Slashdot Mirror
Will Your CD Player Tell on You?
An anonymous reader writes "Ever feel like not being a marketing statistic? Well just by playing certain store-bought compact discs in your home or office computer, your new music disc may be transmitting your listening habits in real time to the respective record company...." Charming. Read on for more...
Anonymous Continues: "A company by the name of Bandlink is providing technology to record companies that allows a cd played in a personal computer to contact their server and relate statistics such as what track you're listening to and when you're listening to them. This information is then compiled into customizable reports that allow the record company to develop "User Profiles". There are benefits listed for the consumer such as cd-specific chatrooms, concert information, etc but the question remains: What's your price for privacy? The only indication that the cd you're purchasing is Bandlink "enabled/disabled" is a small logo on the packaging. There is no mention of a opt in/opt out agreement when the cd is inserted on the website and none was displayed in a personal demonstration.
Favorite quote from their website: "Virtually any information you want to know about your fan or the quality of your release can be obtained.""
What sort of idiot has their firewall configured to let their CD player send packets out?
You know what? I think the law should start considering my computer desktop and my network connection as my personal property. Want to display a popup on my desktop? Sure, $5 a time. Want to send some bits on my behalf? Sure, $1 million a time. If you try and steal advertising space on my desktop, or steal some of the bits that I own, then you go to jail.
...from all those players (including WinAmp) that analyze your CD and download the songlist for you? And this applies to 99% of retail CDs, not only those that are enabled by this technology.
"What sort of idiot has their firewall configured to let their CD player send packets out?"
People who don't read Slashdot.
this may not be all bad.. "Virtually any information you want to know about your fan or the quality of your release can be obtained." maybe they'll finally realize that everyone knows that the quality of their releases is mostly TERRIBLE... and that most people buy cd's for more than 1 song... this may actually lead to entire CD's being quality once again...
So does this info go to the DOD to see if you're a terrorist? God help me if they know that I like Avril Lavigne!
I use Tiny Personal Firewall 2.0 to stop this sort of crap under Windows. It'll block any application from 'reporting' back home via the internet. It's a pro at keeping apps like Real Player or guys like this from tattling. It's not open source, but the 2.0 version was freeware. I'm not sure about the 4.0 version.
I strongly suspect that this won't even be an issue for most Linux users.
The next Slashdot story will be ready soon, but subscribers can beat the rush and slashdot the links early!
Buy a Mac? Use Linux?
:)
Uh... disable autoplay? Come on, not tricky, this one.
Is this USA only, or are these for sale in Canada or in Europe? Because if they are, Canada's PIPEDA and the EU DPD mean wake up and smell the lawsuits.
MHO. YMMV. Any resemblance between this post and real persons, or reality in general, was accidental.
Seal the device in several layers of shielding metals. No data's getting out then. And nobody's going to steal your new, portable, 500lb cd player.
Karma: Excellent^(-t/Tau), Tau=Wittiness/Trollishness
Maybe the record companies will finally realize that there's more to music than the crap they force feed us, courtesy of radio, and MTV! :P
Who knows, they might actually TRY to sign people with talent! LOL!
Join the TWIT army now!
to me, anyway; I gave up on the pre-recorded music somewhere back in the late 1980's. But I have to wonder what would iptables do with this? That could be, er, *interesting*
C|N>K
Does it transmit data when you rip a CD?
Or better yet. Use Linux which doesn't understand autoplay 'features'. Personally, CDs stay in my PC just long enough to turn into MP3s. The CD is then retired to a dusty bookshelf.
Bandlink Support
Bandlink is designed to be run simply by inserting the CD into a Windows Compatible PC. The first time you insert the CD you will need to agree to the Bandlink User License and download the remaining program files. Bandlink should do the rest from then on.
As you can see, there's a consumer agreement component here. It's not an unimpeded, unstoppable invasion of privacy, like what TiVO was doing. You have to agree as well. In which case, if you don't really care about your privacy (and you like push content, which some people do) it might actually be seen as pretty cool.
Statistically speaking, there's a 99.998% chance that my IQ is higher than yours. Get over it.
The obvious possibility is information on copying being reported. I can see it now... "Customer A burnt 6 copies and ripped to MP3." And one assumes a burnt copy will also report back to the data leaches...
I can't wait to get this technology with a "copy-protected" cd that won't play in computers. Unless they would do it to try to get information from the people who break the copy protection by using a sharpie...
I think my principles are reachin' an all time low
Can't you just disable "auto-run" for audio CDs in Windows? But I guess most average users don't know or care enough to do that. Ohh well, why do you need privacy anyways, unless you've got something to hide, you criminal :)
...if it can make your CD 'phone home' when playing it in a regular CD player (as mentioned in the article) that's not 'net connected!
In any case, this is seriously scary. While I don't think most Slashdotites (being technically literate) will be affected, think of your mom, little sister or brother (if any), peers at school (if any) - all those people who click "OK" mindlessly whenever a dialog box pops up. It's THOSE people that this kind of stuff targets - because those people don't know better. The only way to stop it is to TELL THEM ABOUT IT. Get the word out. Post flyers. Put it in your sig. Whenever you fix someone's computer, tell them about the new 'spy' CDs while you're digging around inside their case or (more likely) plugging in their eithernet cable.
I'm sure someone will come up with an anti-spy software for this soon, so give out as many copies (assuming the antispy software is freeware) as you can.
Look how well it worked for CD copy protection, at least for the first wave. We can do this.
This
Lets get as many /. readers as possible to coordinate a time to play the exact same track and see if we can crash the server with information overload. Better yet, someone figure out exactly what packets are sent so we can duplicate it without buying the CD and just continuously send worthless information to the servers so they give up.
With CD copy protection preventing people from listening to cds on their PCs, this shouldn't be a problem.
That would be incredibly easy to block, though. Aside from those of us not running Windows, all you would have to do is shut off any auto-execution features.
I doubt it will take long for a freeware program to emerge that disables this.
The fundamental principle underlying current privacy practices in the United States is: "It is perfectly acceptable for a company to violate your privacy so long as it is for the purpose of selling you things."
Obviously companies believe this, and on present evidence I'd say that most consumers believe this, too.
"How to Do Nothing," kids activities, back in print!
You would think that if they use slashdot in order to find software and techniques that crack their attempts at 'protecting investments,' that by now they would understand that 'user profiling' is not generally liked or condoned by informed users.. in my humble opinion the modern day equivalent of 'racial profiling'.. the initsself modern term for a commonly rampant tendency for humans to generalize and profit of those generalization and the fears that follow. In this case, push technology is their answer to piracy finance losses. When I say loss I say it loosely and in a 'predicted forecasted maybe finacial gains report' kinda way. So, Why can't they get a grip and let customers come to them (with their supposedly superior product)? Why must they collect info on already paying customers when its been written as a disliked idea in popular science fiction (and general fiction/ some nonfiction) forever?
I give up.. I'll never rant again
HEY IN ANYONE HERE IS THINKING OF STARTING A COMPANY..
respect privacy..
nevermind.. I'm wasting my breathe.
pm
** "It's not my job to stand between the people talking to me, and the ones listening to me." -- Pego the Jerk
There are few technical details on their web site, but it appears to just be a mixed mode (data and audio) CD, which when played using Bandlink's CD player software, will give the "benefits" described. Since I don't have any intention of using their software, it's not a problem. Until, of course, people start producing music that can only be played with their player. So far, record companies haven't been brave enough to test such a tactic in the market, although with copy protected CDs, they're getting awfully close to the line. The depressing thing is, I suspect the general public would just meekly go along with it :-(
"The invisible and the non-existent look very much alike." -- Delos B. McKown
Wow. How did this line of thinking go?
RIAA Exec #1: "Let's start spying on people. It's not like they have a real reason to steal music anyways."
RIAA Exec #2:"Yeah! And we can have pop-ups that tell them Big Brother is watching!"
RIAA Exec #1:"No... That would be stupid... right?"
RIAA Exec #2:"Perhaps... But surely this will make people want to buy music as opposed to downloading it. Right? Right?"
RIAA Exec #1:"..."
RIAA Exec #2:"RIGHT?!"
RIAA Exec #1:"Oops..."
Me: "Thanks guys. Now I have a morally sound reason to download Britney's newest album! MERRY CHRISTMAS!"
Aren't CDs supposed to be replaced by SACD
and/or DVD Audio by now? If there's no way to
avoid copy protections and stuff like this, why
not buy a format that has better quality, and a protection that is not just some add-on that might even affect the sound?
Let's push the technology forward by buying
high-quality SACD/DVD-Audio, and leave all these
crappy (made so by the record companies) CDs behind.
Just a thought...
At home, my Windows box has no access to Internet (except for Mozilla): the firewall is setup not to let any packet from this particular IP address go through :o)
Mozilla may establish HTTP connections using the proxy.
I'd like to see how these smart guys cope with this situation...
But perhaps, I'm not exactly the kind of person they are looking for...
It is times like this I am glad I don't run a mainstream OS. First viruses, now spyCDware
So it's nothing more than some Auto-Run software. Which makes sense, I can't imagine any other way a CD would just magically contact a remote host.
Solution? Disable auto-run (which I do anyway), or in this particular case, don't accept the license agreement...
They also mention this a lot:
My first thought was that they could easily combine so-called "copy protection" with phoning-home, but at least with Bandlink this is not the case.
NGWave - Fast Sound Editor for Windows
CD Player listens to you!
(At least people in Soviet Russia can grin on this)
Every time you use a credit card, grocery store discount card, write a check they put through a reader, login to something, and so on and so you're are being profiled. I used to work for the second largest ISP, and everything you connected all your connection attempts and other info was beening uploaded during the connection. Many of the major corporation now run software that monitors your calls, and internet activity. We are being monitored, counted, tracked, profiled, and categoried so much does it even matter. All this is just business, if get into all the tracking the goverment does, and you'll really feel like a specimen under a microscope.
Actually in many way I feel there is safety in numbers. If they were only monitoring a we few people I would be nervous, but when the amount of data being collected we are people just numbers in a statisitc somewhere. Just another brick in the wall.
Although I use the free ZoneAlarm.. I'm also pretty restrictive about what programs I allow access, i.e. why oh bloody why does WMP require internet access when playing a media file when all the required codecs are installed (pile of crap it is).
But, the cynic in me keeps shouting out this idea... what is to stop the disc (well apart from disabling autoplay, unless MS has some other "backdoor" auto execution of something on new media) from opening up a browser window with a heavily customised piece of url every now and then? The default access permissions will allow any web browser to do it's stuff?
Just food for thought.
Are you local? There's nothing for you here!
When I used to use windoze, I used ZoneAlarm. It is also freeware. Just look for it on CNet. It had a handy feature of being able to run in the windoze 98 equivlant of an applet in a panel. (You'll see when you download) It allowed you to block ports and restrict which programs wanted access.
I also used Tine Personal Firewall, but found ZoneAlarm more convenient.
IN SOVIET RUSSIA "IN SOVIET RUSSIA" comments are lame
/. comments
Join the fight aganist lame
Can someone with one of these CD's report the addresses they try to write to, and we add a map to 127.0.0.0 in the HOSTS file? That works with all kinds of spyware (e.g., doubleclick, redsherriff).
Better yet, can someone distribute a universal HOSTS file of all known spyware and update often? I'd pay for the privilege. AdAware may be a good vehicle.
Do you play all the music that you want to listen to? Or did you just stop listening to music pretty much period.
(This isn't meant to sound arrogant, I'm just curious)
As someone else had posted earlier, it's not likely iptables would notice. It would probably look like a web page request on the client computer, which would be legitamate as far as the firewall is concerned.
If this IS the case, thats cool because you could log the packets while the app runs after inserting the CD, and see how they talk to the server. Then using the logged data as a model, you could seed the database with misinformation, or "support" certain bands that you are partial to.
THIS THING CAN TURN ON A DIME, MACROSSZERO STYLE ALSO FUCK BETA, ~NYORON
...a Snow White DVD that ruins your computer.
What's sick is that people will do this. Mostly because they don't know otherwise. It's like the people who install Kazaa WITH the spyware, even though there's a little box that you can UNcheck to not install the garbage (Kazaalite is another story). They just don't know the difference.
"Oo oo! Who wants to know what I'm listening too?! Oh, wait, you already do..."
Remember when certain vocal entities claimed that WORD would inventory your system and phone home to Redmond?
How can anyone be surprised when the topic of profiling via PC usage comes up?
Worrying about it gives offending parties too much cred. I doubt there is any real efficiency in how the data (if collected) is used, much less harvested.
I don't think this will affect you very much unless you actually listen to mainstream RIAA approved music. :-)
The smaller independent recordcompanies probably won't try to alienate their small base of customers by doing idiotic stuff like this.
"People aren't buying our records! What whould we do?"
"Hey, I've got an idea. Let make everyone hate our guts!"
/.Mattsson - My native language is not English, so please don't whine over linguistic errors. (That's lame anyway...)
This is not a big deal now -- you have to install their software for the "feature" to work, etc. Therefore some of the people on this site are not concerned. After all, we listen to our cds on real cd players, and don't use their program, etc.
The problem arrives when you must install this software to listen to the cd on your computer. Remember, copy protected cds are out there, and adding this layer wouldn't be very hard.
The next step means loss of fair use. Maybe not for you or your friend who thought Napster was the greatest thing since a windows network on a university campus, but definitely for a lot of people.
Over the last couple of years the fire has seemed to have burned out. We used to get pissed about this shit, and now the highest rated comments don't seem to care about it all. We're letting our guard down.
autorun.ini
Thats it. This amazing technology boils down to autorun installing a CD player on your computer that sends the data back to the label. Don't agree, don't install, and you just use your standard CD player, winamp or whatever, to play the CD. The concern would be if the music was encrypted or formated in some way that only by using their program could you play it. But then you wouldn't be able to play it in a standard CD player.
The vast majority of people I deal with (in the real world) are idiots. And no, I'm not in tech support/customer service.
It's a good thing none of their CDs play on PCs or this might be bad.
The global economy is a great thing until you feel it locally.
If a company wants to collect this kind of information I'd support it as long as it was purely entirely 100% anonymous. But what guarantee do I have that just the CD, track, and time of playing are sent?
How do you know that they aren't sending your IP address when they say they aren't? How do you know they aren't sending info about files in 'My Documents' or what files are listed in the 'add/remove' section of the registry? And don't tell me the privacy policy says they aren't so they aren't-privacy policies are changed more often than my underwear, and I change that everyday!
I don't mean to get all Mulder here, but I am so tired of companies trying to sneek things past me in a 10 page licence agreement for free software that exceeds the length of my deed if I buy a $300000 house!
I listen to anything I want on my Powerbook, and nobody knows but my girlfriend.
You get what you pay for. Except if it's Windows.
What's your price for privacy?
With a price point in the 15-17 dollar range, you'd be a sucker not to! Folks, you haven't seen deals like this since the 50s!
Keep your packets off my GNU/Girlfriend!
Very nice analysis! An "A-"
... The appearance of scholarship is as important as its fact.
It would have been an A+ had you included some gratuitous footnotes or hyperlinks
Also, this Yakov shtick was dead a long, long time ago. I thought we'd deported Yakov to Russia in exchange for dismantling some nukes. But if you look at his personal site, it looks as though he is actually nailing some gigs.
In Soviet Russia, GIGS nail YOU! Har-har-har.
And some who do.
I browse Slashdot at +3, Funny
I can't tell the difference anymore anyway, so why bother?
Why not fork?
Another one of the many benefits of listening to vinyl :)
I'm getting closer and closer to just taking my system off the net. Reading slashdot, penny arcade and looking up movie showtimes is really not worth the hassle of every tom dick and harry knowing all there is to know about me. No, I don't have anything to hide. But, its my decision who I let know things about me. If that means get off the net, then fine.
-
I really get Irked by this kind of BS..apparently there are supposed to be a bunch of hackers on this site..why dont you guys tear up places like this? I'm not playing to the largerthanlife hacker stereotype either..I know what geeks/hackers are like..I am one..I just wish you guys would use your powers to improve life for the whole of the internet more often..hope I dont lose points for this post..
"I feel it is my duty to look at the porn that kids download before I delete it, to be sure what it is."--School Admin
to download Britney's newest album.
"All animals are created equal, but some animals are more equal than others." - George Orwell
The cd is a mixed mode cd, 2 sessions.
The first is standard cd-da format.
The second has the bandlink software - 2 mb.
There's an autorun that pops up saying "You must agree to this to listen to this cd"
However... when I open windows media player 8, select Play > Cd-audio, then the cd plays just like any other.
-- You can't give it, you can't even buy it, and you just don't get it!
Thank god they can't equip vinyls with copy protection. Stuff released on vinyls is better and sounds better... (well, in most of the cases. I dont want to summon a war "analog vs.digital". Several other people already did that ;))
The analog medium and transfer mechanism, albeit out-dated, is still my prefered method for listening to _good_ music (and NO! I'm not listening to classical music).
But... wait a second! They could equip every vinyl with a tiny microchip you have to put over a scanner unit to be allowed to play on you "digitally enhanced" turntable.
OMG!! O_O I found a new marketing idea....
"All you have to do is be fragile and grateful. So stay the underdog." Chuck Palahniuk, Choke
Whilst that's something that iptables/chains just can't cope with (sadly) I have Norton Internet Firewall, for my remaining Windows PC, which is application based. ie, you can accept/deny any connection for each application.
:-) )
I believe you refer to process name matching, which was added to iptables-1.2.7.
Of course, iptables doesn't have a pretty GUI interface like NIF, but there are plenty of people that have made front ends for it.
I don't like the approach much, as there are lots of ways for a programmer to get around it -- I mean, process name/(application name under Windows) is not some immutable thing, and worst case, the program copies itself to a file of a different name and executes itself.
I suppose if the OS's loader SHA-fingerprinted binaries at load time (expensive, but secure) and granted rights based on said SHAsum, you might manage to securely pull something off like this. Then said application couldn't support "components" or plugins, as MSIE unfortunately relies upon rather heavily. However, in general the "security" provided by NIF/ZA is pretty much an illusion, though it makes end users feel good. You really need lower-level OS support to build a "secure" environment like this.
Mostly, the point of NIF/ZA is to make the sort of people that read Maximum PC and impress people with their framerates in FPSes feel that their system is "secure".
No insult intended...(see "mostly"
May we never see th
perhaps you are just full of yourself and have a narrow view of the world where you are king shit and everyone else "just doesn't get it"? 99% of the time thats the case - especially with nerds.
Yakov's whole act pretty much fell apart after the Iron Curtain came crashing down...
--sdem
is that pesky thing still around? Short of locking myself in a cage, I honestly cannot escape every trap that exists to try and take it.
They can tell who you call on the phone, where you travel (and with a bit of deduction who you might be visiting and what you might be doing there).
So what?
Time for a new job. Are they going to hire you? Better check you out first.
You like (insert anything-but-vanilla-heterosexual-paraphilia here). Strike one. You go to the wrong church. Tsk Tsk. You enjoy wilderness snowboarding - risky sport that, might result in you being injured and not able to work. Uh oh. You take prescription X - an indication of icky chronic disease. Hmmmm Your grocery card indicates you eat too much unhealthy food. Hmmm again. Your grocery card indicates you drink too much alcohol. Snort. Your email indicates an affinity for the Republican party. Democrats only welcome here You seem to be a linux user. We're a microsoft shop here. Looks like travel to Rainbow Gathering here. No hippies wanted. Gnutella usage indicated. We support the RIAA in every possible way.
Maybe some of the information is about things that are protected (religion, say). But someone can always point to something else in the list and say that that was the crucial bit of information.
Or it might not even be your possible new boss, but the health insurance providers who are going to set wonderfully high rates for you (that broken leg after climbing in the 'Gunks cost a whole lot of money remember).
Small pieces of information might by themselves indicate little, but aggregate them and focus your attention on one or a few people and all kinds of information can be deduced. Accurately. Or Not So Accurately. That may not matter after the fact. This is (I'd bet) the basis for that DARPA Information Awareness Thinggummy.
The most important thing to bear in mind concerning idiots is this. Consider how dumb the median idiot is. Half of them are dumber than that.
Wh47 d1d j00 541, 31337 15n't t3h r0xor5 ne m0r3???
a good, old-fashioned boycott? Maybe you should tell your favorite band that although you like their music, you refuse to spend another dime on their latest hit until they force this shit off of their CDs. But what do I know?
Attach standard phone line to rear of CD player"
Hmm... why would my CD player need a phone line... oh well. *click*.
But I'm all for tracking people's CD usage. That allows companies to market more targetable CD's. Instead of producing CD's that people buy because they "heard" they were good, and then listened to only a few times before getting disgusted with it, it lets them find out what music people listen to over and over again.
-BrentNo. The correct sentence for example one would be "In Soviet Russia, mail opens YOU."
This isn't just limited to music CDs. I used to work for a company that did a lot of multimedia CDs for some very large clients, and this had to be the top requested feature. Everything from mom and pops to Fortune 100s wanted to see who was using their CDs and when. It's usually just done with an HTTP request (or multiple requests) and a little bit of XML data or something similar.
I would say this was on at least 50% of the CDs we produced.
The public has already gone along with it in a few areas-- the DVD CCA, for instance. An industry consortium (cartel) that sets the price and standards for content scrambling systems. I'm really suprised they haven't branched out their system to the audio industry yet, probably because research indicates consumers wouldn't buy all new equipment, or they would have done it by now. So instead, we have a few "DRM" type CDs that have come out recently but are backward compatible with home/car CD players and windows PCs. It would be much more convenient for the music industry to have a new format come along like DVD-Audio so they could start from scratch with the scrambling system as DVD did several years ago. What I see happening is that the music industry will encourage more sales of DVD players and drives so that gradually fewer and fewer regular CD drives will be sold, and people will be able to play CSS-encrypted CDs in their DVD players. A far cry indeed from the earliest days of CDs when a simple ISO "don't copy" flag on the disc was supposed to prevent people from ripping CDs to DAT in the mid 1980s.
I pop the CD in my box and play it. The CD is a "dead" media, it's not something that magically comes to life and starts transmitting information.
Seriously, how stupid can people be? Ok, so the CD will buffer-overflow my player, and figure out how to access the outside world by executing it's malicious (processor and OS independent) code... You know what? No it won't!
Shit like that doesn't just happen.
So maybe *some* people run a player that facilitates said information gathering and transmission - that's their problem. Get a life, get a real player, get a real OS.
But CD's magically coming to life and transmitting my listening habits (which I guess it stored in the big secret database facility on the moon, which is by the way run by aliens under contract with the government - which is again why they had to fake the moon landing, but that's another story) - no, please, just forget about it...
I use Linux at home and Solaris at work. Will this affect me? It sounds like it is entirely dependant on which CD-playing program you use. If that's right, then surely it won't affect many people?
Follow me
This software, if it is decently written, looks like it isn't nearly as bad as the article says it is. First, as many have pointed out, you don't have to install it. But notice what it does in addition to sending out your personal information: it lets artists give you access to bonus tracks, artwork related to the music, tour info (and discounts), contests etc etc. It lets you chat (and synch music) with people listening to the same thing, which, although I wouldn't do it, would be considered a perk by a lot of listeners out there.
Furthermore, their privacy policy says they will not hand out required personal info, but only aggregate info. They do say that they will use your personal info to "contact you about services in which you have expressed interest," which may or may not mean spam. Really, "expressed" should mean a check box, but you never know. It looks like a loophole though. And of course, the artists can require your personal info to log in to their sites, but you can just refuse to give it and not log in if you think that's a problem.
All in all, I the article is bullshit. If this system is what it says it is, it's just an above-average media player that comes with the CD (although possibly at the cost of, say, a quarter to the buyer). Nothing to bitch about, invoking "privacy" and all that. If you're a privacy zealot, firewall it. If not, there are still a zillion other programs that are more likely to spy on you.
I hereby place the above post in the public domain.
Perhaps we'll see Microsoft buys or "borrows" the idea from Bandlink and incorporates this "nice" feature to the OS. More "added value" to Windows.
Good thing I turn my cds in to MP3s. I assume this removes the threat entirely.
Some drink at the fountain of knowledge. Others just gargle.
I am tired of my email address being whored out
I am tired of companies thinking my phone number is necessary for a cash purchase
I am tired of marketers
I am tired of all the invasions that happen by companies
You know if my governemnt wants to know something about me that's one thing, I can vote those pricks out, but when fucking Radio Shack does that pisses me off. Sometimes I need a tralfaz emulator!
This
...enough said.
-- Slashdot: When Public Access TV Says "No"
against unauthorized access. Perhaps if the "average Joe" started to insist they apply to *his* computer as well the corporate server things would get, ummmmmmm, interesting.
Of course if your computer software comes attached with an offensive EULA in which you "agree" to have no rights to your own system/network you might well be hosed. I'd like to see someone challange this in court *on the basis that you can't be coerced into signing away a basic property right, even by contract.*
To my knowledge this hasn't been tried yet in America ( in some other countries the EULA is already considered invalid prima facie). All it takes is someone devoted to the cause with $50,000 American and five years of their life to devote to it.
Of course there's another option. *Don't use EULAed software.*
In that case the assumption of having to give some sort of explicit permission to enter your system ought to hold just as much for the personally computer as it does for the corporate/government computer.
Hacking is a crime. Do your homework, secure your system, and then insist on *prosocuting* any "hacking" of you system, no matter who the "hacker" is.
Laws are double edged swords that can cut the person who "bought" the law just as well as those it was intended to be a weapon against if the intended victim learns how to use the "weapon."
KFG
NT
(Applies only to windows users)
:
:
v ic es\CDRom
The scumware installer appearing when you insert the CD is located on the first partition of the disc, which contains CD-rom data with win32 code. This partition has an autorun.inf file with a link to the installer.
So far I've not encountered any installers actually installing anything without first prompting for permission to do so (legal mumbo jumbo as mentioned in the discussed scheme nothing more than chaff to confuse and dissuade sheeple from clicking the 'No - I disagree with these terms. Do not install' button, which should be the preferred choice.)
However, following trends from the ever more aggressive piranha feeding frenzy world of ruthless cyber marketeers, it's a matter of certainty that we shall soon see automatically running installers delivering their nasty payloads with cunning stealth, pausing neither to seek permission or to announce that such an installation actually took place. Perhaps this has already happened. How would you know?
Stealth deployment of viral spyware is commonplace with the parasitic ridealong schemes seen infecting the installers of "free" ad-supported software such as KaZaa, and many others. This is the crack in the floorboards from where things like the Bonzi Buddy creep out at night.
To prevent exposing yourself to the risk of CD-deployed malware installation, either hold down the shift key each time you insert such a potentially infected hybrid music CD, or simply disable the autorun feature entirely - much safer, easy to do and fully reversible
Locate this key in your windows Registry - use regedit
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Ser
Set value of Autorun parameter to zero. Then reboot. In the future when you insert software installer CDs you will then have to hunt down and manually execute the installer yourself; if the location and name of the installer is not obvious, examine the now disregarded autorun.inf file at the CD-Rom drive root.
By the way, if you have one such infected CD in your collection, and you have already ripped the tracks and burned them to a 'clean' CD for listening to sans spyware and data partitions, why not mail the original disc to Mr. Ralsky at 6747 MINNOW POND DR, WEST BLOOMFIELD, MI 48322
So what? ::gasp:: give me more of the products I want! They'll be able to see what kinds of music I think are not crap and make more of it so I'll buy music, stock the grocery stores with goods I'd rather buy to entice me into larger purchases, and even make it easier for me to buy the things I'd be buying anyway.
Now corporations will be able to
For all of this talk about how our privacy is being eroded, nobody ever actually steps up and gives a really good reason why that's a bad thing. It's just as arguably a good thing, and in the end there is no hope of reversing this stuff anyway.
Might as well let it go and stop holding off on the benfits of the future. This resistance is hurting us all more than the actual erosion ever could.
Hey Mister CEO, how 'bout you invite me to your house?
When you guide me to the door at the end of my visit do you mind if I leave wireless web cams scattered thoughout your house? Like say in your living room and kitchen? Or how about your bedrooms and bathrooms? It would really help me to understand you better.
Honestly (and sarcasm aside now) - I would just like to know where these people come up with these ideas. Do they not realize it's invasive? Then again thay probably have the same undertsnading impairment of Mr. Ralsky
***Blackholes are where the gods divided by zero.***
one of your points, ZoneAlarm (at least) does checksum all the apps and compares them when they request a connection.
Wow, I would have thought that that would have been prohibitively expensive performancewise, which is why I would assume that only a "trusted OS" would do that. Interesting. So I'd assume (since Google fails to turn up a detailed whitepaper on the first few hits) that ZA MD5s the binary at the first socket access the app tries during an invocation (it certainly can't be every time the app tries to do something, or performance would be completely unbearable).
But you really don't have to go to all this work. Copy (or contain) a copy of a trusted binary. Drop it into a directory somewhere. Drop a modified msvcrt.dll in the same directory, and let the program link to said DLL, and you've easily got untrusted code running within your "trusted" application.
Frankly, as long as the OS doesn't have pretty low level support for this, you're going to be able to bypass it.
I wonder what ZA could do to fix this? MD5summing linked to DLLs would be kind of expensive, and wouldn't work at all if there was application-initiated (rather than load-time OS-initiated) dynamic linking going on. I guess you could do that, take the performance hit...then ZA could hook LoadLibrary() and handle application-initiated linking....
Still, as you and I mentioned, the monolithic design of IE, providing application-level services and using components left and right, is pretty much an unstoppable impediment to securing a Windows-based system.
May we never see th
This is even dumber because if record companies wanted me to send them the play counts from my MP3 program so that they could make more of the kind of music I like, I would gladly do it. Just use an open source program so that we know exactly what it's doing, and make sure users are asked if they want to participate.
"Reality is just a convenient measure of complexity" -Alvy Ray Smith
The company's privacy policy is listed on their site. From a quick read, the only thing that upsets me is that they pass along your info to the recording groups. It appears that only basic contact info is gathered and there is a fairly easy opt out approach. Of course, they can publish a rosy policy and blatantly ignore it.
From what I can tell, they are trying to impress recording labels with an avenue to add value to the CD. I read a lot of ranting about how the music industry is clueless and could leverage the Internet better. Maybe this is a positive more in that direction. It is hard to tell.
I'm a bit paranoid about it as well, but since I use Mac OS X I'll let the Windows people cut their teeth on this one.
-- Solaris Central - http://w
Creating a profile of your customers isnt really anything wrong and its advisable for those companies interested in providing good services. If I owned a record company I would like to have my customers profiled. The problem arises when you dont have the choice wheter to be profiled or not. So far bandlink asks for your permission. So the only thing that can be done is to expect that this information turns back to us in the form of better music. At least, i think, we should try not to think that record companies are evil by nature.
I can imagine a few bored hacker types writing something to flood Bandlink with bogus data. "Wow, a million people a day are playing 'Baby Got Back' every hour on the hour!"
I can imagine really, really bored hackers writing a virus to have infected computers spoof data. A new world-wide phenonmena: Polka Love songs!
I bought Santana's Shaman last month and it has the wonderful tracking technology built in. I was curious as to what the "Bandlink" thing did when I bought the cd (never heard of it before). Luckily, I went to their website first and saw the usage statistics crap and decided against installing it.
... but I don't want to have to give up personal privacy for those extras. If I just had to install and register I wouldn't mind, tracking is going too far IMHO.
... for text file!.
I read part way through the EULA (which is apparently available on their website but I couldn't find it) but I didn't see anything about allowing them access to all information.
I support the idea of adding content to cd's to make them more attractive to purchase
Since I couldn't find the EULA online (as promised) i've taken the liberty of posting it online (hopefully its not illegal but oh well).
Its available here
It weighs in at a hefty 12.8kB
Hmmm...
wonder how careful they were in programming the server app that listens for these "tattle-tale" CDs.
Just a thought
Tim
The best way to stop this kind of thing is to figure out what it is sending and then to generate reports about things we are not listening to. It will make the marketing reports useless.
Just don't buy the CDs. I stopped buying CDs over a year ago. I'm not worried about it, nor do I care. I haven't heard anything released since then that I'd want to spend my cash on anyway. If I hear anything that I really like, I'll download it. If the RIAA is sucessful in stopping me from doing that then I just don't listen to new music any more. I have enough music in my collection that I've legally purchaed to keep me happy for a long, long time -- especially at the rate good music is coming out these days.
Really, who cares? Let them bankrupt themselves.
I wouldn't mind this software - though a bit extended - running in music shops. If I would want to buy a cd and listen to it before I buy, I would like to have a touch screen with a 1-10 score for each song. That way I - the customer can express what I feel for each song so the Record Companies may actually see that they publish Bad Stuff (tm). Include two buttons on the screen saying "good music, will buy" and "crap again, will download favourite songs from P2P though" and they can get a legit sense of the consumers' viewpoints. This will be perfectly anonymous (yeehaw for paranoia) and optional.
They can use this scheme for the downloaded software too, and privacy issues aside, both the consumer and the industry may benefit from this.
The best weapon of a dictatorship is secrecy, but the best weapon of a democracy should be the weapon of openness.
The CD player watches YOU
Oh wait... that's whats happening here.
"And we have seen and do testify that the Father sent the Son to be the Savior of the World"
1 John 4:14
This country has only existed for a little over two hundred years, afterall. Time will tell how it will at play out. Let's just hope that we don't end up like SOVIET RUSSIA.
This may have merit, but as a nerd, I shudder at the entire nauseating concept of such an invasion.
I just don't like how they don't ask. If they said it clearly, released two versions, and/or popped up a dialog requester with a simple "May I," it wouldn't be a problem. But the fact that it's so subtle and silent indicates to me that this company knows that this misfeature is not going to make it popular.
On the flip side, it will show artists what music is popular, and what we like to hear, so more of it will be made.
On the flip side's flip side, said artists will just create the same type of music, remixed a bit, and rereleased- it's the new stuff that I like, the odd and offbeat. If it's cloned, it sort of loses that.
It's sort of like a survey about your music preferences. Except they don't ask if you want to take it.
I can also see a DDoS attack on the system myseriously slowing down your comptuer (if you don't know this is happening) if their server gets overloaded by a whole bunch of music listeners, or just a good old ping flood, as your system tries again and again to send. I bet this could cause a good bit of net.congestion, too.
Not to mention that modem users will hate its guts.
Warning: Poster of this comment is a nerd. Just like everybody else here.
So what? ::gasp:: give me more of the products I want! They'll be able to see what kinds of music I think are not crap and make more of it so I'll buy music, stock the grocery stores with goods I'd rather buy to entice me into larger purchases, and even make it easier for me to buy the things I'd be buying anyway.
Now corporations will be able to
For all of this talk about how our privacy is being eroded, nobody ever actually steps up and gives a really good reason why that's a bad thing. It's just as arguably a good thing, and in the end there is no hope of reversing this stuff anyway.
Might as well let it go and stop holding off on the benfits of the future, right? This resistance is hurting us all more than the actual erosion ever could.
Can someone work out EXACTLY what this software does, so we can fake it and pollute their data.
:-)
Once the record companies see that the service they are buying from these people is compromised.
What we need is a distributed DOS tool that we can all run and make Greensleeves the most popular tune of the millenium. Or better yet, Britney (you didn't really believe that she was that popular did you ?).
Let's see, I pay for the dial-up service. I pay for the cd. They use my cd, my computer, and my bandwidth. Therefore they owe the user. Before you laugh, I believe it was Georgia Tech that successfully sued an employee for computer time and bandwidth because he loaded the SETI program (or something similiar) and had lab computers doing computations during screen saving. If they did win, there is then precidence for this type of a law suit.
In a place beyond time and space, in a land far better than this, look for me there...
Now, does this mean I can make a copy of only the software on this disk, or the entire disk? Seems to me that this would give a "fair use" type argument for making that copy. However, you'd have to use an average speed CD player or less, otherwise you'd be making too many copies.
I care about privacy, but when somebody else asks me about it, I don't know how to respond. How do you reply to people who say, "But I have nothing to hide!"
BD Phone Home!
Shameless plug. Like you weren't expecting it.
I just now figured out some of the recent emails that have come my way from Slashdot.
I speak on behalf of Bandlink so you can please respond to Support@bandlink.com with any questions you have about the software.
Jump to Conclusion:
Essentially, we always get mixed in with the ominous nature of the Recording
Industry in terms of the Napster litigations and other bad press. We don't offer any encryption software and we are not "Spyware".
What is it?
Bandlink is pretty basic in its technology. Designed to make Music "Bigger"
by providing actual CD owners access to Online Bonus content and other extras. The Online content is served
from a webserver which, like all webservers, provide "Webtrends" style
analysis for what files are interacted with or downloaded.
(This makes up the bulk of our reports and all websites from Amazon, to the NY Times does this.)
When users interact, with the bonus content, the "Aggregate" information is
compiled in reports. Also, if the music listener "Ranks" a specific song from the CD or
from the web based Bonus Content section, then that too is added to the reports which go directly to the musician or record label who most needs to know.
In terms of personal information, and like most websites, we don't know who is viewing our web content, we just know that someone is.
All of this information, as most Internet savvy users will know can be obtained via a "Web Server Log". If a user fills out a survey which requests personal information than that is the users choice, and that information will be sent directly to the artists themselves. (Personal info is pretty much limited to mailing lists and other opt-in services.)
Other than that, Bandlink is pretty mundane. I have seen some of the things that the music industry is considering in terms of encryption, and believe me that this is much much better in that it gives the fans extra content, and lets the artists know more about their fans.
Please feel free to ask us any further questions about the software directly.
I have read through most of your posts and you guys are kind of going down a technical path that gives Bandlink waaaaay too much credit. But you are giving some good ideas! (kidding)
Support@bandlink.com
a decentralized internet protocol...perhaps imbedded into a freenet-ish decentralized OS. I advocate a complete abandonment of any protocol that traffics advertisements. Yeah that's a bit extreme, but at this point its only going to get worse. A geek-supported protocol that forbids such waste of bandwidth is the perfect way to fight back. "...even though we die, La Resistance lives on!"
What's to keep people from finding out the data format of the outgoing packets and seeding their database with a couple of terabytes of bogus statistics? Say every couple seconds a few thousand users send out packets stating that everyone is listening to the best of the 700 club or something? This seems relatively east to make useless, as there can't be too much authentication going on here...
then why are you wearing clothes?"
This list came from PeerGuardian's blocking list. I'm guessing the BSA IP block at the end. If you really want to keep from reporting data to said parties, just add these (and whatever other beneficiaries of your private data) to your iptables, ipfilter, ZoneAlarm, Tiny, etc. blocked zones. Note that, if for any reason, you want to go to these parties' websites, you won't be able to; your firewall will block access.
...but it just feels so good!
. 160.127.255
R anger:204.92.244.0-204.92.244.2551 92.0.0-65.192.0.255. 255.255e fender:66.79.0.0-66.79.255.255- 208.225.90.255
MPAA:63.199.57.96-63.199.57.1281 28-64.166.187.1925 51 28.0-207.155.255.2555 5.2552 7 .155.128.0-207.155.255.2559 .0-64.94.89.2553 5.247.255. 255I AA:208.192.0.0-208.192.255.2556 .32.50
Or, to be perfectly safe, you could borrow a page from our current administration's sex ed book and abstain from downloading.
OverPeer:65.174.255.255
OverPeer:65.160.0.0-65
Ranger:216.122.0.0-216.122.255.255
MediaForce:65.
MediaForce:65.223.0.0-65.223
MediaForce:4.43.96.0-4.43.96.255
MediaD
RIAA:208.225.90.0
RIAA:12.150.191.0-12.150.191.255
MPAA:64.166.187.
MPAA:198.70.114.0-198.70.114.2
MPAA:209.67.0.0-209.67.255.255
NetPD:207.155.
NetPD:128.241.0.0-128.241.2
UnknownC&DCop:64.106.170.128-64.106.170.19
BayTSP:209.204.128.0-209.204.191.255
Vidius:20
GAIN(spyware):64.94.8
GAINCME(spyware):66.35.247.0-66.
GAINCME(spyware):66.35.229.0-66.35.229
MediaDefender:64.225.292.0-64.225.292.127
R
Xupiter.com:63.23
Xupiter.com(mirror):63.208.235.30
BSA (?) 208.121.215.0-208.121.215.255 (Not sure)
Many DVD disks include "InterActual" (previously known as "PC Friendly") software which is autorun upon DVD insertion on Windows machines. To the typical home consumer, the message presented appears as if it originated from the PC itself, prompting the user to install the software in order to view the DVD content.
There are several issues with this, and relavent to the topic of "illegitimacy of spyware":
1. "InterActual" doesn't actually install an MPEG2 decoder filter, it merely uses the existing filter provided with a new PC
2. "InterActual" software attempts to redirect the user to whatever content is available online relating (or not) to the title being viewed - spam essentially
3. "InterActual" assigns itself as the default DVD playback application in Windows, and thus the user is subjected to the inferior quality of the DVD navigation software
4. "InterActual", if the user performs the standard "click-thru" agreement to watch their DVD content, broadcasts information about what DVD content the user views
Suffice to say, these points are easily discovered with a Google search, so I'll refrain from excessive linking and leave further research to the reader.
Now, for the more-than-capable user (read: most of you reading this), an explanation for preventing/disabling/uninstalling this spyware is obviated. But as the initiated, it's our duty to explain this to those who may not understand (read: friends, neighbors, family) what happens with spyware such as "InterActual" software.
On a personal note: After purchasing my last PC from Dell (please no "Dude" jokes) and inserting a DVD disk, it presented me with a dialog informing me that "InterActual" software was attempting to install and overwrite my settings, and gave me the option to block "InterActual" from installing on my machine. As expected, content is played through the standard DVD software provided by the OEM and I don't have to see that annoying banner anymore when I insert an "InterActual" or "PC Friendly Enabled!" disk.
Cheers!
J. Esterhaus
If you're got problems with pop-ups or advertising on your desktop, you don't own it. Microsoft or Apple owns it and they leased it to you.
So, quit your bitching and download an operating system of your very own already. As long as you're borrowing someone elses' why should you expect to control what it does?
If tits were wings it'd be flying around.
First they say we can't play CDs in our computers (evil pirates that we are), then they want us to play them in our computers so that they can track what we are(not) buying.
If "everyone gets their music from {insert current trendy P2P app here}", then who is going to buy these CDs so they can get more advertising fodder?
Won't my Microsoft Windows "Palladium" PC stop my 13 year old son from installing garbage like this on the home PC, saving our household from having our privacy viloated.
Microsoft legally can do this because they own the software but not my hardware. Very cleaver workaround. My guess is the this company has a similiar saying claiming that its their software and god given right to do whatever they want because of it. If you do not like then don't use it!
I agree that something needs to be done. Pallidium will be very chilling since ms will now own the cpu and all the hardware as well as the software.
http://saveie6.com/
I believe it originated with the Russian-turned-American comedian Yakov Smirnoff, who also gave us the famous quote "What a country!".
Besides, I don't take any of that garbage. Both of my home networks, which are physically separated for paranoia purposes, must pass through a two-stage firewall system powered by four separate OpenBSD boxen (two for each network's firewall). The configuration of these firewalls has evolved over three years' time, but suffice it to say that I feel relatively comfortable knowing that any site that is not specifically white-listed will NOT get accessed by any of my machines, nor will any whitelisted machines get accessed for protocols which I have not specifically allowed. The advantage here is that NO software is going to report JACK SCHITT about my behavior to NO marketer.
One final note: I am a marketer by profession. B2B, specifically. And I refuse to employ any big-brother techniques in my work. This may be more difficult when marketing to enormous herds of stupid, technologically illiterate masses of IDIOTS, where you need to be stupid like that to make any sales. But I don't give a damn. I'm doing my part to avoid world-wide slavery by not doing that garbage myself.
WAR IS PEACE.
FREEDOM IS SLAVERY.
IGNORANCE IS STRENGTH.
If the record companies make CD to be defective on normal users' PCs, users who don't know how to circumvent copy protection and firewall themselves, then they put in spyware on it hoping to gather statistics on them each time they play it on their PCs... Sounds rather catch-22 to me...
Sometimes I wish I was a plumber, then I'd know how to deal with other people's shit.
Go to Options - Preferences - Setup. The last checkbox is "Allow Winamp to report basic, anonymous program usage information".
Most mp3 players have something like this, to a greater or lesser extent.
I'm also amazed that the allegedly technical slashdot audience has not yet figured out that in order for these "bandlink" CDs to work, the user would need to install special software on their machine. I mean, read the fucking site. These "bandlink" CDs don't do squat unless the user specially and deliberately installs the software.
It is very clear that this is not some sort of behind the seems privacy invasion but an above board trading of information for privacy. (Which, indeed, has issues of its own, but...) Other companies (Real, Musicmatch, etc.) do worse right now.
The cake is a pie
Receantly, they have rather changed teh focus of their firewall,a nd I feel the new versions aren't as good as the old ones. However another company, Kerio, is now making Kerio Personal Firewall which seems ot be just like the old Tiny. www.kerio.com.
Don't like this bandlink crap?
Write a distributed denial of accuracy program (DDOAP) so that anyone who wants to corrupt the bandlink statistics can download and run your program in the background and every hour or so it will send out information to bandlink telling them you are listening to some high-brow band nobody's ever heard of.
Next thing you know, They Might Be Giants will get a record deal for $30M an album...
"Geez, how many times can one guy listen to CowboyNeal Sings Manilow?"
<Troy McClure Voice>Shhhh! Let's just let that one be our little secret, shall we?</Troy McClure Voice>
A feeling of having made the same mistake before: Deja Foobar
"Microsoft legally can do this because they own the software but not my hardware. Very cleaver workaround. My guess is the this company has a similiar saying claiming that its their software and god given right to do whatever they want because of it. If you do not like then don't use it!"
You'll find that this was my point, *and* my solution. Don't use windows. Don't use Palladium. Resist.
Of course you are the only one that can determine the extent to which you consider *your* system your property, and to what extent you are willing to accept certain *percieved* deprivations for forsaking Windows.
Me, I consider freedom and functional ownership of my own system and data a *feature.* One which MS cannot, and will not, match.
If this means I can't play the latest game with latest invasive EULA, well, there *are* other games.
For that matter Linux can do nearly anything Windows can ( And the odd holes are being filled with amazing rapidity),BUT - you have to be willing to make the step of being willing to realize that Linux does so *differently.*
This is the step that many are not willing to make. In fact, many are so tied to the Windows way of doing things that they believe that if Linux doesn't accomplish the *same end* in the *same way* it doesn't do it at all.
There really is a "Windows way" and a "Unix philosophy." When in Rome you'll get along better if you do as the Romans. Life really is just as livable in other cultures, even computer cultures.
KFG
format C:
"Some fight for law. Some fight for justice. What will you fight for? One day, you will see."
the CD player knows too much...
It seems to me that if you are running a non-windows operating system or if you just don't install their software that it is just a normal cd with a useless filesystem on it filled with useless files.
The Farewell Tour II
Users don't have to sign any eulas or sign any agreements...the thing can probably install invisibly and quickly without the user even noticing, especially on todays uber-machines.
You know, I think I was right to buy this router...I may be needing it (as supposed to being glad it's there) within the coming year or 2.
Candy-Coated Knowledge
--OOOOh! i'm being FUCKED by the recording industry -- atleast i'm still loosened up thanks to the motion picture biz.
\\vectorhead\\
The CD is a "dead" media, it's not something that magically comes to life and starts transmitting information.
You know, that's just what I used to tell people about email. Remember the Good Times "virus"? I don't know how many emails I sent to people in the mid-nineties explaining to them that emails were just text and weren't "executed" in any way and thus were incapable of harming your computer. Just like (as my example went at the time) no audio CD, no matter how malicious, could contain instructions that could break your CD player.
Well, guess what? Now everyone* uses an email client that defaults to executing, without notification, code embedded in received emails. By changing the rules, they made a liar out of me in less than six years (the "Good Times" hoax first appeared in December of 1994; the "Love Letter" email worm appeared in May of 2000).
And in five or ten years, who knows? Maybe everyone* will be running CD player applications that default to "facilitating said information gathering and transmission".
You and I know better, and this doesn't personally affect us. But that doesn't change the fact that the estimated economic impact of the Love Bug was over $8 billion. Mind you, this is from something I thought was patently impossible a few years earlier.
Never say never.
* not everyone
Graham "Teach" Mitchell, computer science teacher, Leander HS
okay, so I was bored tonight...
It appears this software is from: Javakitty Media Inc. in Atlanta, GA.
The terms of usage clearly state the aggregation of information including machine specs, etc.
The 'blink.exe' program appears to use libexpat.dll for XML parse functionality and for chatting with users using Jabber.
Oddly enough, when the program starts it first tries port 80 (HTTP) on www.microsoft.com and if that fails, it tried www.amazon.com. I guess to verify a valid HTTP connection.
Then it sends XML info back to uma.javakitty.com:8080 with various user content and song info. It logs in with username 'jared' and a trivially encrypted passwd.
Finally, there appears to be some funky access with an MFC42 (ordinal 0x0219) call with a file 'C:\temp.dat' first with www.chironexsoftware.com and then with www.google.com.
But wait there's more...
the final twist is that chironexsoftware.com is registered to the author of this software...
Registrant:
jared allen
65 Koola st , wishart
Brisbane NA 4122
Brisbane, NA 4122
AU
33432174
I wonder if he's using this software to pump hits to google for his own website? Hmmm
Now, time to remove this crap from my computer....
whoah. dude.
dig this excerpt, emphasis added:
so...let's just say for a moment that the softrware is _not_ intrusive, and they have - let's be charitable for a moment - taken measures to prevent data mining. they can foist a modified version on me, along with a modified EULA, or just tell me that a modified version is available, and i have to either (a) bend over and take it, and say i like it, or (b) stop using it.
staying with the previous version is not an option.
I wonder who their alleged lawyers are. They should know that it's not legal to read microsoft's mail.
united states nuclear device terrorist bioweapon encryption cocaine korea syria iran iraq columbia cuba
Claim copyright on your playlist and then prosecute 'em for piracy of your IP.
What really cracks me up is how this "holier-than-thou" sentiment is lavashed in a forum where we think it is important to be the bigger nerd but what I'd really like to know is how many of you tell your grandma/mother/aunt/girlfriend/whatever that they're an idiot for not keeping up with PC security, or for not patching their OS (what?!?! your grandma doesn't use Linux! What a fucking moron! I'm glad she's not related to me...). Gimme a break folks. How many of you immediately turned around and issued a security bulletin to your family about this horrid new CD technology. I can see it now..."I repeat, DO NOT INSERT THE CD INTO YOUR COMPUTER'S CD DRIVE!!! If you feel unsafe or unsure whether or not you are using one of these new CDs, please contact my secretary, er answering machine and schedule an appoint, er leave a message and I'll set a time for me to do a security visit with you to ensure you are not in any DANGER. I repeat you morons, DO NOT INSERT THE CD INTO YOUR COMPUTER'S CD DRIVE!!!! (yes grandma, this means you too)." Get real guys.
Perhaps. But on the other hand, it could just be that most people are incompetent at their jobs, driving, and whatever else.
To wit: the left lane on a road is for passing. Most states have laws that restrict the distance that a driver can drive in the left lane before moving over. If you've ever driven long-distance, you know that there are those who insist on indefinately going limit plus 5 (or worse yet: limit) in the left lane. And no, I'm not breaking the law if I try to pass, I live in a prima facie state.
Second: Examine for a moment a Motorola v60c. The earlier versions are the best example of this. The antenna easily bends in one's pocket. (They've fixed this with new antenna revs.) Worse, when extended, the antenna acts as a lever for the (bulky) antenna tip to use to exert massive force against the rest of the antenna. Net result: three antenna breaks in 6 months, two in-pocket.
Third: Went to a fast food place looking for food and directions to a gas station. Someone (A) is trying to help me out by asking someone else (B). A: "you familiar with (cityname)?" B: "yeah, kinda" A: "are there any gas stations near here?" B: "whatcha looking for?" A: "gas"
There's far, far more. These are the easy examples. But if you can honestly say you have not run across any stupidity in the past week, good for you! You're a far more patient being than I.
Incidentally, I don't mean to disparage those who can't use computers. I can't perform brain surgery; just because others have no expertise in my area doesn't make them idiots. But when people cannot do their jobs or comprehend basic English (where English is their native language)...
Wait wait!
It's ok for them to do that because they are big corporations. Hence they can make you work for them and turn your computer into a market reporting slave. And if the mass decide against it they will just blame you for allege pirating of mp3s and make it all ok.
Next step, requirement of CDkeys to activate your CD. Then, charge per CD per song per play through your creditcard or bank account
Didn't anybody read the link ?? (Now *that* was a stupid question !!!)
There is a small data partition on the CD and MS Windows will "autorun" a program on it. This program will present the user with the Bandlink license and the install the monitoring software on the user's PC. (Windows only).
Now take a look at the Slashdot story : your new music disc may be transmitting your listening habits in real time to the respective record company.
Bullshit !
echo '[q]sa[ln0=aln80~Psnlbx]16isb572CCB9AE9DB03273snlbxq' |dc
While I agree the music industry is out of control, I really don't see what the issure is here. If I understand correctly it tracks, 1) what cd/tracks you listen to, and 2) when you listen to them. And I would assume it does this by IP, platform, etc.
How is this any diffrent than when I log onto netscape or google, they track when I log on, and various other information? Such CD tracking seems only a natural progression in information networking.
And to say nothing about the massive amounts of information a credit card or 'preffered buyer' card can track, knowing what I buy when, and my age. And music CD's are no less optional to consume than a credit card.
I don't see why this is a problem. If the program accesses data asside from my IP, or information I directly give it, there is a problem.
But if the company knows my name and what CD I listen to when... I don't care. Such information cannot be used against me, it only shows that my computer was indeed playing the CD, and not that I was. And hey if they can verify it was indeed you it would make a great aliby in court...
Copy protection blocking access to my files to make MP3s is wrong, but I really don't see how this is. It would seem to be part of the information age.
Anyone up for packet-sniffing the protocol and sending me the results? I'd be more than happy to write a Python and/or Ocaml client to spout random statistics back. Maybe we could set up a website with teams and stuff, keeping track of the total number of fake listening hours reported. (Of course, there'd be lots of cheating on those stats, but what do you expect when you're trying to keep track of self-reported cheating stats?)
Copyright Violation:"theft, piracy"::Anti-Trust Violation:"thermonuclear price terrorism"<-Overly dramatic language.
Well,
"Half of them are dumber than that."
actally, some of that half could be equally dumb.
But i agree on using the median and not the average.
(because of the uneaqual distribution.)
Why are other peoples sig's always more witty ???
Maybe your "common sense" is a non-sens for some other people. I guess all of those you find stupid think the same thing of you. Maybe it's just people don't have the same priorities and values. Just a question of perception.
Ok. So, right now you don't see the need for privacy. Can you be sure that it will stay that way for ever? Can you vouch for every future government in your lifetime?
I don't see any reason why we should help build an infrastructure that would be every despotic governments wet dream. Like that Ben Franklin chap said; "He who gives up basic freedom for a little temporary safety deserves neither liberty nor safety".
Btw, this is way off-topic. I don't care about industries trying to get usage statistics. If people really want to worry, there are more important things to worry about.
How small a thought it takes to fill a whole life
I think the problem is not that poeple don't have a firewall or poeple don't know what they are doing it's the fact that 90% of dumb fucks using a computer are also using MS shitty products wich in turn loves to install other shitty products. I think it's time for everybody to stop crying like bitches an spend some time getting a real OS on their pc's. Good luck
make: warning clock skew detected
Exactly. And just because someone doesn't know how to set up, or even obtain a firewall which can stop outgoing packets from certian hardware/software, it doesn't mean they don't deserve the same privacy rights as us
The only time a music CD spends in my PC is to get converted to MP3. This file goes into my jukebox, which does not have an external connection anywhere.
The original CD is played in my HiFi, as required. Sounds much better there anyway - and guess what, it doesn't have an outside connection, either.
Ciao,
Klaus
Free PC version of ChipWits at http://www.breueronline.de/klaus/chipwits/
The 10 page license agreement is a product of the flawed and money-oriented law(yer) system of the US. That made it necessary, because americans believe they have a "right" to sue anyone over anything. It is only a matter of self-protection.
:)
Companies only use that to their advantage to sneak in extra stuff, since they need those ten pages anyways. Now this is bad, but the license preceeds this abuse, just as the lawsuit abuse preceeds the licenses.
Hell, it is almost impossible to make heads or tails out of even the simplest of the free licenses, because they need to cover all possible holes.
Can't someone come up with a "Common sense license", or even better a "Common sense law". Of course, that would imply that there is such a thing as "Common sense", which I am starting to seriously doubt.
Just disable auto-insert notification in Windows, or disable the CD-autorun using a program like TweakUI.
Ofcourse this won't work if the CD has a copy protection scheme which forces you to run a program from the disc in order to play it..
Slashdot community, please notice: I am looking for a girlfriend.
Nave H. Weiss
Just how many people have their PCs online ALL THE TIME?? I have mine on for a few minutes , download my email , surf slashdot then disconnect. Then I do some work and maybe play a CD. If you keep your PC online the whole time you'll have far worse problems to worry about than some spyware CD program phoning home. For crying out loud , the solution is so simple , switch off your modems! Jeez...
Send them messages as executables/javascript. They have to click OK to read your messages to them.
Have fun thinking up EULAs.
I think FreeBSD's ipfw can do that too.
Actually, InterActual has bettered its ways a lot with 2.04 (maybe earlier, haven't seen 2.01 to 2.03 myself) -- it is perfectly clear to anyone with half a brain now that the InterActual player is _only_ for the additional features.
It no longer by default takes over as your standard DVD player, and the uninstall now cleans up all its mess.
A huge step up from IAplayer 2.0 and PC Friendly.
I hit "submit." Preview doesn't help if your brain is simply out to lunch. Perhaps I need an editor.
Book authors don't typically have this problem because they've got people to tell them they're being a "doofus" *before* they publish.
KFG
Of course there's another option. *Don't use EULAed software.*
good idea, but that rules out the bigger of the linux distros then.
redhat- HAS EULA on the cd pouch when you buy it.
SuSe - EULA
Lindows - well it really isnt a big distro.. slackware users outnumber this one 5 to 1.
licoris - well yeah... same as above....
Basicaly as linux users we should have a ZERO tolerance to Eula's on anything that is linux. and yes that meant taking a direct shot at redhat.
REDHAT makers... why do you have a eula? why did I have to return the package to the store? I wanted to buy it, but I refused to agree to your eula printed on the install discs envelope..
I loved redhat very much, it's great for the newbie and corperate... but the Eula makes me want to stay away from it.
Do not look at laser with remaining good eye.
Of course there's another option. *Don't use EULAed software.*
Hey Taco, how about a Im/practical subject mod?
That way I could mod the above post, +5 Impractical
"Teachers leave us kids alone
Fair enough -- I haven't used ZA.
Try this, though.
Modify PATH to be prefixed with directory foo, owned by you. Drop that modified msvcrt.dll into said directory. Execute a trusted app, which uses the original binary. One way or another, it's going to be possible to force ZA to deal with libraries. This is actually easier than the first thing I suggested.
May we never see th
MSDN says that PATH is searched well after the others.
There is a quite possible exploit, though...we just need an unregistered library that's been dumped in the system or windows dir that a trusted app links against.
The linking search order for unregistered libraries is:
1) executable dir. This is safe -- we assume that the admin set up this system so that the user doesn't have write perms here.
2) The current directory -- that's going to tear things. All we have to do is leave a modified unregistered dll in the current dir, and execute a trusted app using its full path from there. *That* will link against the evil code and get full network access unless the ZA people are doing a lot more loader-level crap that I'd suspect they are.
3, 4, 5)...
Who at Microsoft came up with the idea of using the *current directory* before the system dir and windows dir, anyway? I can't think if any scenerio where that would be particularly justified...
May we never see th
Linux is imune , tada tada .Oww yes linux is Immune .weee dont get spyware---no wee dont get spyware .
*The Linux Song*
How are they going to use this? Since there new goal is to make cd's unplayable on computers.. sounds like something only a record company would do..
They can try and get there statistics thru my Security.
Forgive me for being cynical, but I think the recording industry's concern with what happens to music CDs that wind up in computers has nothing to do with listening habits. Given that most CDs are probably not played in computers, and that a particular sort of customer listens to CDs in their computer, you will probably not get valid marketing information from such a technology.
If you want to catch someone ripping MP3z, however, this is a pretty good way to do it.
The median IS a form of average.
== Jez ==
Do you miss Firefox? Try Pale Moon.
Yeah, but it's very unlikely that you will be able to *legally* view DVD content using Linux.
== Jez ==
Do you miss Firefox? Try Pale Moon.
Not surprising. Cops in America don't seem to prosecute ANY drivers. If you're in a car, you're virtually immune from the law. Hell, when I went over there, half the cars didn't even have numberplates!!! If you didn't have numberplates at the front and rear of the car here (UK), you'd be stopped by the police in 5 seconds.
== Jez ==
Do you miss Firefox? Try Pale Moon.
Given 10 IQs:
80, 90, 90, 120, 130, 140, 150, 160, 170, 180
The median is 90, and only one person has a lower IQ.
The mean is 131, and in this case exactly half are below that and half are above.
I can't believe there are so many people saying that it's not a big deal. It's not the loss of anything, it's the principle of the thing. We all know that if if you give em an inch... they'll take a mile. If you happily agree to give them stats for FREE, they will push it and pretty soon they'll be selling your stats to someone somewhere, making money off of you not only from the CD you bought, but from your stats.
I think the least they could do is GIVE you the CD and they make their money off of the stats.
The big deal is that you're just a number to them, you're just an income source and by participating, you're encouraging the process. This process is not in your favor, why help it?
Personally, I don't play many cd's on the computer. I buy a cd, make a cd backup, make mp3s and transfer to MD, from there the CD goes on the shelf. If I find spyware on my computer I rip out all traces, put in blocks for future, and write a nasty-gram to the owners.
A lot of people are too willing to give up their privacy for some little or never used benefit (like "chatting" about a cd). Is that worth it?
The price we pay for immortality... is death. Narnia The Great Fall
"IN SOVIET RUSSIA "IN SOVIET RUSSIA" comments are lame"
In Soviet Russia, Soviet Russia comments on YOU!
[ooh, my first Soviet Russia comment - will I be modded up or down? Only YOU can decide!]
Once more unto the breach, dear friends, once more, Or close the wall up with our American dead!
Nope, the mode is 90. The median is 135.
This is my World Wide Web of Whatever
I notice that there needs to be some kind of agreement by the user for the activity that takes place on the computer. This due to the fact that many countries have privacy laws that 'should' protect privacy of it's inhabitants. Usually this agreement with the user is gained by large user agreements in a language that is only understood by lawyers, so it's what they are doing is totally legal. So will we now also get license agreements when buying CDs..where we allow the record labels to execute code on our machine and track our habbits. And I've a feeling that they will try to hide more spyware that for example searches your computer for mp3's and sends that information to the record label or RIAA ..
Or possibly deletes all the MP3s of your computer?
I know one thing ... as soon as CD's will be guided with license agreements I will not buy any cd anymore!
and exactly what state were you visiting? Also, try showing up near the END of the month.. cops gotta make they're quotas after all, and will happily pull you over for doing stupid crap on the road. I've yet to see cars without license plates that weren't stolen.. or maybe you were just attending a demolition derby?
Oh god... not again.
There really isn't a big reason to be paranoid about it, they already have the biggest usage statistic they want: SALES! What more do they really care about?
"We shall party like the Greeks of old! You know the ones I mean." - HedonismBot
Badlink (and likely other companies like them) are exploring the landscape looking for viable ways to get this demographic data. They may succeed. Here on
On the other hand, as an artist, I would like to see some availability of tracking in a macro sense. Nothing personally identifying (perhaps have a standard that dictates that you can gather data, but not tie it to a human), but it would be nice to see if people listen to a specific track on a CD in it's entirety; whether it's more popular in one region than in an other.
Again, tying such data to a specific person is scummy. Perhaps someone could dig up the medical records for the CEO / President of BadLink and mail 7000 boxes of photocopies of it to the company receptionist for distribution to all their business partners. Not that I'd do such a thing...
www.dedserius.com
VB != VisualBasic
M$ loves this kind of thing. So do many other software creators in that camp. They (and the companies backing them, driven by stockholders seeking cash revenues) think that they will learn how to draw more interest from you, by learning what you like to do when online and when on PC (but not online). In their licenses, the users usually give permission for information to be transmitted, if, in fact, you click to accept the terms of the license. Doesn't matter if can you read and understand the obfuscation of terms. So no matter who is above or below average, if you don't read the license, you are likely going to grant permission for this to happen.... so why whine about it? If you do not like this tactic, learn to ask questions before you download or install the thieving boogers. And remember: M$ never tells you you fly is down, you have to learn to prohibit open ports, learn to block unwanted transmission of data. Every time someone clicks ok without knowing what, exactly, the software is going to do, they are placing blind trust that the provider of the software is not malicious. We all hear that this is not true, but the next answer will surprise you: 'What can I do about it.... this is all there is!'. 'Resistance is futile'. 'FUD'. Call it what you want, but people are convinced there is nothing they can do about it, they do not know there is an alternative, and from my perspective, I agree that the common M$ user would need an asociates degree in system administration to void such junk research. But the are defeatists by TRAINING. The family which is not Computer administration savvy is a popular entity, not as rare as you'd think. I'd conclude that the commercial $$$ driven developers are simply capitalizing on the ignorance of the consumer. But you knew that.
I'm not talking about (stateful) firewalls; I wouldn't expect my family, friends, or other average users to understand those concepts. I was talking in a somewhat more general sense (the thread was about "average idiots", no?).
What I was referring to is the sheer number of people who routinely do stupid things. Be it work-related, traffic, personal (social), or other; people do not think things through. People who use hair dryers in the shower, who apply make-up, eat, read a newspaper, use their laptop, etc. while driving 100KM/h on the freeway, or those who can't understand that smoking while filling their car's gas tank isn't a terribly good idea, and that creating personal rocket projection systems to propell themselves into their cottage lake is probably inadviseable, or that standing in the middle of a doorway, contemplating life and their surroundings in a busy hallway isn't quite considerate or practical, or that speaking loudly on a cell phone in a movie theatre, exclaiming things like "Sorry, the sound is too loud, I can't hear you!" will probably incite rage in the other movie goers, or all the ladies (term used loosely, if you'll pardon the pun) who get surprised that, after having unprotected sex with several men and find themselves either sporting a child or an STD (nb; it's entirely common that the surprise child will be the second, third, or fourth), or the people who don't 'get' that drinking a pair of 40oz bottles of [insert favourite alcoholic beverage here] will quite possibly find them in the hospital spitting up blood and fragments of their stomach.
There are, of course, infinitely more examples, but I think they limit the upper size of these comments somewhere (and $DEITY forbid I should create a database size overflow or something. ;) )
But to get back to this thread - people who do not understand [cars|computers|electronics|mechanical devices] yet who insist upon taking them apart and/or servicing themselves, then blaming the manufacturer/retailer for selling them defective equipment. Or worse - people who don't understand these things and go against the advise of a trained professional and cause serious detriment for themselves and/or others around them.
As to the above references to my parents/grandparents; I do tell them what I think when they try to crack their computers and/or administer the installed software. It took me about five years, but my family finally understands that when they do something to the computer, it generally goes wrong and they need my help to fix it. When I do something to the computer, it works, because I do this for a living and know what I'm doing. Generally they feed me and keep my [coffee|beer] [cup|glass] full for my trouble, and everybody's happy.
The difference being, of course, my family smartened up - other people don't.
One of the higher standards I try to hold people to, and I realize it sounds horribly cliche, is to know one's limitations. For example, I know that I can change my oil (and filter), top up my fluids, and perform other small routine maintainance tasks on my car. I probably could figure my way through brakes or other aspects, but I don't. Instead, I leave it up to the trained mechanics who have years of experience and industry certifications that say they can do the job properly.
Another standard I hold people to, for those who are definately literate, is to read atleast the basic instructions before desperately phoning for help. I can't count the times I've had to help people (or been asked and refused) because they wouldn't open the fold-out "Step By Step" instruction set that came with their new purchase. The fact that many of the installations I've performed were insultingly simple is beside the point; the instructions spelled it out so clearly that a child could figure it out. This excuse adults use that technology is so complex that only the younger generations have a chance is complete rhetoric, and complete nonsense. If a University educated individual can't figure out how to connect something with colour-coded, size-differentiated connectors that are labelled at both ends and comes with a step-by-step instruction manual; something's wrong.
So no, I don't expect that people will understand stateful packet inspection, ingres/egres filtering, bogon filters, application versus network versus physical layer differentiation, or any of the other industry specific jargon I could name; but I do expect people to be able to perform in real life without their hands being held, lest they should manage to kill or maim themselves or someone around them in the process.
BD Phone Home!
Shameless plug. Like you weren't expecting it.
So what? Just because there are *legal* implications doesn't mean people won't do it.
I loved redhat very much, it's great for the newbie and corperate... but the Eula makes me want to stay away from it.
Could you be so kind as to briefly summarize what you don't like about the EULA for those of us who avoid Red Hat?
The price of freedom is eternal litigation.
Wow...I actually get to see the "Slashdot Math Effect" in action. Sweet...
Restaraunt experience: Waitress: Hi there, have you decided on what you would like to eat? Cust1: Yes, I'll have the Phil's Mix please. Waitress: Pancakes, Waffles or French toast? Cust1: French toast please. Waitress: And how would you like your eggs? Cust1: Over easy please. Waitress: Thank you. And what can I get for you? Cust2: Exactly the same thing please. Waitress: Same thing? Cust2: Yes please. Waitress: French toast as well? Cust2: Yes please. Waitress: How would you like your eggs? Cust2: Over easy please. Waitress: Thank you.
A point whic is very unlikely to actually matter to anyone.
Until attempts are made to catch, arrest, and charge people with the "crime" of watching a DVD on their Linux box, the question over whether it is legal or not is a moot point.
Someone pointed out to me the other day an old military maxim... Never give an order that you know wont be followed, it only undermines your authority.
-Steve
"I opened my eyes, and everything went dark again"
I'm thinking that hosts file listings of servers that are often targets of this sort of thing might be a good idea. I'd love to see a web site where I could download the latest list of hosts that privacy advocates would prefer to see denied.
It was a joke! When you give me that look it was a joke.
In the agreement they say that
In the event that CD Intelligence terminates this EULA, you must immediately stop using the SOFTWARE and destroy all copies of the SOFTWARE and all of its component parts.
We have come to destroy all copies of the SOFTWARE. Resistance is futile!
Darn post key...
It was a joke! When you give me that look it was a joke.
Having not read the Bandlink website, if I were going to design something like this, I'd do it thusly, assuming a Win32 (9x/ME/NT/2K/XP) machine:
* The data track would be the last track on the disk, not the first as most combination CDs are, so playing in a normal CD player wouldn't alert the user. Al Yankovic's Running With Scissors CD is one such disk.
* The autorun program would launch the default CD player (either by doing a "start (trackno).cda" or by poking in the Registry to find out what the player is), thereby not triggering any installation monitors.
* The program would then monitor the CD-ROM device somehow, through ASPI or a similar interface (NT SCSI direct like NTBACKUP uses?) so it knows what tracks are being played regardless of what software's playing them.
* Phone home to a host answering on Port 80, which no one blocks anyway.
It could be defeated by using a digital read/playback CD player as the default, like Windows Media Player's, but WMP's so abusable it's not funny. And even then a CD-ROM monitor could pick up what track is being read if not played.
Use Evolution instead of Outlook? Bewa
Some of those cars probably did have numberplates (license plates), but they were only on the back. Different states have different rules. I know that Illinois and Pennsylvania only require plates on the back. In my home state of New Jersey, you must have them on both sides and a tax disc (actually a square) on your inner windshield. If you're a New Jersey resident with only one license plate on, you are very likely to get pulled over.
Bill Clinton: Pimp we can believe in. - The Shirt!!!
It seems to me that Windows, especially in the consumer domain, is becoming much more like TV. That is, television isn't a service provided to the viewers, it's a service provided to the marketers. The viewer's attention is the actual product which is being sold. The content on the television is not the primary business of television networks, selling advertisments is.
It seems like Windows is becoming the same way. The fact that a Windows computer can actually do useful things for the owner is becoming secondary to it's use as a vehicle for advertising and gathering marketing information. I think it's one of the things that turns me off the most about Windows, that constant feeling that you can't trust "your" computer at all, because you really can't. Every other program is co-opting "your" computer for the purpose of advertising to you. And it's not even just "free as in beer" software that does it, even stuff you paid good money for feels the need to steal your attention for advertisements. And they all, uniformly, require you to agree to EULA's.
It's one of the main reasons why I hope Linux never takes off on the desktop, because I don't want to have to deal with all that crap. Fortunately, one of Linux's strengths is that even if some distro does take over the desktop from Microsoft and inherits all the spy-ware and ad-ware, I can just run some other distro that doesn't suck. Not an option with Windows: they all suck.
So, if it's a separate application, why not just look at the task monitor in Windows and kill it?
Unless, of course, this is a "protected" CD which has its own built-in player and which wouldn't work with any other CD playing app. In which case it's going right back to the store for a refund...
My guess is if you don't install the software you can still use the CD just fine but the web page does not even seem to mention this possibility (after a breif look). I'm sure they can't imagine anyone not wanting to install this software.
Um, it's even harded to find out about eros-os when the site is down.
Lose essential liberties to get temporary safety = get only hassles and security theater.
Net result: three antenna breaks in 6 months, two in-pocket.
And you still haven't learned not to sit on your phone when it's in your pocket? Good example of incompetence.
clearly you've never been a waitron... what you've got posted here isn't evidence of idiocy, it's a transcript of an error correction algorithm
from the other side of the order pad (so to speak), the issue is that customers are the idoits...More often than not, "exactly the same" means "exactly the same, except...."
I can't even count the number of times somebody has ordered "exactly the same thing" and then sent it back their mind hadn't been read properly....
Hell, do one better: Don't buy the CD with the stupid privacy idiocy on it, wait a day, and download the songs you want from P2P networks. The sooner the major music publishers go under, the sooner one of them will be forced to figure out a workable economic model that doesn't rely on legal strongarming and gives customers what they want instead of what the major labels think they SHOULD want.
Hey, we're the smart crowd. Why don't WE think up a good model, and sell it to them?
My idea is a rights-based model, where we buy a lifetime right to own a copy of a Copyrighted Work (for a bit less than the current going rate) and we're more or less left to our own devices to get that copy. If we want to brave P2P, great. If we want to pay the CD-press $5 for the CD, even better.
Sure, it's a potential loss of privacy--but I think we, as humans, can stand for a business to know who its customers are.
The point of my original reply was to show that a great many of the people we are calling idiots because they will likely fall for this evil market research scheme (or whatever the hell you wanna call it) will be those same people we hold dear and love -- our parents, grandparents, girlfriends and other friends & family that are not technically savy enough to keep up with the evil goings-on in the world of computers.
I'm sorry if you took my original reply as an attack on your post, somehow I doubt the people I really wanted to read my post will ever see it. Oh well.
But you're missing the point... As technology becomes ever more integrated with our lives, the option of "just turn it off" becomes increasingly less possible. No, not from a technical perspective, but from a *social* perspective.
I think you're correct, this is not really a technological issue, it's a social one. A lot of the "privacy" and anonymity we imagine we have is an artifact of years of impersonal service and crude automation.
Three or four decades ago, all of the functions you name were handled by people. If you wanted to make a long-distance phone call you talked to an operator who took your information and connected you with the remote number. If you bought something, you usually dealt with a person across the counter, and if you lived in a small town or frequented the same shops that person probably recognized you, knew your family, your social standing, and what you liked to buy.
Now things are swinging back in that direction again. That kind of personal knowledge, since lost in the underflow of automation, is being extracted again by the current providers of those services. Is this a bad thing? Maybe, not not necessarily. I can't help but think that part of the reason that most people don't get too upset about losing thier pseudo-anonymity is because they never really cared that much to begin with.
On the contrary, some do.
Strange... my RedHat discs didn't have a EULA. Of course, I know how to download isos and burn them to disc (with my iBook, no less). There wasn't any EULA on the redhat ftp mirror I used.
"There is no mention of a opt in/opt out agreement when the cd is inserted on the website and none was displayed in a personal demonstration."
Then what do you call this:
Installation:
1. Insert you Bandlink CD into your Internet
Connected PC. (Bandlink should autostart on Windows).
2. Agree to the Bandlink License and
select "Connect" to install Bandlink.
3. Bandlink should detect your CD, begin CD
playback, and display artist content.
Vote for Pedro
What chance does an unaugmented human have against such an apparatus?
Scientists restrict study to entire physical universe; creationist
Everyone thinks of themselves, and their own social groupings, as above average.
...Also, I didn't know Buggalo could fly.
To wit: the left lane on a road is for passing. Most states have laws that restrict the distance that a driver can drive in the left lane before moving over. If yu've ever driven long-distance, you know that there are those who insist on indefinately going limit plus 5 (or worse yet: limit) in the left lane. And no, I'm not breaking the law if I try to pass, I live in a prima facie state.
Highways are like socialism: they both work only in theory.
UNIX: Find it, fsck it, forget it.
So no, I don't expect that people will understand stateful packet inspection, ingres/egres filtering, bogon filters, application versus network versus physical layer differentiation, or any of the other industry specific jargon I could name...
:)
I think that with some thought, even a VB coder like myself can figure out most of those terms. But I knew I'd spent too much time online when the first one that my mind clearly identified was the Bogon Filter!
Yikes... have I spent so much time following random links in the Jargon File, that I've lost touch with the actual jargon of my chosen profession?
Moderators: I know, I'm straying off topic... I'm not using the +1, so please don't hurt me!
Stressed? Me? Of course not. Stress is what a rubber band feels before it breaks, silly.
Once families are prevented from copying or "pirating" copies of ms os/applications through product activation and other methods, everyone will be running Gnu/Linux, and therefore, everyone will not be able to legally view DVDs on their Gnu/Linux systems, or something will change. Care to guess which?
Actually, I beg to differ on your first point. I don't think the fact that they have to pay for 2 copies of Windows instead of 1 (actually many families only have 1 computer so nothing will change, and Windows/Office usually comes pre-installed on a 'joe sixpack' computer) will cause people to suddenly 'jump ship' to GNU/Linux. Most people don't even know what Linux is!!! They'll grumble but pay up, and MS knows that. I really don't think they'd be dumb enough to do something which would lose them their OS monopoly.
== Jez ==
Do you miss Firefox? Try Pale Moon.
I don't want the record industry to know which CD I play and at what time.
I believe they get enough info from the retailers anyway, there's no need for this.
The day Microsoft creates a product that doesn't suck, it will be known as the Microsoft Vaccuum Cleaner!
There are a number of tools available for removing spy-ware. just search download.com for something like spybot.... ....or move to linux.......
Elitism of one form or another is completely natural in any forum. Mechanics scoff at those who can't flush a radiator before their morning coffee, accountants laugh at people who can't balance their cheque books (letalone balance a company's budget), etc.. The geek community happens to harbour intelectual elitism.
It's a natural progression, too, since those attracted to the 'geeky' IT type professions tend to be of above average intellect (and quite often that results in sub-par social prowess; hence the stereotypes us hellishly cool geeks have to tolerate {cough} ), and many geeks take that for granted, some even get quite high and mighty over it. Hell, sometimes I've even been guilty of it. I doubt any of us are completely immune.
Now, as to whether the "Slashdot Community" is any form a representation of the true geek, or are somehow in a remarkable intellectual or career bracket; that's highly debateable. Slashdot has a definite reputation in the real (and even the uber-geek) world, and to a great extent it deserves it. This is an inflammatory forum frequented by many hot-tempered, lightening-tongue types who are quick to Google and use the dictionary and thesaurus in order to scald their opponants, and it puts forth a lot of arrogance. You'll never get an argument from me on that front. That's one reason for my philosophy of taking online forums with a very large particle of NaCl; Slashdot especially.
I tend to judge people on an independant basis; their Slashdot user ID is probably the furthest thing from my mind when doing so, let me assure you.
If they do stupid things, yes. Thankfully they don't often do stupid things (thanks in part to years of goading and conditioning, but I digress) so I don't have to.
Case in point; a friend of mine (who, incidentally, has about a decade more IT experience than I) recently was solicited by his father for some ISP advise. His father, upon hearing his advice, promptly went his own way. Havnig been a somewhat ongoing trend, he confronted his father about it, who had no response other than one to the effect of a shrug. See, my friend is the one who'll have to deal with his parents when their new ISP ("They're cheaper" was the justification) starts having technical difficulties - or worse - shuts down.
Much like mechanics will toss you a jug of water and a bag of cat litter, it's our job to educate those around us with the basic skillset that will help keep them safe out here in our turf. I try to keep my family abreast of the things they should watch out for, and as a result they no longer reply to "unsubscribe@spamemail.com" addresses, delete mail they know to be SPAM, don't forward chain letters or virus warnings, etc.
I don't teach them the OSI model or the structure of a TCP packet, I teach them the safeguards they should watch out for, and teach them the skills they need to answer questions they have on their own so they can broaden their knowledge and be more effective technologians.
</CORN>
BD Phone Home!
Shameless plug. Like you weren't expecting it.
(At least free cards like the Safeway[tm] Club Card.)
Mine says Emanual Goldstein.
Winston Smith might be more appropriate. I'm not sure.
Act like nothing's wrong.
(Of course now that I've posted this on the internet they can find out who I really am. I'm sure I'm the only one in the whole world to ever think of this.)
This signature used to contain a cute kitty virus with ansii art. Please set the slashdot editors on fire. Thank you
/* /usr/src/linux/net/inet/tcp.c, concerning RTT [round trip time]
* [...] Note that 120 sec is defined in the protocol as the maximum
* possible RTT. I guess we'll have to use something other than TCP
* to talk to the University of Mars.
* PAWS allows us longer timeouts and large windows, so once implemented
* ftp to mars will work nicely.
*/
-- from
- this post brought to you by the Automated Last Post Generator...