Slashdot Mirror

← Back to Stories (view on slashdot.org)

Microsoft Warning Leaked Code Traders

Posted by ryuzaki0 on from the thats-a-bit-creapy dept.

An anonymous reader writes "Broadand Reports notes that Microsoft is now sending snail mail warnings to downloaders of the leaked source code. They're also apparently working in conjunction with several un-named peer to peer vendors to send out legal warnings to any users who search for the leaked code. The notice on Microsoft's website has been updated to reflect the new warnings."

11 of 833 comments (clear)

  1. exploit is a known issue? by Fishstick · · Score: 3, Informative

    On Monday, February 16, Microsoft began investigating a reported exploit on versions of Internet Explorer allegedly discovered by an individual studying the leaked source code. This exploit is a known issue that Microsoft had discovered internally and addressed with the latest release of Internet Explorer -- Internet Explorer 6.0 Service Pack 1.

    Um, don't usually like to argue semantics, but what was discovered was a security vulnerability (bug) in the code, not an "exploit".

    Devising and revealing a method to take advantage of this problem (a virus, worm, bitmap) is an "exploit", right?

    --

    There is much cruelty in the universe, John.
    Yeah, we seem to have the tour map.

  2. Re:silly question by GerritHoll · · Score: 4, Informative
    Most p2p network have search facilities. The search is done on a server, and the server is able to (and probably already does) log who searches for what. A server hosting a torrent can do the same, but since those are more often volunteers themselves, they probably won't.

    Now that the source code is leaked, MS will probably get a lot safer, with all those hackers and crackers exploiting their bugs and thus revealing them ;-)

  3. My message from Microsoft by Doobian+Coedifier · · Score: 5, Informative
    When the news of the leak broke, I jumped on edonkey and downloaded it. Got this email via my ISP a couple days later, I've since deleted the code (it's not that interesting to me anyway. Bunch of BSD code in there tho...)


    Microsoft Corporation
    One Microsoft Way Redmond, WA 98052
    14 Feb 2004 18:45:44 GMT
    URGENT/IMMEDIATE ATTENTION REQUIRED VIA ELECTRONIC MAIL
    Re: NOTICE OF POTENTIAL UNLAWFUL DISTRIBUTION OF MICROSOFT SOURCE CODE AT: [my IP address]
    Date of Infringement: Detail below.

    Dear [my ISP]: We have received information that one of your users as identified above by the SITE/URL [my IP address] may have engaged in the unlawful distribution of Microsoft's source code for Windows 2000, and/or Windows NT4, by distributing and offering for download these source code files via a peer-to-peer network. Since you own this IP address, we request that you take appropriate action against the account holder under your Abuse Policy/Terms of Service Agreement. We also kindly request that you forward this notice promptly to the user of the IP address listed above at the time and date stated.

    To the user at [my IP address]: The unauthorized copying and distribution of Microsoft's protected source code is a violation of both civil and criminal copyright and trade secret laws. If you have downloaded and are making the source code available for downloading by others, you are violating Microsoft's rights, and could be subject to severe civil and criminal penalties. Microsoft demands that you immediately (1) cease making Microsoft's source code available or otherwise distributing it, (2) destroy any and all copies you may have in your possession, and (3) provide us any and all information about how you came into possession of this code. Microsoft takes these issues very seriously, and will pursue legal action against individuals who take part in the proliferation of it source code. We look forward to your prompt cooperation. Should you need to contact me, I can be reached at the address above or at someguy@microsoft.com.
    Very truly yours,

    Initial Infringement Timestamp: 14 Feb 2004 05:01:23 GMT
    Recent Infringement Timestamp: 14 Feb 2004 05:01:23 GMT

  4. Re:Traders or Traitors? by stratjakt · · Score: 4, Informative

    Plenty of folks have access to Windows source, I know for a fact that these guys do, they ship their fault tolerant boxes with a heavily customized version of Windows.

    Plenty of other vendors do, too. Plus plenty of third party developers who work on windows. Not every component in there was developed in house, after all. I remember a time when RealPlayer was part of the package, Real must have had some source back then.

    --
    I don't need no instructions to know how to rock!!!!
  5. Re:You people are missing an important point. by sqlrob · · Score: 3, Informative

    Copyrights might have been extended by Congress, but they can still lapse if they aren't defended comensurate to their value.

    That's trademarks, not copyrights.

  6. Not Just P2P by kaschei · · Score: 4, Informative

    I got two calls yesterday from my on-campus network administrator's office asking to speak to my room mate. This is odd because I believe he downloaded it through a DC++ connection, as he seems to avoid bittorrent for some reason. All they asked was that he removed the source from his computer, I don't think there were any other consequences. Anyone else have a similar experience?

    --
    I should not talk so much about myself if there were anybody else whom I knew as well. -Henry David Thoreau
  7. Re:law by poot_rootbeer · · Score: 3, Informative

    If peoples' ability to disseminate information serves as a message to corporations that their attempts to turn the US into a police state won't work, then I can live with that.

    Orrrrrr you could go through VALID channels and work for reform of intellectual property laws. Because as it stands now, if you trade in MS's intellectual property, it's WELL within their legal rights to come after you.

    If you don't like it, do something about it. Something BESIDES breaking the law anyway because it suits you and hiding behind "civil disobedience".

  8. Re:You people are missing an important point. by sir_cello · · Score: 3, Informative


    Copyright cannot lapse per se, the right is unconditionally granted and there is no concept of abandonment (which you can do with patents and trademarks): however, if a copyright owner didn't take any action against infringements - when it knew that they were happening - it could be a good arguement that the owner has "allowed" an implicit license to come into effect. This is just a common legal principle of estoppel: if you passively consent to something, it becomes difficult to later turn around and retract.

  9. Re:I'm skeptical by Anonymous Coward · · Score: 5, Informative

    you are completely uninformed. It is illegal to:

    1. Distribute it
    2. Use parts of it as your own

    It is not illegal to:

    1. Possess a copy of it
    2. Read the code
    3. Think about what you have read
    4. Talk about what you have read

  10. Re:Traders or Traitors? by JoeBuck · · Score: 4, Informative

    The leak came from a Microsoft partner, Mainsoft. The partner's access to Microsoft source was given long before Microsoft started their "shared source" program.

    BetaNews has the details.

  11. Re:Traders or Traitors? by bmajik · · Score: 3, Informative

    There are legitimate ways for people to get windows code that are outside of GSP or Shared source.

    Think about this - the code that was leaked is older than the shared source program. Was shared source the very first time any institution ever got windows code ?

    No.

    I thought the answer on where this code came from was publicly known, and even discussed here ?

    The microsoft statement above, to the best of my knowledge, is correct. (iow what i know doesn't disagree with that statement) If the specific details to back this up aren't widely known, I won't disclose them. IOW, they know how the code got out, and its none of the things you mention. Mostly the distinction is that people have an overbroad interpretation of who the shared source program covers.

    --
    My opinions are my own, and do not necessarily represent those of my employer.