Slashdot Mirror
New Kazaa Lite Protects Identity
Denver_80203 writes "Found this story about the new Kazaa K++ 2.4.0 and it's new sister program which claim to protect your identity while sharing files. Any of you folk know how legit this could be? We all knew it wouldn't be long... is this the war or just another battle?"
I don't know if Kazaa K++ can hide your identity, but what I do know is this: Kazaa K++ is an excellent program. It is so much better than vanilla Kazaa. No ads, spyware, many cool features make it a great program.
#include "sig.h"
How can you hide your identify on a Peer2Peer system where other users get your IP when they connect to your machine to download stuff (for backup reason of course)?
:P
I doubt there is a way... netstat kills your privacy
--
One by one the penguins steal my sanity...
The new versions contain several features designed to foil scanning attempts. PeerGuardian attempts to catalog a range of IP addresses used by or suspected to be used by labels, the Motion Picture Association of America, the Recording Industry Association of America, and other agencies. The database is built by contributions of individual users, although the methodology used to determine and verify the IP addresses is unclear.
Stop trying to flood my P2P network...
Now we have blacklisting and whitelisting (through Sig2DAT). Though both of these methods together would seem to defeat P2P "spammers", the easiest way for them to get around this might be to spam the whitelist. The next move in the P2P wars remains uncertain.
Webmaster Wanted - Entropic Reactions
mldonkey is pretty good and has Fast Track (meaning Kazaa) support.
It doesn't use a fixed list of IPs, it links in to a user-created database, so that shouldn't be a problem. Some of the other upgrades sound a bit less convenient. One is the ability to block people from requesting 'show all files from this user' - great for people with a directory full of infringing material, not so great for someone like me who's sharing fan music videos and wants anyone who downloads one to be able to see what else I've got - so if this feature isn't optional, I won't be upgrading.
Limewire
Runs on anything, has a decent following, so there's a good chance the song/file/app you're looking for is available.
It is optional. You can find the option in Options => Kazaa K++ Options => K++ Options => User's [sic!] can't get a list of all your shared files checkbox.
HTH!
In other P2P networks. Freenet and GNUnet both offer crypto and anonymity. Freenet isn't a P2P app in the pure sense. It's more of an underground www. GNUnet has better anonymity (theoretically - due to it's ability to resist traffic analysis attacks), but it is a younger project.
When it's time to retreat from gnutella, these represent the next stage in the information war.
Please forgive me if I'm wrong, but UDPP2P does not seem to be "promising".
I've checked the web site. It basically says "we broadcast all the queries and if someone has the file we meet each other by using secret codes hidden in those queries".
A peer-to-peer network that does queries in terms of network-wide broadcast is always doomed to fail. Gnutalla failed (and was redesigned) the same way. Even Novell NetWare was unable to scale because of SAP (service advertising protocol).
Nevertheless, the web site says "peers will somehow know each other". This is also a big problem in P2P networks. -- No design only big words.
Anyways, if I were you, I'd use freenet. It's anonymous, and it works much better than the scheme explained on the web site.
No. Results would still be returned from a general search. All this would do is disable the 'see more from same user' option which allows you to browse a single user's shared file collection.
May I point you to giFT-FastTrack?
Only law enforcement agencies can be accused of entrapment. There's no such thing for a non police corporation. They can entrap all they want. Remember, you're going to be going to civil, not criminal court.
--
RumorsDaily
My favorite is mldonkey, which hits a whole bunch of different networks, including FastTrack (which Kazaa uses). The gui is separate from the p2p application, so you can turn off your workstation but leave your downloads running on your server in the basement.
I'm utterly impressed with it. Very easy to use, and I really like being able to hit all the differnt networks at once. It's also pretty cool having native guis available for linux AND windows.
It aint gonna work. The reason is simple : The rules have changed. Distribution of music is now much easier and cheaper than before and a large chunk of the old distribution network is *no longer necessary*. This is totally irrelavent as to weather or not this new distribution model is legal or not. It is happening. It probably cant be stopped(I mean the software industry tried and failed thru the 80s/early 90s)
So now the RIAA have several choice.
1. Try to roll back the technolgy that enables this new distribution channel. This is possible but not very likey.
2. Use more draconian law enforment techniques. Posibble but I mean whata ya gonna do... start sending colleage kids to prison ? For what stealing a Brittney track ? Is this what we want ?
3. Try to adapt to the new medium. Be creative and come up with new profit channels that take advantage of the medium.
Personally I dont think 3 is very likely either... I think RIAA is going to have to be dragged kicking and screaming into the 21st century.
Regarding prohibition, Amendment XVIII only prohibited manufacture, sale, transportation, importation and exportation. Technically, consumption was NOT illegal. Unless you can find a similar loophole in copyright law... it's going to be mostly an issue of pragmatism (scaring off the sharers is both easier and more efficient than scaring off the downloaders).
Only the dead have seen the end of war.
I installed the new version of Kazaa-lite and it apparently turned filesharing on even though I had disabled it previously. (Note: I say "apparently" because I did not check the setting immediately prior to the installation and it is theoretically possible that some other process had turned it on.) This was done despite the claim on the website that "You can just install this on top of a current Kazaa Lite installation. That way all your settings will be remembered."
While people can debate the ethics of not sharing, how it affects the viability of P2P networks, and so forth, it should still be an individual choice.
Turning on filesharing without the explicit permission of the user could put the user in violation of the policy at their ISP or their work. It could put them in violation of federal, state, and local laws. It could open up a big security hole, causing the user to share files that they never intended to share. This is not something that should be done without the user's knowledge and permission.
The article said K++ and K-Lite are integrated with the PeerGuardian database. That's a list of IPs from which to refuse traffic. You can get the plaintext list here and run it through a converter here that converts the list into a script full of iptables commands to cut off the ??AA at your firewall, so they won't even get through to whatever filesharing software you're running.
20 January 2017: the End of an Error.
the RIAA exists because traditionally it has been very expensive to break into the music business.
now that the wall is being torn down, the RIAA is going out of its way to try to ensure its relevancy. (payola, tighter distribution contracts with artists, destroying the credibility of digital distribution, etc) it sucks - but it's all legal.
all that aside this is about theft. downloading mp3s for material you haven't paid for -is- theft. whether it -should-be- or not is debatable. but under the law, it is. bummer.
so this little arms race may be between the good intentioned hackers vs the big bad corporation - but legally it's just pirates against copyright holders.
the fault -doesnt- lie with the consumer, it lies with the pirate. if you've noticed, not even the RIAA is saying 'p2p is bad' anymore. the specific practice of illegal distribution of music is what they're fighting now.
they logistically can't (and don't even try to) sue -you- for downloading. it's not obvious from the information available within a p2p app whether or not you are downloading a song you have fair use rights to (if i own nevermind, i can legally download the mp3s for that album) - and it would be financially prohibitive to even try to figure that out.
-however-, sharing the files is absolutely illegal. the RIAA -owns- the distribution rights for signed artists, and you are infringing on their copyrights by pirating that right.
sure, maybe some day the artists will wise up - but until then, you -are- breaking the law. get used to it, get an ipod, or uninstall kazaa. check your justifications at the door.
and whether or not p2p affects CD sales is irrelevant. discussing that is like trying to justify theft from a profitable business because they're still profitable despite the theft. sure - it's a neat little communistic self-delusion - but it's still theft under our laws.
// "Can't clowns and pirates just -try- to get along?"
Actually, the folks at UDPP2P had an interesting idea in this regard. The client negotiates through the search network to find a server, but doesn't gets that server's IP. The server sends the data via forged UDP packets, encrypted, with some extra code to correct for out-of-order and dropped packets.
/. a while ago about a similar method of sending data; you take a big, not quite square matrix M and multiplied the data file by it, getting a bunch of rows; you send these rows along with row IDs; once the receiver has enough of these rows, he can construct (using the row IDs) the inverse of the submatrix of M that spawned them, and derive the original message, even if the rest were dropped or corrupted. VanderMonde matrices work for this, although I imagine there's a sparser solution.
..AA can still set up a fake server which logs you, since the server knows the client's IP, unless you proxy, which would cost in bandwidth. Or, you could send it to someone on the receiver's subnet and let them sniff, which wouldn't entirely give away their location.
I think there was a paper on
Of course, your ISP/firewall wouldn't necessarily be happy about sending out all those fake UDPs, and many university networks throttle them. Also, the
Perhaps one should point out that this is practically a new internet protocol, requiring root access and stuff... it might be better for them just to use IPSec with address hiding.
I hereby place the above post in the public domain.
The law does see a difference between locked and unlocked doors. Entering an unlocked door without permission (or reasonable assumption thereof, such as a place of business' front door) is trespassing. Defeating a lock and entering is breaking and entering.
"You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"