[Dshield] Sony Sued Over CD Rootkits

stu secmail at patchsupplier.dyndns.org
Mon Nov 7 16:43:59 GMT 2005


You just brought an interesting scenario into my head. 

If a virus brought up a pop up box saying do you agree to a EULA... no
doubt there will be many a user who will click yes, then this virus were
to do something malicious to another computer.. the initial user would
be responsible? 

-----Original Message-----
From: list-bounces at lists.dshield.org
[mailto:list-bounces at lists.dshield.org] On Behalf Of Chris Wright
Sent: 07 November 2005 15:43
To: 'General DShield Discussion List'
Subject: Re: [Dshield] Sony Sued Over CD Rootkits

Hmm,

Whilst I can understand how upset people are at the use of the underhand
techniques (ala rootkit) by the software that Sony used, I don't think
such
a claim could stand up in court. After all, everyone who installed it
basically signed an EULA to authorise it. Even if it was in techy ga ga
language, and that nobody really reads them and just clicks through.
Claiming that you would hardly expect a company like Sony to install
such
software so you just clicked ok and installed it anyway is hardly a
defence.

They've definetly made a huge cock up with this one, but I don't think
they'll be doing again without thinking much harder next time.
As wrong as it was for them to use this method (IMHO), I would only be
able
to blame myself for it appearing on my machine since I authorised it (in
effect).  Yeah I would be pissed at them, but not much I could do about
it
apart from making sure I read the EULA's in the future.

Regards

Chris 

> -----Original Message-----
> From: list-bounces at lists.dshield.org 
> [mailto:list-bounces at lists.dshield.org] On Behalf Of Fergie
> Sent: Monday, November 07, 2005 3:26 PM
> To: list at lists.dshield.org
> Subject: [Dshield] Sony Sued Over CD Rootkits
> 
> Via The Inquirer.
> 
> [snip]
> 
> SONY IS FINALLY GOING to HAVE to answer the tough questions, 
> it is being sued. According to the press release here, and 
> the complaint here, the Italian group ALCEI is suing Sony 
> over the rootkitting DRM infection. Since I don't speak 
> Italian, I will have to take the word of readers that they 
> are doing things right.
> 
> It seems that ALCEI hired a noted Italian security researched 
> names Stefano Zanero to dot all the I's and cross all the 
> T's. This one will be great fun to watch, and hopefully will 
> set the right precedents.
> 
> [snip]
> 
> http://www.theinquirer.net/?article=27508
> 
> - ferg
> 
> 
> --
> "Fergie", a.k.a. Paul Ferguson
>  Engineering Architecture for the Internet  
> fergdawg at netzero.net or fergdawg at sbcglobal.net  ferg's tech 
> blog: http://fergdawg.blogspot.com/
> 
> 
> _________________________________________
> Using .Net? Need to know more about .Net Security?
> http://isc.sans.org/banner_count.php?dest=dotnet
> 
> _______________________________________________
> send all posts to list at lists.dshield.org To change your 
> subscription options (or unsubscribe), see: 
> http://www.dshield.org/mailman/listinfo/list
> 

_________________________________________
Using .Net? Need to know more about .Net Security?
http://isc.sans.org/banner_count.php?dest=dotnet

_______________________________________________
send all posts to list at lists.dshield.org
To change your subscription options (or unsubscribe), see:
http://www.dshield.org/mailman/listinfo/list



More information about the list mailing list