GriffJon.com Blog

« DC Area Politricks | Main | Leaky »

"Rights Management"

November 07, 2005 ( geek )

Putting a "Digital" before that... does that really change anything of note? DRM is the practice of restricting what you can do with digital files you've purchased. Like, can you listen to this CD on your computer? Can you copy it? Can you make a mix of it for your car with a few favorite songs from different CDs? Can you back-up a DVD (something I certainly wish was easier, as I just had to buy a second copy of Life and Debt as mine got too scratched). Wikipedia explains DRM.

Of course, the current news is Sony's DRM on recent CDs. It installed a program that kept you from being able to copy the CD, and was forthright about that. What it wasn't so upfront about was that it was doing so using a rootkit -- a blackhat method of getting around Windows' security (what little there is) to hide files from the system itself. And that any program could take advantage of this humongous hole by renaming itself to with $sys$ at the front -- poof! gone.

Any malicious program could use this hole and suddenly be invisible from virus-scans, spyware-scans, etc.

In fact, people immediately, once it got reported, found ways to use the hole to cheat at World of Warcraft, and even to get around Sony's DRM itself using the same hole.

Sony has now provided a (painful, many-email method) way to have in uninstalled (doing it yourself disables your CD-ROM drive completely), but refuses to admit that it was any sort of security blunder.

What's worse, the same guy who discovered this dug further and found that it sends the CD name and your IP information to Sony each time you play the disk, to get updated info on the CD -- even though the license agreement says that this is a one-way data transfer, not bi-directional.

Sigh.

Lots more information from the guy who discovered all this.

Posted by griffjon at November 7, 2005 09:49 AM

Trackback Pings

TrackBack URL for this entry:
http://www.GriffJon.com/journal/MT/mt-trackback.cgi/141

Comments

Post a comment

Thanks for signing in, . Now you can comment. (sign out)

(If you haven't left a comment here before, you may need to be approved by the site owner before your comment will appear. Until then, it won't appear on the entry. Thanks for waiting.)


Remember me?



Syndicate this site (XML)

Stylin'

Normal (Bloggish)
Default
Fire (FireFox Showcase)
GriffJon.com (Pages past)
GriffJon.com (Tribute to Dragon Warrior)
Printer-Friendly High-contrast

Calendar

October 2006
Sun Mon Tue Wed Thu Fri Sat
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31        

Search Blog


CategoryDate

Contact Me

email: (my name)  (`at')   G r i f f  J o n (`.dot')c o m
PGPPGP Key
efax:1.925.666.3613
IM
ICQ:16386214
Y!

MSN

AIM

GriffJon

Web
/.#14945
LJ:LiveJournal
Flikr:Photos

Disclaimer

My personal opinions do not necesarily reflect on my employers, schools, any government, U n i t e d   S t a t e s   P e a c e   C o r p s, my friends, or my family.

They may not even reflect my current opinions

Furthermore, these opinions do not unfairly influence any official decisions I make in my academic or professional work.

If you wish permission to reprint or reuse anything within these pages, I require that you contact me for permission. I'll likely give it to you, and probably even a link back.

Software, scripts, and configuration files downloaded from this website come with NO WARRANTY express or implied, and are for use AT YOUR OWN RISK. They are available under the GPL unless otherwise noted.