Slashdot Mirror
Verizon Loses Suit Over Subpoena of Subscriber Info
Brian Golden writes "As a result of a suit filed by the RIAA, the identity of a Verizon customer with a penchant for mp3's was ordered to be released. Man, how many people are now sweating bullets trying to remember what they downloaded?" News.com.com also has a story. If you've forgotten about this case, see our earlier story. Verizon wasn't making any sort of principled stand to protect its users' privacy, it just wanted to avoid the costs of complying with the (many) subpoenas it will now receive.
It wasnt me, it was my brother/son/wife/cousin/neighbor/someone-using-my- WAP
The power's concentrated in the hands of the copyright holders, who have the money and the control. The DMCA was passed because they wanted it; the Verizon motion was decided this way because they wanted it...a w/
http://www.geocities.com/digitalmilleniuml
geek. lawyer.
Let me get this straight.
We now live in a world where anonymity no longer exists, we have to pay for music, and an ugly 18 year old Canadian chick is at the top of the US music charts?
I need a Tums...
Reply or e-mail; don't vaguely moderate. Ex-O'Reilly/MIT employee, now a full-time Google employee.
This means that the (MP|RI)AA can serve as many goddamn subpoenas as they want and the ISP's lawyers will advise them to comply in light of this decision. The next logical step is for the (MP|RI)AA to serve cease and desist letters to individuals... then lawsuits will result if they don't comply.
Many people involved in this will agree that it's probably time for the (MP|RI)AA to start working on consumer dis-satisfaction... if they start to sue individuals, things will get very bad.
MEMORANDUM OPINION
The Recording Industry Association of America ("RIAA") has moved to enforce a subpoena served on Verizon Internet Services ("Verizon") under the Digital Millennium Copyright Act of 1998 ("DMCA" or "Act"), 17 U.S.C. 512. On behalf of copyright owners, RIAA seeks the identity of an anonymous user of Verizon's service who is alleged to have infringed copyrights with respect to more than 600 songs downloaded from the Internet in a single day. The copyright owners (and thus RIAA) can discern the Internet Protocol address, but not the identity, of the alleged infringer -- only the service provider can identify the user. Verizon argues that the subpoena relates to material transmitted over Verizon's network, not stored on it, and thus falls outside the scope of the subpoena power authorized in the DMCA. RIAA counters that the subpoena power under section 512(h) of the DMCA applies to all Internet service providers, including Verizon, whether the infringing material is stored on or simply transmitted over the service provider's network.
The case thus presents a core issue of statutory interpretation relating to the scope of the subpoena authority under the DMCA. The parties, and several amici curiae, agree that this is an issue of first impression of great importance to the application of copyright law to the Internet. Indeed, they concede that this case is presented as a test case on the DMCA subpoena power.Based on the language and structure of the statute, as confirmed by the purpose and history of the legislation, the Court concludes that the subpoena power in 17 U.S.C. 512(h) applies to all Internet service providers within the scope of the DMCA, not just to those service providers storing information on a system or network at the direction of a user. Therefore, the Court grants RIAA's motion to enforce, and orders Verizon to comply with the properly issued and supported subpoena from RIAA seeking the identity of the alleged infringer.
The recording industry asked Verizon last summer to reveal the name of a customer believed to have downloaded more than 600 songs in one day, but Verizon refused
(Emph mine.) So just based on the fact that the customer might have downloaded [any number] of songs, they have convinced the federal government to step in and force Verizon to release information to a group of record companies? This is revolting.
Ok.
What happens if, say, I have my MP3 collection on my computer at home. I get permission to temporarily use the storage at work while doing a reformat of my computer. When I download all the files back to my computer at home, is the RIAA going to come knocking?
Two choices: encrypt the entire collection or re-rip from CD. I don't know which would take longer.
...
Johnny Cochrane: It does not make sense. Look at me. I'm a lawyer defending a major record company and I'm talkin' about Chewbacca. Does that make sense? Ladies and Gentlemen I'm am not making any sense. None of this makes sense. And so you have to remember when you're in that jury room deliberating and conjugating the Emancipation Proclamation, does it make sense? No. Ladies and Gentlemen of this deposed jury it does not make sense. If Chewbacca lives on Endor you must acquit. The defense rests.
Won't work, at least not without one hell of a tradeoff. If you still wanna be able to LART Joe Luzer for running the open SOCKS proxy through which you got spammed or DDoSed, RIAA has to be able to LART Joe Musicfan for running the Gnutella note through which they downloaded HilaryRosenIsABigFatBitch.mp3
If ISPs could blocked outbound port 25 traffic from residential cablemodem and DSL users, that'd greatly cut down the amount of spam the rest of the 'net has to deal with, but logs would still have to be kept with regards to DDoS issues.
A federal judge ordered Verizon Communications Tuesday to turn over the name of a customer suspected of downloading songs over the Internet, handing a victory to recording companies in their fight against online piracy.
But what if I start my own ISP and the database of customer records is indexed without any information that would be able to identify the person or phone line that's dialing in to use our Web access services?
Any payment information would be done with cash only and written on pencil and paper kept in a lockbox or safe of some sort so that no matter what a court rules, my customers remain anonymous.
Is this feasible?
Reply or e-mail; don't vaguely moderate. Ex-O'Reilly/MIT employee, now a full-time Google employee.
What's your complaint with Verizon? They did stand up against the RIAA . . . but lost.
Rip. Mix. Burn.
Has been superceded by
Track. Subpoena. Litigate.
Which had damn well better begotten by
Boycott. RIAA. NOW.
The ONLY way to get them to shut the hell up and off our backs, is to make sure their sales suck long after file-trading has been smacked-down.
~~~
"The slave thinks he is released from bondage, only to find a stronger set of chains" - NIN
I guess this means I can use the DMCA to force ISPs to give me the IDs of people whose machines have sent me spam. Since there's no due process involved, nor (seemingly) any right to appeal (at least by the ISP, and there doesn't seem to be a provision for user to appeal), I should be able to find out who they are, where they live, and their phone number.
What happens then? Use your imagination.
But what's the DMCA violation with spamming? The spammer has bypassed the technological measures installed on my machine (spam filters) preventing me from copying (receiving) their spam. Remember, the courts don't review this, so I can get their personal info just by asking.
Here, spammer...
The president of the RIAA says:
.mp3s (or oggs), for relatively cheap (e.g. $.25 a track...) I have not been educated or informed of a legitimate alternative to peer networks.
"The illegal distribution of music on the Internet is a serious issue for musicians, songwriters and other copyright owners, and the record companies have made great strides in addressing this problem by educating consumers and providing them with legitimate alternatives."
I am interested in legal methods of attaining high-quality, non restricted use
Exactly what strides have they been making? What alteratives are they giving us?
Anything you write down, record on tape, commit to a file on your computer, or store in any way other than in the meat between your ears can come back to haunt you.
Verizon should make sure they log as little as possible - keep IP to User ID logs for not more than a day, don't log ANY actions of your proxy servers, and so on.
Then, when the *AA comes and says "We need all your logs for the past week so we can find this pirate", Verizon can say "Here's all the logs we have - the last 23 hours. Cheers!"
If you absolutely feel you must have the possiblity of accessing logs older than that, then encrypt them with a public key. Let the private key be held by an individual in another country. If you need to access the logs, you mail the encrypted log to him, he decrypts it and sends it back.
Then if you are served, you give the logs to the nice officers, and then tell your friend that you have been served. Then, even if you want the logs decrypted, your friend won't.
Let them go to East Elbonia if they want the logs decrypted.
www.eFax.com are spammers
If I were the ISP, I'd comply with any request RIAA gave me for customer logs. I'd send 'em every byte every customer transmitted or received.
I mean, what else am I gonna do with the half-dozen old line printers I found in the basement? :-)
RIAASpeak:
"The illegal distribution of music on the Internet is a serious issue for musicians, songwriters and other copyright owners. . ."
The "other" copyright owners are the record companies. In fact, I'm sure the record companies are the only copyright owners most of the time--but it's a lot easier to stick up for the rights of a well-known (or not) musician, than it is to stick up for the rights of a faceless, multi-billion-dollar corporation.
Seriously--if artists owned any share of the copyright after their CD hit the market, do you think we'd see the flood of remade songs that are on the airwaves today?
!#@%*)anks for hanging up the phone, dear.
I'll say it again - it's not Verizon's Fault
A court has ruled that they are legally bound to provide the information - if they do not provide it they will be acting illegally.
Whether Verizon choose to fight it from a consumer protection issue, or so that they were not open to a flood of court actions it is no longer in thier hands.
So they did stand up to it - and they lost.
It is not a customer service issue - its a matter of law - they have no choice.
If the bad law upsets you write your congresscritter - I can't because I'm not a US resident.
It's interesting to note that downloading music you already own is most likely perfectly legal, whether the RIAA likes to admit it or not, simply because of they way they are trying to categorize the sale of music.
Say for instance, a bunch of my CDs get scratched and are now unplayable on a couple of my players. So, I just download the whole albums off of Kazaa to replace them. Technically, I am within my rights to do this. Why? Because the music industry is trying to look at it like the software model, where the content is wholy apart from the media. Therefore, I've a payed for a licence to listen to this music, and not for a fragile disk that's been destroyed.
Interestingly, if they looked at it like they were selling you the CD (something they're loathe to do; see: the hard, bitter battle against used CD sales), instead of licencing the content, it could be argued illegal to do that. After all, if you scratch your car, you can't just walk down to the lot and drive another one off without asking, can you?
Of course, the RIAA once tried to convince people on their website that making backup copies of music you've bought was against the law. So, pesky legal "rights" are of little concern to them anyway.
But now, with this one-two punch aimed at ISPs (see http://yro.slashdot.org/article.pl?sid=03/01/18/21 16255&mode=thread&tid=141)they've started annoying the big boys - corporations with real money. No ISP in their right mind wants to have to give up their user's personal info without a fight - it makes them look bad and generates a lot of bad will with their customers.
So might it be that Verizon, AT&T, BellSouth, Earthlink, etc. will start some counter-lobbying on the Hill to get the DMCA limited? Sure, they're not really doing it for the best reasons... but you know what they say about "the enemy of my enemy."
The Globe and Mail also has an article about this.
Check out the scary "John Doe" clause.
-- clvrmnky
Great. It isn't enough that RIAA taxes blank media, now they are taxing ISP's by increasing the ISP's costs, and thus the price we pay for internet service.
It's starting to look like RIAA is a world wide government. I wonder if if RIAA has nukes, and if Blix is going to inspect them.
Oh wait. They do have a nuke. It's called DMCA.
Necessity is the plea for every infringement of human freedom. It is the argument of tyrants; it is the creed of slaves.
This guy downloaded over 600 songs in a day! If and only if this behavior was not limited to a single day, then it is obvious this guy was pirating music. He took music without paying for it, plain and simple.
Of course, if he owned the CDs, that is a different story, but the probability of the guy (it has to be a guy!) owning those CDs just isn't there.
So, how does the RIAA know he downloaded 600 tracks?
Would the courts order Verison to give me someone's name if I thought they had downloaded one of my copywrited songs? (I bet not).
What about software, can any publisher now go and ask for the names of people they SUSPECT of illegal downloading their product???
The courts just set a precedent and the RIAA is probably going to continue with this activity until they realize it is futal and they go back to what they were originally supposed to do, set and maintain standards for recording.
I've often thought about this. This is my solution.
.
:)
Assuming you run Linux, make a loopback crypto partition. However, don't just use a password for the encryption key.
Make a smallish file (128 bytes) of random uuencoded data into a file (random128bytes)
Write a shell script that prompts for your password, and uses the contents of that file with the password appended.
That way, the password is still required, but if in doubt, you can shred -u random128bytes, and you'll never be able to get it back. Knowing the password won't help you at all.
Any suggestions for improvements from the Slashdot paranoids?
Get your own free personal location tracker
This is:
1.An attempt, and order BY the government to uphold the will of a corporation, above and beyond that of the citizens. Therefore:
2.A hostile act by the government against the citizens of this nation.
--otterpop378
If the RIAA doesn't know who the person is, how do they know the person unlawfully downloaded the music? That person may be legally entitled to possess copies of those 600 tracks as they may already own the CDs. For all they know, this person may be a record company employee!
I certainly feel I am doing nothing wrong if I download tracks I already own on CD, and I certainly own right to play more than 600 tracks. More like 6000!
Let me give an example. I could send a letter to your ISP, and say 'We believe that a user at 92.43.23.134 is electronically distributing our copyrighted documents. We demand that you turn over their name and contact information, according to the terms of the DMCA.'
Or they could say "several people at all these addresses and all these times are suspected of..."
This essentially means there will be no legal check. See the fourth ammendment to the US Constitution: "The right of the people to be secure in their persons, houses, papers, and effects, against unreasonable searches and seizures, shall not be violated, and no warrants shall issue, but upon probable cause, supported by oath or affirmation, and particularly describing the place to be searched, and the persons or things to be seized. "
It has been fairly well established that obtaining records of that type are subject to 4th ammendment restrictions.
frob.
//TODO: Think of witty sig statement
According to what I read in the complaint, the DMCA authorizes a publisher to subpoena the identity of an alleged copyright infringer. "...RIAA believed a computer on Verizon's internet service was distributing to the public for download unauthorized copies of hundreds of copyrighted sound recordings..."
Was the verizon subscriber targeted because he was downloading RIAA music files, or because he was publishing (offering for download) RIAA music files?
Enquiring minds want to know? I expect a retraction (or a re-write) of the Reuters quote any time now. I suspect the RIAA FUD campaign is working too well, inadvertently causing some journalist with average integrity to because a part of their FUD engine. Can a publisher assert copyright infringment charges against a posessor (rather than a publisher) of an unauthorized copy of a copyrighted work?
The thing about things we don't know is we often don't know we don't know them.
Wouldn't it be funny if all the file were fake? Ie they either used that Kazaa cheating program which makes it seem like you have more files then you do, or they just renamed some text files Brittney_Spear_mp3.
:-). Actually she said they were both very nice, and she mentioned to the RIAA guy about downloading music. The one thing he said besides explaining about some madeup revenue losses is that in the coming year aka now, the RIAA was going to go full tilt against private citizens who share their files on peer2peer programs. Now I know this is a big "no shit", but this was from someone in the thick of it and he said suits against individuals was going to become VERY common as opposed to suits against just the networks. So take it FWIW, but if your still sharing mp3's on Kazaa etc you may be in for more than you bargined for.
Also true story. My girlfriend was at a wedding recently in Washington(I couldn't make it). On both sides of her were two lawyers. One worked for MS the other for the RIAA. She said they were lucky I wasn't there
If you wanna get rich, you know that payback is a bitch
Some sort of accountability must exist on the internet, just as it does in other forms of communication (phone, broadcast). If someone were making prank calls to a corporation from a phone, it's perfectly reasonable that said company be able to take action against them. The same would hold true if a person were broadcasting a pirate radio station. Noone would shed a tear if the FCC tracked them down at the request of the legitimate companies. We must compromise certain things to live in a civilized society.
We always talk about how the RIAA shouldn't be sueing providers, but sueing the pirates themselves.
Well now they're doing it. Let's not get our panties knotted when the RIAA actually follows the correct legal/moral path in their struggle to survive.
Besides, I sure as hell don't recall reading any privacy guarantees in my cable modem contract.
In recent weeks I have had KaZaa open 24/7 for sharing. Not 600 files, I share over 3000 files, simply to thumb my nose at these zealots.
With this said, let us take into consideration a suit by the RIAA against me, given that they get my name and information. A cease and desist letter? Sure, I'd probably cease, but what if I continued to share?
I'm a senior in college. I own a crappy car, rent an apartment, and have quite low income. So what then? What will they get if they sue me? Nearly nothing. They can have my student loan, my car, and my apt. Kick me off my ISP, I'll find another.
The RIAA seems to not understand that civil lawsuits mean nothing to those who have nothing. This means most college students. This means most of the file sharers.
Do you think I'd be downloading all the free music I want if I could afford it? (Yes, probably, but I'm just making a point)
As I see it the music industry has two models:
1) Physical ownership - i.e. you own the music CD
This is like buying a book - you decide what to do with the CD, lend it to your mates, play it in the car, your laptop whatever
2) Licensing - i.e. you buy a license to listen to an album, the CD is just a delivery medium
This is basically how most software is shipped.
But copy protecting CD's hurts the consumer in both ways.
If I own the CD outright then I'm entitled to my money back because you crippled it and it won't play in my laptop - the goods are faulty.
If I license the music then once I have the delivery medium I'm entitled to listen to the music anyway I want - but I can't because it won't play in my laptop.
Now try as I might I can't see another 'model' that the music industry can use.
Music wants to be made and the people involved must be compensated for thier skill and effort. I want to listen to a good range of music in a way that is convenient to me and I'm willing to provide that compensation.
I'm fed up of hearing that an album is deleated, or I can only get track X on this compilation. I want to listen to music that I've already heard or heard about and I'm willing to pay for it.
The challenge for the record industry is to build a buisness model on that, which sadly they show no inclination to do.
As one of my pasttimes I've run discos and compiled themed compilations for local pubs - all legal uses of downloaded MP3s as all the venues have paid thier PPL fees (This is in the UK) and yet I now can't find the one offs, the deleted tracks, the special mixes that I could on Napster.
Treat consumers like criminals 24/7 and they will start to act like criminals.
Bahh - sorry off topic a bit.
Does anyone else think the subject size limit worked out REALLY funny this time?
...
The RIAA produces the best music in the world like Nsync, Britney Spears, and uh, uh well my mind is blank right now on any new bands. But anyway since the bands listed above are such high caliber and will be remembered for centuries to come like Mozart and The beatles I am sure piracy has to be the real reason.
After all the RIAA is such a popular group of friendly, ethical, and hard working folks that consumers just love to buy from. They would have no incentive to boycut anyway. After all nobody even used napster back in 99 when they made record profits. Morpheous is so much more popular today and I am the big retailers are also hurting do to piracy. What they made money??? Well, uh I am sure its really still piracy. The economy is so strong right now and music is priced so low that it should just be flying off the shelves.
Poor RIAA they are the true ethical and honest victims of piracy.
http://saveie6.com/
Copyright violations can be either criminal or civil. It is much easy to prove a civil case.
Sharing of MP3s from CDs that you own is a copyright violation. This was made clear in the my.mp3.com case. It does not matter if either or both parties own the CD. The possible penalty for sharing a registered copyrighted work is $30K per work (per song offered, not per song downloaded).
The $30K figure is for statutory damages. Statutory damages can be awarded even if it is not shown that any one actually made any money or that the owner lost any money or even that the violation was willful. If the copyright owner can prove any of these, the amount can be higher. Statutory damages for willful copyright violations are up to $150K per work.
Sharing because of a misconfigured P2P setup may not be willful, but is still probably a violation. The final determination is, of course, up to the judge or jury. Adding warnings like, RIAA keep out! could help the RIAA show that the violation was willful. The disclaimer that you propose is basically what my.mp3.com tried and they had to pay huge amount in damages.
Perhaps Verizon could copyright the DHCP logs, add some lame encryption (CSS?) and then offer each log file as a "product". The price, of course, would be rather steep ($1,000,000 each). Such a copyrighted work would naturally be protected by DMCA, right?
Of course, RIAA wants just one line, but they would have to buy the entire overpriced "album". If Verizon is forced to hand over their digital "log file product" because of a DMCA subpeona, then they make up a stupid song and then subpeona the entire RIAA catalog, so they can search for "infringing" uses of their song lyrics.