Slashdot Mirror

← Back to Stories (view on slashdot.org)

The Pure Software Act of 2006

Posted by michael on from the ideas-whose-time-have-come dept.

lurker412 writes "The MIT Technology Review features a proposal by Simson Garfinkel to provide honest labels on software in the same way that the Pure Food and Drug Act of 1906 forced manufacturers of foods and drugs to divulge the contents of their products. The proposal targets adware, spyware and other unsavory practices. It suggests that by requiring software manufacturers to include clear icons for each nasty behavior--rather than hide the disclosures in seldom read or understood click-through SLAs--end users will be better protected. Garfinkel specifically lists eight types of sneaky behavior, but the list is not meant to be exhaustive."

7 of 261 comments (clear)

  1. Finally by JoeShmoe950 · · Score: 5, Informative

    Spyware is a big problem which isn't Window's fault. Because windows is the biggest, it gets targetted by spyware. You can still right a program which uses 100% CPU Usage and makes everything really slow,etc. for another OS, no matter how secure. Unfortunetly, its targeted at windows. My friend thought that windows XP was horrible because it was running so slow. On a 2ghz, it would take 5 minutes to load IE. I showed him Ad-Aware from lavasoft. It detected 589 spyware objects, quite a few of them different. I found that a big problem with spyware, is not only the spying, yet the fact that it slows your system to a hault. If this works, and makes spyware go away, or atleast well known spyware label itself (such as gator), I will rejoice.

    --
    Help Fight SPAM today!
  2. Never happen by Anonymous Coward · · Score: 2, Informative
    As long as we have members of our government like Senator Cantwell (D-Real)

    Read up on how she's bought-and-paid for by a loan from Real Networks - a loan that Ms. Cantwell got to pay for her campaign by using her insider shares she got from Real - and a loan that was supposed to have been called in when Real's stock price tanked.

    And that's just Real - anyone wonder how many Senators, Congressmen, and President's Bill Gates has on his payroll?

  3. Re:Erm... by theghost · · Score: 2, Informative

    Require that the icons be prominently displayed on a special confirmation page before purchase or download can occur. Require a similar screen as a part of any installer.

    Trivial.

    --
    The only thing necessary for the triumph of evil is that good men do nothing.
  4. Re:Can there be a label... by Anonymous Coward · · Score: 0, Informative

    There already is, it's a picture of a Window.

  5. article text by Anonymous Coward · · Score: 5, Informative

    The Pure Software Act of 2006
    100 years ago, Congress passed a law requiring honest labeling of food and drugs. Now the time has come to do the same for software.

    By Simson Garfinkel
    The Net Effect
    April 7, 2004

    Spyware is the scourge of desktop computing. Yes, computer worms and viruses cause billions of dollars in damage every year. But spyware--programs that either record your actions for later retrieval or that automatically report on your actions over the Internet--combines commerce and deception in ways that most of us find morally repugnant.

    Worms and viruses are obviously up to no good: these programs are written by miscreants and released into the wild for no purpose other than wreaking havoc. But most spyware is authored by law-abiding companies, which trick people into installing the programs onto their own computers. Some spyware is also sold for the explicit purpose of helping spouses to spy on their partners, parents to spy on their children, and employers to spy on their workers. Such programs cause computers to betray the trust of their users.

    Until now, the computer industry has focused on technical means to control the plague of spyware. Search-and-destroy programs such as Ad-Aware will scan your computer for known spyware, tracking cookies, and other items that might compromise your privacy. Once identified, the offending items can be quarantined or destroyed. Firewall programs like ZoneAlarm takes a different approach: they don't stop the spyware from collecting data, but they prevent the programs from transmitting your personal information out over the Internet.

    But there is another way to fight spyware--an approach that would work because the authors are legitimate organizations. Congress could pass legislation requiring that software distributed in the United States come with product labels that would reveal to consumers specific functions built into the programs. Such legislation would likely have the same kind of pro-consumer results as the Pure Food and Drug Act of 1906--the legislation that is responsible for today's labels on food and drugs.

    The Art of Deception

    Mandatory software labeling is a good idea because the fundamental problem with spyware is not the data collection itself, but the act of deception. Indeed, many of the things that spyware does are done also by non-spyware programs. Google's Toolbar for Internet Explorer, for example, reports back to Google which website you are looking at so that the toolbar can display the site's "page rank." But Google goes out of its way to disclose this feature--when you install the program, Google makes you decide whether you want to have your data sent back or not. "Please read this carefully," says the Toolbar's license agreement, "it's not the usual yada yada."

    Spyware, on the other hand, goes out of its way to hide its true purpose. One spyware program claims to automatically set your computer's clock from the atomic clock operated by the U.S. Naval Observatory. Another program displays weather reports customized for your area. Alas, both of these programs also display pop-up advertisements when you go to particular websites. (Some software vendors insist that programs that only display advertisements are not spyware, per se, but rather something called adware, because they display advertisements. Most users don't care about this distinction.)

    Some of these programs hide themselves by not displaying icons when they run and even removing themselves from the list of programs that are running on your computer. I've heard of programs that list themselves in the Microsoft Windows Add/Remove control panel--but when you go to remove them, they don't actually remove themselves, they just make themselves invisible. Sneaky.

    Yet despite this duplicity, most spyware and adware programs aren't breaking any U.S. law. That's because many of these programs disclose what they do and then get the user's explicit consent. They do this with something that's called a click-wr

  6. Re:Adware/Spyware makes me mad by Shadwhawk · · Score: 2, Informative
    Some program called "Hotbar" is the worst.
    Oh, if only that were true.
    There's this relatively new thing out there that's called Morze. I think it comes with the package that installs VirtualBouncer and Ad Destroyer.
    It's awful. It creates 10+ randomly-named executable files in the Windows directory, and puts shortcuts to them in the start menu (in 98, it also puts duplicates in windows\all users\start menu\programs\startup, so it still tries to load them even if you deleted the visible stuff). Morze re-creates the EXEs and shortcuts, so if you delete them without getting rid of Morze...
    It also seems to install other crap like ClearSearch and EZula. As a bonus, it looks like it interferes with Ad Aware, and maybe Spybot.

    Last weekend, I went over to a co-worker's house to try to get his 'high speed' dialup connection working. I spend three hours manually removing accumulated spyware, mostly because I stupidly forgot my USB key with those on it. I delete something evil, and it breaks his winsock. I come back the next day armed with Ad Aware, Spybot, CWShredder, LSPFix, HijackThis, BHODemon, and my Microsoft security update CD. Spybot finds 641 entries (and this after I spent 3 hours removing stuff). I run Ad Aware next, and it finds another 300.
    You name a piece of spyware, and he probably had it. There were at least 4 different toolbar programs installed. His active processes list was about 3 pages long.
    After I got done with it, his 2GHz P4 was no longer acting like a P200 with a glitchy WinME install.

    This this shit is a bane upon the Internet, and I fully support the public execution of those who create it. They're worse than spammers. I worship the ground Ad-Aware and Spybot tread upon.

  7. Re:More evil bits .... by cloak42 · · Score: 3, Informative

    A closed mouth with a finger making the "shush" gesture. This software's license forbids or encumbers the publication of reviews without the permission of the publisher. Reviews you may have read of this software may have been selected by the publisher to represent it in an unfairly positive light.

    Any license that would prevent you from reviewing the software is highly illegal. Reviews are explicitly covered under the Fair Use clause of copyright law. So much, in fact, that it's entirely legal to include clips of movies, songs, or text from a book in your review. (A perfect example of this was when two whole pages of Harry Potter and the Order of the Phoenix was leaked to the public in a review. Court's ruling: Fair Use.)

    You could easily challenge something like that in court, if it came down to it.