Slashdot Mirror
RIAA Smacked by DoS
nekid writes "ZDNet is reporting that the RIAA's website was hit by a denial-of-service (DoS) attack over the weekend, most likely in response to their endorsement of legislation that would give them permission to do the same to personal computers that are pirating music (see earlier article). Seems to me that they are killing themselves with bad public relations..." But it seems to me that they don't care, and are instead
banking on the ignorance of the bulk of the world.
Too funny. Someone's been reading user friendly and decided to fight back perhaps?
Most people would die sooner than think; in fact, they do.
Give the media and the average American more reason to think the people the RIAA are against are little more than immature "hackers."
"All mankind is at the mercy of a handful of neurotics". - Norman Douglas
If the RIAA is allowed to do a DoS attack, I don't see why individuals should be forbidden to do so.
In short: No one should be able to legally commit such a crime.
I'm a leaf on the wind. Watch how I soar.
The DoS'ers were obviously trying to prevent the RIAA from distributing material copyrighted by the DoS'ers. Namely DoS software.
Fascism starts when the efficiency of the government becomes more important than the rights of the people.
Userfriendly link for those who didn't see it :)
A tragic irony isn't it?
I wonder if we can start a campaign to keep the RIAA DoSed off the net. Not that I'd ever condone such a thing, but there are times when a little net abuse is so poetic.
Thank you for posting that helpful link to the RIAA website. This is a pressing issue, and as such, I urge everyone to go immediately to this website and show your support. Now, more than ever, the RIAA needs our love. So everyone, stop hammering the SSH site and give the RIAA the affection they so sorely need.
do not read this line twice.
Apparently the RIAA hasn't heard of this cool technology called "multitasking".
The only thing that will stop you from fulfilling your dreams is you. - Tom Bradley
Obviously the RIAA rep is not very tech savy. Of course, since their site was DoS'd, I would have to say that about the whole organization.
I rarely read replies, it's my opinion and if you thought about your opinion a little more, I'm OK with that.
wow, didn't they get enough publicity when this story was announced last week...i'm not saying they should have ignored this DOS attack, but it seems to me the RIAA rep had a little too much attitude with quotes like "Don't they have something better to do during the summer than hack our site?" and especially "Perhaps it at least took 10 minutes away from stealing music."...talk about antogonizing the masses...couldn't they comment on this story without being blatantly condescending and arrogant???
on the good side, maybe the link to the RIAA website with this story will slashdot their site and bring it down again....
"Facts are meaningless. You could use facts to prove anything that's even remotely true." - Homer Simpson
Immaturity like this only HARMS what we are trying to do.
Grow up kids.
That's right; the adult way to convince corporation/government office/anyone over the age of 20, is with green things.
And no, I'm not talking about grass.
Please please please tell me this is faked
-dk
My point was, there are MATURE ways of combating the legislation. Write letters to your congressman. Using "mob rule" strategies will just make it worse (they'll go against congress with a "see? This is what we are trying to stop!" attitude, and congress will agree).
Hacking someone that's using hacking as a stepping stone to circumvent laws is just plain stupid.
Good quote, too many chars. Seriously, the slashdot 120 char limit sucks!
"Doesn't the RIAA have anything better to do than hacking into my website?" asked a pimply 15-year old who asked to be called "H@ckeR d00d." "perhaps it at least took 10 minutes away from fucking over artists."
Engineers arn't boring people, we just get excited about boring things.
#!/usr/bin/perl
while (1){
`wget "http://www.riaa.com" -nc -r -l 0 -k -nH -o
}
# one of many many ways to do this...
Arguing that bad PR will make the RIAA think twice about doing something is like arguing that a fish won't want to get wet.
Whether the RIAA site was truly DDoS'ed or not was not the point. The point is: it is now. THIS WAS THE EVIL PLAN!
Not that I'd condone it, but the ultimate hack (or crack) would be rooting the RIAA servers and using them to host a very large MP3 collection, complete with a gnutella client to share them with the world.
________________________________________________
suwain_2
"Immaturity like this only HARMS what we are trying to do."
WTF? The music industry just started illegally interfering with computer networks to the detriment of others (hacking, to misuse that word), and people complain that a DDOS on their website is immature?
As immature perhaps, as spending millions in congress to disrupt others' computers, before sarcastically quipping "at least they've stopped stealing for 10 minutes" when someone does the same back to them?
Bring it on. The more this group's website gets attacked, the happier I'll feel laughing at them. They want to legalise hacking? Let's show people what it will mean in practise.
Need I remind anyone here that individuals are copyright-holders too?
The RIAA just bought a bill to legalize DOSs as part of a political disagreement.
These DOS attacks are not justice,
Which is the point that this weekend's perps were trying to illustrate.
I spent a year in Iraq looking for WMD and all I found was this lousy sig.
November, 2002 WASHINGTON, D.C. (AP) -- In a massive Denial-of-Re-election (DOR) attack, Mr. Bermen, Mr. Hollings, and all the other RIAA-linked Congressmen have been apparently booted offline by a massive surge of votes for the opponents.
The attack has been described as a write-in vote for an unidentified third party candidate known only as "CowboyNeal". No information upon the identity of this third party candidate are yet known.
-- We live in a world where lemonade is artificial and soap has real lemon.
But the RIAA might be in for some trouble if the bill is passed.
Think about it: The RIAA has (and still does) sell works created by independant copyright owners. They don't keep perfect track of their signings with artists and are, sometimes, selling records which they don't hold the copyright to. Artists have come forth in the courts and said this.
Given that this is the case, an artist can give a group (in this case the public at large) permission to attack any server network participating in the distribution of their copyrighted works. This is not limited to riaa.org. If CDNow.com is selling the CD that the RIAA is distributing illegally they're open to attack too. I mean, just look at how loose the wording is:
"...use of technologies to prevent infringement of copyrighted works on peer-to-peer computer networks"
Translation: any copyright owner can technologically attack anyone infringing upon their copyrights as long as the target of their attack can be described as a "peer-to-peer computer network."
Besides that, the RIAA is acting no less childish than the people that DoS'ed them. Their current actions in regards to this legislation are equivelant to signing onto a Cult of the Dead Cows message board and proclaiming a hacker war. It doesn't matter if it's legal or not you can't expect them to just sit there and take whatever you throw at them.
It's childish to declare a hacker war.
It's foolish to declare a war on all hackers.
It's pure ignorance to believe you can win.
In all of this law making, the RIAA has not realized a few basic facts. Most of these are relative to me, but I'm sure I'm not alone:
1. When Napster was big, I purchased 75-100 CDs in two years and enjoyed about 80% of them. Since then, I have purchased about 10 CDs and enjoyed about 20% of them. I would rather gamble $15 on a blackjack table then buy a $15 CD when I have only heard one song I like on it.
2. I don't own a plain-old CD player. I have a MP3-CD player, a laptop, and a desktop. If I can't listen to or convert the CD I won't buy it.
3. I'm not a fan of the MPAA either, but which would you rather purchase: A soundtrack CD of a given movie for $17.99 or the DVD of the same movie for $14.99? To me, a music CD is worth about $8, and at least 25% of that should go to the people who actually created those sounds(artists, songwriters).
4. I don't believe the DoS on the RIAA last weekend was necessary, but it will be a preview of what will happen if that new law passes. (Just a prediction)
5. What ever happened to "The customer is always right"? All of this copy-protection, "everyone is stealing our music", "we need tougher laws" stuff can't possibly be in the consumer's best interest. Sounds to me that they are trying to maintain a monopoly. (Hmmm... now where have I seen this before?)
Anyway, I dig into my current music collection, books, magazines, and a few select internet sites for my media these days. I've just about had enough. Everything in this post is my opinion based on some facts and is probably in need of some correction. Have a nice day.
Perhaps the folks who did this have reason to believe that the servers held some of their copyrighted material? As long as you have a reasonable suspicion you should be able to just start kicking ass, right??
From riaa.com's "What is Piracy" pages:
"4. Online piracy is the unauthorized uploading of a copyrighted sound recording and making it available to the public, or downloading a sound recording from an Internet site, even if the recording isn't resold. Online piracy may now also include certain uses of "streaming" technologies from the Internet."
Sorry, did I miss a memo? When was streaming declared illegal? Shouldn't someone notify Apple and Real that thier streaming server software is facilitating illegal activities?
Come to the University of Mars! Classes starting soon!
That's an interesting concept - if we plan a day in advance to something of the effect of "at 5:00EDT, everyone go to the RIAA site" - that would create a very effective, yet very legal, DoS.
:-)
OK, everyone, tomorrow, July 31, 5:00EDT, attack.
We don't need legislation.
(they'll go against congress with a "see? This is what we are trying to stop!" attitude, and congress will agree).
No. . . this is what the RIAA was attempting to legalize, albeit only for their own benefit. If they can't take what they want to dish out, maybe they should reconsider their attempt at legislation.
!#@%*)anks for hanging up the phone, dear.
from http://www.vigilante.com/inetsecurity/hacktivism_1 .htm
There is an important corresponding technical dimension that reinforces hacktivist claims of populist support. Hacktivist DoS attacks must be executed using client side or individual browser based tools. The prototypical Zapatista Floodnet tool, (which other groups have continued to develop) requires downloading and installing a Java applet. Moreover, these tools need to be consciously scheduled and aimed at a specific web address; actions that presumably demonstrate solidarity and commitment. To some hacktivists this distinction is all-important because it differentiates their activities from the nihilistic and anonymous February DDoS attacks on the CNN, Yahoo, and eBay e-commerce sites. During those assaults, allegedly orchestrated by "mafiaboy" and a few other apolitical participants, DoS "zombie" servers were surreptitiously placed on unwary host systems and triggered en masse. In fact, the utility programs used for swarming attacks, rooted in performance art, are far less powerful than hardcore "smurfing" weapons like Trin00, Stachaldraht and TFN2K.
Flood attacks can be used as a useful form of civil disobedience if used correctly in a *focussed and organised* way.
The whole "don't bring yourselves down to their level" cliche is one that you can count on to be trotted out each and every time someone counter-attacks a person, group of people, or corporate or govt. entity using something other than journalism.
In reality, most wars get fought on many levels. The teen hacker who takes down a web site is that person's way of protesting the situation. Nobody said it has to be *everybody's* way of protesting. If you have the "clout" and the intelligence to write constructive critism of the RIAA and get it published - then do it! That's your own personal "trump card" against them. If you happen to be a teacher, then teach your students about what's going on. You're the one who can give them education on the rights and freedoms they're losing. But if you're a young hacker who has nothing else to offer but your hacking skills (and can use your age as an advantage to avoid getting caught/getting in serious trouble), then maybe defacing or DoSing their web site is your own best method of protest.
Yep, it's too much trouble to go after the ones actually causing the "problem".
Therefore, you'd put pressure on the creators of all email client software to check for a special cryptographic signature/watermark in every message, so that only "authorized" messages could be received and read?
When _all_ of authors those authors refuse, or at least take a "let's think this through carefully" approach, you'd use your lobby with congress to fast-track legislation to mandate these "security" measures in all "devices" devices capable of touching email in any way? You'd press as hard as possible, with zero regard for what impact it might have for email in general for everybody else.
You wouldn't stop there, you'd also get is worked into "open" standard, such as DVD-R, IDE (ATA-6) hard drives, flash memory modules, etc, so that it would be impossible to use the actual storage devices to store spam messages?
Maybe somewhere along the way, you'd lobby for a tax on all transport of messages (aka sales of blank recordable media), on the assumption that much of is it used for inappropriate spam despite the security measures?
And to top it all off, failing all these other approachs, you'd lobby for vigilante justice, so you could send your thugs directly to the homes/operations of those spammers to shut them down (no due process, little to zero liability for yourself for making mistakes).
What next? Forced spying on users to see what they're doing (Replay4000 case, admittedly the movie studios, not the RIAA) ???
PJRC: Electronic Projects, 8051 Microcontroller Tools
"There has grown in the minds of certain groups in this country the idea that just because a man or corporation has made a profit out of the public for a number of years, the government and the courts are charged with guaranteeing such a profit in the future, even in the face of changing circumstances and contrary to public interest. This strange doctrine is supported by neither statute or common law. Neither corporations or individuals have the right to come into court and ask that the clock of history be stopped, or turned back." -- Robert Heinlein
"He who passively accepts evil is as much involved in it as he who helps to perpetrate it. He who accepts evil without protesting against it is really cooperating with it." --Martin Luther King, Jr.
"If ever time should come, when vain and aspiring men shall possess the highest seats in Government, our country will stand in need of its experienced Patriots to prevent its ruin." --Samuel Adams
"Fascism should more appropriately be called Corporatism because it is a merger of State and corporate power." --Benito Mussolini
""I hope we shall crush in its birth the aristocracy of our moneyed corporations, which dare already to challenge our government to a trial of strength and bid defiance to the laws of our country." --Thomas Jefferson 1812
"I see in the near future a crisis approaching that unnerves me and causes me to tremble for the safety of my country. As a result of the war, corporations have been enthroned and an era of corruption in high places will follow, and the money power of the country will endeavour to prolong its reign by working upon the prejudices of the people until all wealth is aggregated in a few hands and the Republic is destroyed." --Abraham Lincoln 1865
The liberty of a democracy is not safe if the people tolerate the growth of private power to the point where it becomes stronger than the democratic state itself. That in its essence is fascism -- ownership of government by an individual, by a group or any controlling private power." --President Franklin D. Roosevelt
"The goal is to keep the bewildered herd bewildered. It's unnecessary for them to trouble themselves with what's happening in the world. In fact, it's undesirable -- if they see too much of reality they may set themselves to change it." --Noam Chomsky
Please consider making an automatic monthly recurring donation to the EFF