Napster Has Been Cracked

Sabathius writes "Users have found a way to skirt copy protection on Napster Inc's portable music subscription service just days after its high-profile launch, potentially letting them make CDs with hundreds of thousands of songs for free...""

Man...

[Curtman]

Never saw that one coming.

Re:Man...

[yogikoudou]

Well I guess they were using SHA-1 ...

Re:Man...

[FrYGuY101]

To be fair, this is a far more crude hack than Hymn.

Hymn (the iTunes DRM remover) keeps the encoded data encoded, simply removes the copy protection, wheras this takes the decompressed audio, writes it as a wav file to the disk. As a result, if you want to encode it to save space, say, WMA, or ogg or MP3, you're losing more information (I suppose you could also go with FLAC, but that's a lot of space for a mediocre bitrate WMA version anyway).

All in all, I'd say wait for a better way of bypassing the DRM before you hog up to the Napster smorgasboard.

Re:Man...

[BasilBrush]

Not any more. Transcode direct to MP3, no WAV step.

And do them in parallel to beat the real time limitation.

Re:Man...

[SamBeckett]

To be fair, there always must be a "WAV" step; you just don't see it in action using method described for the link.

Re:Man...

[JAgostoni]

And you are STILL losing quality even if it was just transcoding like that.

Re:Man...

Wrong.

Original recording -> MP3: loss
MP3 -> WAV: no additional loss
WAV -> MP3: more loss

Each time you convert to a lossy format, there is more going on that "throwing away the parts of the music you can't hear", which is often the quick, oversimplified explanation of lossy compression. There's added noise due to compression as well, and that noise will be, at least to some extent, cumulative with additional generation of compression.

Even if the psychoacoustic models used were perfect (which they aren't, especially at low bit rates), at the very least there would be generational loss from calculation round-off errors when converting from MP3 to WAV and back again.

Re:Man...

[BoldAC]

hah!

Actually, the DRM can be bypassed by having winamp send the audio straight to a raw WAVE file. Winamp stopped this previously by preventing DRM files from using a direct write-to-wav plug-in. However, this hack uses an additional plug-in to bypass this.

The sad thing is that the Output Stacker has been pulled from the winamp website.

Users have been posting links to sites that still contain Output Stacker in the forums.

This recipe contains the step-by-step directions for the hack and active links to the plug-ins.

Re:Man...

[warlockgs]

As the originator (as far as I can tell) of this "hack" (I wouldn't call it that), it is absolutely amazing how quickly this got around. 4 weeks from post on cdfreaks, to worldwide news, and an article on slashdot. Yay to me.

Click here to see the original post I made on this

Anyhow, I hope you all are enjoying it. I merely wanted to transcode the files I had bought (3207 and climbing....) so I could load them on a non-WMA-aware MP3 player like any other piece of music I own. I certainly didn't intend for Napster to start a 14-day free trial, nor did I expect this method to get "out into the wild" (although, posting on the internet is no way to keep anything secret.....). I would like to take this moment and kindly remind you all that unless you actually *buy* some tracks, Napster loses money. Napster loses enough money, they'll fold shop. The artists will then get reamed by iTunes. Don't let it happen guys, lets at least try to be honest.

/Just sayin....

--warlock1711 of club cdfreaks.

Whatever

[Quasar1999]

So long as the audio comes out speakers at some point you will always be able to grab the analog signal and re-encode it to whatever format you want... this isn't some breakthrough... It's called recording the analog output...

Re:Whatever

[rsidd]

On linux, so long as you're playing via /dev/dsp you can always grab the digital signal, for example via vsound. I wouldn't be surprised if that's possible with MacOS X too, or even Windows.

Re:Whatever

[mirko]

Yes... OSX can do it too!

Re:Whatever

I don't see why you couldn't create a fake audio driver for Windows that let you swipe the digital signal. Or a fake CD-RW to steal to the MP3s iTunes lets you download.

And of course the DarkNet paper showed us all what we already knew: With DRM, you have to give the user everything needed to play the file. That includes the cryptography algorithm and the key. Thus, all DRM is breakable.

Re:Whatever

[Curtman]

so long as you're playing via /dev/dsp you can always grab the digital signal

Quiet you. If my next soundblaster comes with some new fangled Macrovision, it'll be your fault.

Or would that be Macroaudio?

Re:Whatever

[UnRDJ]

Many sound card drives (Echo Mia, Egosys Waveterminal, Emu series, to name a few) allow internal rerouting of a digital signal to and from various virtual ins and outs. Simply playback anything through the mme driver, route that to an asio or WDM input, record, and voila. But really people, just buy the music. I know I'm going out on a limb here, but look at a service like Rhapsody. $10 a month for as much 44.1/16 music on your computer as you want. Albeit the bitrate isn't that great (im guessing 128), if you're really using kazaa for virtuous reasons such as "discovering music that you can't find in the record store because the RIAA shoves pop down your throat," then you'll buy a cd when you find something you really like. Rhapsody has a huge library of songs, stuff you would never see on mtv. It has a 30 day free trial, see for yourself. No I'm not a Rhapsody employee =), I just honestly enjoy the service.

Re:Whatever

[Reverant]

I wouldn't be surprised if that's possible with MacOS X too, or even Windows.

It is possible. It always has been possible. All Sound Blaster cards (after the first Live! series) have a virtual input mixer called "WhatUHear". Selecting it as an input, you can record whatever goes to the card's DAC, without actually going through the DAC->ADC process. The quality is excellent. I've been using this method to capture some nice soundtracks from several games that didn't offer the music as wave or mp3.

Re:Whatever

Actually, their drivers do contain something similar.

For instance, I'm in the pro audio industry and folks have always claimed that a soundblasters S/N and other specs are right up there with the big boys. Of course they are -- their team is comprised of greats from around the industry including their aquisition of Ensoniq a few years back.

What they don't tell you is that the digital outs and otherwise are disabled in the drivers. The claim is that you get 24bit in / out -- but the reality is that even if you are doing a pure pass through, that 24 bit randomly drops bits down to a signal of as low as 14.

The strange this is this doesn't happen with the free drivers that were available for Linux nor the Mac solutions. And then someone backported one of the Ensoniq proaudio card drivers after realizing the chipset was identical and was able to bring this back to the PC by doing a little hex editing...and the audio in phenomenal (although the driver is still a bit buggy and I wouldn't recommend it for anyone that needed a serious project undertaken).

But yeah, if Creative needed to make the industry happy, they'd throw in Macrovision in a heartbeat. Sad that your post is rated funny...

Note: This was true several years back...I don't deal with audio interfaces as I once did, so it may not be true any longer.

Also now, this is Off Topic, please rate it accordingly. I'm an AC and don't give a rats ass.

Re:Whatever

[Filmwatcher888]

There is a virtual sound card program for windows. It is called VAC, the Virtual Audio Cable. It works really well, and is relatively cheap.

The only Virtual CD Burner software I've seen is called Original CD Emulator. It creates a fake CD Burner in the same way DaemonTools creats a fake CD drive.

If anyone knows any other software that can do the same things as these too, please post them here too.

Copied Music

[JohnHegarty]

Oh No...

Now the name Napster will be tried to illegally copied music... and after all the paid of the good number of that company...

Re:Copied Music

[binarybum]

I think what he meant to say was, "all of your base belong to us"

Old News

[samtihen]

Oh this has been explained for a while: http://marv.kordix.com/archives/000400.html

All that is happening is that people are grabbing the actual output of the song, and dropping it into a wav file. This will ALWAYS happen with any kind of copy protection. If you let users actually hear (music) or see (movies/tv) the content, there will always be a way to get it. At the absolute worst, people can just set up a tape recorder and grab it from that.

Regardless, the point is that it is STILL ILLEGAL to abuse. Until you can get people to stop breaking the law voluntarily (via fair pricing and good business practices), all media/content companies will have to keep playing this game. What they need to realize is that they are always going to lose.

Re:Old News

[jxyama]

>All that is happening is that people are grabbing the actual output of the song, and dropping it into a wav file. This will ALWAYS happen with any kind of copy protection. If you let users actually hear (music) or see (movies/tv) the content, there will always be a way to get it. At the absolute worst, people can just set up a tape recorder and grab it from that.

you are absolutely right, however, the difference here is, napster is a subscription model. (with a free trial to boot.) so the circumvention of the DRM means you get as many songs as you want for little or no money. music download sites, like iTMS or MSN, you have to pay first, then crack it all you want... so media/content companies aren't quite "losing" there to the same degree...

Re:Old News

[MartinG]

The law is there to uphold the beliefs of society. If enough people are breaking a law, who is that law representing exactly? In those cases, it is that law itself that is wrong. History teaches us that the most effective way to get rid of unjust laws is to ignore them.

NB. I'm making a point about laws, not about my opinion on current intellectual property laws.

Free?

[danormsby]

I thought all music downloaded from the internet was free?

Aw Crap

[Sentry21]

The jig is up. I was hoping I'd finish my 14-day trial before anyone found out about this. Oh well, I got 8 gigs already, and I can get more today.

I use a program called tunebite that plays the files back and records them to MP3, as well as copying over album/artist metadata from the tags.

Hopefully I can get everything copied before they fix it (if they ever can fix it).

Re:Aw Crap

[KiloByte]

The trick is, they can't fix that.

Possible workarounds for them:

subverting the system (MS can do that) to allow locking the soundcard We can simply code a virtual soundcard driver. restricting Janus to work only if your soundcard has a driver signed by Microsoft's key (at the cost of breaking it for many people) We can use cards with extended functions. blocking all cards with such "extended functions" when Janus is in use At the cost of some quality, we can use the analog route, by simply plugging the card's speaker output into some other device.

Oh dear

[Ckwop]

"The DRM (digital rights management) is intact. Basically, people are just recording off a sound card. This is nothing new and people could do this with any legitimate service if they want to use a sound card," she said.

"This kind of attack has been around for a long time and it's just because of our higher profile that it has sparked such interest," she said.

But isn't this the point? All it takes a little software tool and suddenly everyone can do it. You can't just "ignore" attacks - because the attackers certainly wont.

Simon.

That Napster business plan in full

[Deep+Fried+Geekboy]

1. Launch DRM'd subscription-based music service. Nobody joins it but RIAA backs your model and you get lots of good music.
2. Wait for DRM to be cracked, in, ooh, three or four days.
3. Your subscriptions suddenly rocket
4. PROFIT!

Re:Damn...must not be very high quality songs...

[avgjoe62]

Seriously, though, who didn't see this coming?

Uhm... Napster?

So much for the business model...

I wouldn't say cracked

[Daath]

It's not actually been cracked - They can't make real digital 1:1 copies of the songs - What they do is record from the sound card. That's not so bad if you just want to burn them to CD, but if you want to re-encode from WAV to Ogg or MP3, the quality will deteriorate further...
You can do this will *all* DRM media, nothing new here - It's only because it's Napster (woohoooo) that people think it's revolutionary. It isn't.

Impact?

[tuomasr]

So what's the point? The main thing of Napster is that you can legally download songs off the internet. Circumventing copyright protection schemes is illegal, at least here in Finland. So why not download the songs illegally in the first place? Of course there's the RIAA-factor but if you don't share, is there a problem as getting caught propably isn't that likely.

Well, its come full circle.

[GatesGhost]

napster just keeps finding a way to provide free music. lol. talk about irony.

Re:If you don't have time to RTFA...

[harlows_monkeys]

Until recently, music subscription services have been somewhat restricted in their ability to transfer songs they provide to portable players, while Apple has sold millions of portable iPods by allowing users to buy songs from iTunes and store them on iPods

Divide the number of songs sold on iTunes by the number of iPods sold, and it works out to only something like 5 or 10 albums per iPod. Unless people are buying much much bigger players than they need for some reason, it looks like people are mostly putting things other than iTMS music on their iPods.

Broadcast flag has been cracked

[RandoX]

Apparently, users have been sitting in front of their TV with a camcorder...

Napster v.s. iTunes

[thenextpresident]

Hehe
iTunes: $0.99 per song.
Napster: 14 day free trial: All the songs you can download and copy to MP3.

Hrm... =)

Not cracked

[Mr_Silver]

The DRM wasn't cracked, simply the output of the file was redirected back into a WAV (or MP3) without any DRM - akin to doing a tape to tape copy.

Napster have already responded on their site (link in top right) and basically said the same thing. They also rightly pointed out (i think, as i've not tried) that this would be a 1:1 copy, so a 60 minute album would take you the same amount of time to copy - which isn't going to be much fun to do lots of.

Apparantly rumour has it that Steve Jobs contacted music executives, pointing them to the site and the Napster CEO countered by pointing out several sites which showed you how to do the same with iTunes files. I'm not sure how true this is.

Interestingly enough, the Winamp plugin required to do this - Output Stacker - was pulled from the winamp site. Which I find a little odd, since there are perfectly legal uses for the plugin - so I don't understand why they're playing censorer (to be safe?)

If anyone knows where to get it from, it would be appreciated since Googles cache shows no homepage and a Google search of the author gives only a set of links to a non-working winamp.com URL.

Re:Are we not just talking about the analog hole

[natemc]

get the LAME output plug in, it will create and tag an mp3 for you

What they actually mean is...

[Kjella]

..."we're powerless to stop it".

Don't think it isn't being worked on, just not by Napster. You can read more about Secure Audio Path here. Of course, the next step is a simple loopback-cable to another sound card (your input will be disabled while doing secure playback). The next step is to add a broadcast flag to the signal, only to have people circumvent it. Then they'll go for Secure Digital speakers. Then people will record with a high-fidelity microphone. And some time after they ban A/D converters, we will win (or the digital society we've made will collapse, whichever comes first).

Kjella

Napter CTO responds

[graiz]

A response from the Napster CTO taken from the homepage of Napster.com:
----

It has come to our attention that there are a number of inaccurate statements posted by various sources on the Internet regarding the security of Napster and Napster To Go. As Napster's CTO, I would like to officially state that neither Napster To Go, Napster, nor Windows Media DRM have been hacked. In the interest of providing the most accurate information to consumers, the following is some background on the subject.

There is a program that allows a user to record the playback of tracks directly from the computer's sound card. This process can be likened to the way people used to record songs from the radio onto cassette tapes, but instead of capturing the music on a tape, the file is converted into a new, unprotected digital format. This program does not break the encryption of the files, which can only be recorded one at a time making the process quite laborious. It would take 10 hours to convert 10 hours of music in this manner. It is important to note that this program is not specific to Napster; files from all legal subscription and pay-per-download services can be copied in this way.

We hope that the information provided above clarifies the matter and puts questions regarding the security of Napster and Napster To Go to rest. Napster's mission is to provide consumers with a legal environment in which they can experience and discover the world's largest collection of digital music. We believe that artists should be compensated for their work and intellectual property rights should be respected. While we acknowledge there are always going to be those who do not share our belief, we remain committed to providing the most enjoyable and flexible digital music experience for those who do.

Output Stacker plugin URL

[buro9]

Output Stacker plugin has been pulled from the WinAmp site, but you can still get it in their forums.

The details on the plugin are cached here, this is the PULLED page:
http://64.233.183.104/search?q=cache:zsalMv FLX6QJ: www.winamp.com/plugins/details.php%3Fid%3D86033+wi namp+output+stacker+plugin&hl=en&client=firefox-a

This thread lists where it can be found NOW:
http://forums.winamp.com/showthread.php?thre adid=3 5627

And this contains the plugin:
http://forums.winamp.com/attachment.php?p ostid=159 3266

Google is a wonderful thing when companies wish to backtrack like that.

The plugin has tons of geniune uses... pulling it, well yeah I understand AOL/Time Warner's motives... but they're kinda dumb.

Hey, what do you expect...

[skids]

Before you criticise the craftwork, consider the medium.

You don't expect a pile of burning tires to be stacked neatly, do you? That's about the same as expecting coherence and grammar in a slashdot post.

Re:And Apple...

[eboot]

The difference is Napster offer 14 day trial, meaning that you an download as much as possible and rencode at the same time, meaning you can download, with a reasonable amount of effort, a thousand free songs. In iTunes you can burn 'perfect' recordings of downloaded songs without any audio 'trickery' but you still have to pay for them! So Jobs can call them out on this, but he still shouldnt. Nobody likes a snitch!

Re:Really lossy?

[wed128]

yes. MP3, Ogg, and WMA all take away different parts of the waveform in their quest to be smallest. Therefore, transcoding from one to another results in the waveform being mangled more and more.

I saw it coming!

[ImaLamer]

I was going to submit this story with the headline:

Napster is Back!

New key developments

[flowerp]

New key developments:

-If you use the "Out-lame" Winamp plugin in the Output Stacker in place of "Out-disk", you can convert straight to MP3. It still encodes no faster than realtime, but this is a great way to conserve space. WAV(Out-disk) is still recommended if you are burning CDs and want to keep as much quality as possible. I can confirm that this all works.

-You can run multiple instances of Winamp at once, each converting its own song. Each instance's playback will not interfere with any of the others, illustrating the fact that this is not simply recording the music off of your soundcard. Doing this, you can get FAR MORE than 252 full 80 minute CDs within 14 days. I can confirm that this works.

You can transcode(MP3) or decode(WAV) X albums in the time it takes for the longest track on the album to elapse. And since you're not limited to only tracks from one album at a time, you can trans/decode as many tracks as instances of Winamp your computer will run limited only by your computer's resources.

Quote from Napster's official statement: "It would take 10 hours to convert 10 hours of music in this manner."

With the updated methods, you can convert 100 hours or 1,000 hours or 10,000 hours of music in 10 hours. The only limit is your computing resources.

Re:New key developments

[DA-MAN]

How do you run multiple WinAmp instances? I tried and it just jumps to the current instance.

CTRL-P and go to "General Preferences". Once there, click on "Allow multiple instances" and voila.

Press Release

[SomeOtherGuy]

I have just cracked LP copy protection. I have plugged my record player into the line in button on my sound card, dropped the needle and clicked "record". This is a banner day. Hail to me. I am off to crack my camcorder next.

Re:*I* call bollocks on *you*

[Herbmaster]

The thing is always in the hand of the user. With some tools, I can completely re-flash my cell phone. If I'm smart, I can even make the modifications I did stealth from the POV of the cell phone company. This is and will always be true, unless you start making appliances that explode when you open them. Or when you try to make any "illegal operation" with them.

...Or until you persuade the government to criminilize attempts to defeat your DRM. Then you can make your DRM encryption as weak as you want, and let the police pick up the slack for your laziness/technological shortcomings.

Re:it's good enough

[redJag]

for audiophiles and perfectionists ....

Turns out they don't care since they'd never purchase that low quality of music in the first place eh? :)

Re:Specialist Subject: the Bleeding Obvious

[yeremein]

The upshot of all which is, it's trivially easy to capture data meant for the sound card; and there is no place for any kind of security through obscurity, because everyone needs to know at some level how to send data to a sound card.

Not so fast. Microsoft is already a step ahead of you with Secure Audio Path. Essentially, Windows Media DRM can require a digitally signed audio driver which accepts encrypted input. It simply won't talk to an "untrusted" driver (such as TotalRecorder).

That said, the Napster representative in TFA is incorrect about the type of exploit this is. The audio isn't being captured by a "rogue" sound driver (or an analog loopback, which is what she makes it sound like). It's being redirected to disk via a Winamp output plugin. Ordinarily, Winamp will refuse to write to a disk writer plugin given a DRM'd input file, but the Output Stacker plugin sends audio to *both* the DirectSound driver (the "primary" one, which is kosher for DRM'd audio and is the one Winamp sees), _and_ the secondary driver, which is a disk writer plugin.

The upshot is, if you want a means to remove encumbrances from legally acquired media, download Winamp and Output Stacker now before Nullsoft "fixes" this "exploit". But don't share anything you decrypt online, or you'll only vindicate the suits who press for DRM to prevent file sharing.

Re:Quality

[cens0r]

Please remove vinyl from your list. A well taken care of record on a good turntable with a good phono pre-amp can often sound superior to the CD of the same music.

I still prefer CD's because of their ease of use and portability, but when I'm sitting alone in my main listening environment, I definately perfer the sound of vinyl.

Will I?

[hummassa]

Yes.

will you be able to extract the DRM-protected content on your memorystick?

I repeat: YES, I will.
If it's on *my* memorystick, I will extract it. If it requires a closed software to play it, I'll install such closed software under a hacked version of QEMU that instead of playing some stream writes it into a file. Digitally.
I guess Akio Morita did not know what he was getting into when he had the CD/DAT idea "let's write everything digitally in the media".

Repeat after me: there is no DRM. It's cryptographically infeasible. One of the pillars of crypto is that the key must travel between Alice and Bob by a secured mean, so that Eve cannot get a hold of it. When Bob is schizo and Eve is the same as Bob, Eve has the key, so Eve has the message. Pristine. Not even quantum crypto can give a real DRM.

Only true for lossless codecs

[NickSD]

This is only true for lossless codecs. This won't work for any lossy codec. You can't go from MP3->WAV->MP3 for example without quality loss. Same with WMA, AAC, and pretty much all the popular lossy codecs. For more information, see this discussion on HydrogenAudio.