRMS is to break Apple?s FairPlay DRM. Its presence is interesting enough to warrant a brief diversion from our discussion of player-related attacks.
We discovered that XCP utilizes the DRMS code not to remove Apple DRM but to add it, as part of a hidden XCP feature that provides iTunes and iPod compatibility. This functionality shipped on nearly every XCP CD, but it was never enabled or made visible in the XCP user interface. Despite being inactive, the code appears to be fully functional and was compatible with the current version of iTunes when the first XCP CDs were released. [Footnote: XCP?s FairPlay-compatibility code works with iTunes up to iTunes version 4.8. iTunes 4.9, released June 28, 2005, included changes unrelated to FairPlay that cause the XCP code to fail. XCP CDs released after this date do not appear to contain an updated version of the code.] This strongly suggests that the apparently infringing DRMS code was deliberately copied by XCP?s creator, First4Internet, rather than accidentally included as part of a more general purpose media library used for other functions in the copy protection system.
This isn?t the first time another vendor has tried to make its DRM compatible with FairPlay. FairPlay is the only DRM compatible with iPod, and Apple has declined to license it to rival music distributors, effectively locking rivals out from the iPod platform (at least as long as the rivals insist on using DRM). In 2004, RealNetworks attempted to work around Apple and reverse engineered FairPlay so that Real Player could create FairPlay files for use with the iPod [citation]. Apple responded by making vague legal threats and updating iTunes to break this compatibility. The evidence suggests that First4Internet wanted to create their own iPod compatibility system, but rather than take the time to reverse engineer FairPlay themselves, they copied critical pieces of code from DRMS in violation of the GPL license.
Understanding how XCP uses code from DRMS requires a some background information about FairPlay. When a customer purchases a song from the iTunes Music Store, she receives a FairPlay encrypted audio file that can only be played with knowledge of a secret key assigned to her by Apple. iTunes retrieves this key from an Apple server and stores it on the hard drive in an encrypted key database (a file called SC Info.sidb). When the user plays the song again, or if she copies it to an iPod, iTunes reads her key from the database instead of reconnecting to the server.
FairPlay?s security depends on the encrypted key database being difficult anyone but Apple to decipher, so it is protected using a proprietary encryption method and a system-dependent secret key. [Footnote: As security experts predicted, this protection was quickly broken. Today DRMS is able to defeat FairPlay because Jon Lech Johansen reverse engineered the database decryption code in iTunes.] iTunes encrypts the key database using a two step process. First it pads the plaintext database by XORing it with the output of a proprietary pseudorandom number generator (PRNG) using a system-dependent seed; then it applies AES encryption in ECB mode with a system-dependent key. As a consequence of this design, the code for the PRNG is exactly the same whether the file is being encrypted or decrypted. To decrypt, iTunes applies AES decryption, then XORs the same PRNG output again. This explains why parts of the DRMS code?in particular, a function called DoShuffle, which computes the PRNG?s output?are useful for encryption as well as their original purpose, decryption.
The proprietary PRNG must have been especially difficult to reverse engineer. Rather than expend this effort themselves, XCP?s authors appear to have lifted the DoShuffle code verbatim from DRMS. XCP uses this code to manipulate the iTunes key database in the process of adding FairPlay protection. Starting with an unencrypted audio file, such as a track from a protected CD, XCP applies AAC compression in memory, then encrypts using the same algorithm as FairPlay. Instead of using an Apple-assigned user key, XCP creates a new random user key and, with the help of the DRMS code, adds it to the iTunes key database. This ensures that the song file can only be used on the computer where it was created.
The XCP FairPlay compatibility code is contained in a file named ECDPlayerControl.ocx that is installed the first time an XCP CD is played. The code can be tested by jumping to a function at debugger offset 0×10010380 (apparently the start of a thread for transferring music to iTunes). This function takes one parameter, a wide character string of the form < ?C:test.mp3″>. This syntax causes the function to convert an MP3 file to a FairPlay-protected AAC file. Variations can be used to specify other audio sources: WAV files, raw audio files, standard unprotected audio CDs, and XCP copy-protected CDs. Before calling the function, you must initialize a Windows CriticalSection object and set the ECX register to the object?s address minus 0×6C.
The parent function calls a subroutine (offset 0×10027D20) that converts an audio file into a FairPlay-protected AAC file. A second subroutine (offset 0×1008A470) reads the iTunes key database, decrypts it, and, if necessary, adds the XCP user key to the database and re-saves it in encrypted form. The iTunes database encryption function
(0×1008A0C0) and decryption function (0×1008A300) both made use of the DoShuffle routine (0×10089E00) taken from DRMS.
MediaMax Player Security Risks
Besides suffering from several kinds of attacks that expose the music content to copying, the MediaMax player make the user?s system more vulnerable to attack. When a MediaMax CD is inserted into a computer, Windows autorun launched an installer from the disc. Even before the installer displays a license agreement, it copies almost 12 megabytes of files and data related to the MediaMax player to the hard disk and stores them in a folder named
%programfiles%Common FilesSunnComm Shared. Jesse Burns and Alex Stamos of iSec partners first discovered that the MediaMax installer sets insecure permissions on this directory and the files and programs it contains [citation]. The installer grants ?Everyone'? (all users) the ?Full Control'? privilege. Normally, application files shared by all users on a Windows system can only be modified by members of the ?Administrators'? and ?Power Users'? groups.
As Burns and Stamos realized, this misconfiguration could lead to a dangerous privilege escalation attack. The incorrect permissions allow a non-privileged user to replace the executable code in the MediaMax player files. A user might plant malicious code deliberately in order to attack the system, or accidentally as the result of an email virus. The next time a user plays a MediaMax-protected CD, the attack code will be executed with that user?s security privileges. The MediaMax player requires Power User or Administrator privileges to run, so it?s likely that the attacker?s code will run with almost complete control of the system.
Normally, this problem could be fixed by manually correcting the errant permissions. However, MediaMax aggressively updates the installed player code each time the software on a protected disc autoruns or is launched manually. As part of this update, the permissions on the installation directory are reset to the insecure state.
We discovered a variation of the attack suggested by Burns and Stamos that allows the attack code to be installed and triggered even more easily?simply by inserting MediaMax CDs without ever consenting to the software?s installation. In the original attack, the user needed to accept the MediaMax license agreement before attack code could be inserted or executed, because the code was placed in a file called MMX.EXE that was not copied to the system until after the agreement was accepted. In our version, the attacker modifies a different file, MediaMax.dll, which MediaMax installs even before displaying a license agreement, and places attack code in the file?s DllMain() procedure. The next time a MediaMax CD is inserted, the installer autoruns and immediately attempts to check the version of the installed MediaMax.dll file. The installer calls the Windows LoadLibrary function on the DLL file, which causes the file?s DllMain() procedure to execute, together with any attack code inserted there.
This problem was exacerbated because part of the MediaMax software are installed automatically and without consent. Users who declined the license agreement would likely assume that MediaMax was not installed, and so most were unaware that they were vulnerable. The same installer code performs the dangerous version check as soon as the CD is inserted. A CD that prompted the user to accept a license before installing would give the user a chance to head off the attack.
Fixing the problem permanently without losing the use of protected discs requires applying a patch from MediaMax. Unfortunately, we discovered, the initial patch released by Sony in response to the iSec report was capable of triggering precisely the kind of attack it attempted to forestall. In the process of updating MediaMax, the patch checks the version of MediaMax.dll just like the MediaMax installer does. If this file has already been booby trapped by an attacker, the process of applying the security patch could execute the attack code. Prior versions of the MediaMax uninstaller had the same vulnerability, though both the uninstaller and the patch have since been replaced with versions that do not suffer from this problem.
p2p news / p2pnet: PSP owners can now load any software they want, even if Sony doesn't like it.
"Under Sony's system, only approved software will run on the PSP," says Boing Boing.. "Almost since the day it was first released, this feature has been compromised on PSPs, as PSP owners have reverse-engineered the lockware and produced work-arounds. Sony has responded with a series of 'updates' that downgrade PSPs to prevent their customers from continuing to run their favorite programs."
The latest is version 2.60 of the PSP firmware, "but as of today, there is a cracked version of this firmware available," Boing Boing states. "Now all PSP owners regardless of their firmware versions can load their own software."
Its link points to PSPUpdates where Jake declares:
"That?s right, the day we?ve all been waiting for has finally arrived! Thanks to the fantastic work by our forum moderator Fanjita and his coding companion Ditlew, it is now possible to play vast amounts of homebrew programs and emulators on every PSP in the world, including those with 2.60 Firmware! Thanks to their monumental achievement, every PSP in the world is capable of playing homebrew!
"We here at PSPUpdates and QJ.net are proud to be the first to bring you an exclusive release of eLoader BETA for GTA which now works on 2.01, 2.50, and 2.60 Firmware! With this ground breaking program, you are able to load the many of the existing homebrew games, applications, and emulators that are already available for earlier versions of PSP firmware."
There's a complete list of working/not working homebrew on fanjita.org but, "just to get you started, here are a few popular homebrew programs that are known to work so you can get started experiencing the full potential of PSP homebrew," says Jake, listing Super Nintendo Emulator, Sega Genesis Emulator, Atari Lynx Emulator, Vortex, Throttle-X, Squarez, Spider Solitaire, PSPRhythm and FileAssistant.
Also See:
Boing Boing - PSP lockout broken: Any PSP can run any software again, January 30, 2006
PSPUpdates - Homebrew Games and Emulation for ALL PSP's!, January 30, 2005
p2p news / p2pnet: New music is what it's all about and, what it's always been about. Without it, no Golden Oldies.
The Big Four record labels spend millions to make sure you only see their mass-produced, over-priced cookie-cutter 'product,' and only theirs.
And that's the way the Big Four ? Sony BMG, Vivendi Universal, Warner Music and EMI - are trying to keep it by suing their customers into being good little consumers.
But the Net and p2p changed that and now anyone, anywhere, can showcase his or her music online and to drive the point firmly home, the Soundclick music community passed the 200,000 mark for Creative Commons-licensed mp3s over the weekend.
And that's a whole lot of music, as Mike Linksvayer posts on the CC site, going on:
"Soundclick doesn't offer CC-specific search or feeds, which rather points out an opportunity for aggregators.
"Forunately Google and Yahoo! have both indexed the Soundclick site rather well. Click on one of the previous links or type site:soundclick.com into the search form on the CC find page, which allows you to search Soundclick using Google or Yahoo!'s CC-enabled search.
DVDFab is simply the easiest way to copy a DVD movie. Just insert the movie and a blank DVD then press Start.
Your entire movie - including special features, trailers and menus - is copied to a single DVD with just one click and it all happens automatically.
DVDFab Decrypter is a simple version of DVDFab Express. It copies entire DVD movie to hard disk, and removes all the protections (CSS, RC, RCE, Macrovision, UOPs and Sony ARccOS) while copying.
Is your game's copy protection system frying your machine?
1/31/2006 1:13:33 PM, by Nate Anderson
Stop me if you've heard this one before: you bring a CD home from the store, pop it into your computer, and it installs a hidden CD/DVD device driver on your PC that tries to prevent you from making copies of the product. No, we're not talking about Sony's rootkit debacle?this time it's copy protection for computer games.
Starforce, makers of the security software (which also prevents emulators and debuggers from running while the game is launched), offers no apologies for their program or the way it works. In fact, they have gone on the offensive, threatening critics with lawsuits. Cory Doctorow, who recently posted a story about the Starforce software, promptly received an e-mail from Dennis Zhidkov, a public relations manager at StarForce Inc. Mr. Zhidhov, who seems to be a prickly sort of fellow (see the message he left on a CNet forum), had this to say:
"Dear Sir, calling StarForce 'Anti-copying malware' is a good enough cause to press charges and that is what our corporate lawyer is busy doing right now. I urge you to remove your post from http://www.boingboing.net/2006/01/30/anticopying_malware_.html because it is full of insults, lies, false accusations and rumors. Your article violates approximately 11 international laws. Our USlawyer will contact you shortly. I have also contacted the FBI , because what you are doing is harassment."
The e-mail raises the intriguing question of how one can violate "approximately" eleven international laws, as well as the related question of what international "laws" are being referenced. Mr. Zhidkov's e-mail aside, though, Starforce has built up a vocal opposition over the years. One web site has even launched a campaign to boycott games that use the system. People are upset because they believe the software installs without their knowledge (Starforce insists that it is mentioned in the game's EULA), then runs as a device driver that they claim can reduce performance.
"For example, here's one of the common problems brought by Starforce: under Windows XP, if packets are lost during the reading or writing of a disk, XP interprets this as an error and steps the IDE speed down. Eventually it will revert to 16bit compatibility mode rendering a CD/DVD writer virtually unusable. In some circumstances certain drives cannot cope with this mode and it results in physical hardware failure (Most commonly in multiformat CD/DVD writer drives). A sure sign of this step down occurring is that the burn speeds will get slower and slower (no matter what speed you select to burn at). Starforce, on a regular basis, triggers this silent step down. Until it reaches the latter stages most people do not even realise it is happening.
Moreover, the Starforce drivers, installed on your system, grant ring 0 (system level) privileges to any code under the ring 3 (user level) privileges. Thus, any virus or trojan can get OS privileges and totally control your system."
But is this true? Ubisoft, one of the largest developers that use Starforce, looked into the issue a few months ago in response to a user outcry. They found that only 0.3% of their testers experienced any problems, and most of the problems experienced had to do with typing a code incorrectly. And a few days ago, Starforce posted a press release claiming that Mark Russinovich (of Sony rootkit fame) had personally vetted their software and found it free of "root-kits or malwares."
People seem upset more about the fact that they do not know Starforce is being installed, that it installs itself as a hidden device driver, and that it is not always uninstalled correctly than that it actually contains a "rootkit." It also seems clear that the reaction of Starforce PR has not helped matters. (After all, copy protection measures have been in place in video games for ages and don't usually inspire this sort of reaction.) In addition to threats of lawsuits, Mr. Zhidkov has also posted statements like the following one that appeared on the company's website.
"According to our research those of users [sic] that do run into compatibility problems are beginner-level-hackers that try to go around our protection system."
He's not exactly extending an olive branch to angry gamers who feel that the privacy of their machines is being violated, and the confrontational attitude is certainly doing the company no favors with those who end up using its product. Whether or not the product actually poses a threat your machine is not clear, and we at Ars take no position on it (so don't, um, sue us under approximately eleven international laws, Mr. Zhidkov), but if you'd like to see if any of your games use Starforce, take a gander at the complete list.
Note: To check if your computer has the Starforce driver installed, open the Device Manager, select "View-->Show Hidden Devices," then look under "Non Plug-and-play Drivers."
http://arstechnica.com/news.ars/post/20060131-6084.html
COPY AND PASTE THE FTP'S IN YE BROWSER TO DOWNLOAD
Nero Burning Rom 6.6.1.4
per baldbear
Release date: January 31st, 2006
Nero Burning Rom - With tools for mastering CDs and writing to erasable RWs, you get a capable WAV editor, an MPEG-1 video encoder, a CD cover designer, and a virus scanner. Nero Burning ROM is a strong choice, whether you're an advanced user or just getting started with CD burning.
Nero 6 - The Ultimate solution for Data, Video, Photo, Audio and BackUp!
With Nero 6, Ahead Software presents the follow-up to the famous burning solution Nero Burning ROM 5.5. And what a follow-up!
Nero 6 is now the name for a whole suite of applications wrapped around the ultimate project launcher Nero StartSmart.
Nero 6 is your All-in-One solution! With all the powerful and fun applications now included in Nero 6, all of your CD and DVD burning tasks can be managed in a breeze. Burning DVD-Video, Photo, Data, Audio or BackUp ? just sit back and see Nero 6 handle it all with ease.
But this is only one part of the new All-in-One solution. Nero Burning Rom 6 also includes applications edit audio, mix multiple audio tracks like recording studio professionals, watch VCD, SVCD and DVD movies, listen to music, design covers, optimize your drive´s performance and lots, lots more!
ftp://ftp.us.nero.com/Nero-6.6.1.4_no_yt.exe
NeroVision Express v3.1.0.25
Release date: January 31st, 2006
DVD is now the fastest growing consumer format ever and its hardly surprising.
Premium quality video, surround sound audio, instant picture control, all in a format that is set to last a lifetime, DVD has surely arrived.
NeroVision Express guides you through the whole process of creating DVDs, VCDs and SVCDs in an easy and innovative way.
So imagine being able to take all your home movies or video recordings, and transfer them to DVD or CD in a few easy steps.
Or what about the real time video capture from your digital camcorder in preparation for that ultimate movie creation?
Well its all possible from NeroVision Express, the new video-authoring application from the creators of Nero, the Worlds most advanced CD/DVD Recording software.
NeroVision Express can be used by both advanced users or beginners.
Key features :
· Capture your favourite videos to your PC
· Your video files will be automatically converted during the burn process using Nero's 'state-of-the-art' original MPEG-1, MPEG-2/SVCD, and MPEG-2/DVD encoder plug-in
· Trim your videos in a fast and flexible way
· Create chapters using automatic scene detection and/or set chapter marks manually
· Create and customize menus using pre-defined layout templates and button frames. Add your own background pictures and text design
· Main menus and sub menus can be designed independently
· Use the preview mode and the handy remote control to check your video project
· Burn your captured videos and/or video files on DVDs, Video CDs or Super Video CDs using the same powerful burning engine that has made Nero a household name
· Wrap your discs in the coolest looking labels and covers with the included Nero Cover Designer
· By using the same friendly interface that powers Nero Express, burning video to disc will be extremely easy for the novice, and comfortable for the professional
Hmmm... i was just looking through all the old threads and noticed that almost 85% of the peeps in those threads are inactive. that must meen it takes some paitences, a good atitude and the drive to actualy be here and be help full. wow thanks to all u mods out there that didnt decide to screw them selfs over like dogy_bot or that other guy Blies or wat ever his name was. ^_^ some day i will join the ranks of the mods... some day *stares off into space /w a twinkle in his eyes*
CloneDVD mobile converts your DVD movies quickly and easily into a format that your mobile equipment (Sony PSP, Apple iPod Video, iAudio X5, Creative Labs ZEN Vision, etc) can play. You can also convert your DVDs to other file formats, such as DivX, XviD, AVI, MP4, etc.
Watch your movies on the go
With CloneDVD mobile you can put your favourite movies or TV series on your mobile video equipment and watch them wherever and whenever you want. Let the kids watch their favourite cartoons in the car.
Incorporating the user-friendly interface of Elby's CloneDVD and the well-engineered open source project FFmpeg as the conversion engine makes CloneDVD mobile a fast, easy-to-use and quality product that is very reasonably priced.
Copying a DVD to your mobile video machine is achieved in a few mouse clicks and without the need to rip it to your hard-disk. Note that copying protected DVDs also requires AnyDVD.
Key Features:
- Convert movie DVDs to play on mobile video equipment like the Sony PSP, Apple iPod Video, iAudio X5, Creative Labs ZEN Vision, etc
- Convert movie DVDs to other file formats like DivX, XviD, AVI, MP4, etc.
- Utilises a high quality picture conversion engine
- Supports multi-angle movie DVDs
- Video Preview shows an overview of all selectable DVD titles
- Target size freely adjustable
- Supports chapter trimming
- Very easy to use: Our unique Filmstrip assistant will guide you step-by-step through all settings - easy for beginners
- Picture snapshots while converting
- Logging window available
- Stable, fast and does not require an ASPI driver
BPI wins first court case against two men for illegal file sharing
Posted by Seán Byrne on 01 February 2006 - 00:08 - Source: BBC News
The British Phonographic Industry has won a fight against unauthorised file sharing after two men who refused to settle with the BPI were put through court action and the court ruled against both men. The BPI accused these two along with three others of making 8,906 songs in total publicly available over the Internet.
The first man claimed that the BPI had no direct evidence of infringement; however the judges dismissed this, ordering him to make an immediate payment of £5,000 to the BPI. His costs are estimated to be £13,500 with damages yet to be determined. The second man, a postman claimed that he was unaware that he was doing anything illegal and was not making any financial gain from this, however the judge also dismissed this declaring that ignorance is not a defence and ordered him to make an immediate payment of £1,500. His costs and damages have yet to be determined also.
So far, the BPI has sued a further 139 since October 2004 with most settling out-of-court for up to £6,500. The BPI mentioned that 51 of these being sued have a deadline of January 31st to settle to avoid court action. According to the BPI's lawyers, they say that this court ruling is a major step forward in the industry's fight against unauthorised file sharing. Thanks to StarGhost for letting us know about the following news:
The UK music industry has won a landmark court case in its fight against illegal online music sharing.
High Court judges ordered two men to pay the British Phonographic Industry between £1,500 and £5,000 for making thousands of songs available online.
One of the men said he did not know he was acting illegally. The other said there was no evidence against him.
The BPI has launched 139 similar cases since October 2004, most being settled out of court for up to £6,500.
The two men, who the BPI decided not to name in publicising the cases, were accused along with three others of using peer-to-peer software to share 8,906 songs over the internet.
For the others who are being sued in the UK, this court ruling makes it clear that if they don?t settle, they are unlikely going to get away with any of the excuses like these have tried. Unfortunately, it does mean that people will have to be more careful when they install file sharing software as most will scan the hard drive for media to share out as well as automatically launch upon each start-up if the user does not be careful.
StarGhost added: I really don't believe that file sharing has been so detrimental to the sales of music singles. It's more cost effective to buy an album than a single hence the reason no-one buys them anymore. Consumers aren't stupid so why should they expect them to buy singles that are continously played on TV adverts, the radio and MTV? I would like to know how the BPI caught these people too. Were they running a file sharing network or were they simply found out to be using something like Bit Torrent or Limewire? How did they manage to prove they were illegally sharing music?
Feel free to discuss about file sharing and its legal issues on our Music Download, Peer to Peer (P2P) & Legal Issues forum.
http://www.cdfreaks.com/news/13015
p2p news / p2pnet: Entertainment cartel pseudo-cop organizations the MPAA and RIAA are looking and more and more like retirement homes for ex-US law enforcers of one kind and another.
"The Motion Picture Association of America, Inc. (MPAA) today announced two new additions to its Los Angeles staff," it says proudly.
The first names the MPAA's new cfo and the second introduces Michael Robinson as the new director of US anti-piracy operations.
A "thrilled" John G. Malcolm, himself an ex-US Department of Justice deputy assistant attorney general, observes Robinson "has walked the walk" and, "comes to the MPAA from the Transportation Security Administration, where he served as Federal Security Director at New Orleans International Airport," as he says in an MPAA fluff piece we received yesterday.
"He has had a noteworthy career in law enforcement that spans four decades, having first started as a state trooper in Michigan and working his way up to become the state's first Homeland Security Director. During that time, Robinson served eleven years as Director of the Michigan Department of State Police, where he was responsible for all state-level public safety and emergency services. Robinson's international reputation in law enforcement has earned him the respect of colleagues throughout the country, who in 2000 chose him to serve a one-year term as President of the International Association of Chiefs of Police- which represents 18,000 police executives in over 100 countries."
Robinson is from a branch of law enforcement, "known for abusing its power, and from a city where the police department has been rocked by scandal after scandal," says Xeni Jardin on Boing Boing.
"The perfect guy for the job!"
He assumes the position (the MPAA's own words, honest ; ) next week.
Ex-ATF boss Brad Buckles run the 'anti-piracy' over at the RIAA (Recording Industry Associaition of America) and both 'trade' organizations employ battalions of ex-cops as enforcers, with all that implies with respect to their many and various collaborative efforts with real police departments at home and abroad.
As Malcolm told the New Orleans Times-Picayune, Robinson has "advised the president" and has, "law enforcement contacts all over the world."
That should put him in a perfect position to go after kids with Sony camcorders. And the Hollywood insiders who perform a major role in keeping the p2p networks supplied, of course.
Also See:
Boing Boing - MPAA puts TSA goon in charge of enforcement, February 1, 2006
Times-Picayune - Airport security chief quits, January 18, 2006
p2p news / p2pnet: I'm just returning from participating in the OECD's Future of the Digital Economy conference in Rome. The conference attracted about 350 attendees with all expected companies, lobby groups, NGOs, and governments in attendance. I may write more about the conference next week, but it is worth highlighting my major take-away, namely the clear divisions for what are likely to be the two big battles in this area in 2006 (and possibly beyond).
The first big battle again involves digital rights management (DRM) technologies. While one might be forgiven for thinking that we're back in 1996 rather than 2006, but DRM came up at virtually every panel. From my perspective, the news is that there is at least some acknowledgement of the problems involving DRM. The privacy, security, innovation, etc. issues are still largely ignored, however, there is a tacit (and sometimes explicit) recognition that DRM has created consumer concerns.
The battle lines revolve around the source of these concerns. For the content companies, the problem lies not with their DRM but rather with the interoperability problems engendered by DRM. They argue that the problem therefore rests with the electronics companies, who insist on releasing devices that won't recognize all DRM, thus leaving consumers stuck with products that frequently can't be shifted from device to device. This discussion reminded me of the recent headline during the Canadian election which ran along the lines of "Martin attacks Layton for not attacking Harper." In this context, the not-particularly catchy headline would be "Content companies attack electronic makers for hurting their attack on consumers with their own attack on consumers."
Incredibly, this is described as a "neutrality" issue. The content companies would like a device neutral world (except when they don't, such as with the broadcast flag) in which DRM will work on all devices. Indeed, there was some discussion about the need for government mandated interoperability.
Another recurring theme at the conference pointed to the other side in this debate. It was remarkable to see the amount of discussion around the growing importance of user-generated content. Although unfortunately tagged as the rise of the "amateur" (or marginally better "creative activation"), there were noteworthy presentations on Creative Commons, the BBC Creative Archive, Flickr, Google Book Search, and blogs (Technorati founder Jason Sifry reported that 75,000 new blogs are being created every day with Japanese emerging as the leading language for blog postings in January - less than 1/3 of blog postings were in English).
Among this group not only is DRM not needed (which drew a response from Intel's representative who seemed genuinely puzzled at its absence), but it is harmful with negative effects for free expression, user acceptance, as well as privacy and security. This again brought up the growing call for DRM consumer protection that would better protect against DRM misuse.
Given the "buy your senator an ipod" campaign in the U.S., I expect that this is where the battle will be fought. Once everyone in the Senate has an iPod and experiences the limitations of DRM, the response from the content companies will be to blame the consumer electronics industry and to try to force changes to devices, not the DRM'd content itself.
The other big battle will be well known to readers of this blog - network neutrality. The issue surfaced repeatedly in questions and comments as a serious threat to the digital economy. That said, Verizon was on hand to present its IPTV, which looked a lot like a private Internet. It isn't described as such of course, but we were told that the residents of Keeler, Texas are thrilled with the new high speed lines that permit transmission of high-definition television and other content. Content companies also like it - so much so that Disney was delighted to strike a deal with Verizon to deliver its content in this way. And it turns out that Disney gets more than just fast delivery of content in the bargain as Verizon has agreed to assist them with their IP enforcement efforts.
Ultimately, if the OECD's conference was unable to arrive at a consensus on the future of the digital economy, it succeeded in highlighting where the future battles will be fought.
Michael Geist
[Geist is the Canada Research Chair in Internet and E-commerce Law at the University of Ottawa. He can be reached by email at mgeist[at]uottawa.ca and is on-line at www.michaelgeist.ca.]
Hackers Announce that XBox 1 is Completely Hacked
Tuan Nguyen - February 1, 2006 2:02 PM
Print article Email article 15 comment(s) - last comment tenguman.. on Feb 1, 2006 at 6:12 PM
Recipient E-mail Please enter a valid E-mail addressPlease enter a valid E-mail address
Sender E-mail Please enter a valid E-mail addressPlease enter a valid E-mail address
No more modchip, no more softmod. XBOX 1 can play "backup" discs or XBMC with ease
The XBox hacking community has now claimed that with the original Xbox, players everywhere no longer need to purchase and have a mod-chip installed in order to play backed up games.
Traditionally, Xbox users were using hardware modifications that were installed to bypass certain checking and verification schemes that Microsoft implemented. Eventually through the Xbox Live! service, Microsoft was able to enforce a certain amount of authentication, banning those it detected to have modified Xbox units.
Then came the mods where users could flip a switch and go back and forth between "modded" mode and regular original mode, which allowed players to play authentic Xbox Live enabled titles but switch back to playing backed up discs at will.
Now, using specialized firmware mods, the hackers claim to have a mod-chip free method that works 100% of the time. No details were given about how this would work with Xbox Live.
http://www.dailytech.com/article.aspx?newsid=568
before u drown me out /w news again :P id ike to ask u some questions.
1. Do u no if its ilegal to copy DVDs in Canada?
2. Since programs like DVD Shrink and the like have been removed from the site, do u no if i would be able to put links to them in my profile page? or would that be breaking laws?
Starrift the info is in this thread,today i do not have time to locate the info ye want.
DRM promises from SunnComm
p2p news / p2pnet: SunnComm, one of the companies behind the Sony BMG spyware DRM farce, has outlined what it's done, and what it plans to do, to address potential security problems caused by its MediaMax CD DRM (Digital Restrictions Management) software, and to "help protect against future vulnerabilities".
So says the EFF (Electronic Frontier Foundation).
There's been no word from the other company, UK-based First4Internet.
The two firms created separate 'copyright protection' applications which Sony BMG hid on music CDs which then secretly planted the applications on customers' computers, in the process further besmirching the already blackened names of itself and its partners in the Organized Music cartel.
"SunnComm says it will ensure that future versions of MediaMax will not install when the user declines the end user license agreement (EULA) that appears when a CD is first inserted in a computer CD or DVD drive," says the EFF in a statement.
"SunnComm has also agreed to include uninstallers in all versions of MediaMax software, to submit all future versions to an independent security-testing firm for review, and to release to the public the results of the independent security testing."
SunnComm and EFF are discussing how to ensure that legitimate security researchers who have been, are, or will be working to identify security problems with MediaMax will not be accused of copyright violations under the Digital Millennium Copyright Act (DMCA)."
Then follow the usual meaningless and completely insincere platitudes:
From SunnComm: "We are pleased to be working with EFF to ensure that consumers are notified of this potential vulnerability and our update," said acting SunnComm President and Chief Executive Officer Kevin Clement.
And from the EFF: "EFF applauds SunnComm's commitments to better security and privacy practices."
Meanwhile Princeton professor Ed Felten and Alex Halderman, who initially cracked SunnComm's uncrackable DRM, are finishing (if they haven't already finished it already) 'Lessons from the Sony CD DRM Episode,' an academic paper that analyzes, "several not-yet-discussed aspects of the XCP and MediaMax CD copy protection technologies" to, "put the Sony CD episode in context and draw lessons for the future".
List of CDs with SunnComm MediaMax 5:
List of CDs with SunnComm MediaMax 3:
Also See:
statement - CD Copy Protection Firm Promises Fix for Software Problems, February 2, 2006
not-yet-discussed - Felten and Halderman on DRM: III, January 31, 2006
http://p2pnet.net/story/7801
Ranking Movie Number of Downloads
01 >>> The Wedding Crashers + #2 1,064,249
02 >>> The Chronicles of NarniaL LWW - #2 1,044,289
03 >>> King Kong (unchanged) 1,032,388
04 >>> Redeye + #10 983,515
05 >>> Mr. & Mrs. Smith (unchanged) 981,486
06 >>> Four Brothers (unchanged) 977,739
07 >>> Underworld: Evolution (new) 976,066
08 >>> The Exorcism of Emily Rose (unchanged) 935,863
09 >>> Fun with Dick and Jane (unchanged) 929,854
10 >>> Flight Plan (new) 923,868
Movies Top Ten File Share Downloads, USA
Week ending February 2, 2006
Ranking Movie Number of Downloads
01 >>> The Wedding Crashers (unchanged) 579,506
02 >>> The Chronicles of Narnia: LWW (unchanged) 570,097
03 >>> Redeye (new) 558,365
04 >>> King Kong (unchanged) 557,076
05 >>> Underworld: Evolution (new) 534,952
06 >>> Hostel (new) 533,511
07 >>> Mr & Mrs. Smith - #6 532,680
08 >>> The 40 Year Old Virgin - #5 523,763
09 >>> Harry Potter & The Goblet Of Fire - #7 507,708
10 >>> Big Momma's House 2 (new) 481,311
p2p news / p2pnet: Will DVD Jon Johansen, the former bane of Hollywood, sue Sony DRM (oops, sorry, Sony BMG) for thieving parts of the FairPlay code he wrote for VLC?
Matti Nikki originally told Johansen about the Sony DRM (oops, Sony BMG) rip-off.
On his So Sue Me blog, Johansen posts:
I recently discussed Sony BMG?s infringement of my copyright with a lawyer. I have not taken any action against Sony BMG so far for the following reasons:
Statutory damages are only available if the work was registered with the U.S. Copyright Office before the infringement occurred.
Proving actual damages of any substantial amount will be very difficult due to the fact that the work was licensed under the GPL.
I will be registering my future works with the Copyright Office and releasing my works under a different license (possibly GPL + a liquidated damages clause).
Will 'so far' become an operative phrase?
Stay tuned.
Also See:
Matti Nikki - Malware tech for all ; ), November 15, 2005
former bane - DVD Jon and digital rights, March 25, 2005
p2p news / p2pnet: DRM, Digital Restrictions Management, can't work. It's a physical impossibility.
Anything which can be seen or heard can be copied by one analog or digital means or another. End of story.
There are any number of snake-oil companies trying to make a living peddling "copyright protection" technologies, but it's little more than a con game perpetrated by the firms making the applications, and the companies buying them.
Both sides want consumers - that's YOU - to believe DRM actually exists.
But it doesn't and this pic, sent to us from Australia by p2pnet writer Alex H, says it all.
Furthermore, the mainstream and lamescream media alike persist in running DRM stories as though there is such a thing.
"A huge disagreement over the correct way to apply digital rights management (DRM) of songs is emerging in the music industry," says a Macworld story, centering on a UK government enquiry at the House of Commons slated for today.
UK indie label association, AIM, will give oral evidence before a UK government enquiry at the House of Commons on Thursday February 2.
"AIM chairman and CEO Alison Wenham, Simon Wheeler of the Beggar's Group and Paul Sanders, founder of state51, will speak to MPs who are presently investigating DRM," says Macworld, going on:
"They will argue against the major label position on DRM and file-sharing. They will say that they accept that: 'The loss of some measure of copyright control is a factor in reaching new and enthusiastic music markets around the world'."
But it's really hard measure something that doesn't exist.
"DRM is not - and we believe cannot be - a 'policing' system," AIM states.
But of course, that's exactly what it is, as stipulated by the entertainment and software cartels
Also at the inquiry, due to report in March or April, will be British Music Rights, EMusic.com, Snocap, the British Library, BBC, AOL, the National Consumer Council, Open Rights Group, PACT and the Film Council.
Also See:
Macworld - Indie labels reject DRM as music policeman, February 1, 2006
