Los caraduras de la SGAE

July 2, 2006 at 18:48 pm · Filed under This evil world

Leo en el Diario Vasco un artículo haciéndose eco del enfrentamiento entre SGAE y usuarios de material informático (o sea, tú y yo), en relación con el famoso canon por copia privada que se aplica a medios como CDs y DVDs.

El preclaro Farré afirma (refiriéndose a los fabricantes de soportes de almacenamiento digital), con su acostumbrada hipocresía:

Lo lógico es que compartan una mínima parte de esa ganancia con quienes crean esos contenidos […] ¿Venderían tantos soportes si no se pudieran copiar las obras?

Este es el puñetero argumento de “gracias a la música se venden más CDs vírgenes, por lo tanto los autores deben recibir una parte del pastel”. Dejemos a un lado si dar dinero a la SGAE equivale a darlo a los autores de la música, o si la SGAE realmente representa a los autores españoles (muchos de los cuales no se adhieren a ella), o en qué lugar queda la música CC… Supongamos que SGAE=música (aguantad las risas, es un suponer).

Pues bien, ese argumento seguiría siendo FALSO.

Es falso y bien falso. El mercado libre no funciona de esa manera, querido Farré.

Supongamos que yo vendo coches. Supongamos que vendo 1000 coches este año. Supongamos que el año que viene la compañía X inventa un combustible más barato. Como el combustible es más barato, la gente empieza a comprar más coches, y mis ventas suben a 2000 coches en el 2007. ¿A alguien en su sano juicio se le ocurriría pensar que la compañía X puede pedirme un “canon” por los coches que vendo, alegando que “gracias a ellos he vendido más”? Pues a nadie, claro.

Supongamos que, en vez de inventar un combustible más barato, X inventa un coche solar. La nueva competencia hace que mis coches sean impopulares, y mis ventas del 2007 bajan a 500 coches. ¿Tengo derecho a demandar a X por hacer que mis ventas bajen? Pues no, claro.

Si acciones de terceros negocios afectan favorable o desfavorablemente al mío, lo tengo que tomar como imponderables del mercado, y adaptarme al cambio sin rabietas y sin pataletas. Pero parece que la SGAE no ha entendido esto: en un mercado justo y libre, NADIE COBRA POR BENEFICIOS INDIRECTOS A TERCEROS.

Es más, tampoco es tan claro que la música beneficie la venta de soportes digitales, pero no al revés, ni en qué medida se dan estos beneficios mutuos, o en qué medida afecta la música a la venta de soportes digitales, comparada con otros factores. Legislar el cobro de un canon indiscriminado en estas circunstancias es irresponsable, y nuestros políticos deberían ser conscientes de ello.

Alguien podría alegar que en el ejemplo de coches y gasolina barata, el vendedor de gasolina también se beneficia de la venta de coches (así que el beneficio es mutuo), pero con la música “pirateada” no pasa eso: la música beneficia la venta de soportes digitales, pero no al revés. Pues bien, esto es otra mentira. Yo planteo la pregunta: ¿acaso se vendería tanta música (CDs originales) si los usuarios no tuvieran un medio barato y fiable para hacer copias? ¿Acaso la música en CDs habría ganado tanta popularidad si no pudiera uno pasarla a MP3 u OGG en su ordenador, o a un reproductor portátil? Recordemos cómo MS-DOS se hizo tan popular en su momento gracias a que se podía “piratear”. Sí, señores, sí, gracias a que eran bien sencillo de copiar.

Hay una corriente de usuarios descontentos (entre los que me encuentro), que reduce su compra de CDs por desprecio a unas discográficas mafiosas, a un canon injusto, a unos artistas mezquinos y ruines, y a “protecciones” anticopia y DRMs abusivos. Leed, por ejemplo mi carta a Bebe.

Está claro que la venta de música se ve perjudicada por esas medidas, pero cada cliente descontento que pierden por sus abusos, ellos lo atribuyen a las redes p2p y al “pirateo”. Por otro lado, cada CD que en mi grupo de investigación utilizamos para hacer una copia de seguridad, se lo apropian como si lo usáramos para grabar a Bisbal. ¡Menuda jeta!

Cada día me tienen más harto estos ladrones.

Comments

Patents, copyrights and double moral

June 15, 2006 at 11:10 am · Filed under This evil world

What do pharmaceutical, commercial software, film and discographic companies have in common? Well, among other things, fear to piracy. The three of them make products that are first generated at a high cost, but are afterwards trivially replicated. Actually, patents are designed with this into mind. From the Wikipedia entry for patent, one of the four main reasons for patents would be that:

[…] in many industries (especially those with high fixed costs and low marginal costs and low reverse engineering costs – pharmaceuticals and computer software being the two prototyical examples), once an invention exists and has been tested, the cost of actually turning it into a product is typically six times or more the R&D cost. Unless there is some way to prevent copies from competing at the marginal cost of production, companies will not make that productization investment.

Recently I discussed with a friend the recurrent subject of fair use of copyrighted material, and the applicability of the term “piracy” for downloading music and movies from the Internet. We stumbled upon a thorny double moral problem, because my friend would not see any moral or legal problem in downloading copyrighted material from the Internet, while at the same time a patent breach (he actually holds some drug patents) would outrage him!

Justifications for the alleged legality and morality of p2p sharing of copyrighted material abound. You can find out about them in the Justification section of the copyright infrigement entry of the Wikipedia and in the Legal controversy section of the p2p entry of the same source.

Influential bloggers also post in defense of the p2p interchange, and I will mention three Spanish ones: Enrique Dans (e.g. 9-Jun-2006, 3-Jun-2006, 1-Jun-2006), David Bravo (12-Jun-2006, 25-May-2006, 10-Apr-2006), Nacho Escolar (4-Jun-2006, 29-MAy-2006, 22-May-2006, 10-Jun-2004).

Now, one of the main mottos (to which I actually agree), is that the technology has made difussion of culture so easy, that the audiovisual industry has to change its business model, because the present one is obsolete and tyranical with the user, appart from no longer enforceable by the stablishment. Something similar happens to the commercial software industry: the rise of the much more efficient and legally, morally and practically sound, free software (the FLOSS that gives its name to this blog), makes it ridiculous to mantain the 80s and 90s proprietary software model.

However, although criticism to present market models make some of us turn to media licensed under Creative Commons (mainly music), and software licensed under the GPL and other free licenses (like the Debian GNU/Linux operating system or the web browser Firefox), some others feel that downloading copies of commercial of software (Windows, Photoshop, AutoCAD, ChemOffice…), or copyrighted material (music and movies) from p2p networks is somehow OK.

Much could be said about the morality and/or legality of this practice, but, for the sake of the argument, let’s accept it’s legal and moral. Let’s accept that sharing any audiovisual material through a p2p network is fair use, and that any attempt from the lobbies that control these materials to stop it are not only condemned to fail, but also injust.

OK, I can accept that, but… why not apply this to the pharmaceuticals?. What is the difference? A pharmaceutical company makes a big effort to discover new drugs, and then market them if approved by the corresponding autorities. The exclusive marketing of a drug, or a fair compensation when marketed by third parties, is ensured through patents. A patent, according to the Wikipedia, represents:

[…] the exclusive rights granted by a state to a person for a fixed period of time in exchange for the regulated, public disclosure of certain details of a device, method, process or composition of matter (substance) (known as an invention) which is new, inventive, and useful or industrially applicable.

The exclusive right granted to a patentee is the right to prevent others from making, using, selling, offering to sell or importing the claimed invention. The rights given to the patentee do not include the right to make, use, or sell the invention themselves. The patentee may have to comply with other laws and regulations to make use of the claimed invention.

This is very interesting. The researcher (the musician), comes up with a new drug (a new song), and wants to get a just reward for her effort. She patents the drug (puts the song under copyright), which gives here a negative right to ban any other person from even producing the drug (performing the song) without her prior approval.

Usually the researcher (musician) is not directly able to market her invention (distribute her music), and so conveniently hands it down to someone who can, e.g. a pharmaceutical company (a discographic company). They are the ones who make the effort to put it in the market, passing the due approvals (bribing the due radio stations for advertising).

Now, when someone else wants to make use of the publicly available instructions (the publicly available p2p network) to produce the drug (to download, listen and/or perform the song) herself, the patent holder (copyright owner) has the right to prevent her from doing so. The pharmaceutical company (the discographic company) can even choose not to market the drug (the song) at all, if it is not economically advantageous for them. The patent (copyright) allows them to do so.

Now, the parallelism is absolute, and hence I can’t see the difference between the following examples:

a) A kid likes a music group, but can not afford, or does not want to pay for, their CD, so resorts to eMule to download it. Now, no-one can prosecute her, because it is legal.

b) There are thousands in Africa dying of a disease that is not mortal in the first world, because there is a (patented) drug that can cure it. Unfortunately, the Africans of this example, can’t afford the price the pharmaceuticals charge… so tough luck. Now, the Red Cross, or even an African individual, downloads the “recipe” for the drug from the Internet, and starts producing it and giving it away for free. Is it prosecutable?

What is the difference between a) and b)? If the drug could be put online, and downloaded as a piece of music or video, would it be any different? How come the latest Hollywood blockbuster, or MTV hit, are of public interest and hence should be publicly and freely available, regardless of the wishes of the lobbies behind its production, and the drugs that can potentially save millions are not?

For me, that’s a non sequitur.

Comments

Mensaje a Bebe

June 10, 2006 at 10:56 am · Filed under This evil world

Hoy me ha dado el punto y se me ha ocurrido mandar esta carta a la dirección de feedback de la página web de Bebe. No sé si esa dirección servirá para contactar con ella, o solo tiene como fin comentar aspectos de la página web. Igual Bebe acaba leyendo el mensaje en este blog antes que por aquel medio :^)

Vaya por delante mi respeto por la artista, y mi aprecio a su música. Sé que la situación que describo ocurre con muchos artistas y muchos CDs, pero… a mí me pasó con ella.

Este mensaje no es sobre la página web en sí, sino para Bebe, porque es la única manera que he encontrado de contactar con ella. Yo estaría muy agradecido de que llegara a ella, y estoy seguro de que ella también valorará la información que contiene.

Estimada Bebe,

No sé si estás al corriente de las protecciones anticopia con las que se comercializa tu CD, pero yo, lamentablemente, sí.

Te comento cómo consumo yo la música: me voy a la tienda, me compro el CD, lo meto en el ordenador de mi casa, lo paso a MP3, saco el CD, lo guardo en su caja, y ya NUNCA MÁS lo saco. Siempre escucho de la copia del disco duro, a través de los altavoces del ordenador (frente al que trabajo todo el día).

Por motivos obvios, esta estrategia es imposible con tu CD, el cual compré, y tengo muerto de risa en una balda. Como yo quiero escuchar tu música, recurrí a pedirle un CD pirata a un amigo, del cual pude sacar los MP3 sin problemas.

Ahora bien, ¿no es irónico que no pueda escuchar la música que compré, pero sí la que NO compré? En las circunstancias mencionadas, ¿crees que me siento incentivado para comprar tu siguiente CD, cuando me veré obligado a hacer la misma jugada? ¿Con qué cara puedo criticar la “piratería”, si gracias a ella puedo escuchar el CD que a través de su compra legal no pude disfrutar como yo quería? Mi “recta moral” me puede llevar a comprar tu segundo CD, aún sabiendo que me será inservible, simplemente para compensarte económicamente… pero estaremos de acuerdo en que eso requiere un huevo de “recta moral”.

Puede que pienses que un sistema anticopia impide, o dificulta, el tráfico ilegal de grabaciones de tu CD, pero esto no es así. En cuanto UNA sola persona rompa la protección (este proceso suele durar, como mucho, horas tras la salida al mercado del CD), esta la pondrá en internet y ya está, así de fácil. La persona que me pasó la copia pirata, ni sabía que tu disco tuviera protección anticopia. La protección solo molesta a las personas como yo, que nos hemos comprado el disco legalmente, y no recurrimos a métodos ilegales, a menos que se nos fuerce a ello.

Por eso, en bien tanto de tus seguidores, como tuyo propio, porque venderás más, te invito a elimiar cualquier sistema anticopia de tus subsiguientes discos, que espero con impaciencia, para comprarlos si no incluyen tecnologías lesivas para mis intereses como consumidor.

Comments (1)

Seguros: el timo del buen conductor

June 7, 2006 at 6:54 am · Filed under This evil world

Hace tiempo que vengo diciendo esto a quien me quiera oir, y hoy me he dicho ¿pa qué está el blog?

Todos sabemos que las compañías aseguradoras son unas hijas de la grandísima… madre que las fundó, así que básicamente no voy a decir nada nuevo. Lo que sí puede ser esclarecedor es una reflexión sobre cómo nos timan.

Tomemos una de las cláusulas de las que más se vanaglorian las propias aseguradoras (hablo de seguros de coche), y que más valoran los propios asegurados: la bonificación por buen conductor. Señoras y señores, esto es un TIMO.

Todos tendemos a pensar que somos los mejores conductores del mundo, y que los demás son unos torpes. Así, nuestro egoísmo nos hace considerar que, dado que otros van a causar más gasto a la aseguradora (porque sus accidentes van a ser más frecuentes), y nosotros no vamos a accidentarnos nunca, pues deberían ser esos otros los que pagaran más. Las aseguradoras saben que somos unos cabronazos egoístas y, sobre todo, unos egocéntricos y unos chulos y que vamos a pensar aplicando el razonamiento anterior, así que nos ponen la trampa con el queso delante, y picamos como tontos.

¿Están deseando distribuir las cuotas más equitativamente entre sus asegurados? No, claro. Lo que desean es ganar más dinero, como es de esperar (y legítimo). ¿Qué es lo que realmente ocurre? La aseguradora tiene un seguro a todo riesgo con una cuota X, igual para todos. Ahora sube la cuota base a 2X, y dice que hace un descuento del 50% a los “buenos conductores”, que se definen como aquellos que no reportan un accidente en, digamos, 6 meses.

El resultado es que, en el mejor de los casos, casi todo el mundo sigue pagando lo mismo que antes, pero creyéndose afortunados por beneficiarse de un megadescuento del 50%, mientras que algunos pagan el doble. Pero no solo eso. Es que, además, cuando los “buenos conductores” tienen un accidente leve, no dan parte por miedo a perder la jugosa “bonificación” del 50%.

En el fondo, la “bonificación” del 50% no es más que una coacción, en la que nos amenazan con cobrarnos un 100% más de lo que ya pagamos si nos atrevemos a exigir la contraprestación contractualmente estipulada para un hipotético accidente. ¡Es realmente vil y retorcido! Se comprometen a compensarnos económicamente en caso de accidente, a cambio de una cuota (ese es el fundamento de un seguro), pero luego echan mano de todos los mecanismos que puedan para coartar nuestro derecho a pedir esa compensación cuando la necesitamos, Y ENCIMA NOS HACEN CREER QUE NOS ESTÁN HACIENDO UN FAVOR, COBRANDO MÁS A LOS “MALOS” CONDUCTORES.

Comments

Window Vista: reinventing the wheel

June 1, 2006 at 10:15 am · Filed under Evil software

[Last reviewed 12-Feb-2007]

I have read at menéame (Spanish) about a Windows Vista review, and I have decided to comment about it here. The original review (in English) here.

The first thing one notices is the blatant copy of many MacOS (as usual) and FLOSS project (Linux and Firefox) features.

1) The Aero User Interface allows for window transparency. Wow, I’d be hard pressed to name a Linux desktop environment that couldn’t do it long ago.

2) You can Alt-Tab (Win-Tab, really) between open windows, having them appear in 3D. This is nice, but similar effects are obtained with 3D-desktop for Linux (only for desktop switching, not window switching), and now with XGL, which I expect to be fully functional much sooner than the Vista release date (mark my words).

3) The desktop supports applets, that, in the long standing Microsoft custom of reinventing the wheel, and then renaming it to pretend it’s something new, they call “Gadgets”. Such gadgets would be things like calendars, weather forecast indicators, clocks… Such things have been long present in Linux with SuperKaramba, gDesklets, and adesklets.

4) IE7 can now read RSS, and supports tabbed browsing. Again, Firefox supported it long ago.

5) IE7 now supports international URLs, such as www.müller.de. Firefox, of course, already supports them. Moreover, the URL display is not correct in IE7, whereas it is in Firefox (see images below):

ie7

Figure 1: Internet Explorer 7

ff15

Figure 2: Firefox 1.5.0.3

6) IE7 is said to come with anti-phising settings. Firefox already had extension for that, namely Google safebrowsing, Personal Anti-Phising Sidebar, FirePhish Anti-Phishing Extension or TrustWatch Search Extension by GeoTrust.

7) IE7 has a “MSN search” box next to the URL box (IE6 has it too?), but now it permits to add other search engines. Firefox has had it for ages:

ie7

Figure 3: Internet Explorer 7

ff15
Figure 4: Firefox 1.5.0.3

8 ) IPv6 support, I think was present at XP (through obscure commands), now is properly handled. How long has this been correctly handled under Linux?

9) UAC (User Account Control). A garbage far inferior to the user management in UNIX-like systems (I added the boldface bits):

A new User Account Control (UAC) function enables those whose accounts possess administrator-level privileges (or who log on using the Administrator account) to perform actions unavailable to other types of user accounts [it always was like that for UNIX]. Those who lack such rights will be informed that they lack the privileges necessary to run the program [it always was like that for UNIX], and that they should execute it under a different account instead. This doesn’t mean logging out and then logging back in is strictly necessary [it never was in UNIX. su to different user, then exit.], though, because those who have access to privileged account information can always use the “runas” [another MS reinventing and renaming, now for sudo] command to access more privileged credentials.

The guiding idea behind this technique is called the “principle of least privilege” [used in UNIX since the down of times]. Under this doctrine, users who normally work on a Windows machine should log in using ordinary user accounts, so that if they contract a virus or other malware, that unwanted software is a lot less able to do serious damage than if they routinely log in using administrative privileges. But Microsoft hasn’t taken this principle entirely to heart, either. The first user defined during installation is automatically granted administrative privileges. Worse yet, the reserved account named Administrator is not required to have a password to log into the machine!

Moreover, unless under Windows, in UNIX-like systems different users have different privileges regarding reading, writing and executing not only root’s (again, MS renames to “Administrator”) files, but also each other’s files. Maybe I can read some or your files, but not write to them, maybe you can let me write to some of your files, maybe I let you see what’s inside one of my dirs, and open (but not modify) some files in it, and not even open some others.

10) Windows Updates has been improved, but still I can’t see anything that Debian APT, SUSE YaST or RedHat RPM can not do. I can’t see, either, some things that APT, YaST and RPM can do. I don’t know if Window Updates has those capabilities, the review just doesn’t mention them.

11) At startup, it checks whether hard disk defragmentation is necessary. What kind of shitty filesystem needs defragmentation nowadays! Journaled filesystems such as ReiserFS and others certainly don’t!.

12) I quote: “Some things never go away: even for Windows Vista, installing some new system components still requires a reboot.” This is really garbage. In Linux only a kernel reinstall forces a reboot (you can choose not to reboot, just the new kernel won’t be active until you reboot).

13) The review spends 7 of its 40 pages commenting games included with Windows Vista (such as Minesweeper or Solitaire, but also a 3D chess game and some others). While critics for that excess should go to the reviewer, not MS, it is still true that with a long overdue OS, any delay that the polishing of the games could have caused would be criminal.

14) I read in the #218 issue of Computer Hoy (Spanish computer magazine), that the Windows Search utility in Windows Vista has been highly optimized. Basically, so far Search looked up the actual filesystem when looking for some file, whereas now it makes use of periodically renewed indexed lists, that say what is where, so the lookup is much faster. While this is a vast improvement, the Unix/Linux users must be far from impressed. The wheel that Microsoft smartasses reinvented here is the GNU locate, an oooold friend of GNU/Linux users. What the Windows Search did, was similar to the alternative program find.

All in all, I would say that they have spent a few years since Windows XP just polishing the look of Vista, and trying to copy what the FLOSS movement has been innovating. To me, an OS should be completely independent of the look of the desktop, or the games it includes, or how utility applications work. But, well, maybe it’s just me.

Read also: 20 things you won’t like about Window Vista.

Comments

Proprietary formats and product lock-ins

May 24, 2006 at 10:39 am · Filed under This evil world

Many people wonder why, Linux and FLOSS being so good, is Windows the most used OS around. Generally, this leads them to argue that, since Windows is so popular, it must be because it’s better. After all, we the users are not stupid, are we?

No, we are not. Not even Windows users are :^)

The reasoning above rests on the premise of fair competition, which is not the case in the software market nowadays. No, it is not, and I mean it. Consider the following example:

There is a bicycle maker A, who makes A bicycles. She has no competition, no rivals in the market, hence A bicycles get very popular.

When the market is saturated, maker B comes into town, and starts producing B bicycles, which are much better.

No matter how monopolystic A was: in a short time, B will dominate the market, due to her better product.

This example is a good one of a fair market. But now consider another case:

We have maker A producing car A. Now, a car needs gasoline! As car maker A grows, gasoline A providers grow in parallel. Soon enough, all the cars in the town are A, and all the gas stations serve A gasoline.

Now, if an independent car maker B comes to town, and wants to produce B cars… she’s out of luck! B cars need B gasoline, but ALL THE GAS STATIONS ARE A!!

No matter how hard the newcomer tries, B cars will never be popular, because the potential buyers would have nowhere to get fuel. Conversely, someone could start providing B gasoline, and compete with A gas stations… but, how on earth!? B gas stations will always bankrupt, because ALL THE CARS ARE A!!

This is, ladies and gentlemen, the present situation in the software industry: a car/gasoline lock-in. We have to realize that Microsoft is trying hard to push this lock-in down our throats, because creating lock-ins is a most succesfull, albeit immoral and barely legal, marketing strategy. When forced lock-ins pervert the free market, legal actions have to be taken by governments… and that’s part of the reasons why we see Microsoft day after day in the courts.

Does Microsoft really force lock-ins unto us? Let’s consider some car/gas pairs these “gentlemen” try to enforce us:

  • HTML only IE understands / IE
  • DOC, XLS, PPS / MS Office
  • WMV, WMA / Media Player
  • Hardware with windows-only drivers / MS Windows OS
  • Windows-only games and software / MS Windows OS

Remember: each time you create a web page (say, with Frontpage) that can be properly viewed only with IE, you are supporting the Microsoft monopolistic lock-in. Each time you surf the web with IE, and ask a web administrator to modify her page so that you can view it with your flawed broser, you are supporting the MS lock-in. Each time you send someone a DOC file, instead of a PDF or an ODF OpenOffice.org document, each time you share some video or audio in a Windows proprietary format, each time you buy a windows-only TV card or Wireless card… each time you are surrendering your liberty to the Microsoft lock-in.

And this is bad even if you are a die-hard Windows fanboy, because the sad fact is, this lock-ins only benefit the locking vendor, not the locked client. It is a way of gaining power upon us, to enable them to charge as much as they want for a product of as low a quality as their self-confidence allows (which is much).

Fight them back, and use the alternatives: Firefox and w3c-compliant HTML code, OpenOffice.org and ODF-compliant documents, MPEG and Theora for videos (WMV deprecated, closed and under patents), OGG Vorbis for music (MP3 deprecated, under patents), JPEG and PNG for images (GIF deprecated, under patents)

Comments

The Censurator

May 6, 2006 at 18:43 pm · Filed under This evil world

Read in Kriptópolis: Microsoft patents an automatic censoring machine.

That machine would, allegedly, detect “phonemes and/or words derived from phonemes for comparison against corresponding phonemes or words included in undesired speech data”, and then “the input audio data stream is altered so that the undesired word or a phrase comprising a plurality of such words is unintelligible or inaudible”. This capability is available for recorded speeches (of course), and even in real-time.

I bet Franco, for one, would have loved this precious thingie, back then. And I bet that some governments today will put it to *cough* good *cough* use.

Comments

More on the Sony rootkit

April 19, 2006 at 11:57 am · Filed under This evil world

Writing the previous post lead me to read this Wikipedia article about the Sony DRM rootkit fiasco last year. Read it, because it is very interesting.

Among other things, I’ll quote the following (boldface emphasis mine):

Sony BMG released a software utility to remove the rootkit component of Extended Copy Protection from affected Microsoft Windows computers, but this removal utility was soon analyzed by Russinovich again in his blog article “More on Sony: Dangerous Decloaking Patch, EULAs and Phoning Home”, and revealed as only exacerbating the privacy and security concerns. In fact, the Sony BMG program merely unmasked the hidden files installed by the rootkit, but did not actually remove the rootkit. In addition, this program was reported to install additional software that cannot be uninstalled.

So, the “solution” Sony gave to its screaming customers was worse than the problem they had previously caused!

Now, read what the Wikipedia article recomends to eliminate the risk of abuse from Sony (and others):

The XCP software can be prevented from installing in several ways. First of all, a user can refuse to purchase such copy-protected CDs, perhaps downloading the music from a digital music distributor. Second, it is possible to disable autorun so that the software will not run automatically (this can be done, temporarily, by holding the SHIFT key while inserting the CD). Putting a piece of tape on the outside of the CD will also prevent the DRM from running. An alternative is to use an operating system which the software does not automatically install itself on, such as Linux or Mac OS X, or running Windows under a restricted account instead of an administrator account, in which case the installation program will not have the sufficient rights to install the rootkit.

Quite remarkable is, also, the fact that the DRM scheme Sony wanted to force-feed into its customers, with the alleged objective of preventing copyright infringements, did actually breach a previous copyright, more precisely, a LGPL license (that of LAME MP3 encoding library). That is, they were stepping on the toes of some Open Source material: THEY, the defenders of artist and creator rights, were attacking US, the thugs that want a free-for-all right-smashing steal-fest of all kinds of materials!

Comments

Rootkits and FLOSS

April 19, 2006 at 8:48 am · Filed under Evil software

Amazing the human boldness is. Truly amazing.

The McAfee anti-virus company Senior Vice President of Global Threats at McAfee, Stuart McClure (the more impressive a title, the less impressive the job) poured a bit of poison through his mouth, and ascribed the increase of rootkit attacks (into Windows systems, I suppose. But remember there are Linux rootkits. Linux is immune to virus, not to other attacks, including rootkits, intrusion via weak passwords, DoS attacks, annoying pop-ups and java scripts in web pages, etc.) to the Open Software movement (article at NetworkWorld.com here).

Now, this comes from a company that failed to properly handle the Sony rootkit threat, even though they had many customers calling for help. Mmmm, I see, rootkits are only a menace if they don’t come from huge corporations eager to squeeze our money out of us.

The link this cretin uses to blame the FLOSS movement is twofold: the first one is a post hoc, ergo propter hoc (sorry, I’m a pedant bastard). He implies that both FLOSS and rootkits are rising, and thus the latter is caused by the former. In related news, he also [could have] said that the global warming is caused by the decrease in the number of pirates, because there is a definite correlation between the two over the last 200 years (see it here).

His second link from rootkits to FLOSS is the web page rootkit.com. This web page is allegedly malicious, and helps people (crackers) create baneful (sorry, I woke up with a Merriam-Webster mood today) malware (as the page name, ehem, implies).

Now, I have a couple of objections to that reasoning. The first, and most obvious one, is that one can not blame the whole FLOSS community for some rogue members. The second is that… are those guys at rootkit.com rogue at all?

I did visit the web page, and the first article one stumbles upon right now is:

Ad-Aware is a poorly written anti-spyware program from Lavasoft. Running it gives you a false sense of safeness. There can be done numerous attacks against this software. I’ll show some of the problems and attacks in this write-up. Here’s just a summary of the most visible problems I’ve run into.
[…]

So, on one hand, it seems to be (and is) giving info to exploit holes in that program, but, most importantly it is pointing out those holes, PUBLICLY. If those dummies at Lavasoft cared about their clients and the quality of their product, they’d only need to read rootkit.com to find out what errors it has, and presumably hints on how to fix them.

One can only wonder how a publicly announced exploit can be of malicious use at all. Indeed, if the rootkit the cracker creates is Open Source, it becomes trivial to eradicate it. The rootkits that actually scare me are the ones that don’t get announced!

Remember that security through obscurity is a Bad Thing(TM). The security problem of the example above (Ad-Aware) is to be found in its bugs, not in the airing of them. The publification is a way to solution.

As Linus Torvalds says: “many eyes make all bugs shallow”.

Comments

Iraq democracy

April 18, 2006 at 13:43 pm · Filed under This evil world

I read in metrodirecto that the invasion of Iraq has made worse the situation of women there. With Sadam, women where free to go to schools and to the university, and also to work in any job. Now they are apparently being forced to “stay home”, partly because of safety reasons, and partly because of the repression of the new government.

Now, if we all know that the weapons of mass destruction stuff was bullshit, and both public safety (suicide bombers dozens a penny) and civil liberties (women’s rights stamped out, restrictive constitution) have not been enforced, but rather weakened, by the US invasion forces… what the heck was the reason to invade Iraq?

Comments

« Previous Page« Previous entries « Previous Page · Next Page » Next entries »Next Page »