Slashdot Mirror
Firefox 38 Arrives With DRM Required To Watch Netflix
An anonymous reader writes with this excerpt from VentureBeat: Mozilla today launched Firefox 38 for Windows, Mac, Linux, and Android. Notable additions to the browser include Digital Rights Management (DRM) tech for playing protected content in the HTML5 video tag on Windows, Ruby annotation support, and improved user interfaces on Android. Firefox 38 for the desktop is available for download now on Firefox.com, and all existing users should be able to upgrade to it automatically. As always, the Android version is trickling out slowly on Google Play.
Note that there is a separate download for Firefox 38 without the DRM support. Our anonymous reader adds links to the release notes for desktop and Android.
I think you meant Digital Restrictions Management. It's a sad day for Mozilla, the w3c, the web as a whole, and open culture. At least there's still the iceweasel fork that doesn't come with this shit.
HAL 7000, fewer features than the HAL 9000, but just as homicidal!
Check out Pale Moon: https://www.palemoon.org/
Isn't that what Chrome (not Chromium) is for? It's the entire reason I have it installed on my laptop.
I read the internet for the articles.
If you read the article they are already providing that option.
https://blog.mozilla.org/blog/2015/05/12/update-on-digital-rights-management-and-firefox/
We're talking about Firefox and not Chrome.
At least there's still the iceweasel fork that doesn't come with this shit.
The DRM isn't a closed source part of *firefox*. It's a separate external plugin (like flash, etc.) that runs sandboxed (like chrome) and that can be
disabled and/or removed like any other plugins (or you can download a version of the installer that doesn't even pack the DRM module).
You don't need to go as far as Iceweasel.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
Is there an explanation of how this works ? At the end of the rendering pipeline shouldn't there be an unencrypted frame for display, and couldn't somebody it just grab it from there ?
so, do we now have open source firefox and non open source firefox
The DRM isn't a closed source part of *firefox*. It's a separate external plugin (like flash, etc.) that runs sandboxed (like chrome) and that can be
disabled and/or removed like any other plugins (or you can download a version of the installer that doesn't even pack the DRM module).
You won't have a separate opensource and closed source firefox.
The choice is whether to use or not the external 3rd party binary plugin (juste like flash, again).
It's just that the default installer of Firefox for Windows does pack the .DLL together with Firefox for end-user's convenience. But as mentionned, you can download an installer without it.
And even if you install it, it's up to you to use or not this piece of closed source software.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
it's a completely external plugin (similar to flash).
You can just as well run this plug-in on Iceweasel, just as you could also run stock Firefox without it (the plugin can be disabled, and there's an installer that doesn't even include it).
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
YMMV by distro, but you can get Chrome's widevine plugin repackaged to work with Chromium. Netflix works just fine that way with recent-ish versions. Also worth noting that Pepperflash can also be repackaged that way. Both plugins are available on at least Slack (via Alien's slackbuilds) and 'buntu.
When you live in a sick society, just about everything you do is wrong.
according to all what I've read:
Yup, they have indeed implemented it this way (DRM is mainly a small external plugins. Firefox feeds encrypted stream into it, and get decrypted stream out. Plugin runs in a sand box and isn't allowed to do anything else)
But if you read the original EME specification, there's another possible implementation:
- it's also possible to write an EME plugin that is entirely in charge of presenting the decrpyted video on screen. Firefox feeds encrypted data into 3rd party plugin, plugin it self access screen and displays video on it.
That would be a clear violation of the sandbox that 3rd party EME plugins are currently run in, but in theory the specifications offer such alternative.
Still, even such an approach is open to screen-grabbing so it's just as useless as the current implementation and only opens security risks (as the 3rd party EME plugin won't be inside a sandbox restricting to only stream IO and decryption).
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
I think what we have is clear examples of people who read the article and those who did not.
there are even tutorial online to enable the google chrome CDM on chromium.
You get your usual chromium, with the EME being the only external 3rd party binary piece of software.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
02 The Internet is a global public resource that must remain open and accessible.
not when you bundle digital restrictions management with your browser and only offer the truly open one as an 'option'
04 Individuals security and privacy on the Internet are fundamental and must not be treated as optional.
quit enabling googles malware system, and stop enabling targeted ads by default.
05 Individuals must have the ability to shape the Internet and their own experiences on it.
thats the direct antithesis of DRM. same goes for point 06 on interoperability.
07 Free and open source software promotes the development of the Internet as a public resource.
but DRM does not.
08 Transparent community-based processes promote participation, accountability and trust.
I dont remember hearing a goddamn thing about you adding DRM or targeted ads before you just decided to do it.
Good people go to bed earlier.
Yes, you do, to show that you don't want that capability in your web browser.
- HTML5 can advertise whether EME is supported or not.
Surf on Youtube, Netflix, etc. without the CDM plugin, they will see this.
Even if you downloaded Firefox with DRM, but simply disabled it, content providers will be aware.
(Same as surfing the web with "NoScript" and similar Flash blocker)
- if you're on Windows: Download the installer that only contains code by mozilla foundation. Do not download the installer that includes the 3rd party closed source plug-in.
Thus mozilla sees on their download stats that you didn't wan't it.
- or if you're on Linux (once DRM is ready, that's not the case yet): only install the .deb / .rpm of base Firefox. Do not install the .deb / .rpm of this CDM, nor of flash, nor of any other closed source 3rd party plugin that you disprove of.
Thus usage stats of you distro's server will show that you do not want these installed.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
rather than fixing bugs
For some users, "I can't watch Netflix, your browser is broken !" is an important bug enough.
At least providing a way to install an optional 3rd party plugin to handle DRM, *and* provide a sandbox that restricts the plugin to only decrypt the encrypted data stream it receives (no file-system access. no network access) isn't such a bad idea given the insistance of end user to access restricted content.
It's not as if Firefox itself has become closed source.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
I love that the MS hatred is so strong on /. that MS is somehow blamed for the bad stuff that MOZILLA does, as if MS went over to Mozilla HQ and forced them to adopt DRM:
"ADOPT THIS DRM OR WE'LL BREAK YOUR FACE, MAN!!"
"Okay, okay, we'll do it! Just stop hurting us!"
"THAT'S RIGHT, BITCH! MICROSOFT 4EVER!!"
SJW's don't eliminate discrimination. They just expropriate it for themselves.
Yep this should be an easy crack, with most of the source code being available. Firefox 38 will also be known as Netflix Video Ripper 1.0!
Still, it would've been better to leave the DRM where it belongs, in plugins to be installed by each user who wants to have their rights managed.
"When information is power, privacy is freedom" - Jah-Wren Ryel
backlash. You know, the one where people grab pitchforks for being forced to pay for walking into a cinema and viewing a movie with their own legs and eyes.
"Win treats sysadmins better than users. Mac treats users better than sysadmins. Linux treats everyone like sysadmins."
No, no, you're missing some steps:
1) The studios (Fox, Paramount, Sony, etc.) tell Netflix that without DRM, Netflix is going to have its own original series to stream AND THAT'S ALL.
2) Netflix decides it might be wise to include D-R-M unless they want to go B-A-N-K-R-U-P-T.
3) The major browser companies all adopt DRM too, since no one wants to be the one browser that doesn't work with Netflix
4) You, the user, streams movies from your browser.
SJW's don't eliminate discrimination. They just expropriate it for themselves.
I don't know anyone with a connection fast enough to watch Netflix. There's a reason they mail so many DVDs.
It's become necessary because of the media size for HD video. Even using BlueRay there simply aren't enough ponies to ship all the disks to carry the content.
I stole this Sig
Still, it would've been better to leave the DRM where it belongs, in plugins to be installed by each user who wants to have their rights managed.
Which is exactly how the standard works - except now the plug-in interface is standardized. So much nerdwhine over nothing with the HTML5 DRM stuff. Feel free to grab the "can't watch Netflix" version if it makes you happy. Not needing Silverlight (or Flash, or some other exploit delivery engine) makes me happy.
Socialism: a lie told by totalitarians and believed by fools.
Still, it would've been better to leave the DRM where it belongs, in plugins to be installed by each user who wants to have their rights managed.
That's exactly the case right now.
Firefox only provides a sandbox into which the 3rd party CDM plugin will be run.
Encrypted stream goes in.
Decrypted stream goes out.
Nothing else is authorised for this plugin.
It's more or less the same situation as Flash (it's not firefox itself that is playing the flash content), except with a much better and way much more restrictive sandbox.
They are merely providing 1 installer packing 1 CDM by adobe inside for end user convenience.
But there's even an installer with only the mozilla code, without 3rd party pluging if you want.
Yep this should be an easy crack, with most of the source code being available. Firefox 38 will also be known as Netflix Video Ripper 1.0!
Actually not. Firefox doesn't handle decryption it self. Only provides the sandbox into which to run it.
To rip Netflix, you'll need to go the other way around:
- creat your own video downloader, that simply harness any of the 3rd party CDM plugins compatible with Netflix (Firefox use a CDM by adobe, Google Chrome uses another by Widevine).
- as Firefox basically restricts their to only function as a decryption filter, you need to provide code that feeds the data into the plugin, and code that package the decrypted stream into a MKV.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
the third is no DRM like they have had until now. If somebody clicks on DRM content they can have a "Do you wish to download a plugin to play this [read license details here]?" box.
...which might as well download a huge piece of software, that not only plays the DRMed video, but also is massively filled with spyware. (see the video players that some porn site used to ask people to install)
*That* I would consider much more poison than firefox 38.
What Mozilla have introduced is an API that supports using a 3rd party CDM plugin. this plugin is here only to decrypt video data, and is running inside a sandbox that blocks it from anything else (no filesystem nor network access, according to info from mozilla).
And what they provide is 2 installers.
- an installer with 1 specific CDM plugin by adobe pre-packaged. (for most user who'll want DRM content, and for the few who will disabled it outright)
- an installer without any CDM plugin for those who don't even want to go near it.
The latter, I would more "poison-free, compatible with poison if you like" rather than "poison lite".
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
Which is exactly how the standard works - except now the plug-in interface is standardized. So much nerdwhine over nothing with the HTML5 DRM stuff. Feel free to grab the "can't watch Netflix" version if it makes you happy. Not needing Silverlight (or Flash, or some other exploit delivery engine) makes me happy.
That's how I see it. I'll be happy to be able to watch Netflix on my HTPC in the same quality as a streaming device. It seems like we may have more flexibility in how we can get our Netflix. As far as I can tell, and I certainly am no expert, no existing feature or function of Firefox is lost.
So you just read the headline. Not even the summary?
Sorry, teleporters just kill you and then make a copy. A perfect, soul-less copy.
Actually, support for EME *is* implemented as a sandbox, into which the 3rd party CDM plugin runs.
sandbox block access to filesystem and network.
only encrypted stream goes in. only decrypted stream goes out.
Okay, it's not as pervasive as Google Chrome's sandbox (they tend to sandbox as many other plugins as possible), but it makes the situation much better than what was before with Flash.
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
because the API between firefox and the CDM are completely different.
usual plugins use NPAPI
CDM for EME-support runs inside a special sandbox that restricts it. CDM plugins are prevented from filesystem and network accesses (unlike Flash, for example)
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
Yes, that is covered in the 4th sentence of the summary.
And this is the mindset that will eternally keep Linux from ever having any major inroads on the desktop.
Sorry, teleporters just kill you and then make a copy. A perfect, soul-less copy.
Netflix hardly delivers content DRM free. Why do you think they used Silverlight?
Sorry, teleporters just kill you and then make a copy. A perfect, soul-less copy.
And this is the mindset that will eternally keep Linux from ever having any major inroads on the desktop.
Fine with me. That makes it an uninteresting target for malware.
Not needing Silverlight (or Flash, or some other exploit delivery engine) makes me happy.
Flash at least caches, but from what I've seen HTML5 does not. I hate the frequent pauses and low quality resolution from streaming. Caching is the most fundamental and stable fix.
the story headline reads like only DRM is enabled for Windows and not Mac.
Because of the limited scope (doesn't need to be able to open network sockets, access files etc.) the browser can sandbox it more effectively.
When did Netflix start sending DRM-free video? (Except maybe their original serieses.)
Before this new version of Firefox, the DRM was delivered via Silverlight. Either way, you are running a closed-source binary blob that handles DRM.
You seemed to have a few too:
5) ????
6) $Profit$
AC is just using his default rage scapegoat.
If this were fox news the post would be "Thanks Obama!"
NBC: "Bush era leftover for us to deal with."
Country music station: "Muslim terrorists!"
3am radio talk show: "Alien Illuminati plot to steal our toe nails!"
I don't suffer from insanity, I enjoy every minute of it!
Previously, there was some hesitation to use this crap thanks to this lack of standardization. Now, thanks to this idiotic move by Mozilla this type of DRM will be used, and if you think it only apply to Netflix - or only apply to video - you haven't been paying attention.
Now that it is possible to for businesses to claim that "almost all of our potential customers support DRM", it will be used in many places. Remember the pages that show an image of text instead of just putting the text in the page? Well, get ready for the video equivalent the first time someone gets paranoid because browsers have a save-as feature. Besides, once DRM for one type of content is in place, the other industries will cry "equal access".
All of you who are "ok" with this, or are thinking only of convenience - your selfish view of the world is a big part of why this is happening. You should be fighting this, if you give a damn about having an free an open internet in the future. Unfortunately, you're probably going to mod me down and go back to cheering about how you get to watch movies in your browser, and I hope you enjoy fighting the far more difficult battles in the future, because you didn't stop this crap when it was still small.
Ce n'est pas une signature automatique.
You should have tho grab the "restricts my rights" version if that makes you happy while everyone else gets DRM-free Firefox by default. Mozilla shouldn't be helping to spread DRM by default-installing it for everyone. Not having a DRM plugin installed makes me happy (especially since it could still turn out to be an exploit delivery engine).
"When information is power, privacy is freedom" - Jah-Wren Ryel
Move somewhere civilised. In Champigny sur Marne, a fairly poor suburb of Paris I have a choice between 20Mbit ADSL and 50Mbit cable.
Netflix works great.
Watch this Heartland Institute video
An open source project has DRM protection?
// call_drm_bullshit()
foo()
bar();
Annndddd done. I'm an elite hacker!
Because mozilla decided to promote DRM instead of a free web, we can look forwards to lots of sites (which used to work) displaying a nag screen with a link to download the "proper" version of firefox, specifically because the DRM version is a free download. They will assume everybody has support available, so there is no penalty to using this crap everywhere.
Or have you not been paying attention to how businesses work these days?
When the fight for freedom is hard, there are many potentially useful strategies. Giving up without a fight and simply handing victory to the enemy is not one of them.
Ce n'est pas une signature automatique.
I hope you enjoy fighting the far more difficult battles in the future, because you didn't stop this crap when it was still small.
The majority of internet traffic is DRMd video streams - has been for years. A standards committee has no power to tell the vendors what to do; instead their job is to write down what the big vendors are already doing, so that everyone else can interoperate.
Use the right tool for the job, man. If you want non-DRMd video, you're supposed to use a torrent client, not a web browser. Not every tool has to solve every problem, you know - let each be good for its purpose instead.
Socialism: a lie told by totalitarians and believed by fools.
...I'm going to come at this from another angle:
Instead of focusing on Firefox, let's focus on Netflix for a moment. Who the hell needs Netflix to pirate? 99% of things on Netflix are published elsewhere first. Netflix is equivalent to syndication--the guys that play stuff after it's already been premiered.
People target the services that premier shows for privacy. They don't wait 2 years for it to show up on Netflix to THEN pirate it. They go to the source.
Lastly, Netflix already rents out DVDs--which can be easily pirated and show up long before they hit online Netflix!
The only thing this could protect would be Netflix originals. So my point is this: It's either to fulfill contractual B.S. with their media providers, or, it's a complete waste of money that accomplishes nothing. My money would be on the former, though, because lots of stupid things like this are the result of "pleasing the customer."
Flash at least crashes
Fixed that for you.
Is there anything that stops someone getting the source and writing a function to simply dump out the decrypted stream? If so, then this is surely completely useless.
If not, how so?
SJW n. One who posts facts.
instead their job is to write down what the big vendors are already doing, so that everyone else can interoperate
We call people who work with the enemy collaborators, which is one of the faster ways to get your former allies to see you as a traitor.
There is a fight for freedom going on here, and many of you are talking about movies. Anybody that things this is hyperbole or "crazy" hasn't been paying attention.
(actually, given that the target audience of this post is nerds that like netflix, I suppose these links would be more appropriate)
Ce n'est pas une signature automatique.
There are some positive aspects to the Encrypted Media Extensions API. It does provide some DRM options for companies like Netflix, which isn't great, but it can also enhance the security of personal media files. It will enable a web app to let you upload an encrypted video, then stream it from their server to your computer without having to download the entire thing and decrypt it -- without any browser plugin.
So if you really don't want anyone being able to see your personal videos (not just Netflix's videos), this thing isn't all bad.
I love that the MS hatred is so strong on /. that
Well, in fairness, MS are still evil so the hatred is well deserved if a little misplaced.
SJW n. One who posts facts.
Why is their not room for both the open and closed cultures?
Assuming s/their/there/:
Because the concentrated non-free media use their vast financial resources to lobby governments to make existence harder for free culture.
Big media uses copyright to squelch competition. It has successfully lobbied for successive extensions of the term of copyright, which reduces the chance that a work will enter the public domain while it remains culturally significant. It uses copyright claims to squelch comment on its works and "similarity" claims under copyright to interfere even with creation of original works, as you have no way of telling whether the song you wrote infringes the copyright of some other existing song out there.
Big media uses its massive selling power to convince viewers to purchase player devices designed to play only works created by sufficiently large commercial enterprises, giving it a captive audience. These include such as video game consoles (with their code signing), Blu-ray Disc players (with the requirement of an AACS license for BDMV), home Internet service plans (with their bans on running a home server, enforced through carrier-grade NAT or TOS disconnection), and AM and FM radio receivers (governed by scarce exclusive licenses to transmit). Furthermore, there exists only a finite amount of electromagnetic spectrum. Case in point: People commuting to and from work who are unwilling to pay for expensive cellular data plan have only AM and FM radio as means of discovering new music. When was the last time, for example, that you heard free recordings of free music on radio? (Here, by "free" I mean distributed under a license conforming to the Definition of Free Cultural Works.)
Big media even controls elections. All major U.S. television news outlets share a corporate parent with a major movie studio: CBS is Paramount, ABC is Disney, NBC is Universal, CNN is Warner Bros., and Fox is (duh) Last Century Fox. This gives them enormous power over name recognition, both in campaign contributions and in "in-kind" donations of name recognition through news coverage. It also helps them control what issues voters feel are important to them, as they tend not to report on threats to the existence of free culture unless it's something extraordinarily high-profile like Wikipedia's PROTECTIP protest blackout of 2012.
Sorry but Mozilla killed Firefox a long time go on their own and needed no input from anyone to do it.
Because I'd rather pay $8 for an honest license than pirate for the rest of my life.
You appear to think there are two options: use DRM or infringe copyright. There are actually three options: use DRM, infringe copyright, or voluntarily do without.
Disabled it already
-- Tigger warning: This post may contain tiggers! --
The scenario you describe is pretty much how it worked, with Google and Netflix doing most of the forcing, and Microsoft only helping out a little bit.
Woosh
If so, then this is surely completely useless.
Common, it's DRM. The kind of thing where cryptography's canonical "Alice" and "Eve" are both the same personl (= the end user). You can't both simultaneously lock out and give access to the same persons.
Of course DRM is bound to be useless and stupid. It's stupid by definition.
It's not useful, only annoying.
Is there anything that stops someone getting the source and writing a function to simply dump out the decrypted stream?
Currently, given the way it's written: as far as I know: No, nothing is preventing you to wrap a dumper function outside a CDM plupgins. Neither firefox's Adobe CDM, nor Google Chrome's Widevine's etc.
The official specs might pose a problem. In addition to the current mode of operation ("encrypted stream goes in, decrypted goes out"), EME specification offer another mode of operation where the CDM plug-in is in charge of presenting the video on the screen. (i.e.: it does decrypt the stream, and subsequently decompress it, and display it on the screen).
Currently that should not work because it's a clear violation of the sandbox limitation that Firefox imposes on CDM plugins, but in theory this is doable according to the specs.
And - Surprise! - that too would be just as stupid and useless:
- now instead of storing the output stream into an MKV, you'll just need to do a screen grab instead.
(Also, this mode is very problematic, because it will bypass the video decompression by the usual video stack and, e.g., miss any hardware acceleration supported by it (gstreamer's vaapi / vdpau) ...etc...)
"Store into an MKV" is far from the only thing that you could do to the output of a CDM plugin. "Pipe it to hardware decoding" (for a portable device) or "stream it over the network to a wireless enabled display" (think Wifi enabled TV / chromecast / etc.) are legitimate usage.
By forcing a CDM that handles the display it self, it would be the nightmare of Flash all over again:
- a plugin that is less easy to lock inside a sandbox
- a plugin that isn't really compatible with the HW video acceleration (don't get me started about flash only supporting VDPAU and some cards only having VAAPI)
- a plugin that doesn't work correctly with the sound mixing daemon
"Sufficiently advanced satire is indistinguishable from reality." - [Tips: 1DrYakQDKCQ6y52z6QbnkxHXAocMZJE61o ]
You know someone will do it. DRM is just stupid.
"I believe in Karma. That means I can do bad things to people all day long and I assume they deserve it." : Dogbert
Netflix' DRM tends to stay out of the way.
Unless your playback device happens to be unsupported.
We don't need EME to enhance our security. You can send video just fine over HTTPS, I'm literally receiving HTTPS video from Youtube right now.
Some people need EME to coddle them, or rather their large piles of money. EME is just an attempt to keep the video stream encrypted as long and as obfuscated as possible.
>So if you really don't want anyone being able to see your personal videos
Then you should upload them to a server you can trust. Like a web server you setup yourself with HTTPS only access.
Use the right tool for the job, man. If you want non-DRMd video, you're supposed to use a torrent client, not a web browser. Not every tool has to solve every problem, you know - let each be good for its purpose instead.
You've got it all backwards. The right tool for the DRM'd job job already existed in various plugins (flash and silverlight being two recent and commonly used ones). If you want to consume non-DRM'd media, you're supposed to use standard tools and protocols, like web browsers.
The EME plugin could transfer video frames to the monitor over [some secured channel]
Isn't this called HDCP?
Even a new instance of Firefox is laggy and slow on my 8-core, 3 GHz, OS X machine. Browsing Amazon has become an extreme exercise in patience.
Starting it fresh with about 6 GB of RAM free, Firefox continuously and greedily consumes memory until I have to quit it to make it give back the gigabytes it has swallowed like an overweight, crazed hot-dog eating contest professional.
One positive thing I will say about Firefox is that even with those major warts continuously unaddressed, it still performs better than Safari. And Firefox is*much* better at dealing with the whole "outdated flash" issue. It asks me instead of smacking me in the face with "you can't do that", so I'm inspired to raise digit #3 to Firefox far less often than I am with Safari.
Sigh.
I could really give the south end of a northbound rat for Netflix on a browser. I have a capable dedicated system which is much more pleasant to watch Netflix-y things on. But I sure do wish FF could just browse places like Amazon without killing off my resources. After all, it's a browser. It seems to me, naive and unduly optimistic fool that I am, that it should be able to do such things. Well.
When will application and OS vendors ever understand that it truly is their obligation to make what they release actually work properly before they slather on more features or proceed to a new version?
I know. Never. *Sigh*
I'd demand you FF enthusiasts to get off my virtual lawn now, but FireFox has grown so large and unwieldy, I can't even tell if you're out there any longer. Hello? Hello? Oh, hey, no RAM left. Again. [gets virtual shotgun out]
I've fallen off your lawn, and I can't get up.
That word, "standard'? You keep using it, but I don't think that word mean what you think it means. A standard is what people actually use, not what some nerd bitching on /. thinks they should use.
Socialism: a lie told by totalitarians and believed by fools.
Don't forget that uninstallable "Pocket" add on that Mozilla has snuck into Firefox to sate their greed. That thing is a real piece of shit.
Can it access the video card or TPM? It clearly MUST have access to some sort of hardware resources, otherwise the DRM scheme is completely useless (you could just grab the stream of anything decrypted via CPU). I seem to recall news sometime back about microsoft's drm scheme requiring video card driver support in order to secure the stream all the way to the monitor. Sandboxes have breakout vulnerabilities all the time (well, at least on linux... I have no idea how good windows' sandboxing is).
You're talking about "standard" tools and protocols as if they are some holy relic that is known and defined for all time. The entire fscking point is that these standards are currently in flux, with new standards trying to gain a foothold, while collaborators and useful idiots fight try and convince people that they should adopt it.
You choose to be a collaborator and support DRM by giving it market share. I choose to deny that protocol, because this isn't about movies. Are you going to also accept DRM when the upgrade happens and the current protocol no longer works? Or were you a fool, thinking this particular version of EME was the final version? Would you fight a new version, after everybody has become used to using netflix? No, you support DRM now, so you'll do what you're told and support it again in the future. Oh, of course - you think you're just going to pirate whatever you want!
A huge power grab is being attempted, and you (and many other's in this thread) choose to give DRM the foothold it's looking for. In the future when businesses use DRM for far more than just video - which many industries have been trying to accomplish for years - and you have to turn to piracy for things you use "save as" for right now, do remember that you asked for those restrictions instead of fighting when the threat was smaller. After all, those future publishers will simply be using the new "right tool" for the job.
Ce n'est pas une signature automatique.
Hi, industry shill!
Or do you prefer "useful idiot"?
Ce n'est pas une signature automatique.
So am I. I'm sorry you don't seem to understand that. DRM is insecure by design. The entire point is make sure the owner of a computer doesn't have root access. This is really basic, so I assume most people know this.
More importantly, the fallacy you are stuck in is that you are looking at the current plugin. I was talking about future updates that no longer follow this model. Or do you think that won't happen? Will you refuse to update when it does? The properties of a future plugin are not restrained to what the current plugin is limited to, and it will be easier to extend the plugin once the current plugin has a lot of users.
Of course, you're posting as annymous, so I assume you salary depends on DRM and therefor there is little chance that you will actually listen to what I have said here. If you want to respond, try to actually address the topic at hand (Firefox's new EME plugin) , instead of parroting useless off-topic facts like the popularity of other DRM schemes or the number of netflix users in general. Of course other types of DRM exist; the question is if you're going to fight this encroachment into a new area or if you're going to give this new plugin it the market share it wants.
Ce n'est pas une signature automatique.
Which one is this? I don't see anything unusual in my addons or plugins list.
"When information is power, privacy is freedom" - Jah-Wren Ryel
So, my Firefox did the whole pop-up thing with a message saying that it was urgent that I upgraded my browser for security reasons.
Did they offer me the DRM free version? NO.
Did they tell me that this next version would be infested with DRM? NO.
If the update was so urgent, why is the DRM free version dated 8th of may and it is now 13th May, it can't have been very urgent can it.
And why is it that when I went to about Firefox on the help menu it checked again for an update and said that none was available when Firefox had already told me that an update was available? FFS.
Waterfox - a Firefox fork with legacy extension support, security updates and better privacy by default.
Or I could download Firefox without DRM, and watch Netflix
No, you could not watch it without the plugin to decrypt it, never have been able to in Firefox, you were watching Netflix with flash if you were using FF before to watch Netflix.
Or I could just use Chrome and get Netflix without this pointless garbage?
Yes, because it already supports the DRM and has for a long time.
Persistent Volume manager for Kubernetes - https://github.com/dwimsey/openshift-pvmanager
Quite right about how Digital "Rights" Management is a propaganda term designed to frame the issue as though it's okay to take user/reader rights away from them in the switch from one means of seeing media to another. But Mozilla has always framed its work as "open source". So one should expect with "open"ness -- the open source movement is, as Brad Kuhn pointed out recently, the greenwashing movement it was defined to be. The Free Software Foundation has long pointed out how "open source" differs from "free software" (older essay, younger essay). The younger open source movement accepts proprietary software and the older free software movement does not because open source was defined as a proprietor-friendly response to the user freedom-seeking social movement.
Digital Citizen
I suggest a dictionary and a quick check of the word:
HYPOCRITE
Only if you wanted to take a look at yourself. In addition, you would also find yourself as an example of being a collaborator, along with Mozilla.
[logical fallacy regarding restriction of restrictions, Libertarian flavor]
Excluded middle fallacy.
Twitter supports and protects racists - by smearing their critics with the "Hate Speech" label.
I think you missed the point of the GP. Websites will turn into DRMd video feeds. There are tons of sites that still restrict right clicking and a smaller ton of sites were created in Flash specifically so you couldn't do things like copy text. With standardized DRM, the people who built those types of sites will now use the new DRM to enforce their requirements. You will have multiple 1-2 frame DRM videos on automatic repeat displaying text instead of receiving actual text from the website. This will massively increase bandwidth and computer resources to display such sites, but the site owners don't care. Have you never come across non-porn sites that are built up of segmented images? There are far too many of these types of sites.
Furthermore, they're going to love this. A 4 minute video of text with a 30 second ad and the whole thing set on repeat. The video is encrypted and illegal to crack. No more ad blockers. No more text selection (really, why were so many sites afraid of raw text?). No more not hitting your bandwidth cap. High tech specs now required (new computer sales!). I'd bet money some site will say their content is better than everyone else's because their DRMed text video feed is in HD.
Firefox tried to push open video formats, like webm, and refused to support H264... yet, after years of fighting they gave up, mostly because MS and Apple refused to support it to push their (patented group) H264 format. Only if google switched youtube to webm and stopped supporting H264 it would be possible to do something like that, but even if the webm was a google format, they never really pushed that change and H264 won this round.
Future video support is the new battleground. Yet W3C is set to accept DRM and firefox not supporting it would mean that important sites would either push the usage of other browsers (like netflix) or push the installation of broken plugins (like all the silverlght sites we have today) that may just exist in windows. Either way firefox would be lonely on this battle, as MS, Apple and Google all have interest in DRM video, so it would be a lost battle from the start. It is sad, but delivering video is only set to increase and big companies want to make money from it... even if the browser would not have any DRM, they would create "apps" to support it so that movie industry would allow online video streaming. It is a lost battle, since there is demand for it, not from the users, but from the content makers... and we all know they are stupid, they prefer having no market (and so piracy) than provide open access to their content, just look how music industry works with the internet and how long that battle is taking place
Firefox solution is to use a Adobe "plugin" that is very restricted on what it can do (read a stream, reply a stream), just to decode the DRM. This would allow the DRM validation that some companies require, allow one to disable this very easily and allow for future replacement of that closed "plugin" with any other open implementation (trying to push directly a open DRM "plugin" now could blacklist firefox if someone tried to remove the protection... later, with existent market share it would be harder to blacklist firefox)
So yes, no one wants DRM, not even Mozilla, but looking at the alternative (some other DRM support or protocol you can't control), at least Mozilla can have some control and impose limits by doing this and not sacrifice market share on a battle that would be lost anyway. Don't blame Mozilla on this one, blame MS, Apple and Google for teaming up pushing DRM, so much that W3C have also agreed to add a DRM standard.
Higuita
Maybe it isn't in the current "stable" release. I'm running nightly so perhaps it's just an omen for you right now.
WTF are you even talking about? I'm talking about watching movies, while you seem to be writing some sort of dystopian SF novel? Can you really not understand that it's the content owners, not Netflix, not the standards committee, who require DRM?
Socialism: a lie told by totalitarians and believed by fools.
What you're going on about? It's not a technology problem. There isn't a technology solution for it. This "DRM foothold" you're worried about? It has always been there, since the first popular software existed; along with the cracking tools that made it irrelevant for those who choose not to pay. Same as it ever was.
Socialism: a lie told by totalitarians and believed by fools.
I whole-heartedly agree with what you say, but please keep in mind that no matter what the strategy, in the end, the DRM'ed content has to be accessible, and therefore can be grabbed and stripped of the DRM one way or another. ;).
Frankly, if the content is video, there is no "equivalent to showing an image of text". How would you go about it, hide the video and instead publish an audio file that describes the movie?
DRM is shit, and if the new DRM in firefox can't be disabled at runtime, then i'll disable it at compile time, and if it can't be disabled at compile-time, i'll patch it out. It's just probably not the end of freedom on the internet, for "us geeks" anyway. Maybe it is for average users, but as you correctly point out yourself, those tend to not care. So why care about them?
CLI paste? paste.pr0.tips!
The difference is that with EME the server wouldn't have to have access to the video; you wouldn't have to trust it because the video is encrypted before the server sees it. There's still other issues making it hard to adopt, like key exchange, but it's a step in the right direction for more convenient end-to-end encryption.
Maybe you should start paying attention to what's going on in the world. Major power-grabs are happening and you think it's about movies, simply because the people trying to grab power said so. I don't give a damn about movies or Netflix. What I do care about is legal precedent, the establishing of standards that will be used in other areas, the erosion of rights like the 1st-sale doctrine, and businesses that demand you weaken your computer security.
If this looks like a dystopian SF novel to you , maybe you should start doing something about it instead of accepting whatever price the publishing industry (not netflix) asks for just so you can see the latest movies. Welcome to the War On General Purpose Computing. Some of us have been fighting that war for over 20 years now, trying to prevent the "dystopian SF future". It would be nice if other people joined the fight once and a while, because we're losing the war; a decade ago Mozilla would have never caved, but the pressure has gotten a lot worse.
Anybody discussing movies isn't looking at the larger situation, where some people are asking you to hand your computer's root access over to them, and you do it because thy promise not to abuse that power while threatening to take your toys away.
Ce n'est pas une signature automatique.
in the end, the DRM'ed content has to be accessible
NO, IT DOESN'T.
That's the key point - as long as you have the requirement that DRM content "must" be accessible, it the people that control that content can demand anything they want. You need to tell them the line you aren't going to cross, or the price you won't pay if you want the publishers to change. This is basic supply/demand economics. Infinite demand means the price can be anything.
Yes, this might mean some sacrifice from you, such as not getting to see the latest popular movie. Are you going to pay that cost now, or are you going to keep paying the publishers that demand more and more, so you have to sacrifice even more when the fight happens in the future?
Ce n'est pas une signature automatique.
Torrents aren't going away. Build-your-own PCs aren't going away. Tinfoil isn't going away. You'll be fine.
Socialism: a lie told by totalitarians and believed by fools.
*shakes head sadly* how I wish that were so. It's exactly people like you who deny there is even a problem, that allow this sort of thing to happen.
"Nine times out of ten, starting a fire is not the best way to solve the problem." - my wife
"The world is in greater peril from those who tolerate or encourage evil than from those who actually commit it." -Einstein
or, in the version often attributed to Edmund Burke: "All that is necessary for the triumph of evil is that good men do nothing."
Ce n'est pas une signature automatique.
Firefox tried to push open video formats, like webm, and refused to support H264.
I know - I argued against that stupid strategy at the time. part of my argument was the same one Mozilla is using now (give up the fight or risk of losing market share).
My solution is still the same: don't ever implement evil or you make the problem worse, do what you can to satisfy market demands by dodging the problem (leave the codec outside of the browser by calling standard OS support (even gstreamer/etc on linux supported h.264 at the time). By ignoring h.264 years ago, Firefox lost users. By adding DRM support, they lost their remaining moral high ground and ability to fight future industry demands. (if they accepted industry demands once, they will do it again in the future).
"plugin" that is very restricted on what it can do
It would be a hasty generalization to assume that this will always be the case. Describing the current implementation does not indicate how it will be implemented in the future. A better extrapolation is that the probability of Mozilla accepting even worse DRM into Firefox in the future is high, because the reasons for accepting it now only grow stronger with time. They wanted to avoid alienating users that supposedly demand Netflix support in the browser. That demand will only increase dramatically when everybody is accustomed to using Netflix in Firefox.
Do you really think Mozilla will put their foot down when the ebook industry gets together with the movie industry to enable text DRM? Or when the plugin changes and requires new holes in the sandbox (e.g. to support Intel's new SGX instructions to create a Trusted Execution Enviornment you cannot access)? You really think that Mozilla will reverse their current behavior, accept the even larger damage to their market share as the Netflix users move to "a browser that works"? No, they will keep paying the industry's demands for danegeld and we lose the free and open web. When lots of the web is wrapped in DRM, do remember that you helped create that future instead of fighting early when the battle was easier.
Ce n'est pas une signature automatique.
in the end, the DRM'ed content has to be accessible
NO, IT DOESN'T.
What good is a movie, Mr. Anderson, if there's no way actually to watch it?
CLI paste? paste.pr0.tips!
[Netflix] runs on Linux, OS X, Windows, and Chrome OS
Is this Linux, or just X11/Linux/x86? I guess DRM stops people who want to use Netflix from building a media center out of a Raspberry Pi.
Does the Android version work on devices without Google Play Services? Its presence on Amazon Appstore implies yes, but one thing on that page worries me: "Netflix playback is supported on Android 2.2, 2.3, 3.x and 4.x devices." Is Android 5.x "Lollipop" incompatible with Netflix, or is that notice just out of date?
That's because it's not actually an extension. They landed the code directly in Firefox itself, so you can't remove it without patching and recompiling.
Also it landed quite recently, so it won't be in a release Firefox until... oh, what's that? We're going to do a special out-of-schedule 38.0.5 release because it needs to be shipped super-fast and we can't be bothered to follow our own testing/release cycle? Okay then.
I agree with you, it is a risk, but of all browsers, what is the one you trust the most? What are the alternatives? You can not even now build chromium without a google build ID !!
Mozilla is not perfect, but is really trying to fix the major problems in the web, including the privacy problem. Could then do better? Yes!! but thank, the other browsers are more limited on what to do because they know that even small things can make many people change their loved for a browser and then slowly convince others.
Mozilla accepting this DRM is a way to limit what Apple, Google and MS want to do. Even if Adobe adds more stuff to their DRM plugin, it will only be used if Mozilla allows it. With Mozilla in the W3C group about DRM, it can talk, block, warn users about possible problems. No one wants again a web with different web standards and a "user" voice in the group is important... Mozilla is the closest you get for that. At least the browser code is open, people can fork it if Mozilla started to do "evil" things
Higuita