[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [dvd-discuss] DoS Dirty Tricks (was Movie Downloads, automatically illegal?)

On 6 Aug 2002 at 13:50, John Galt wrote:

Date sent:      	Tue, 6 Aug 2002 13:50:24 -0600 (MDT)
From:           	John Galt <galt@inconnu.isu.edu>
To:             	dvd-discuss@eon.law.harvard.edu
Subject:        	Re: [dvd-discuss] DoS Dirty Tricks (was Movie Downloads, 
Send reply to:  	dvd-discuss@eon.law.harvard.edu

> This might actually set up a new form of defacement.  A hacker breaks into a
> given site, runs a trivial p2p program with red-flag content as an unprivileged
> user, then lets the MPAA/RIAA DoS them to hell and back.  Voila! you've taken
> them out, and you did it from a 1000+ UID...  No need to waste your GOOD toys to
> take a site out.

Or sets up 1M sites that get $250 each for being DoS unjustifiably. Maybe 
Berman's bill should pass. The Chaos might be amusing (I always loved to play 
Chaotic characters in D&D)

> On Tue, 6 Aug 2002, Tim Neu wrote:
> >On Mon, 5 Aug 2002, Michael A Rolenz wrote:
> >
> >> I like that one...given Pat Schroeder's comments about how libraries are the
> >> single biggest threat to the publishing industry, they are likely to be
> >> DoSing libraries as well.
> >>
> >> Or the ISPs begin blocking the RIAA, MPAA, DoS packets because it's net
> >> junk that is degrading their system performance.
> >
> >My guess is that they would not be dumb enough to run the attacks from
> >their normal internet connection.   They would probably use something
> >harder to trace.   Even though they would have immunity, they would still
> >want to minimize exposure if they can.
> >
> >> Or the script kiddies decide to band together and do DDoS attacks against the
> >
> >The script kiddies will hopefully be too smart for that.  Why break the
> >law yourself if you can trick the MPAA & RIAA into doing it?  I'm sure the
> >content mafia will _try_ to make sure the addresses they attack are individual
> >accounts, rather than corporate websites, however, if they have a person review
> >every IP in a P2P network their enforcement will not scale, and if they do not,
> >they risk overattacking.  Given the lessons learned in internet filters, they
> >will err on the side of the latter.
> >
> >The global nature of the internet might also present some interesting
> >options.  In theory, movie execs could be jailed in other countries for
> >the illegal actions of their technical staff.  Immunity in the US does not mean
> >squat globally.
> >
> >If they are smart they will try their best to limit attacks to US-based
> >hosts, but I think it would be pretty hard to distingish an ISP account
> >being dialed-into from outside the country, not to mention sattilite
> >internet access.
> >
> >The other side of this is that the content folks have enough lawyers that
> >they _should_ be aware of some of these risks.   I would imagine, though,
> >it would be pretty easy to set up a decoy by just using CDDB filenames and
> >running from a server in the US.
> >
> >> Or imagine this...some quick thinking Movie Cop sets up a honeypot and
> >> another Movie Cop gets caught and they DoS each other
> >
> >Now that would be neat.  I would also venture to suggest that it will be
> >possible and that someone will figure out a way to do it, if this law
> >passes.
> >
> >=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
> >______         _ __                          Military Intelligence
> >  /           ' )  )        -KC0LQL-         Honest Politician
> > / o ______    /  / _  . .                   Intellectual Property
> >/ <_/ / / <   /  (_</_(_/_  -- tneu@visi.com / http://www.visi.com/~tneu --
> >
> -- 
> When you are having a bad day, and it seems like everybody is trying to
> tick you off, remember that it takes 42 muscles to produce a frown, but
> only 4 muscles to  work the trigger of a good sniper rifle.
> Who is John galt?  Galt@inconnu.isu.edu, that's who!