Too bad people can't get a hold of the regular expressions used in their scripts. If they just matched artists or something you could use approach above to really screw with them.
Like ($variable =~/^Metallica*./ ) to match every file name starting with Metallica. Then you could upload fake songs, such as "Metallica - This song is fake(RIAA decoy)", "Metallica - F the RIAA", "Metallica - P2P 4eva"
Not to mention, different versions of songs are readily available. Live songs, bootlegs, covers - these will all have different information within that file even though they are different versions of the same song (which would be detected by their scripts). Since they have different bit contents, their hashes would be different and wouldn't match the RIAA version. The sound waves (if that information is legitimate) wouldn't likely match either - there'd be a phase shift to many wave forms at the very least.
This would take some pretty sophisticated signal analysis to pull off.
I wouldn't be surprised if they "leaked" this article to misinform people to their detection methods. If you think this is their whole routine, then you let your guard down on other levels. Or it could be directed at Limewire. What better way to take out adversaries than "focus fire them"?
"We find people using scripting methods mining Limewire data". People shy away from Limewire./dust off hands
Well one down.
Slashdot Mirror
Too bad people can't get a hold of the regular expressions used in their scripts. If they just matched artists or something you could use approach above to really screw with them. Like ($variable =~ /^Metallica*./ ) to match every file name starting with Metallica. Then you could upload fake songs, such as "Metallica - This song is fake(RIAA decoy)", "Metallica - F the RIAA", "Metallica - P2P 4eva"
Exactly what I was thinking
Not to mention, different versions of songs are readily available. Live songs, bootlegs, covers - these will all have different information within that file even though they are different versions of the same song (which would be detected by their scripts). Since they have different bit contents, their hashes would be different and wouldn't match the RIAA version. The sound waves (if that information is legitimate) wouldn't likely match either - there'd be a phase shift to many wave forms at the very least. This would take some pretty sophisticated signal analysis to pull off.
I wouldn't be surprised if they "leaked" this article to misinform people to their detection methods. If you think this is their whole routine, then you let your guard down on other levels. Or it could be directed at Limewire. What better way to take out adversaries than "focus fire them"? "We find people using scripting methods mining Limewire data". People shy away from Limewire. /dust off hands
Well one down.