Slashdot Mirror

← Back to Stories (view on slashdot.org)

First Worm with a EULA?

Posted by ryuzaki0 on from the first-born-child-at-risk dept.

ErikRed1488 writes "There is a new virtual postcard from Friend Greetings, owned by Permissioned Media that prompts you to install their software to view the card. You are then presented with a EULA granting them permission to e-mail all the Contacts in your Outlook Address Book. Those people are presented with an e-mail from you telling them they have a greeting card to pick up. So, this thing spreads like a worm, but includes a EULA that 95% of users won't take the time to read. Symantec isn't detecting this as a virus, but does have information about it on their site. In addition to the worm-like way it spreads, it also installs spyware designed to deliver ads to your computer. You also give them permission to install further software any time they want. In my opinion this is completely nasty, but it's all clearly in the EULA that you must agree to before it installs the software."

13 of 716 comments (clear)

  1. Beautiful by jmd! · · Score: 5, Insightful

    Just beautiful. The more insane EULAs get, the more people will start taking a harder look at all of the ones they currently sign their souls over to.

    This can only be good for Open Source.

  2. No surprise by silhouette · · Score: 5, Insightful

    This may be a cynical thing to say, but I think it was only a matter of time before some shady software like this was made.

    I would remark "How could the makers of such a thing sleep at night?" - but I already know the answer: they sleep just fine. People like that don't believe that they're doing anything wrong.

    --
    Experts agree: everything is fine.
  3. This may be the type of thing we need by Zebbers · · Score: 5, Insightful

    to help force the govt to evaluate the merits of EULAs. While it can be argued..."you shouldve read the license before you agreed"

    I would rather say "There shouldn't exist any such licensing format. And we as the people should not allow it to ever exist."

  4. Good could come from this by plover · · Score: 4, Insightful

    This points out the absolute absurdity of click-through EULAs. Hopefully, a case against them could be used as a legal defense against other badly-licensed software.

    --
    John
  5. This should be regulated by Dr.Luke · · Score: 5, Insightful

    Eulas like these should be regulated by the government. It is pretty common in contract law that unreasonable provisions are not enforceable and illegal. Like for example a credit card agreement cannot mention it deep in the fineprint that if you default they own your house or are allowed to enter your home and steal your pants. This kind of EULAs are a consumer protection issue.

  6. Legal vs. Ethical by laetus · · Score: 5, Insightful

    This to me is a primary example of the sometimes dichtomous nature between was is legal and what is ethical.

    Is what these business professionals done legal? Probably.

    Is it ethical? Absolutely not. Otherwise, why hide the email's worm nature in the EULA?

    I know there are those that are going to say, "Hey, you had the opportunity to read the EULA, you didn't, and you clicked it anyway."

    But caveat emptor, though a fact of life, does not exempt the screwer from his reponsibility of what he did to the screwee.

    May be legal. But in my mind, definitely not ethical.

    --

    "We're sorry, but the website you're trying to reach has been disconnected."
  7. Yes, a worm is a problem by Lover's+Arrival,+The · · Score: 5, Insightful
    But this company is still within the letter of the law, if not within the bounds of morality.

    Some may scream that the law should enforce morality, but then you must wonder "Who's Morality?".

    I read a very interesting book recently, called Human Action, by a lovely looking grey haired man called Ludwig von Mises. It was left by my old boyfriend in the bathroom, and I picked it up and smelled it unhappily one evening, but before long found myself readin Mises' interesting take on the fundamental sovereignty of man.

    Mises would warn us all against enforcing a common morality, for that is a sure way to tyranny, in the end. This company should not be legislated against. We should instead encourage people to read EULAs and to take responsibility over themselves, over their own bodies, over their computers. Anything else is slavery to government.

    I thought I had left slavery to the state behind in my native Scotland. As a Catholic girl, I understand only too well the attractions of worshipping an idol like the state. But we are better to resist laws that seem fair and moral, and instead trust in common deceny and responsibility.

    Thanks,
    Margot. XXX

    --

    --Anticipation of a New Lover's Arrival, The

  8. Admit it by anthony_dipierro · · Score: 5, Insightful

    How many of you have read the Slashdot EULA?

  9. This is not exactly a "license" by Dr.+Awktagon · · Score: 4, Insightful

    This just describes what the program does, and by placing it in the license, they hope that you don't read it. Kinda like saying something in 4pt-font fine print: ("note: Happy Fun Toy will explode into sharp shards, killing your child"). Shady practice, but not directly related to the real problems with EULAs ("you may not use this program unless...").

    Just nitpicking.. But it's true, you should always read your EULAs (prounounced EWWWWWWW-lahz).

  10. Re:For perspective... by sgtpudding · · Score: 5, Insightful

    speaking of lawyers... are eula's treated like contracts, legally speaking? if so (and i'm pulling from a business law class from several years ago), illegal or unethical points of a contract are null and unenforcable by default, regardless of what you sign. i.e. - if you sign a contract to mow my lawn, and it states that if you cut down my roses, i get to kill your firstborn in a satanic ritual - well, that's just not enforcable.

    too bad online legislation moves so slowly... i think i'm going to register for every spam list i can with my representatives' email addresses, and see if that gets things moving along... umm.. just kidding, secret service guy reading this over my shoulder.

    a

  11. Yay for evil! by ChaosDiscord · · Score: 4, Insightful

    It's unfortunate that it has to be this way, but unless people get burned by EULAs they're not going to take EULA's seriously. Discovering that they've agreed to let this software spam their boss, coworkers, and business contacts will hopefully encourage people to seriously read EULAs in the future. I expect that when people start seriously reading EULAs, they'll discover they don't actually agree with many of the terms. (Or at least they'll discover that they can't make heads or tails over the thing.) A little backlash would be help restore balance to EULAs and make the work a more fair place.

    --
    Search 2010 Gen Con events
  12. Too hard on Symantec? by jasonditz · · Score: 5, Insightful

    It seems like a lot of you guys are really down on Symantec and McAfee for not filtering this with their AntiVirus software, but consider this.

    By clicking "I agree" on the EULA you are telling your computer "I want to do X". If you tell your computer you want to do X and Symantec's software tells your computer "he can't" how is that any different from all the DRM crap like Paladium?

    I know the intention in this case would be to protect the user, but then again isn't that the tack that Microsoft is taking as well?

  13. Re:what if it also installed it's source? by Fnkmaster · · Score: 4, Insightful
    You are wrong. I have many friends who are lawyers or in law school, and I have had this discussion several times with some of them, though IANAL. Clearly, the GPL is a document, an agreement between the recipient and the author of a program, which grants a set of rights, provided a set of conditions are met. This is a classic contract - you are receiving something in exchange for some consideration. If you reject the terms (the consideration) than the contract is likely to be null and void (with certain exceptions - like promissory estoppel, though that is unlikely to ever occur in any GPL/Open Source or shrinkwrap software license disputes).


    Of course, if the contract is null and void, you are still bound to the standard law regarding copyrighted material with respect to a GPL work. In other words, you can look at it, but you don't have any right to redistribute, modify, etc. etc. etc., all the nice rights that the GPL grants you THROUGH your acceptance of a contract, IN EXCHANGE FOR consideration. So it is clearly only possible as a result of BOTH copyright law and contract law that the GPL can exist. An EULA generally refers to a consumer good (a piece of binary software), that is also admittedly under copyright protection, and there is generally no "contract" that I think should be legally acceptable, because, as you point out, it restricts what you can do and offers you no consideration in return (though click-through licenses apparently offer you the consideration of being able to use software you already paid for - ROFL).


    Summary: GPL depends on a combination of contract law and copyright law. Shrinkwrap EULAs depend on a serious misinterpretation of contract law to restrict rights that you have as a result of common law and copyright law (i.e. first sale doctrine, etc.). Clearly we can all agree that EULAs restrict freedoms, and most Free/Open Source Licenses, GPL included, grant rights you wouldn't otherwise have.