[e-privacy] Sony/BMG DRM/Rootkit: che fare ?

Marco A. Calamari marcoc1 at dada.it
Fri Nov 11 12:09:58 CET 2005 

On Fri, 2005-11-11 at 11:56 +0100, peterpunk wrote:
> Francesco Poli scriveva:
> 
> > Nel frattempo e` stato scoperto il primo trojan horse che sfrutta il
> > DRM/rootkit di Sony per nascondersi e fare danni (tipo aprire
> > backdoor!):
> > 
> >   http://www.datamanager.it/articoli.php?idricercato=12991
> >
> Sony Mac DRM:
> http://www.macintouch.com/#tip.2005.11.10.sony
> E la saga continua.

Quoto la parte interessante (buona abitudine)
 per farvi risparmiare un po' di tempo

==================================================================

Darren Dittrich followed up on the discovery that Sony was playing a
dirty trick on its customers, secretly installing a malware-style "root
kit" on their computers via audio CDs: 

I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA
Victor release, but with distribution credited to Sony/BMG. Reading
recent reports of a Sony rootkit, I decided to poke around. In addition
to the standard volume for AIFF files, there's a smaller extra partition
for "enhanced" content. I was surprised to find a "Start.app" Mac
application in addition to the expected Windows-related files. Running
this app brings up a long legal agreement, clicking Continue prompts you
for your username/password (uh-oh!), and then promptly exits. Digging
around a bit, I find that Start.app actually installs 2 files:
PhoenixNub1.kext and PhoenixNub12.kext. 
  Personally, I'm not a big fan of anyone installing kernel extensions
on my Mac. In Sony's defense, upon closer reading of the EULA, they
essentially tell you that they will be installing software. Also, this
is apparently not the same technology used in the recent Windows
rootkits (made by XCP), but rather a DRM codebase developed by SunnComm,
who promotes their Mac-aware DRM technology on their site.


-- 

+--------------- http://www.winstonsmith.info ---------------+
| il Progetto Winston Smith: scolleghiamo il Grande Fratello |
| the Winston Smith Project: unplug the Big Brother          |
| Marco A. Calamari marcoc at dada.it http:// www.marcoc.it     |
| DSS/DH:  8F3E 5BAE 906F B416 9242 1C10 8661 24A9 BFCE 822B |
+ PGP RSA: ED84 3839 6C4D 3FFE 389F 209E 3128 5698 ----------+

-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 307 bytes
Desc: This is a digitally signed message part
URL: <http://lists.winstonsmith.org/pipermail/e-privacy/attachments/20051111/be3efae4/attachment.pgp>

More information about the E-privacy mailing list