Entertainment industry accuses campus laser-printers of downloading Indiana Jones

You know what would really be cool? If you could spoof those red-light cameras so that they sent the traffic tickets to a fire hydrant.

Bit over the top, Kyle.

What they were demonstrating was that the enforcers knew considerably less about the BitTorrent users than they’ve claimed, and are using far sloppier procedures than they should. Look at this again:

The researchers introduced software agents into these networks to monitor their traffic.

Being present on those networks is not illegal. Neither is it evidence that anything you’re doing is illegal. Legitimate content runs through BitTorrent too. If the method you’re using just looks to see what IP addresses are present, and doesn’t check to see what they’re doing, then you don’t have enough evidence to accuse anyone of wrongdoing.

Even though those software agents did not download any files, the researchers say they received over 400 take-down requests accusing them of participating in the downloads.

Takedown notices are overprivileged and overpowered. They’re not supposed to be sent out indiscriminately.

The researchers concluded that enforcement agencies are looking only at I.P. addresses of participants on these peer-to-peer networks, and not what files are actually downloaded or uploaded—a more resource-intensive process that would nevertheless yield more conclusive information.

If the UWash uses a system that dynamically reassigns IP addresses, and if the **AAs aren’t tracking actual uploads and downloads and the time at which they happen, they don’t know jack — and legally, you’re supposed to know a lot more than jack before you can send out a DMCA takedown.

Even if the UWash computer system uses fixed IP addresses, an investigative process that doesn’t track what’s uploaded, what’s downloaded, and the times at which they happen, isn’t careful or accurate enough to be the sole grounds on which they’re accusing students of theft.

Also, check out Anonymous @25′s story, and this more recent story from Wired. They have a history of sending out masses of indiscriminate DMCA takedowns. That’s not what that law had in mind.

In their report, the researchers also demonstrate a way to manipulate I.P. addresses so that another user appears responsible for the file-sharing.

If you were going to demonstrate that point, whose account and whose address would you use? No human who testifies that they didn’t do any illegal downloading, and that they got sent takedown notices anyway, could be as convincing as the non-testimony of an accused downloader that turns out to be a laser printer.

An inanimate object could also get the blame. The researchers rigged the software agents to implicate three laserjet printers, which were then accused in takedown letters by the M.P.A.A. of downloading copies of “Iron Man” and the latest Indiana Jones film.

The point is not that the **AAs were tricked. Here’s the point: if (1.) that’s all it took to hoodwink them; and (2.) with that little certainty or proof on their side, they were nevertheless prepared to formally accuse three “students” of stealing movies (potentially exposing said “students” to serious disciplinary action), then it’s fair to say that their procedures are legally irresponsible and technically inadequate.

Shit, I have a laser printer! Could it torrent movies without my knowledge if I left it on standby overnight?

They’re fools to be suing laser printers. If they caught my inkjet downloading movies, they could get its ink in the lawsuit, which is where the big bucks are.

What it shows is that and IP address can very easily be faked, putting another block in the way of actually convicting anyone accused of copyright infringement. It makes it harder to stand in criminal court.

Too bad they seem to just sue people, eh?

These takedown notices are disturbingly like NAL (Notice of Apparent Liability) letters the FCC slaps pirate broadcasters with. Essentially they’re notices of fines levied for violation of regulations, not violation of laws, because the FCC are executive branch. So you can’t fight them in court; you can only appeal to the body that sent the NAL, and the appeal is usually turned down.

Certainly the RIAA would like you to think of their takedown/dunning notices in the same way.

Sadly, for most recipients of such letters, the bigger threat comes from secondary consequences, such as eviction from public housing, firing from one’s job or expulsion from college, none of which require finding of guilt in a court of law.

Guys, I used to run the network for a large university (early half of the decade). I can tell you that the **AA folks went through a period of time when they sent many copyright complaints which were completely baseless.

We would look up who was using the IP addresses at the time of the complaint and forward the messages along. Fine. But then we started seeing more and more addresses in the complaints we couldn’t trace back to owners (the university had many, many IP addresses under its control).

So I was quite concerned, and spent quite a bit of time trying to figure out what was wrong. The clincher were a series of complaints we received for addresses which were not routed on our network at all. Meaning the addresses in the complaints were completely bogus.

How much time did we waste tracking down addresses which were never really used by anyone? How many students did we harass (I’ve got to think getting one of those nasty-grams was quite unpleasant)?

Sure, some folks were willful, serial violators. And eventually the **AA folks subcontracted out their dirty work to folks who knew what they were doing a bit better. But they never published a “we’re sorry” or responded to any of our complaints about the inaccurate reporting.

ugh…

Will those stupid old men ever learn?
They will not win this battle.
Technology like this is too complicated for their aged brains…

I look forward to seeing someone use “the laserprinter defense”:

“It wasn’t me that downloaded all that music, it was my LaserJet CM1312 … and you can’t prove that it wasn’t!”

More seriously, there’s a civil disobedience opportunity right there: fire up a P2P agent, point it at a file-sharing network, and let it sit there doing nothing. Then laugh scornfully when they send you takedown messages.

Get enough people doing it, and you can make a nonsense of the whole process, or at least force the industry associations to monitor what’s really being uploaded and downloaded, rather than cutting corners.

Imma chargin’ tha lazer

Begin the asset forfeiture proceedings immediately!

@ #30:

While I despise the entertainment industry’s copyright tactics, I think that you’re being a little too hard on them here, and that an unbiased view would probably be somewhere between yours and Kyle’s.

The researchers found that copyright bots are scanning BitTorrent swarms of infringing torrents. Because participating in such a swarm generally
- is unauthorized
- makes copies the entire work, and
- decreases the work’s market value,
there is probably no fair-use exception of any kind for anyone actively participating in the swarm. As such, if the swarm is advertised accurately, the participants are probably all infringing.

Now, the tracker is giving out a list of IPs which purports to be a list of everyone actively participating in the swarm. Of course, it contains some errors, between research bots, MediaSentry noisebots, the copyright bots themselves, dynamic IP addresses, and framed laser printers. But after removing known copyright bots, the rate of these errors is probably be very low, less than 1% (I sucked that out of my thumb, but I’d be shocked if it was more than a couple percent).

If I’m right about the accuracy here, MPAA indeed has a good-faith belief (what is required to file a DMCA notice) that the IPs in the swarm are infringing, at least if they have verified that the swarm is distributing what it claims.

That said, universities and other providers should be aware that DMCA notices only convey good-faith belief, and shouldn’t discipline their students on the basis of DMCA notices alone. Furthermore, perhaps Big Entertainment should be required to have something stronger than a good-faith belief that some work is infringing before taking it down.

So the really important question is: who’s going to make the “Arrest my laser printer” t-shirts?

@ knodi:

I disagree. Yes, it’s true that the MPAA didn’t intentionally target a laser printer, but that’s hardly the point.

What you are saying (“of COURSE it looks like these people are guilty”) is indicative of a tendency to accept these tactics as business as usual. They may appear guilty, but does that presumption give the MPAA the right to threaten students’ academic careers?

Does it give them the right to bully you or anyone else into paying them money, when none is owed? I would think that if the charge was murder, you’d be singing a different tune. “Sure, I look guilty, with all of this blood everywhere.” Thank God for forensic analysis, or you’d never be able to prove your innocence. A presumption of innocence should exist, but we are badgered into compliance, and to many of us a presumption of guilt is just easier. Fear is a powerful tool.

Case in point… I have been stealing the Internet from a local school for nearly two years. Now, given the fact that their connection is left open (and incredibly fast, I might add) I’m not sure that it’s altogether illegal for me to jump on and do what I do on a daily basis. If I steal movies, TV shows, video games, software, or music, it’s still a crime, no? And yet, the MPAA would have a hard time tracking me down were I to download a pirated movie such as the abysmal Indiana Jones. Without a subpoena, they’d have an easier time bringing charges against my router.

What you are suggesting is dangerous. Never mind the fact that you might have been away from your computer while the alleged theft was going on. Indeed, forget about the fact that your computer wasn’t even used. You have the same last name (or IP address) as someone else, so you must be guilty of whatever we say you are. Because you live on the same block, you are hereby condemned to a life sentence for the murder of a person you’ve never met. Sound fair to you? Your suggestion is much the same.

Anyone with a working knowledge of the Internets and access to the Google can spoof your IP from across the world, instantaneously and without your knowledge. You think framing someone for murder would be easier? Seriously, side with the MPAA all you want. Until you find yourself at the receiving end of a nastygram intended for someone else, I doubt you’ll understand why this informal study was important.

The MPAA shouldn’t be coddled by Universities or anyone else. This is their war to lose, and by the looks of things they’re doing a pretty good job of it on their own.

the machines have become aware…and have already been suckered in by summer movie advertising just like the rest of us…

It would be interesting to see the result if somebody start using fake IPs of the White House or Pentagon for bitTorrent. Come to think about it, somebody should start using IP of MPAA for bitTorrent.