RIAA Targets LAN Filesharing at Universities

segphault writes "The RIAA has sent letters to 40 university presidents in 25 separate states informing them that students are engaging in filesharing on their campuses using the local network. Apparently, the RIAA wants to get universities to use filtering software on their networks to detect student filesharing. The RIAA did not disclose the methodology they used to determine that filesharing is occuring on those local networks, but it probably didn't involve asking permission. The article goes on to predict that the RIAA will eventually try to get the government to require use of anti-filesharing filtering technologies at universities."

How do they know

[phorm]

but it probably didn't involve asking permission

Despite the implications of this statement, what it probably really involves is paying off a student or two to sniff out and inform on filesharing activity, either by running RIAA apps or just manual searching. It wouldn't be the first time they've used this method.

Re:How do they know

[darkmeridian]

That's probably unauthorized use of the University's information systems. Running a third-party application meant to spy on students? Accessing the system with the intent of providing sensitive information on other network members to third-parties? The Universities should demand proof via IP packets, the source of that proof via the student-spy, and then expel the student for misuse of the computer systems. Repeat as necessary.

Re:How do they know

[SeaFox]

Despite the implications of this statement, what it probably really involves is paying off a student or two to sniff out and inform on filesharing activity, either by running RIAA apps or just manual searching.

I think you're giving them too much credit. That sounds like something that would involve too much work for the RIAA. I imagine they just assumed the sharing is going on and are waiting for the univeristies to prove them wrong.

I have my own network

[Virtual+Karma]

I have more than one computer on my home network and I share music between all of them. Are they going to get me too? What is the law regarding file sharing on a private network? What if my girl friend copies my music from my laptop? Is that piracy?

What's next...mandated sniffing?

[Ritz_Just_Ritz]

So are the universities (and all networks, by extension) supposed to sniff every packet and look for "copyrighted material" so it can take whatever action the industry think is "appropriate"?

Perhaps every car should also have a sensor to detect speeding and automatically cut the gas?

Fuck the music industry. Their ever more desperate measures only mean they are painfully aware of how irrelevant they are about to become.

Re:Download while you still can

[topical_surfactant]

Don't forget MUTE

MUTE functions in such a way that it is excessively difficult to tell what user is sharing which files, but is still possible to get reasonably fast downloads.

The MUTE project: http://mute-net.sourceforge.net/

who defined insanity

[yagu]

I don't remember, maybe it was Einstein who said the definition of insanity was to repeatedly do something and expect a different result. Is the RIAA insane?

This is cutting their (RIAA/Entertainment industry) future profits off at the source on a number of levels.

1. The university demographic is probably one of the least likely to be their cash cows, i.e., many, if not most students aren't living fat and happy on exorbitant budgets (I know, some are). They don't have tons of money to fill the RIAA and cohort's coffers.
2. Throwing the college campus dragnet may result in catching file-sharing but it sets the tone for how these students perceive the industry for the rest of their lives, and it's going to be adversarial in this light.
3. In addition to poisoning their future audience, the RIAA misses a great opportunity to expose students to a wealth of music. Sure they're going to share, sure it's technically illegal, but they're going to graduate with some illegal tunes, and likely an appetite to get more music, and with real jobs and real money, most would pay fair prices.

Also, it is so problematic to try and institute filtering in an academic arena. There are probably any number of legitimate ways and reasons to see file sharing on a college campus that would not be legal outside. This will force universities to layer artificial distribution mechanisms they otherwise could have handled with firewall policies. (All this at an added expense to universities, and eventually to the cost of an education.)

So, once again the music industry goes to the "we don't know for sure, but to be safe we're going to assume you're a crook" mentality. The RIAA needs to listen to clue.mp3.

sure, sure

[digitalsushi]

That won't work very well.

If I can get onto the same network as 10 of my buddies, chances are very high that they have stuff I want to steal.

There's no way you're going to lock down to layer 7 filtering (looking at the program data itself, very intensive to comute) at a layer 2 scope (your local IP subnet, or close enough). So you either block SMB ports (file sharing altogether, the lifeblood of a computer network with actual users), or pay $$$ to filter it, poorly.

Rumor has it that if I have my laptop at the library, and so do some other people, that we can magically create a network between us that has no juristiction by the University. Or maybe they *do*, but they have no idea about it.

Any way it gets sliced up, the dollars can't keep up with the ways to get around it.

Re:sure, sure

[Large+Green+Mallard]

Three words: private vlan edge.

It's a Cisco config option that says client stations can't speak to each other except via a router. Firewall rules in the router to only allow access to a proxy server, mail server and dns server, problem solved.

Then you'd need to leech via wireless, or physically co-located systems plugged into a seperate hub/switch, but at which point it isn't the University's problem, which is what the RIAA is looking at.

Disclaimer: I'm an IT Security Manager for a University. Not one of the ones the RIAA has talked to (we're not in the US). The only way I'd consider those sort of restrictions on residentials networking is due to force-majeure in the form of a competant legal body or management direction. Residential networks are what contributes today to the collegiate atmosphere in on-campus living. These sort of restrictions impact that far too much for my liking.

WASTE

[FLaSh+SWT]

Am I wrong to think that a program like WASTE (http://waste.sourceforge.net) is the easy fix if they started sniffing the local traffic?

This happend to me..

[Ichigo+Kurosaki]

About two weeks ago the direct connect hub at the university of texas was shut down due to outside pressure from the **aa. Our ITS department already imposed strict bandwidth restrictions on amount of bandwidth used (4gb-12gb a week with more bandwidth costing more money). We used the hub to share files (primarily new tv shows) so everyone could get what they wanted without runnign out of bandwidth. Before the letters, ITS looked the other way because the hub accually saved them money on bandwidth. The owner of the hub had his internet revoked and was orderd to shut down the hub a facebook group and serve 40 hours of community service in exchange for not turning his name over to the copyright holders for prosecution.

From a college student at an effected University

[ECELonghorn]

Most of the time when I read the modded up comments below the summaries, someone has already said everything worth saying... but for this paticular article it seems like even a lot of the the +5 comments are, well, crap.

I am a student at the University of Texas. One week ago our DC++ hub was shut down. This was unexpected and unprecedented. A few months earlier the school news paper even interviewed people with ITS who basically said they could care less about the hub. After the university received some type of a cease and desist letter, our school's ITS contacted the primary HUB admin, and long story short within less than 24 hours the hub had to shut down forever. Amoung other obscure sidenotes, they even ordered that the facebook group "Direct Connect Users Group" be deleted. My friends at Texas A&M have told me their hub is down right now too, similar story.

Both our colleges had hubs constantly sharing about 20TB of data, 24-7, with net download speeds of 1.5Mbps. Every TV show was on our hub within 4 hrs of airing. Adobe Acrobat 7 and Office 2007 were both readily avaialable before I could, not that I ever would of course, download them from private bittorrent trackers. The files were never corrupted, there was no risk of getting caught, and everything mainstream you could ever want was on the hub.

One huge appeal of the hub also was it's simplicity of use. 5GB share minimum was pretty much the only barrier to entry. I know friends who downloaded from DC++ who never heard of BitTorrents in their life, and for that matter, have asked me for help reinstalling windows. It was so simple and easy to use to the average non-geek that now that it has gone down people ask me what to do and give me blank looks.

So in response to every post about other alternatives to file sharing or otherwise really miss the significance of this, I think it is quite a significant win for RIAA.

Re:When last i heard from the majority of congress

[Jerf]

When interviewed, the majority of congressmen said point blank that person to person "dormroom" sharing of music was fair use and in no way objectionable.

Sounds interesting. Link?

Re:Your legislators say they do.

[ArsenneLupin]

but declaring that said laws don't apply to software makers looking for illegal or unauthorized activity.

Ok. I am a software maker (author of a couple of open source programs). And I occasionally like hacking (sorry, cracking), especially where I can prove that Windows security is lacking... So, if caught, I'll just claim my hacks were just probes to check whether there wasn't any kiddie porn on those company networks that I "tested". After all, as a software maker, it's my RIAA-given right to probe third parties for unauthorized activity!