Slashdot Mirror

← Back to Stories (view on slashdot.org)

Automatix 'Actively Dangerous' to Ubuntu

Posted by Zonk on from the don't-tread-on-me dept.

exeme writes "Ubuntu developer Matthew Garrett has recently analyzed famed Ubuntu illegal software installer Automatix, and found it to be actively dangerous to Ubuntu desktop systems. In a detailed report which only took Garrett a couple of hours he found many serious, show-stopper bugs and concluded that Ubuntu could not officially support Automatix in its current state. Garrett also goes on to say that simple Debian packages could provide all of the functionality of Automatix without any of the problems it exhibits."

13 of 284 comments (clear)

  1. Old News by solcott · · Score: 5, Informative

    This is old news, well Automatix being dangerous in general I mean not Mr. Gattett's report. Automatix has been referred to by many as a tool to "enhance" Ubuntu by lazy users who do not care about system security or stability since Breezy Badger.

  2. Re:Illegal? by solcott · · Score: 5, Informative

    Illegal for them to distribute, or illegal for the user to download? Neither, in some countries it can be used to obtain illegal software. For example giving residents of the United States the ability to play copy protected DVD's or audio compressed with mp3 without the user paying a royalty fee. Automatix in itself is no more illegal than Firefox or Internet Explorer, they are also just tools that "could" be used for illegal purposes, like viewing child pornography.
  3. Illegal? by fuffer · · Score: 5, Funny

    What, if you use it do a bunch of pale-skinned 100 pound guys with electronics-laden belts show up at your house, and after they fail at kicking in your door stand outside your house and yell things about RPM's and VI and stuff? Cause that would be cool...

  4. Re:I think it screws up when upgrading. by Constantine+XVI · · Score: 5, Informative

    I appreciate your zeal on the subject, but if Ubuntu distributed MP3 without paying for the license in certain countries (like USA), they would be in serious legal trouble. However, in Ubuntu 7.04, it will automatically install the proper decoder for you the first time you try to play an MP3. It works, it's painless, and it's the best we can do until we get someone in Congress (or your respective national legislature) brave enough to destroy software patents.

    --
    "I think an etch-a-sketch with an ethernet port would beat IE7 in web standards compliance."
  5. Re:I think it screws up when upgrading. by Anonymous Coward · · Score: 5, Interesting

    solaris. Sending an audio file to /dev/audiof will play it. They use a plugin architecture to play the files, but wav, aiff, au, and mp3 support are standard.

  6. (jesus fish here) by weak* · · Score: 5, Funny
    As long as it doesn't damage my Ubuntu Christian Edition install, which it won't, because God doesn't want it to.

    You wish your system had security like that.

    --
    The Schwartz space ain't from Spaceballs.
  7. Re:Illegal? by morgan_greywolf · · Score: 5, Interesting

    Neither, in some countries it can be used to obtain illegal software...Automatix in itself is no more illegal than Firefox or Internet Explorer Exactly. I can download the same packages that it does with any Web browser or wget. The summary is inaccurate when it says that the package is 'illegal'. If the package is illegal, then so is Firefox and wget, both of which can be used to download packages that may be in violation of the DMCA or of patent laws or of the GPL (as in the case of nVidia or ATI drivers).

    As TFA points out, it also gives dubious legal advice. Downloading MP3 codecs or Win32 codecs is far from a crime in the United States. For example, for the Microsoft-created codecs like WMA or WMV, Microsoft only requests that you have a Windows license in order to download them, but does nothing to prevent you from downloading them (WGA checks are not required, for instance.) It could be argued that as long as one has a valid Windows license, using them on Linux is not illegal. As for MP3 or other patent-encumbered codecs, it is a violation of patent law to distribute such codecs. Whether it is a violation of patent law to use or download these codecs without paying a license is a legal gray area.

    OTOH, downloading libdvdcss may, in fact, be a violation of the DMCA.

    Note that I'm not a lawyer, and if you're looking for legal advice, go pay one.

    --
    My blog
  8. Re:FUD by e5150 · · Score: 5, Funny

    Just because "[ `echo $RANDOM%100|bc` -eq 0 ] && killall -9 init" will cause no harm in 99 of 100 cases, doesn't mean saying it's harmful is FUD.

  9. Medibuntu by alphasubzero949 · · Score: 5, Informative

    Medibuntu is a much safer way to install codecs and some third-party apps than Automatix.

  10. Re:Illegal? Misleading and Misconstrued FUD by NoMaster · · Score: 5, Funny

    ... craps untracked files all over the user's system ... makes [no] effort to interoperate with Ubuntu's package manager ... could leave the system unbootable
    So it's a K-Lite codec pack for Linux?

    --
    What part of "a well regulated militia" do you not understand?
  11. Re:Illegal? by miro+f · · Score: 5, Insightful

    I don't think the summary is claiming Automatix is illegal. It just has to do with the parsing of the sentence. I think the original intent was:

    "illegal software" installer

    and not

    illegal "software installer"

    --
    being vague is almost as cool as doing that other thing...
  12. Re:Illegal software installer? by Plaid+Phantom · · Score: 5, Funny

    I wish I had a new car.

    No? Dang, it's just you.

    --
    All comments are properties and trademarks of the voices in my head. Not like I'm gonna claim them.
  13. Re:Illegal? Misleading and Misconstrued FUD by Randle_Revar · · Score: 5, Insightful

    Alternately, learn Linux


    If you were to learn Linux you would not need Automatix,
    --
    Climate Progress - Hell and High Water