Slashdot Mirror


JBoss Caught in Anonymous Posting Scheme

Reader scubabear writes "For years rumors have run rampant about employees of JBoss Inc. being actively encouraged to post anonymously, drumming up business by flooding the net with fake posts and simultaneously attacking competitors, all from behind a safe veil of anonymity. With the advent of a new feature for tracking users by IP on TheServerSide.com, the floodgates have been opened and those rumors have apparently been confirmed. The Java blog space now erupted with posts from a variety of bloggers (here, here, and here for a start) exposing a variety of anonymous/pseudonymous accounts used by JBoss employees to put forth their Professional Open Source message and simultaneously slam anyone who gets in their way in online technical communities such as TheServerSide, JavaLobby, and various personal blogs. The evidence shows how a corporation can manipulate popular opinion via anonymous personalities, that open source companies can be just as ruthless as closed source when it comes to marketing their wares, and that you should never forget that your cookies and IP address can and will be tracked online. No official response has been heard yet from the JBoss crew. Disclosure: I'm one of those bloggers erupting on this issue (see my story here)."

12 of 380 comments (clear)

  1. These people give all AnonCows a bad name. by LostCluster · · Score: 4, Interesting

    You get what you pay for in free online forums. Here on Slashdot, you're welcome to publish what you want, but if you don't want to be tied to an e-mail-confirmed user account then you have to accept that your username will display as "Anonymous Coward", be penalized in the point-based mod system (assuming the user hasn't overriden the setting from the default), and you'll still be IP and cookie tracked for whatever purposes OSDN wants.

    Mainstream media outlets at least do their best to make their commentators and reporters declare any conflicts of interests they have so that viewers can know about it when considering information from that source. But, non-mainstream outlets are more direct... you get "closer" information, but you also take the risk of what happens when a source with conflicts is allowed to speak unchallenged. Which seems to be exactly what happened here.

    1. Re:These people give all AnonCows a bad name. by 4of12 · · Score: 4, Interesting

      I'd say than 10% of slashdotters post with personally-idenfiable information.

      [Here's my chance to get modded down as a troll by bringing up an old story that I submitted and got rejected.]

      Basically, compression algorithms can be used as a means for identifying the characteristics of a given author.

      With enough of a sample size in an anonymous posting, you might well be able to correlate the author's style with openly-attributed works and thereby identify them.

      --
      "Provided by the management for your protection."
  2. Annoymous is a myth... by LostCluster · · Score: 5, Interesting

    You can't really publish anything truely anonymously. You never really could anyway. The closest thing is to find somebody who is willing to know who you are who is willing to accept your writing and publish it without crediting you while disclaiming that somebody else wrote it. Of course, that person has to accept the legal liability that comes with publishing that work as if they wrote it themselves.

    Yep, some speech does come with a legal liablity attached. "Free speech" is a great ideal, but it is also subject to the greater ideal of "Your rights end where somebody else's rights begin." That is, you can't use free speech to give instructions that put somebody else into danger or spreads lies about somebody else. That's just not your right to do because it ends up damaging somebody else's rights.

    People who oversimplfy the Bill of Rights... such as those who claim that the 1st Amendment protects all expressions of speech from all authorites everywhere, or that the 5th Amendment means you'll never have to tell of your own crimes in court if you don't want to are making sophomoric mistakes. They sound right, but they're not.

    The same goes for this suposed "right" to be annonymous. You can try... but there's always somebody who can squeal on you if they want to.

    1. Re:Annoymous is a myth... by nate1138 · · Score: 4, Interesting

      This topic has been beaten to death, but it bears repeating anyway. Free speech cannot exist without a degree of anonymity. This has been repeated throughout the history of this country, from Deep Throat and watergate to the Federalist papers of revolutionary times. It may not be a "right", but its importance cannot be understated.

      --
      Where's my lobbyist? Right here.
  3. Anonymous or not opinions count. by jelwell · · Score: 5, Interesting

    I guess I don't see the problem. Whether the posters were anonymous or not, don't their opinions and refutations of the facts matter?

    "When these masked marauders enter a discussion, you are no longer debating facts and opinions; instead, you are fencing with a phantom"

    So the people are masked, their motives are unknown, but the discussions are still real, yes? Here at Slashdot, people can post anonymously, or with presumed pseudonyms/identities; I still don't see the problem.

    If some engineer tells you that you should implement some feature you either agree or disagree, it shouldn't matter that the engineer is from company X or some guy in a basement.

    This whole post seems like a rant from people who have a grudge so deep against JBOSS that they have made a policy of disagreeing with the company as a whole. Is it any wonder that such a flagrant policy has made JBOSS go undercover? How ironic is it that these people can have a normal discussion with "faceless individuals" but as soon as they realize those individuals were from JBOSS they want to scream bloody murder?

    Joseph Elwell.

  4. Re:Anonymous by sik0fewl · · Score: 5, Interesting

    Wow, I think somebody from Jboss is on the same subnet as me. This is what happens when I try to post an anonymous reply:

    Due to excessive bad posting from this IP or Subnet, anonymous comment posting has temporarily been disabled. You can still login to post. However, if bad posting continues from your IP or Subnet that privilege could be revoked as well. If it's you, consider this a chance to sit in the timeout corner or login and improve your posting . If it's someone else, this is a chance to hunt them down. If you think this is unfair, please email moderation@slashdot.org with your MD5'd IPID and SubnetID, which are "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" and "XXXXXXXXXXXXXXXXXXXXXXXXXXXXXX" and (optionally, but preferably) your IP number "x.x.x.x" and your username "sik0fewl".

    Neato. I wonder if I know them.

    --
    I remember when legal used to mean lawful, now it means some kind of loophole. - Leo Kessler
  5. More common than you think by frenetic3 · · Score: 4, Interesting

    I know you were being funny, but this is a very clever (albeit very unethical) and common technique. I know that at my last company (who had, well, some additional ethical concerns, but anyway) they would post on targeted message boards hyping up their site and would pretend to be happy customers. It's highly cheap, low effort, and effective.

    It sucks because unlike marketing efforts and vendors' sales messages, which everyone has learned to always take with a grain of salt, I'm inclined to believe, often instantly and completely, a slashdot posting endorsing product X, because the poster seems unaffiliated and genuine and doesn't really have anything to gain from endorsing it.

    In fact, it's very dangerous, because my trust can be easily manipulated this way; I usually don't have time to bother to verify the source of a given posting (Think of how many hundreds or thousands of posts you read a year). However, if I encounter product Y sometime later having read something about it before, I usually vaguely remember whether the post said the product was any good or not and that will usually determine my first impression. In that way, libelous anonymous postings are very dangerous -- I remember hearing some people post that "Python sucked" (probably because of some BS like the whitespace indentation) and for that reason I stayed away for several years until reading some very positive articles and posts -- and now it's one of my most useful productivity tools and I could have saved ridiculous amounts of development time reinventing the wheel had I known about it before. That's kind of a trivial example, but when $ is involved, it's even worse.

    Sadly, it's basically the next form of spam. Most of us used to read (mostly) every word of all our emails -- now spam and outrageous commerical claims make that means of communication virtually useless. It will be a shame to see message boards and blogs, etc, filled with this kind of crap (blogs are already targeted by spammers). However, postings by these kinds of shills are often pretty blatant and easy to spot just because of their outrageous claims and distinctive style, but they will get more and more subtle. They're also virtually impossible to track, since real people are on the other end (and you can only really ban problem users after the damage has already been done). And if a company pays a few random dialup users (a tactic my old company was about to try -- yes, I've left since) to troll the net and make these kinds of postings, good luck trying to prove that the company did it or trying to track down or prosecute them.

    Really, the only way to tell is to view a given poster's karma/post history and to look for certain suspicious patterns.

    -fren

    --
    "Where are we going, and why am I in this handbasket?"
  6. theserverside.com is a cesspool anyway by consumer · · Score: 4, Interesting

    That site is full of so much flaming and mindless shrieking, it makes me wonder how Java gets anywhere. Seriously, there are a few exceptions, but the average quality of comments there make Slashdot seem like a community of polite geniuses by contrast.

  7. Re:I am crying big fat crocodile tears of this. by ryen · · Score: 5, Interesting

    i remember a while back when Amazon had some glitch in their book review system that posted reviewer's names and email addresses accidentally for a short period of time. Turned out that alot of authors of the books were "reviewing" their own books, and giving themselves great reviews.

  8. Core Values by andman42 · · Score: 5, Interesting
    JBoss would never do this.

    After all, JBoss's second Core Value is "Group trust and personal integrity."
    • We operate internally on the basis of mutual trust. Nobody in the company will knowingly deceive another member.
    • We are honest.
    • We tell the truth among ourselves, to our clients, to our partners, to our investors, to our prospects.
      Note to self: anyone who has to state that they're honest probably isn't.
    • We are committed to profitability and sound finances. We are thrifty.
    • We place the needs of the federation of projects above individual ones.
    Note to self: anyone who has to claim that they're honest probably isn't.
  9. Re:JBOSS RULES! by Fjord · · Score: 4, Interesting

    I know it's a joke, but JBoss is not the best choice in all cases. It has no license fees which is awesome, and there are things that make it easy to develop with over other J2EE containers. But if you are expecting a lot of users, it's not the way to go. When doing the performance improvements on a J2EE application, I couldn't get 200 simultaneous users to be able to use the JBoss system. Websphere 5 was handling 1300 (that was it's limit, though that ended the improvement work I did, since that was the target goal).

    --
    -no broken link
  10. Re:But why would they do it? by scubabear · · Score: 4, Interesting

    Oh, sorry, I'm too deep into the community and forgot that what's obvious to me may not be obvious to the world at large.

    The CDN folks are some of the leads for the Geronimo project. This is an Apache-licensed J2EE application server.

    In other words, it's a new free Java application server which is in direct competition to JBoss. Since it's Apache, anybody can use it (and particularly modify and distribute it) with far fewer restrictions than with JBoss. They are a direct competitor to JBoss - a direct open source competitor.

    The JBoss fake posters publically called the technical skills of the CDN/Geronimo folks into question. They did exactly the same to the other major open source Java server, the Jonas people.

    The purpose is simple: generate interest and market share for JBoss, get the residual interest that pays their training/services/support bills. Do it by boosting your own stuff, and trying to do verbal hatchet jobs on your competitors and detractors. Make regular people who happen to disagree with you or compete with you look like the bad guys, make you look like poor besieged victims and underdogs.

    As for the rest - you'd be surprised what a fake grass roots campaign like this can do. In combination with other legit marketing techniques, it's powerful and persuasive. It gets them just enough attention to get articles written, to get research firms like Gartner and Forrester to take notice - and to get enough attention to get VC funding.

    I can understand your puzzlement given the examples and if you're not in the community. But imagine the sample of posts in the referenced blogs - and now imagine 500, 600, 700 of them over years. It has an effect, a very measurable effect. Smearing the names of people who disagree with you just serves to magnify that effect, particularly when it _seems_ to come from uninterested parties.