|
Gnutella needs protection before its too late I am not a programmer but I think it would be wise for others to start to brainstorm some ideas to enchance security on the network before the dreaded RIAA takes our rights and ISPs away. Limewire told me encryption would be hard to implement. Perhaps there are other solutions. I just worry that with supernodes around the corner and all the big network improvements Gnutella is gonna explode in popularity and gain the size of Fast Track. Of course its great that it will grow but thats gonna attract the RIAAs attention. I wouldnt be suprised if they take Limewire to court and drain our beloved Limewire team of their assets and jobs. Even if the RIAA cant win in the courts they can bankrupt all these start up companies developing Gnutella clients. Maybe the hacking community can implements some slick ideas. |
Re: Gnutella needs protection before its too late Quote:
all client must use encryption than... Morgwen |
Hi Sweepicker, Morgwen, hmm encryption is for sure a good idea! I find it hard to implement or to fit any needs: protect sharer and superpeers, protect traffic, fast and small traffic overhead, gurantee optimizing algorithms (query caches e.g.) still work and everything on a totally decentral system (which gnutella is). I guess FastTrack with a slightly centralized system has it much easier, with key management etc. Does some concepts for gnutella or filesharing system allready exist, any ideas or URLs (at the_GDF)? |
Encryption isnt a panacea thats one of the P2P myths and a dangerous on at that. Look at the fasttrack network they have encryption yet the RIAA was still able to figure out all it needed to sue them. Either way who would stop the riaa from downloading and modifying an open source program to track users. The reasons why gnutella hasnt been sued is that its open which is the biggest reason, no log-ons or user names, it has many more uses than just file sharing, and search is really not that much different than any search engine out there. Gnutella is alot like the web so if the RIAA wants to shut it down they will have to do it like they do on the web and go after indivdual users which will be a PR nightmare and the cost too high. Which it will be very unlikely they will do that. They will most likely try other ways like DRM and etc. |
Encryption is NOT dangerous. Fasttrack is sued because it's not working completley decentral, not because it's using a kind of encrypted key exchange for a proprietary authorization mechanizm. Encryption makes no sense in a peer to peer system, at least as long as download partners are not anonymous.... or as long as content is not anonymous! Look at Freenet, a user has no idea what is on his/her harddisk. Similar to anonymous Freenet, but much much simpler, is swarming technology. Thousands have a small part of a file without knowing it.... so content is made (slightly) anonymous. Isn't it? More ideas for Gnutella's future? |
The thing that worries me is the fact that I can see a day soon where the RIAA or one of the big labels will use the full legal resources at their disposal to locate one individual who's sharing files and make an example of them. Once that has been done, then a president can be set to go after others. As others have quite rightly pointed out, Gnutella's main strength is the sheer number of servants out there. However, just as Metallica did with Napster in identifying a whole list of offending users, expect the same to happen with Gnutella. Let's face it, regardless of whether encryption is used or not, it is easy enough to identify a remote servant hosting illegal files, either by viewing the web page or by starting a download. Once the IP address has been obtained, a quick visit to ARIN will reveal the owner/ISP of the IP. Since most ISP's have either within their T&C or AUP that you should not partake in trading of illegal items using their network, it wouldn't be too difficult to have the connection discontinued or, even worse, for subsequent legal action to take place if so desired. Whilst files are shared in their entirety, regardless of the method used to transmit the files, I personally feel that the risk remains that the RIAA etc will soon set the cross-hairs on both the Gnutella clients and the users sharing the files. Rachel |
Rachel, I completly agree. We need more ideas... |
[QUOTE]Originally posted by RachelHeath [B]The thing that worries me is the fact that I can see a day soon where the RIAA or one of the big labels will use the full legal resources at their disposal to locate one individual who's sharing files and make an example of them. Once that has been done, then a president can be set to go after others. [\b][\QUOTE] First that is very very unlikely to happen do to how gnutella works even if you scan it for a week you wont find every single "offender." If any action would come it would be in stop and desist e-mails or at an extreeme get a user internet service cut i doubt they would sue. The RIAA wont make an example because the media would eat them alive and cause so much bad publicity the RIAA would be hated even more. Considering its the holiday season it would be a bad idea to **** off the consumers. [QUOTE][b] As others have quite rightly pointed out, Gnutella's main strength is the sheer number of servants out there. However, just as Metallica did with Napster in identifying a whole list of offending users, expect the same to happen with Gnutella. [\b][\QUOTE] Gnutella is not napster its much better. On napster you can easily search an entire server easily. On gnutella you cant systematically search every inch of it like you could on napster. There are no log-ons so you cant just kick users off easily like what napster did during the Metallica thing. Quote:
Try to design a P2P network thats fast, stable, and only gives info out to everyone except the riaa. Its impossible there cant be any kind of security like mentioned here without servely limiting users options and the fact that most security measures would hurt gnutella legally and bring more attention from people like the RIAA the benifits wouldnt be anymore than just bragging rights and a slower, limted network. I can see where people are worried and etc. and thats perfectly understandable after napster but gnutella isnt napster, no prolonged action has been taken yet and until there is i dont think that security needs to be a major issue. Plus unlike all the other file sharing programs gnutella can be used for alot more than just P2P making it a extreemely hard for someone like the RIAA to attack it legally because they would lose. |
umm... Very optimistic and also ignoring reality, some ISPs and universities block Gnutella allready! When RIAA has shutdown other peer to peer system, what makes you belive that they stop and do not attack gnutella? This is big business with a high money flow, think creative... if lawyers do not suceed, RIAA could try to abuse the network, flood the net with fakes (read Harry Potter floods on Slashdot) or DoS or.... is Gnutella really that strong? You seem to look very conservative/reserved on Gnutella, what are your ideas to improve Gnutella? |
Sephiroth, Quote:
A second method would be to write an application using the gnutella protocol that issues a search for a given artists name and start seeing what is returned. If the same IP address starts to appear a number of times then they've got their target. As I said previously, all they would have to do is successfully sue one individual. Once they have done that, then the doors are wide open. That in itself might be enough to stop a large number of people from sharing. Once that happens, the topology becomes top-heavy as everyone tries to download from servants outside the RIAA's or WIPO's jurisdiction. Quote:
Quote:
As you already pointed out, @home and AT&T have both taken action against other users. They are arguably two of the largest Broadband ISP's in the USA (Road Runner being a third). Since Road Runner is itself owned by a media conglomerate, I wouldn't expect them to look kindly on users who have been positively identified as sharing illegal files. Quote:
To say that the RIAA will not pursue a US based user sharing several GB of copyrighted material is completely off the base. They can and probably will. After all, there is no real difference in sharing nGB of illegal MP3's as there is copying DVD's and distributing them elsewhere. The only argument that could possibly be used is one of 'zero profit motive'. However, in the eyes of the law, copyright theft is copyright theft, regardless of the intention or not to profit from it. Don't think either that public opinion will be against them. People said that about the Napster case and look what happened there. A very large proportion of the population does not, or ever will use GNet or any other part of P2P sharing. Besides, what have the RIAA to loose? They are funded by the recording industry, not by the public. Currently, the RIAA are looking at other P2P file sharing applications. Take a look at this except from an RIAA press release: Quote:
What's even more worrying are the list of plaintiffs in the case: Metro-Goldwyn-Mayer Studios Inc., Columbia Pictures Indus-tries, Inc., Disney Enterprises, Inc., New Line Cinema Corporation, Paramount Pictures Corporation, Time Warner Entertainment Company, L.P., Twentieth Century Fox Film Corporation, Universal City Studios, Inc., Arista Records, Inc., Atlantic Recording Corporation, Atlantic Rhino Ventures Inc. D/B/A Rhino Entertainment Company, Bad Boy Records, Capitol Records, Inc., Elektra Entertainment Group Inc., Hollywood Records, Inc., Interscope Records, Laface Records, London-Sire Records Inc., Motown Record Company, L.P., The RCA Records Label, A Unit Of BMG Music D/B/A BMG Entertainment, Sony Music Entertainment Inc., UMG Recordings, Inc., Virgin Records America, Inc., Walt Disney Records, Warner Bros. Records Inc., WEA International Inc., WEA Latina Inc., and Zomba Recording Corporation Anyone of these organizations alone makes for a scary legal competition. Them all combined makes for a verifiable rotweiller. Also, notice where I highighted WB? Since they are already fighting this case, expect them to fight the next - and Road Runner users will be directly in view. The won't need to ask the ISP for user details since they ARE the ISP! Finally, in the US alone, the RIAA represents an industry worth $15billion. With that much money, I would not expect them to take this lying down... Rachel |
| All times are GMT -7. The time now is 10:20 PM. |
Powered by vBulletin® Version 3.8.7
Copyright ©2000 - 2024, vBulletin Solutions, Inc.
SEO by vBSEO 3.6.0 ©2011, Crawlability, Inc.
Copyright © 2020 Gnutella Forums.
All Rights Reserved.