MPAA Trying To Rootkit Universities?

from the how-nice-of-them dept

Just as the MPAA is strongly pushing for a new law that would require universities to take proactive measures to prevent unauthorized file sharing from happening on university networks, the group is also apparently pushing certain universities to install some MPAA-sponsored software to monitor network usage. However, after examining this “toolkit” some are noticing that it appears a lot more like a “rootkit” than a “toolkit.” Depending on how a university’s network is configured, it could actually reveal a lot of private info to the outside world. The software also phones home to the MPAA, despite promising not to report back any information. There are a few other oddities as well. While it could password protect some of the exposed content, it never prompts the user to do so — and, at the same time, it disables logging who accesses the pages revealing all the info. While it could all be a coincidence, effectively the MPAA has made it so that it (and others) can spy on university network usage without being tracked in many cases. People in the article note the similarity to the Sony rootkit situation, where software designed to “protect” actually opened up huge security vulnerabilities.

Filed Under: , , ,
Companies: mpaa

Rate this comment as insightful
Rate this comment as funny
You have rated this comment as insightful
You have rated this comment as funny
Flag this comment as abusive/trolling/spam
You have flagged this comment
The first word has already been claimed
The last word has already been claimed
Insightful Lightbulb icon Funny Laughing icon Abusive/trolling/spam Flag icon Insightful badge Lightbulb icon Funny badge Laughing icon Comments icon

Comments on “MPAA Trying To Rootkit Universities?”

Subscribe: RSS Leave a comment
John Duncan Yoyo says:

Re: Paying the cost

>And is the MPAA agreeing to indemnify the Universities
>and all of the University users when their software
>crashes the system or results in a leak of private >information?

The upside on a MPAA rootkit causing the release of private information is that there would finally be grounds to sue them into oblivion.

Dave says:

When it's time to cut and run...

Anyone who has had on older car can tell you that there comes a time to cut your losses and buy a new car. The repair and maintenance costs far outweigh the costs and benefits of purchasing something newer. I think that time has come and gone for the RIAA and MPAA. The current business model is outdated and in grave danger of loosing the connection to it’s buyers altogether. It’s a different world than the one that record and movie dynasties are used to. They either need to adapt or they will run head long into the tar-pits of extinction themselves.

If the new world of eBusiness is embraced by the entertainment industry, I think that there could be an exponential growth in revenue.

nedu says:

rootkit==teh 3/i1

Via Kreb’s blog, a quote from Steve Worona, director of policy and networking programs at EDUCAUSE:

“The important thing about the Sony rootkit wasn’t the details about what a rootkit was or why it ended up being put into those CDs, but rather what the intention was versus what the CDs really did,” Worona said.

IOW, it doesn’t matter what a hacker might think is the definition of a “rootkit”. All you need to know is . . .


Run away!

Anonymous Coward says:

Re: sadly, its breaking the law in a bad way

they’re basically asking you to give up your own rights by installing their software…so it might be a legal grey area.

If they don’t reveal what all it is going to do (and I don’t think they have) then it’s what’s called a “trojan”. The record and movie industries have been lobbying congress for laws to specifically make it legal for them to plant trojans for some time now. While they haven’t gotten that yet I guess a promise of immunity from the Justice Department is almost as good.

nedu says:

Techdirt comment handling

P.S. Techdirt has a comment handling problem in html post mode with both backslashes (unescaped) and with: & (ampersand)l (ell) t (tee) ; (semicolon).

Backslashes showed up fine in preview. Backslashes disappeared on post.

& (ampersand)l (ell) t (tee) ; (semicolon) also showed up fine in preview. Everything in rest of paragraph disappeared on post.

Anyhow, “rootkit == teh 3vi1”.

teilo says:

They think you are stupid

Yes, that’s right, MPAA. Nobody ever looks to see what the software they install is actually doing. Everybody just installs whatever you give them and takes your word for it that it’s all safe and honest.

After all, you are the trustworthy ones, and anybody who would question your right to distribute your “toolkit” is obviously a criminal.

Once again, this proves that the MPAA and their ilk really do think the rest of the world is stupid.

Steve R. (profile) says:

Corporations Defining What is Legal

To reiterate the prior posts, we seem to be descending into a society where corporations (in the name of protecting their profits) will deprive the consumer of any rights, will judge the consumer’s guilt, will establish the penalty, and will invoke the penalty all without due process. We are becoming a Nation of, by, and for the corporations.

Add Your Comment

Your email address will not be published. Required fields are marked *

Have a Techdirt Account? Sign in now. Want one? Register here

Comment Options:

Make this the or (get credits or sign in to see balance) what's this?

What's this?

Techdirt community members with Techdirt Credits can spotlight a comment as either the "First Word" or "Last Word" on a particular comment thread. Credits can be purchased at the Techdirt Insider Shop »

Follow Techdirt

Techdirt Daily Newsletter

Techdirt Deals
Techdirt Insider Discord
The latest chatter on the Techdirt Insider Discord channel...