Slashdot Mirror

← Back to Stories (view on slashdot.org)

Sony Leaks Reveal Hollywood Is Trying To Break DNS

Posted by Soulskill on from the scorched-net-policy dept.

schwit1 sends this report from The Verge: Most anti-piracy tools take one of two paths: they either target the server that's sharing the files (pulling videos off YouTube or taking down sites like The Pirate Bay) or they make it harder to find (delisting offshore sites that share infringing content). But leaked documents reveal a frightening line of attack that's currently being considered by the MPAA: What if you simply erased any record that the site was there in the first place? To do that, the MPAA's lawyers would target the Domain Name System that directs traffic across the internet.

The tactic was first proposed as part of the Stop Online Piracy Act (SOPA) in 2011, but three years after the law failed in Congress, the MPAA has been looking for legal justification for the practice in existing law and working with ISPs like Comcast to examine how a system might work technically. If a takedown notice could blacklist a site from every available DNS provider, the URL would be effectively erased from the internet. No one's ever tried to issue a takedown notice like that, but this latest memo suggests the MPAA is looking into it as a potentially powerful new tool in the fight against piracy.

46 of 388 comments (clear)

  1. The US Internet Shutdown Switch by Anonymous Coward · · Score: 5, Insightful

    Lots of people prefer to ignore that the world's root DNS servers are controlled by US companies...

    1. Re: The US Internet Shutdown Switch by pegr · · Score: 3, Funny

      This is a great idea. Let's call this file "hosts"! Now, where to put it?

    2. Re: The US Internet Shutdown Switch by ColdWetDog · · Score: 2

      You really had to go and say that, didn't you?

      --
      Faster! Faster! Faster would be better!
    3. Re:The US Internet Shutdown Switch by rickb928 · · Score: 4, Insightful

      I don't prefer to ignore this. I instead am thankful.

      You don't want the UN involved. And you'll have to recommend a better nation or group of nations to oversee DNS. Or another corporation.

      This arrangement has worked very well for a long time. There is nothing to fix, and everything to defend.

      --
      deleting the extra space after periods so i can stay relevant, yeah.
    4. Re:The US Internet Shutdown Switch by JMJimmy · · Score: 2, Insightful

      And then we no longer have an internet (international network) we have a regional one which would royally suck.

    5. Re:The US Internet Shutdown Switch by Anonymous Coward · · Score: 5, Informative

      And then we no longer have an internet (international network)

      INTERconnected NETworks, not international - though it's been that too, since fairly early

    6. Re: The US Internet Shutdown Switch by webmistressrachel · · Score: 2

      I really, really hope apk will come on and tell me how "manly" I'm looking these days!

      --
      This tagline was transcoded to result in at least one smirk. If you experience failure to smirk, please consult your Gen
    7. Re: The US Internet Shutdown Switch by xrayspx · · Score: 3, Funny

      We should probably have a whole area of disk for various flotsam and configs and yadda yadda, et cetera.

      --
      I like music
    8. Re:The US Internet Shutdown Switch by afidel · · Score: 3, Informative

      The I,K, and M root servers are outside the US and are controlled by entities which the US can't directly bully into doing their bidding.

      --
      There are 4 boxes to use in the defense of liberty: soap, ballot, jury, ammo. Use in that order. Starting now.
    9. Re:The US Internet Shutdown Switch by Mariner28 · · Score: 2

      I was going to offer Switzerland, but since they copped to the US about secret bank accounts, that wouldn't work. ;-)

      --
      "A little misunderstanding? Galileo and the Pope had a little misunderstanding."
    10. Re: The US Internet Shutdown Switch by hairyfeet · · Score: 2

      Wow I so rarely get to use this in a sentence...WHOOSH! Way to miss the point! The point was you need 1.- two countries that give the bird to the US corp interests and 2.- Don't share the bed. Don't like Russia/Vanuatu? How about Brazil and South Africa. Doesn't really matter WHICH two you pick as long as they meet the above requirements.

      BTW you might want to remember that perfect is the enemy of good, if you look at any country you can find things that would disqualify it, from protectionism to political correctness there is always gonna be something to bitch about, the point is to sum the differences between the 2 so no one country can just erase the parts that don't follow an agenda. And you really think with all their financial troubles that Russia will declare war on Vanuatu because their DNS records don't match? Really? Might want to check that tinfoil hat mate, might be cutting down on bloodflow.

      --
      ACs don't waste your time replying, your posts are never seen by me.
    11. Re:The US Internet Shutdown Switch by HiThere · · Score: 2

      No. What you need is a system that is easy to clone, and which n countries can run independently, for n a positive integer.

      DNS seems a good choice for the lower layers, but the top layer needs to have a round-robin resolution, such than any root server that don't find the site will pass you on to the next. You need to also, however, be able to specify the starting root, and possibly the 1st alternate, to avoid cache poisoning.

      --

      I think we've pushed this "anyone can grow up to be president" thing too far.
    12. Re: The US Internet Shutdown Switch by webmistressrachel · · Score: 2

      Seriously, insightful?? Sarcastic, funny maybe, but I was definitely not being insightful! Next I'll be accused of having sock puppets!

      --
      This tagline was transcoded to result in at least one smirk. If you experience failure to smirk, please consult your Gen
  2. This needs to stop ... by gstoddart · · Score: 4, Insightful

    The MPAA et al feel they have the right to undermine every bit of technology to server their purposes. They want veto over all new technology to ensure that it aligns with their goals, and makes sure their rent seeking is entrenched in law.

    Sony was more than willing to spread malware, and as a cartel these clowns have way too much sway over governments, and seem to think they can act with impunity.

    Want the sure file way to the shitty oligarchy of the future? Keep letting these bastards call the shots.

    I don't know who actually is behind this attack, but I'm starting to applaud them.

    Sony and the other members of the MPAA are out of control, and pretty much deserve to be burned to the ground for the crap they do.

    --
    Lost at C:>. Found at C.
    1. Re:This needs to stop ... by Shakrai · · Score: 5, Interesting

      I don't know who actually is behind this attack, but I'm starting to applaud them.

      You might want to hold your applause.

      I saw the previews months ago for that movie and thought to myself "That looks stupid." but now I'm going to go see it anyway. You should really encourage all of your friends to do the same. Blackmail resulting in self-censorship is not something that needs to be encouraged.

      --
      I want peace on earth and goodwill toward man.
      We are the United States Government! We don't do that sort of thing.
    2. Re:This needs to stop ... by fustakrakich · · Score: 3

      ...but now I'm going to go see it anyway. You should really encourage all of your friends to do the same.

      Getting to sound like a good PR campaign now.. It'll probably still flop. It sounds like a real stinker.

      --
      “He’s not deformed, he’s just drunk!”
    3. Re:This needs to stop ... by gstoddart · · Score: 5, Interesting

      Well, it's kind of like Snowden. Everybody knew they were doing something wrong. The sheer magnitude of it is slowly coming to light. Nobody started off with the illusion they were innocent before this.

      I'm torn, I really am. On the one hand, yes, hacking and extortion bad.

      On the other hand, I find multinational corporations like Sony to be complete douchebags, who will do anything to advance their own goals, at the expense of everyone else on the planet, and with the assistance of governments who have been willing to stick it to their citizens to protect corporate interests, largely because the politicians are on the fucking payroll.

      And then I want to go all Tyler Durden on them because I'm getting tired of the oligarchy and the asshole politicians enabling it.

      You don't keep a free society by making it beholden to corporations who tell us what we can and can't do.

      --
      Lost at C:>. Found at C.
    4. Re:This needs to stop ... by fustakrakich · · Score: 3, Interesting

      Nobody knows who is making 'threats'. I see no reason to give any money to Sony. They are hardly a bastion of free speech. As far as I'm concerned the whole thing is a scam, though the new Bond flick could be okay. Eh, maybe Sony might get my money after all, and I am amused by your Hollywood Tough Guy talk :-)

      --
      “He’s not deformed, he’s just drunk!”
    5. Re:This needs to stop ... by Anonymous Coward · · Score: 3, Insightful

      I also believe in free space which is why I will not support Sony by watching this film. It is possible that everybody is wrong.

    6. Re:This needs to stop ... by ganjadude · · Score: 3, Insightful

      doubt that is what he meant, but they could be using the scare tactics to drum up support for this one movie after the fact

      --
      have you seen my sig? there are many others like it but none that are the same
    7. Re:This needs to stop ... by tnk1 · · Score: 3, Insightful

      The hackers are totally wrong. So is Sony.

      Sony is getting egg on their faces, and the hackers may eventually get caught. Both parties may well get theirs.

      And thanks to them, I get to see a real life version of "Swimming with Sharks". That's the positive.

      The big negative would be if this becomes yet another excuse for Sony to break the Internet with trying to cover their own asses by making everyone else do their work for them. And in that sense, that is the negative for having both Sony, and hackers who attack Sony existing. Sony will never fix their security, just like they won't fix their distribution. That would require effort. They'll just try and buy regulations that make other people have to jump through hoops so they can continue to store their master password list on unsecured shares on their open network and continue to use various pricing schemes to make people pay more for the same product.

  3. Go ahead by cdrudge · · Score: 4, Funny

    If a takedown notice could blacklist a site from every available DNS provider, the URL would be effectively erased from the internet.

    Good strategy. Go ahead with that plan and let us know how that turns out.

    1. Re:Go ahead by LordLimecat · · Score: 2

      Meanwhile, in a forgotten corner of the internet, InterNIC cackles with glee as its plan comes together.

    2. Re:Go ahead by StikyPad · · Score: 3, Interesting

      Exactly. There's nothing frightening about this at all; it's a nuisance at best for the sites. Between using IP addresses directly, or editing a hosts file, or switching to an offshore DNS server, it's all of a 30 second delay.

      For sites dedicated to piracy, it won't make the slightest difference in traffic. The demand is there, so people will seek out the product. The idea that making it marginally (or even substantially) more difficult to find will reduce demand is like saying "If Barnes and Noble doesn't carry pornography, there won't be any demand!"

      Is piracy morally justifiable? Not really. In the end, someone is going around the rules of society for personal gain. Still, available evidence suggests that the actual economic damage is minimal, at worst, and possibly that it's helpful to the bottom line. People who pirate seem mostly to be people who wouldn't pay anyway, so they're not really lost as customers. Additionally, word of mouth can help the popularity of films, regardless of whether that opinion came from a free screening, a paid viewing, or a pirated download. From a practical standpoint, it doesn't make sense to focus efforts on stamping out something that's so benign. In other words, we shouldn't tolerate measures that negatively impact the rest of society to protect one group from an imaginary harm.

      --
      https://www.eff.org/https-everywhere
    3. Re:Go ahead by BarbaraHudson · · Score: 3, Informative

      I guess they don't know history so well. AlterNIC could easily return under such a scenario.

      --
      "Transparent" is a shit show that trades on every stereotype going. A man in drag is NOT a transsexual.
    4. Re:Go ahead by meta-monkey · · Score: 2

      or editing a hosts file

      Great, now APK has another bullet point for his shitposts...

      --
      We don't have a state-run media we have a media-run state.
    5. Re:Go ahead by mrchaotica · · Score: 5, Informative

      Is stealing from the Public Domain by turning copyright into some sort of perpetual entitlement morally justifiable? Not really. In the end, someone is going around the rules of society for personal gain.

      FTFY.

      --

      "[Regarding the 'cloud,'] ownership was what made America different than Russia." -- Woz

    6. Re:Go ahead by AK+Marc · · Score: 2

      You can't manage it. I was on The Early Internet. You'd be surprised how many people advertised blocks they didn't own, and got away with it because there were so many to choose from, you'd probably not accidentally step on one in use. The locks on advertising addresses to ensure ownership and such came after. With IPv6 and no authority, we'd see people randomly use addresses, without allocation. And it would work pretty well, given the V6 address space.

      --
      Learn to love Alaska
  4. These idiots remain idiotic by HBI · · Score: 5, Insightful

    If they break DNS, we'll just move to a shadow system, whether based on hosts or just another flavor of DNS.

    Fuck them.

    --
    HBI's Law: Frequency of calling others Nazis is directly correlated with the likelihood of the accuser being Communist.
    1. Re:These idiots remain idiotic by geekmux · · Score: 5, Interesting

      If they break DNS, we'll just move to a shadow system, whether based on hosts or just another flavor of DNS.

      Fuck them.

      That "shadow" system you speak of could in fact be the catalyst we've all been waiting for to push the majority into IPv6 space.

    2. Re: These idiots remain idiotic by meta-monkey · · Score: 2

      Anything that requires my computer to tell me "no" is evil. "Well I could play this file, but some server out there said I shouldn't let you, so no." Nope. That's not the way this works. My computer is my slave. It works for me and only me. Not for Sony, not for Disney, not for the RIAA or the MPAA or anybody else. Just meta-monkey.

      And probably the NSA, but fuck if I can stop that.

      --
      We don't have a state-run media we have a media-run state.
  5. comcast by roc97007 · · Score: 4, Insightful

    > and working with ISPs like Comcast to examine how a system might work technically

    Yet another reason not to do business... well, you know.

    --
    Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.
  6. huh what? by Charliemopps · · Score: 4, Informative

    No one's ever tried to issue a takedown notice like that...

    Really?
    http://en.wikipedia.org/wiki/C...
    They haven't?
    http://en.wikipedia.org/wiki/M...
    Tried this?
    http://en.wikipedia.org/wiki/P...

    Because, the last I checked...
    http://en.wikipedia.org/wiki/R...
    It was happening
    http://en.wikipedia.org/wiki/C...
    all the time...

  7. Re:black DNS? by TheGratefulNet · · Score: 2

    uhm, regular old dotted quads (ip addrs) work fine and cannot be 'taken down' since they are not lookup based but topology based.

    and even with ip alias and redirects, a dotted quad can be just about as good as a dns name. better, in some ways, since it cant' be faked like a name can, and does not require another fetch for the name->ipaddr lookup.

    --

    --
    "It is now safe to switch off your computer."
  8. Screw them! by excelsior_gr · · Score: 5, Funny

    We'll make our own DNS!

    With blackjack and hookers!

  9. Re:Fundamentally breaking the net? by gstoddart · · Score: 2

    There should be plenty of ways to deal with hosted content on someone's server without resorting to breaking core functionality of Internet services like DNS!

    Unfortunately, to the asshole lawyers these companies employ ... the core functionality of the internet be damned.

    They simply don't care about anything but their own profits. They just want to be in charge of how all technology is used.

    "A takedown notice program, therefore, could threaten ISPs with potential secondary liability in the event that they do not cease connecting users to known infringing material through their own DNS servers,"

    What they want is pretty much the nuclear option. Because they say so, something needs to be removed from the internet, and anybody who doesn't gets squashed like a bug.

    Who gives a crap about analogies? The MPAA have one goal here: to make every piece of digital technology on the planet be only usable in ways defined and approved by them.

    Fuck that. Having media companies in charge of this crap is a terrible idea.

    This is why ISPs need to be classed as a common carrier .. what happens on their network is none of their business, and they don't have liability for it. This takes away the bullshit ability of corporations like Sony from being able to dictate how technology is used.

    This whole notion of secondary liability is crap.

    But for any Anonymous hackers out there, maybe all executives at the MPAA or any of their law firms ... they now have secondary liability for being douchebags and assholes, and have forfeited their right to privacy.

    This is just corporate control of way too many aspects of the internet. So fuck Sony and the other guys in the MPAA. I sincerely hope they all get this treatment.

    The idiotic DMCA was a terribly written piece of legislation which put far too much power in the hands of multinational corporations. And idiot governments around the world have been entrenching it in law.

    At this point, I think Sony has more rights than I do.

    So to hell with them. I say start punishing them, and cause as much economic damage to them as can be done.

    The goals of the MPAA et al do not coincide with the goals of the rest of society. And they shouldn't be having their business model entrenched in law. They're just a bunch of parasites who feel entitled to revenue.

    --
    Lost at C:>. Found at C.
  10. North Korea by Esra+Erimez · · Score: 3

    Even though the Pirate Bay move to North Korea was a hoax, but if North Korea really wanted to exact revenge on the industry why wouldn't they take an approach that would really hurt them and actually host pirated content?

    --
    Esra Erimez
  11. Beyond 404 HiJacking by tiberus · · Score: 2

    It's bad enough that companies like Verizon, in a effort to help us and provide better service, hijack 404 errors and redirect them to their tailored search results, now this. In light of how little vetting some of these take down notices seem to receive before the ban hammer falls, this is truly scary. Scary in that they think this is how to go about business. Like others have already alluded too, this is likely to at worst cause a minor bit of annoyance before a way to protect against this silliness is found.

  12. Re:black DNS? by PhrostyMcByte · · Score: 4, Informative

    Funny, Microsoft has actually had a P2P DNS system for several years: PNRP.

  13. Nonsense by tangent · · Score: 2

    DNS was created in 1984 to replace the old flat HOSTS.TXT system, at which time the file contained only "several thousand" entries, according to one source I found. Maintenance and distribution of the file was already becoming a problem by that point.

    The oldest actual HOSTS.TXT file I found for download was from 1990, and contained about 9,200 lines. (No link; don't want to spam someone's Internet history server just to prove a point. Do your own Googling if you don't believe me.)

    There are single data centers with more than a few thousand public-facing IPs in use.

    As for this vague handwavy idea of a shadow domain name system, what's going to make that immune from the same sorts of attacks? There's this vague notion that if it's distributed and encrypted, it will be impossible to kill, but guess what? DNS is distributed and encrypted already.

  14. Re:DNS was always optional by rickb928 · · Score: 2

    It's inevitable that the copyright holders will expect IP addresses or ranges to be blocked or simply deleted from routing tables.

    And then innocent bystanders will become caught up in this.

    That's how this escalates. And how it is dangerous to let them do even the little thing.

    --
    deleting the extra space after periods so i can stay relevant, yeah.
  15. Odd individuals they must have been by Archtech · · Score: 5, Funny

    It seems that the bipeds who once inhabited this planet had, at one time, developed a comprehensive worldwide networking system. They accomplished much through it, from exchange of all kinds of information to commercial transactions, education, and even personal communications.

    But suddenly, one day, this useful system was destroyed. Apparently a small group of bipeds, which had enriched themselves by creating carefully distorted fictional representations of life and events, decided that the network might be slightly reducing the rate at which they amassed wealth. So they sabotaged it.

    We really have no idea what kind of intelligence those bipeds had - if it was even intelligence as we know it.

    --
    I am sure that there are many other solipsists out there.
  16. Obligatory joke... by sh00z · · Score: 2

    uhm, regular old dotted quads (ip addrs) work fine and cannot be 'taken down' since they are not lookup based but topology based.

    and even with ip alias and redirects, a dotted quad can be just about as good as a dns name. better, in some ways, since it cant' be faked like a name can, and does not require another fetch for the name->ipaddr lookup.

    ...about the awesome library of stuff hosted at 127.0.0.1

  17. Re:My what impressive sources you have! by s.petry · · Score: 2

    In this case? With regards to an industry that could be killed tomorrow if enough people simply voted with their wallet? Yes, I do think it's wrong.

    This indicates that you really don't know how the world works, especially in terms of "entertainment". Perhaps 50 years ago this point would have some merit, but not within the last couple of decades at least. Actually investigate how the industry works, then we will talk.

    To give you a hint, Sony in this case is a target because it's a single entity who has repeatedly screwed over consumers. They knowingly installed malware on people's computers and faced a class action lawsuit for it, though consumers received nothing from the damages. For higher profits they have sacrificed customers again and again, all to their benefit and consumer detriment. This part I am guessing you would agree with.

    To the voting with your wallet, how big is Sony and how many tentacles do they have into virtually everything from hardware to software? Monopolization has ensured that you can't destroy a company that easily, it takes Government intervention to break up a company of this size. Since there are at least several Governments that pay Sony for all kinds of things from hardware to software, that won't happen any time soon. The breach and theft of a movie won't hurt them, it generates propaganda (those evil bastards just want our freedom) and PR for the movie. Are you daft enough to believe that Kim Jong-un can't figure out a comedy? Do you still believe that the Benghazi raid was because of a class E youtube movie too?

    The point here is really that the only way to harm a company like Sony is with vigilantism. I don't agree with hackers releasing Sony customer data because that harms the consumers more than Sony. If they can force Sony to change, all the better. Exposing the MPAA/RIAA for their bullshit tactics may actually reduce some of the nonsense they do on a daily basis.

    --

    -The wise argue that there are few absolutes, the fool argues that there are no probabilities.

  18. Re:GO GO POWER RANGERS! by matbury · · Score: 3, Insightful

    I wonder what Kim Jong-Un would do with this power? Anything different from the MPAA?

  19. Re:Comcast or cap by roc97007 · · Score: 2

    How should Comcast objectors living in Comcast territory cope with the 10 GB/mo cap of non-Comcast home Internet through the sat or cell company?

    I dunno. Perhaps complain to your municipality about the granting what is essentially a monopoly to a company with such a bad customer service record. Make correcting the situation a factor in getting re-elected.

    Where I am, we have a choice of cable or fiber, before you have to consider lower tier like DSL wifi, satellite. (I consider satellite lower tier because of the terrible upload speeds.) I understand that other areas, especially older municipalities, don't have the choices we have in my area. That fight is with local government, I think.

    --
    Oliver's law of assumed responsibility: If you're seen fixing it, you will be blamed for breaking it.