Slashdot Mirror
House To Enact Anti-Spyware Law
Stephen Samuel wrote to mention that the U.S. House of Representatives has readied the aptly acronymed Securely Protect Yourself Against Cyber Trespass Act (SPY ACT) for law. MS-BS has an article claiming that the bill allows a loophole for the makers of proprietary software. The issue at hand concerns Section 5, paragraph b, subsection 2, under the heading of limitations. The law does not apply to: "(2) a discrete interaction with a protected computer by a provider of computer software solely to determine whether the user of the computer is authorized to use such software, that occurs upon (A) initialization of the software; or (B) an affirmative request by the owner or authorized user for an update of, addition to, or technical service for, the software." The law, then, would disallow Gator and their ilk but would not hamper Microsoft's Genuine Advantage Program. More complete commentary is available at TechReview and About.com.
What about all those who signed the Gator/Gain network EULA which prohibits the removal of said spyware/adware from PCs?
Sure, some of the "legitimate" US companies pushing this stuff will obey the new law, but it's not going to do a thing to stop people in other jurisdictions or criminals who just don't care what the law says.
Kind of like "Gun Control" I might add.
Ha, ha! Nobody ever says Italy.
Securely Protect Yourself Against Cyber Trespass Act (SPY ACT)
So wouldn't this be the SPY ACT Act?
Are these the same people who scream about having their PIN Numbers stolen at the ATM Machines?
Spyware will be "legal", just like the CAN-SPAM act...
Thank you for your stupid technology laws, American Congress!
I would like to see a bill that prohibits congress from awkwardly wording bill names to create acronyms.
Slashdot Syndrome: the sudden, extreme urge to correct someone in order to validate one's self.
Two positive thoughs on this.
One - if written and applied correctly in the US, at least it is a legal tool against some of the spyware, making it more costly for them.
Two - if it's somewhat successful, it may make Congress look back at CAN-SPAM and fix it.
Okay I'm optimistic here.
Bonzie Buddy loves children!
"SPYACT kills cute furry pets" campaign.
An Indian-American Hindu committed to non-violent thought/speech/action alarmed by the global explosion of radical Islam
Spyware is a technical problem. Congress and the public should have learned from the CAN SPAM act, more accurately called "You Can Spam" Act. Spam is at an all-time high.
People don't read click-thru licenses now, what makes anyone think they're going to read them in the future?
The antivirus companies, who already have the technology and infrastructure, need to extend their scanning of executables to include ANY software that collects data and phones home. Make a big list and update it with the AV updates. When anything is installed that hit the list, pop up a big "POTENTIAL SPYWARE - ARE YOU SURE?" box.
Yet another "vote for me, I feel your pain" law isn't going to do anyone any good.
-Charles
Learning HOW to think is more important than learning WHAT to think.
I can't wait for the Congress to protect us from spyware as effectively as they've protected us from spam.
--
make install -not war
I can only hope that this piece of legislation is considerably less effective than the CANSPAM Act. Compliments of the CANSPAM Act, spam is worse. We don't need another cure like that. If the U.S. Congress is our only hope of rescue from spyware, just shoot us now rather than prolong the misery. After all, this crew is the same one that brought us the DMCA and we all know what a resounding success that has been!
Or not. Your mileage may vary.
You must be the change you wish to see in the world - Ghandi
Securely Protect Yourself is the name of the game here. This law won't do anything to actually stop spyware, as it will probably only affect companies run out of the US. In case they haven't figured it out yet, the Internet is global. The best solution is to just protect yourself by learning basic computer skills such as don't install everything you see and use browsers that don't allow arbitrary code with full system access to be run on your computer.
Anthropic principle: We see the universe the way it is because if it were different we would not be here to see it.
This won't be hard to get around. Every user is by now thoroughly desensitised to seeing click-through EULAs for any software they install. So, after this law, paragraph 135.62.4.3.1 on the EULA for your latest Swimsuit Babes Screensaver package is "Oh yeah, and we're sticking Gator on your PC as well, ok?"
User, as ever, scrolls to bottom of 100 page document in 3 seconds flat, clicks agree, and off we go as before.
If 'technology' patents in the EU end up as silly as those in the US, we could probably stop spyware/adware by patenting
"A program that installs itself without the user's knowledge, possibly by coming bundled in another package, monitors the user's internet activity and then displays (un)targetted advertising"
Could probably stop spam too similarly.
Patent adverts and compulsary user-registration and we wouldn't need the adblock and bugmenot extensions.
Actually, there is no problem with this, and it is not genuine spyware tactics. Sorry if I start a flamewar here, but if you insist on using Windows, then you should be paying for it and they have every right to inspect your machine to see if you are. This is the aggreement you sign up to.
Also, I don't see how this affects programs loke Gator as g. parent suggests. They are playing by the same rules. If their software doesn't comply, they should be able to make changes without significantly altering it.
Anyway, it's not my problem I don'r use Windows. Good luck!!.
Anyway, spyware will probably find a way to evolve with this..
This, like Can Spam and others, will have no effect until it starts putting people in prison for some Mitnick-style hard time. It will be especially effective if it puts people who wear suits to work into prison. Until that happens, it is to laugh.
Some mornings it's hardly worth chewing through the restraints to get out of bed.
Not sure, but in previous bills that were being introduced, the term "Protected Computer" meant any system under the control of a financial institution. It had nothing to do with the general users of the public.
I'd take a long hard look at exactly what goes into this bill.
...how can you call yourself an American? /sarcasm
It seems like lawmakers like trendy acronyms (PATRIOT Act, CAN-SPAM, etc.) that disguise undesirable things behind a hard-to-challenge facade.
Didn't vote for the PATRIOT Act?
Still, I'd be much happier with names like "HR-98-101" or something similar.
The trouble seems to be:
1. That MS (or whoever) gets to search my private property without evidence -- or even probable cause -- even though there's no illegal software on my computer.
2. That if MS can do it, so can any fly-by-night company that is set up purely for the purpose of spying on me through my computer, once I install their software.
Exam 4/C again. Maybe I'll do better this time.
Did the Department of Redundancy Department come up with this?
END OF LINE
They can protect their property. The objection is that I have an equal right to protect MY property from MS intrusion. However, I don't have the means to bribe Congress to give MY rights precedence over MS's. I wonder if Koreaman would applaud a law allowing Ford Corp to randomly break into garages because there have been thefts of Tauruses?
We're working on naming a bill which deals with the Nigerian 419 scam -- the Fraudulent and Unethical Computerized Kiting Organizations Filtering and Forwarding Act.
Also, the Detect and Identify Email According to Selected Spyware Heuristics On Local EMail Servers Act may be introduced at some point.
soon to become:
with an inevitable transition to:
1.) Gator which is now Claria bought a mailbox in bulgaria so they are technically not a us company anymore even though they reside here. If they are not under US jursidiction the law then could not be applied to them if the software is distributed from an oversea's server.
2.) Gator will claim they are not really tracking your urls or keystrokes but are just checking to make sure you are not pirating their software. The clause in italics mentioned in this article can be used by the spammers and spywhere makers to pretend they are offering you a service and checking your membership.
Many spyware companies also use products like bandwith increaser which also include spyware. Since its a service the company who makes it is immune.
http://saveie6.com/
Basically, after the bill is signed into law, it becomes a public law and is printed as a "slip law" which can be cited in court. After every 2-year session of Congress, the slip laws are compiled in chronological order in the Statutes at Large. Every three sessions (six years), the at-large statutes are organized topically in the United States Code. The last US Code came out in 2000, so the next one is scheduled for 2006.
We just started the 109th session in January (2005 - 1789 = 216 years = 108 sessions prior to this one). That means that if you want to get print copies of laws passed in the 107th and 108th sessions (since 2000), you have to go to the Statutes at Large in your local law library. If you want laws passed by this Congress, you have to go to the slip laws. So far this session, there's only been one: Pub. L. 109-1, "To accelerate the income tax benefits for charitable cash contributions for the relief of victims of the Indian Ocean tsunami."
This post expresses my opinion, not that of my employer. And yes, IAAL.