RIAA praises Sony over rootkit debacle

Just goes to show....

...how out of touch the RIAA continues to be. It's rare that an industry WILLS itself into a protaganist role, and in doing so, ensures its own demise.

To insinuate that Sony was within legal bounds while installing, without the consumers knowledge, spyware within the root is lunacy.

And, to keep going: it costs about 40 cents to make a CD. Overhead of staffing, placement, etc and you still have a production cost of app. $1.50. But this entire debate hinges on the costs of an outmoded distibution model. CD sales from a brick and mortar shelf, or even an Amazon, will soon be a thing of the past. In light of this, the current actions by Sony and its vehement support by the RIAA are extremely peculiar and contrary to a proper solution.

Posted by Sunmonkey, 21 Nov 2005

Sure, but does *Sony* agree with Cary Sherman?

Cary Sherman of the RIAA is making a great arguement for just listening to radio!

Sony trespassed on customer's systems. Sony choose to join the ranks of malware practitioners. If Sony fails to disagree publicly with Cary Sherman, I am extending my boycott of Sony products...

Posted by Mark Walker, 22 Nov 2005

Software Giant Eats It

I definitly agree. Sony has no right to install any software on a computer that does not belong to them, and they resorted to hacker tactics to do it causing an even larger security problem. Thanks a lot corporate jack ass.

Posted by Evans, 21 Nov 2005

What Chutzpah!

Get some perspective, people! If you want to stop the hemorrhage from piracy, go after the overseas volume producers. That's where your real losses come from. When you start stealthily modifying computers belonging to law-abiding citizens, leaving them vulnerable to malicious intrusions, you deserve the most costly judgements that the class-acton lawyers can extract from the legal system. Ignorance is absolutely no excuse! You initiated the problem and you deserve to shoulder cost of the remedy, with substantial punitive damages attached.

Posted by Ray in Missouri, 21 Nov 2005

RIAA hasn't a clue

It's really funny that the only person or organization to actually praise Sony is the RIAA -- everyone else has been blasting them. I think that shows just how out-of-touch the RIAA is with society.

Posted by Tim McCormack, 21 Nov 2005

The RIAA has lost touch with reality

The RIAA has clearly lost all touch with the real world. "Sony acted responsibly"? By installing a rootkit made with GPLd software that infected consumer PCs in the real world? If that's responsible... I just don't know.

Posted by Jay, 21 Nov 2005

The Spin Never Stops

The Spin Never Stops.
How any one believe that Sony acted responsibly or with any care for the consumer, consuner rights or just the fact that what Sony did was damage deface and put comsumers in harms way.

There is no spin that can make there actions right. Sony should be called to the task of fixing this one PC-AT-A-Time

Posted by Albert, 21 Nov 2005

sony has lost me as a customer

I have never downloaded or copied music illegally -- I don't have to I can afford the peace of mind that comes with not being a thief.

However, Sony's illicit installation of snare-ware has in my opinion lost them any good will I had for them as a company.

No more Sony electronics products for me -- and I'm switching to XBOX.

Truthfully, switching to a microtrash product was the last thing that I ever thought that I'd do -- being an inveterate linux user and all. But Sony doesn't deserve my business.

Posted by Lowell Boggs, 21 Nov 2005

RIAA Wants What?

RIAA wants you to buy music; but if you do, they want to install hidden software on your computer without your permission.

Seems like RIAA, in defending Sony, is really saying that you are a fool if you buy the music!

Posted by Virgil, 21 Nov 2005

Hilarious ...

Just how does this make Sony look better? "Satan applauds good effort by loyal minion" would have been a good headline.

If "hackers" had released and propagated software as malicious as Sony's, the governments of the world would be blaming them for billions in losses and putting them in jails.

Posted by jeffbot, 21 Nov 2005

What would happen...

I'll tell you what would happen if you installed rootkits on their computers, there would be a big media frenzy over it and "poor sony" such the victim of this "heinous act" would tell their sob story to the world about the evil hacker who "ruined" their computers...
You'd be treated worse than Jeffrey Dahmer after a large meal

Posted by Resident Devil, 21 Nov 2005

RIAA Stormtroopers of death

The RIAA will endorse anyhting that removes freedom of any kind. Music stormtroopers will soon invade your home and rip your ears off and shove then down your throat if you listen to pirated music! It is coming! Beleive it!

Posted by RIAA Lover, 22 Nov 2005

Responsible? Are you kidding?

Sony-BMG responsible? If they are so responsible, why are these XCP CD's still on sale in Missouri Wal-Mart's? There are tons of copies of the CD of Mongomery Gentry in particular still being sold.

The Federal Trade Commission needs to order a full recall of all DRM CD's and charge Sony with whatever they can for this malicious attack on people's computers.

Posted by Master Luke, 22 Nov 2005

Very Little to Record Companies?

Maybe the author of this article should read Confessions of a Record Producer.... Whereas I think it's just peachy to hear a highly biased opinion such as the one that was solicited for comment on how much money goes to the record company, would it kill journalists to... get a second opinion... maybe research the points to ensure their accuracy?

It must at least be painful, because I don't see it done very often.

Posted by JTH, 21 Nov 2005

"responsibly"

By which we are to assume they mean that Sony attacked Fair Use. I mean, if no one noticed then it would be a "Good Thing" for the RIAA, right? Or, if everyone let it slide that would have been AMAZING for them. The ability to change laws with a EULA would just be "teh rox0r". no doubt.

The RIAA can eat a bowl of d*ick

Posted by Just Steve, 21 Nov 2005

Does this rootkit also introduces noise in MP3 ripping?

Could someone pls clarify the news for me. I read that this a software not only restricts copying "their" CD's but also introduces noise when ripping a CD. Does this happen with their CD or any other CD?

Posted by miguel, 21 Nov 2005

Gah, Thats complete Bull!

Responsibly? Oh dear lord, how can anyone claim that the DRM rootkit installing itself on your computer is responsible? If this were an individual they would be in jail, and awaiting a hearing.....

Responsible? I think not.

Posted by http://www.hackingbluegrass.com, 21 Nov 2005

RIAA praises Sony for effing up your computer

The problem isn't that Sony was unaware of a security vulnerability. The problem is Sony basically hacked their customer's computers & installed unauthorized (flawed) software. What's worse is it can't be removed & is hidden from their customers.
Another example of the RIAA not understanding their customer! They're screwing the people that are paying for their product!

Posted by RIAAsucks, 21 Nov 2005

Umm, wasn't it illegal?

So, RIAA is praising Sony for the illegal installation of a program on the computers of the CD purchasers? I was under the impression that you had to agree to install software and programs on your computer. It seems was Sony did was an underhanded hack job and they didn't handle anything nearly as well as they should have.

Posted by Rachel, 21 Nov 2005

What do you expect

What do you expect the RIAA to say. Is this news?

Posted by Robert Vassar, 21 Nov 2005

Copyright is dead; bury the corpse.

"The problem with the Sony BMG situation is that the technology it used contained a security vulnerability of which it was unaware," [Sherman] said.

Wrong, wrong, wrong. The problem is that Sony tried to interfere with the owners' use of their own property. Once you buy a CD, it's yours. ANYTHING you do with it or its content is solely your choice.

The copyright laws are a relic of a dead era; the sooner they're repealed, the better.

Posted by Mark Hagerman, 21 Nov 2005

RIAA Praise for Sony

What CRAP! Installing software that the end user has NO idea is even there, causes problems with security and operation, and is TOTALLY uninstallable? Such high-handed actions should have them hauled into court and sued, and the RIAA fools would like to see more of it. Unbelievable. As to the rationale that prices enable them to invest in up-and-coming bands and better staff, why do they need more people reaching into my pocket? If a band is good, they should be able to make it on their own, and not need the music industry to 'promote' them. Artists get paid pennies on a CD release, with the majority going to the record labels and their lawyers and staff, who serve no other purpose than to suck more money out of the chain without adding anything except more charges. I say lets fire all the music label 'support staff' and their vampiric ways of locking up content, and free up the revenue to go where it SHOULD be going. To the ARTISTS who make the music in the first place, not to some shyster lawyer and the music reps that couldn't make a living without ripping off someone. Their business model is dying fast, and the death knell is sounding. Let us hope their death throes are short, and the damage they do, limited to themselves. If they get their way, they'll continue to live off the avails of the artists, the meretricious low-lives. Let's hear it for the end of musical artist slavery. Emancipation is near, all you need to do is say NO to the onerous claims made upon you by the big labels. You can rise or fall on your own merit, not falsely conflated by some group that judges you on the money you can make for them.

Posted by Kevin Fleming, 21 Nov 2005

which side is his bread buttered on?

Cary Sherman is too much an insider! What else is he going to say? He has exactly the same interests as Sony has in copy-protecting their CDs.

What is his response to the further stories of the various "tags" that have turned up in the actual code? The most recent stories are indicating that both management personnel-wise and code-wise there are some very close ties between F4I (First 4 Internet) and Sony. What exactly is the relationship between certain management personnel and Sony? And what is the explanation for the code development clues that indicate Sony's close relationship throughout the development of F4I's so-called 3rd party software?

Posted by Greg from WV, 21 Nov 2005

Screw the RIAA!

I have news for this California Potato Chip. They will NEVER stop the pefectly legal practice of people time shifting/ converting THEIR music/movies to any form they see fit. It's their own arrogance that has caused the "problems" they have. I have well over 2000 Casettes and LP's from my early years of music. It is MY music. I own the right's to it and may do with it what I damn well please. I am not going to purchase CD's of this music now beacuse I have already payed for this music long ago. But in their minds I should have to purchase new CD's if I want this music in digital form. BS! This jerkoff shows you where their heads are at in praising these scumbags practice of installing malicious software of there own customers PC's. I will NEVER buy another CD until these idots reduce the price to something reasonable...more like 7-8 bucks for a CD. Not 15-18 bucks. You don't get gouged this much at the gas pump. To top it off, if you buy a CD and it sucks, it's a defective product in my book. You have NO RIGHTS to return the bad product for a refund. Screw the RIAA, they will never get another damn dime from me or anyone else I know. Their just scared because the see their model for selling/ marketing music being pulled away from them. It won't be a day too soon when they all crash and burn! The music will live on....they will just be out of a job. I say....let 'em flip burgers!

Posted by Roland Milligan, 21 Nov 2005

You've got to be kidding!

It is possible that Sony acted responsibly once found out but it seems all too clear that nothing would have changed had Sony not been found out.

I'm curious as to what Sony's reaction would be if my software installed unknown rootkits on their computers.

Posted by Peter, 21 Nov 2005

Baloney!

"A security issue of which they were unaware"? Try "about which they did not care" and you'll get a little closer to the truth. Sony's attempt at Digital Rights Management callously ignored the rights of the consumer. Is it any wonder the (Sue 'em all!) RIAA is speaking out in Sony's behalf. They are birds of a feather. I think I'll have to continue my habit of only buying CD's and DVD's second hand. These jerks don't care about the consumer, why should any consumer continue to support them?

Posted by Steve Gibson, 21 Nov 2005

Pitiful and Laughable

The RIAA and the record companies simply don't get it. Whatever technology they implement will either fail out of the box or be circumvented by the real pirates (not typical consumers). Recorded music has been copied practically as long as it has existed. The problem is a social one, not a technical one. Give people value and flexibility for their money and the desire to illegally copy will go away. Find ways to deliver *songs* users want (not albums with one great song and 11 tracks that suck) at a fair price and with no restrictions on reuse by the purchases (just as we have always enjoyed for years) and watch those lost profits return.

Posted by Kenny Lee, 21 Nov 2005

Security vulnerability?

"The problem with the Sony BMG situation is that the technology it used contained a security vulnerability of which it was unaware,"

Yes, there was a security vulnerability. It allowed us to find sony's rootkit DRM! Otherwise we would have never known about it. I'm sure that's the "security vulnerability" they are talking about.

Posted by dorgus, 21 Nov 2005

Only the start

Watch out if they nail this DRM issue.
Watch the prices of CD's go through the roof.
They only keep the cost of CD's down ( if that can be said ) otherwise everyone would copy.

Posted by Nige, 21 Nov 2005

This article is inaccurate

The article claims that XCP contains an exploitable flaw. This may be true; to my knowledge no one has yet discovered such a flaw. However, the main problem with XCP is that the security vulnerability is a byproduct of its design - it is not a flaw, or a bug, but an intentional feature of the software. This article misrepresents the core of this issue - that Sony corporation, or some subdivision of same, DISTRIBUTED SOFTWARE WITH AN OBVIOUS SECURITY PROBLEM. Perhaps they did so unknowingly; that speaks only to the internal incompetence of Sony corporate management. Or they did it knowingly - in which case the corporation fully deserves whatever punitive damages arise from the lawsuits pending. Hopefully someone will have the guts to open a criminal enquiry. Oh, and Pity Cary Sherman; he is clearly altogether out of his depth with this sort of stuff. Or possibly a shameless liar....so perhaps don't pity him too much.

Posted by Max, 21 Nov 2005

Vote with your checkbook!

Sony? Sony? Sony who?

Posted by G.Anton Bosanko, 24 Nov 2005

After the debacle

After being a SWG player for about two years, and owning many Sony products.. I can say they will never get my money again. I lost a hardrive to their software, and they have demonstrated they do not care about the consumer.

What about the laws covering expected fair use? I should be able to use that cd and the music I own as many times as I want. Anything that impedes my LAWFUL use of MY PAID FOR PROPERTY is illegal.

Posted by Eric, 05 Dec 2005