"Darren Dittrich followed up on the discovery that Sony was playing a dirty trick on its customers, secretly installing a malware-style "root kit" on their computers via audio CDs:
I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA Victor release, but with distribution credited to Sony/BMG. Reading recent reports of a Sony rootkit, I decided to poke around. In addition to the standard volume for AIFF files, there's a smaller extra partition for "enhanced" content. I was surprised to find a "Start.app" Mac application in addition to the expected Windows-related files. Running this app brings up a long legal agreement, clicking Continue prompts you for your username/password (uh-oh!), and then promptly exits. Digging around a bit, I find that Start.app actually installs 2 files: PhoenixNub1.kext and PhoenixNub12.kext. Personally, I'm not a big fan of anyone installing kernel extensions on my Mac. In Sony's defense, upon closer reading of the EULA, they essentially tell you that they will be installing software. Also, this is apparently not the same technology used in the recent Windows rootkits (made by XCP), but rather a DRM codebase developed by SunnComm, who promotes their Mac-aware DRM technology on their site. "
"Software that resides in the kernel tends to be expensive. Kernel code is "wired" into physical memory and thus cannot be paged out by the virtual memory system. As more code is put into the kernel, less physical memory is available to user-space processes. Consequently, paging activity will probably intensify, thereby degrading system performance.
Kernel code is also inherently destabilizing, much more so than application code. The kernel environment is a single process, and this means that there is no memory protection between your extension or driver and anything else in the kernel. Access memory in the wrong place and -boom- the entire system can grind to a halt, a victim of a kernel panic. Moreover, because kernel code usually provides services to numerous user-space clients, any inefficiencies in the code can be propagated to those clients, thereby affecting the system globally."
-- "It's in our country's interests to find those who would do harm to us and get them out of harm's way." -- George W. Bush in Washington, D.C., April 28, 2005
Super Spinner <Pepe.Smy...@gmail.com> wrote: > You've likely heard about Sony CDs installing rootkits on Windows > computers. Looks like they install kernel extensions on Macs too.
> "Darren Dittrich followed up on the discovery that Sony was playing a > dirty trick on its customers, secretly installing a malware-style "root > kit" on their computers via audio CDs:
> I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > Victor release, but with distribution credited to Sony/BMG. Reading > recent reports of a Sony rootkit, I decided to poke around. In addition > to the standard volume for AIFF files, there's a smaller extra > partition for "enhanced" content. I was surprised to find a "Start.app" > Mac application in addition to the expected Windows-related files. > Running this app brings up a long legal agreement, clicking Continue > prompts you for your username/password (uh-oh!), and then promptly > exits. Digging around a bit, I find that Start.app actually installs 2 > files: PhoenixNub1.kext and PhoenixNub12.kext. > Personally, I'm not a big fan of anyone installing kernel extensions > on my Mac. In Sony's defense, upon closer reading of the EULA, they > essentially tell you that they will be installing software. Also, this > is apparently not the same technology used in the recent Windows > rootkits (made by XCP), but rather a DRM codebase developed by > SunnComm, who promotes their Mac-aware DRM technology on their site. "
What happens if you decline their generous offer?
Does the CD fail to play?
Moral - don't purchase anything from Sony, hardware or software, ie, run the bastards out of business.
Super Spinner wrote (in article <1131685864.929271.261...@f14g2000cwb.googlegroups.com>):
> Running this app brings up a long legal agreement, clicking Continue > prompts you for your username/password (uh-oh!), and then promptly > exits. Digging around a bit, I find that Start.app actually installs 2 > files: PhoenixNub1.kext and PhoenixNub12.kext.
Gee, I warned about this problem (asking for a password and you giving it) not too long ago in a discussion about security and malware on the Mac. Sony is hereby banned from the household from this point forward.
-- _ __ _ | | ___ / _| |_ _ _ | | / _ \ |_| __| | | | | |__| __/ _| |_| |_| | |_____\___|_| \__|\__, | |___/ All of God's creatures have a place.......... .........right next to the potatoes and gravy.
> > "Darren Dittrich followed up on the discovery that Sony was playing a > > dirty trick on its customers, secretly installing a malware-style "root > > kit" on their computers via audio CDs:
> > I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > Victor release, but with distribution credited to Sony/BMG. Reading > > recent reports of a Sony rootkit, I decided to poke around. In addition > > to the standard volume for AIFF files, there's a smaller extra > > partition for "enhanced" content. I was surprised to find a "Start.app" > > Mac application in addition to the expected Windows-related files. > > Running this app brings up a long legal agreement, clicking Continue > > prompts you for your username/password (uh-oh!), and then promptly > > exits. Digging around a bit, I find that Start.app actually installs 2 > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > Personally, I'm not a big fan of anyone installing kernel extensions > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > essentially tell you that they will be installing software. Also, this > > is apparently not the same technology used in the recent Windows > > rootkits (made by XCP), but rather a DRM codebase developed by > > SunnComm, who promotes their Mac-aware DRM technology on their site. "
> What happens if you decline their generous offer?
> Does the CD fail to play?
> Moral - don't purchase anything from Sony, hardware or software, ie, run > the bastards out of business.
So the Mac has got some malware now. Funny how you guys didn't just come out and admit to that directly.
> > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > dirty trick on its customers, secretly installing a malware-style "root > > > kit" on their computers via audio CDs:
> > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > recent reports of a Sony rootkit, I decided to poke around. In addition > > > to the standard volume for AIFF files, there's a smaller extra > > > partition for "enhanced" content. I was surprised to find a "Start.app" > > > Mac application in addition to the expected Windows-related files. > > > Running this app brings up a long legal agreement, clicking Continue > > > prompts you for your username/password (uh-oh!), and then promptly > > > exits. Digging around a bit, I find that Start.app actually installs 2 > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > Personally, I'm not a big fan of anyone installing kernel extensions > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > essentially tell you that they will be installing software. Also, this > > > is apparently not the same technology used in the recent Windows > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > What happens if you decline their generous offer?
> > Does the CD fail to play?
> > Moral - don't purchase anything from Sony, hardware or software, ie, run > > the bastards out of business.
> So the Mac has got some malware now. Funny how you guys didn't just > come out and admit to that directly.
I'll admit to it, providing it's true... but it's certainly news to me. Realistically, it can only be a matter of time, right? Josh McKee has some list of reasons that he's unwilling to share as to why OSX has no malware. If this is true he'll have to rethink things.
-- "I would not be a good liar, being that I have little if any practice." - Snit
Super Spinner wrote: > You've likely heard about Sony CDs installing rootkits on Windows > computers. Looks like they install kernel extensions on Macs too.
> "Darren Dittrich followed up on the discovery that Sony was playing a > dirty trick on its customers, secretly installing a malware-style "root > kit" on their computers via audio CDs:
> I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > Victor release, but with distribution credited to Sony/BMG. Reading > recent reports of a Sony rootkit, I decided to poke around. In addition > to the standard volume for AIFF files, there's a smaller extra > partition for "enhanced" content. I was surprised to find a "Start.app" > Mac application in addition to the expected Windows-related files. > Running this app brings up a long legal agreement, clicking Continue > prompts you for your username/password (uh-oh!), and then promptly > exits. Digging around a bit, I find that Start.app actually installs 2 > files: PhoenixNub1.kext and PhoenixNub12.kext. > Personally, I'm not a big fan of anyone installing kernel extensions > on my Mac. In Sony's defense, upon closer reading of the EULA, they > essentially tell you that they will be installing software. Also, this > is apparently not the same technology used in the recent Windows > rootkits (made by XCP), but rather a DRM codebase developed by > SunnComm, who promotes their Mac-aware DRM technology on their site. "
I also bought Imogen Heap's new album, but I bought it from iTMS. So, I didn't get the extra code that he got.
What I don't understand from what he wrote is, whether this code was installed automatically, or if it was only installed when he installed it.
-- [iTunes was playing "Loose Ends" by Imogen Heap while I was writing this.]
> > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > dirty trick on its customers, secretly installing a malware-style "root > > > kit" on their computers via audio CDs:
> > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > recent reports of a Sony rootkit, I decided to poke around. In addition > > > to the standard volume for AIFF files, there's a smaller extra > > > partition for "enhanced" content. I was surprised to find a "Start.app" > > > Mac application in addition to the expected Windows-related files. > > > Running this app brings up a long legal agreement, clicking Continue > > > prompts you for your username/password (uh-oh!), and then promptly > > > exits. Digging around a bit, I find that Start.app actually installs 2 > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > Personally, I'm not a big fan of anyone installing kernel extensions > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > essentially tell you that they will be installing software. Also, this > > > is apparently not the same technology used in the recent Windows > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > What happens if you decline their generous offer?
> > Does the CD fail to play?
> > Moral - don't purchase anything from Sony, hardware or software, ie, run > > the bastards out of business.
> So the Mac has got some malware now. Funny how you guys didn't just > come out and admit to that directly.
Steady on - I've spent weeks trying to persuade Oxford, primarily, that OS X isn't immune to exploits.
> > > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > > dirty trick on its customers, secretly installing a malware-style "root > > > > kit" on their computers via audio CDs:
> > > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > > recent reports of a Sony rootkit, I decided to poke around. In addition > > > > to the standard volume for AIFF files, there's a smaller extra > > > > partition for "enhanced" content. I was surprised to find a "Start.app" > > > > Mac application in addition to the expected Windows-related files. > > > > Running this app brings up a long legal agreement, clicking Continue > > > > prompts you for your username/password (uh-oh!), and then promptly > > > > exits. Digging around a bit, I find that Start.app actually installs 2 > > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > > Personally, I'm not a big fan of anyone installing kernel extensions > > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > > essentially tell you that they will be installing software. Also, this > > > > is apparently not the same technology used in the recent Windows > > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > > SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > > What happens if you decline their generous offer?
> > > Does the CD fail to play?
> > > Moral - don't purchase anything from Sony, hardware or software, ie, run > > > the bastards out of business.
> > So the Mac has got some malware now. Funny how you guys didn't just > > come out and admit to that directly.
> Steady on - I've spent weeks trying to persuade Oxford, primarily, that > OS X isn't immune to exploits.
Okay, I'll take your word for that.
Still, you didn't respond to the thread with a direct "the Mac has got malware now," as I did.
> > > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > > dirty trick on its customers, secretly installing a malware-style "root > > > > kit" on their computers via audio CDs:
> > > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > > recent reports of a Sony rootkit, I decided to poke around. In addition > > > > to the standard volume for AIFF files, there's a smaller extra > > > > partition for "enhanced" content. I was surprised to find a "Start.app" > > > > Mac application in addition to the expected Windows-related files. > > > > Running this app brings up a long legal agreement, clicking Continue > > > > prompts you for your username/password (uh-oh!), and then promptly > > > > exits. Digging around a bit, I find that Start.app actually installs 2 > > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > > Personally, I'm not a big fan of anyone installing kernel extensions > > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > > essentially tell you that they will be installing software. Also, this > > > > is apparently not the same technology used in the recent Windows > > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > > SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > > What happens if you decline their generous offer?
> > > Does the CD fail to play?
> > > Moral - don't purchase anything from Sony, hardware or software, ie, run > > > the bastards out of business.
> > So the Mac has got some malware now. Funny how you guys didn't just > > come out and admit to that directly.
> I'll admit to it, providing it's true... but it's certainly news to me. > Realistically, it can only be a matter of time, right? Josh McKee has > some list of reasons that he's unwilling to share as to why OSX has no > malware. If this is true he'll have to rethink things.
Indeed.
All those who believe Macs are secure simply by virtue of being Macs will have to "rethink things."
All those who believe a system is poorly designed simply because malicious people have found a way to sabotage it will also have to "rethink things."
>>>>"Darren Dittrich followed up on the discovery that Sony was playing a >>>>dirty trick on its customers, secretly installing a malware-style "root >>>>kit" on their computers via audio CDs:
>>>>I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA >>>>Victor release, but with distribution credited to Sony/BMG. Reading >>>>recent reports of a Sony rootkit, I decided to poke around. In addition >>>>to the standard volume for AIFF files, there's a smaller extra >>>>partition for "enhanced" content. I was surprised to find a "Start.app" >>>>Mac application in addition to the expected Windows-related files. >>>>Running this app brings up a long legal agreement, clicking Continue >>>>prompts you for your username/password (uh-oh!), and then promptly >>>>exits. Digging around a bit, I find that Start.app actually installs 2 >>>>files: PhoenixNub1.kext and PhoenixNub12.kext. >>>> Personally, I'm not a big fan of anyone installing kernel extensions >>>>on my Mac. In Sony's defense, upon closer reading of the EULA, they >>>>essentially tell you that they will be installing software. Also, this >>>>is apparently not the same technology used in the recent Windows >>>>rootkits (made by XCP), but rather a DRM codebase developed by >>>>SunnComm, who promotes their Mac-aware DRM technology on their site. "
>>>What happens if you decline their generous offer?
>>>Does the CD fail to play?
>>>Moral - don't purchase anything from Sony, hardware or software, ie, run >>>the bastards out of business.
>>So the Mac has got some malware now. Funny how you guys didn't just >>come out and admit to that directly.
> Steady on - I've spent weeks trying to persuade Oxford, primarily, that > OS X isn't immune to exploits.
I guess it depends on how you define malware and exploits.
In this case, the package was marked as to what it contains.
In this case, the exploit was accompanied by a EULA.
Only after presenting you with the license agreement, does the software install. And that installation requires an administrator username/password.
> >>>>"Darren Dittrich followed up on the discovery that Sony was playing a > >>>>dirty trick on its customers, secretly installing a malware-style "root > >>>>kit" on their computers via audio CDs:
> >>>>I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > >>>>Victor release, but with distribution credited to Sony/BMG. Reading > >>>>recent reports of a Sony rootkit, I decided to poke around. In addition > >>>>to the standard volume for AIFF files, there's a smaller extra > >>>>partition for "enhanced" content. I was surprised to find a "Start.app" > >>>>Mac application in addition to the expected Windows-related files. > >>>>Running this app brings up a long legal agreement, clicking Continue > >>>>prompts you for your username/password (uh-oh!), and then promptly > >>>>exits. Digging around a bit, I find that Start.app actually installs 2 > >>>>files: PhoenixNub1.kext and PhoenixNub12.kext. > >>>> Personally, I'm not a big fan of anyone installing kernel extensions > >>>>on my Mac. In Sony's defense, upon closer reading of the EULA, they > >>>>essentially tell you that they will be installing software. Also, this > >>>>is apparently not the same technology used in the recent Windows > >>>>rootkits (made by XCP), but rather a DRM codebase developed by > >>>>SunnComm, who promotes their Mac-aware DRM technology on their site. "
> >>>What happens if you decline their generous offer?
> >>>Does the CD fail to play?
> >>>Moral - don't purchase anything from Sony, hardware or software, ie, run > >>>the bastards out of business.
> >>So the Mac has got some malware now. Funny how you guys didn't just > >>come out and admit to that directly.
> > Steady on - I've spent weeks trying to persuade Oxford, primarily, that > > OS X isn't immune to exploits.
> I guess it depends on how you define malware and exploits.
IOW, you're going to redefine malware and exploits to let the Mac off the hook?
> In this case, the package was marked as to what it contains.
The package was marked as containing spyware that robs your system of resources? You're sure about that?
> In this case, the exploit was accompanied by a EULA.
How many people read those?
> Only after presenting you with the license agreement, does the software > install. And that installation requires an administrator username/password.
> Do most Windows exploits follow these rules?
A great many Windows exploits depend on the cooperation of the user. One even required a password be entered aftet the file was unzipped.
> > >>>>"Darren Dittrich followed up on the discovery that Sony was playing a > > >>>>dirty trick on its customers, secretly installing a malware-style "root > > >>>>kit" on their computers via audio CDs:
> > >>>>I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > >>>>Victor release, but with distribution credited to Sony/BMG. Reading > > >>>>recent reports of a Sony rootkit, I decided to poke around. In addition > > >>>>to the standard volume for AIFF files, there's a smaller extra > > >>>>partition for "enhanced" content. I was surprised to find a "Start.app" > > >>>>Mac application in addition to the expected Windows-related files. > > >>>>Running this app brings up a long legal agreement, clicking Continue > > >>>>prompts you for your username/password (uh-oh!), and then promptly > > >>>>exits. Digging around a bit, I find that Start.app actually installs 2 > > >>>>files: PhoenixNub1.kext and PhoenixNub12.kext. > > >>>> Personally, I'm not a big fan of anyone installing kernel extensions > > >>>>on my Mac. In Sony's defense, upon closer reading of the EULA, they > > >>>>essentially tell you that they will be installing software. Also, this > > >>>>is apparently not the same technology used in the recent Windows > > >>>>rootkits (made by XCP), but rather a DRM codebase developed by > > >>>>SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > >>>What happens if you decline their generous offer?
> > >>>Does the CD fail to play?
> > >>>Moral - don't purchase anything from Sony, hardware or software, ie, run > > >>>the bastards out of business.
> > >>So the Mac has got some malware now. Funny how you guys didn't just > > >>come out and admit to that directly.
> > > Steady on - I've spent weeks trying to persuade Oxford, primarily, that > > > OS X isn't immune to exploits.
> > I guess it depends on how you define malware and exploits.
> IOW, you're going to redefine malware and exploits to let the Mac off > the hook?
> > In this case, the package was marked as to what it contains.
> The package was marked as containing spyware that robs your system of > resources? You're sure about that?
> > In this case, the exploit was accompanied by a EULA.
> How many people read those?
> > Only after presenting you with the license agreement, does the software > > install. And that installation requires an administrator username/password.
> > Do most Windows exploits follow these rules?
> A great many Windows exploits depend on the cooperation of the user. > One even required a password be entered aftet the file was unzipped.
Not this one bubba, and if you think not, you haven't been paying attention to your Windows centric world.
-- Regards, JP "The measure of a man is what he will do while expecting that he will get nothing in return!"
>>>>>>>"Darren Dittrich followed up on the discovery that Sony was playing a >>>>>>>dirty trick on its customers, secretly installing a malware-style "root >>>>>>>kit" on their computers via audio CDs:
>>>>>>>I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA >>>>>>>Victor release, but with distribution credited to Sony/BMG. Reading >>>>>>>recent reports of a Sony rootkit, I decided to poke around. In addition >>>>>>>to the standard volume for AIFF files, there's a smaller extra >>>>>>>partition for "enhanced" content. I was surprised to find a "Start.app" >>>>>>>Mac application in addition to the expected Windows-related files. >>>>>>>Running this app brings up a long legal agreement, clicking Continue >>>>>>>prompts you for your username/password (uh-oh!), and then promptly >>>>>>>exits. Digging around a bit, I find that Start.app actually installs 2 >>>>>>>files: PhoenixNub1.kext and PhoenixNub12.kext. >>>>>>> Personally, I'm not a big fan of anyone installing kernel extensions >>>>>>>on my Mac. In Sony's defense, upon closer reading of the EULA, they >>>>>>>essentially tell you that they will be installing software. Also, this >>>>>>>is apparently not the same technology used in the recent Windows >>>>>>>rootkits (made by XCP), but rather a DRM codebase developed by >>>>>>>SunnComm, who promotes their Mac-aware DRM technology on their site. "
>>>>>>What happens if you decline their generous offer?
>>>>>>Does the CD fail to play?
>>>>>>Moral - don't purchase anything from Sony, hardware or software, ie, run >>>>>>the bastards out of business.
>>>>>So the Mac has got some malware now. Funny how you guys didn't just >>>>>come out and admit to that directly.
>>>>Steady on - I've spent weeks trying to persuade Oxford, primarily, that >>>>OS X isn't immune to exploits.
>>>I guess it depends on how you define malware and exploits.
>>IOW, you're going to redefine malware and exploits to let the Mac off >>the hook?
>>>In this case, the package was marked as to what it contains.
>>The package was marked as containing spyware that robs your system of >>resources? You're sure about that?
>>>In this case, the exploit was accompanied by a EULA.
>>How many people read those?
>>>Only after presenting you with the license agreement, does the software >>>install. And that installation requires an administrator username/password.
>>>Do most Windows exploits follow these rules?
>>A great many Windows exploits depend on the cooperation of the user. >>One even required a password be entered aftet the file was unzipped.
> Not this one bubba, and if you think not, you haven't been paying > attention to your Windows centric world.
I wrote SunnComm about using the Imogen Heap CD with iTunes. Here is their reply:
Your ticket xxxxxx has been Answered
Thank you for contacting us. We appreciate your purchase of the Imogen Heap CD and will be happy to assist you with the music transfer. Please follow the instructions below in order to move your content into iTunes and onto an iPod:
If you have a Mac computer you can copy the songs using your iTunes Player as you would normally do.
If you have a PC place the CD into your computer and allow the CD to automatically start. If the CD does not automatically start, open your Windows Explorer, locate the drive letter for your CD drive and double-click on the LaunchCD.exe file located on your CD. Once the application has been launched and the End User License Agreement has been accepted, you can click the Copy Songs button on the top menu. Follow the instructions to copy the secure Windows Media Files (WMA) to your PC. Make a note of where you are copying the songs to, you will need to get to these secure Windows Media Files in the next steps. Once the WMA files are on your PC you can open and listen to the songs with Windows Media Player 9.0 or higher. You may also play them in any compatible player that can play secure Windows Media files, such as MusicMatch, RealPlayer, and Winamp, but it will require that you obtain a license to do so. To obtain this license, from the Welcome Screen of the user interface, click on the link below the album art that says "If your music does not play in your preferred player, click here". Follow the instructions to download the alternate license. PLEASE NOTE: This license is only necessary for playing the copied songs in a media player other than iTunes or Windows Media Player. If you are just trying to use iTunes, simply continue with these instructions. Using Windows Media Player only, you can then burn the songs to a CD. Please note that in order to burn the files, you need to upgrade to or already have Windows Media Player 9 or greater. Once the CD has been burned, place the copied CD back into your computer and open iTunes. iTunes can now rip the songs as you would a normal CD. Please note an easier and more acceptable solution requires cooperation from Apple, who we have already reached out to in hopes of addressing this issue. To help speed this effort, we ask that you use the following link to contact Apple and ask them to provide a solution that would easily allow you to move content from protected CDs into iTunes or onto your iPod rather than having to go through the additional steps above. http://www.apple.com/feedback/ipod.html Please let us know if we can assist you further. Thank you, Rob SunnComm Tech Support
Buzz <b...@buzz.inv> wrote: > I wrote SunnComm about using the Imogen Heap CD with iTunes. Here is > their reply:
> Your ticket xxxxxx has been Answered
> Thank you for contacting us. We appreciate your purchase of the Imogen > Heap CD and will be happy to assist you with the music transfer. > Please follow the instructions below in order to move your content into > iTunes and onto an iPod:
> If you have a Mac computer you can copy the songs using your iTunes > Player as you would normally do.
> If you have a PC place the CD into your computer and allow the CD to > automatically start. If the CD does not automatically start, open your > Windows Explorer, locate the drive letter for your CD drive and > double-click on the LaunchCD.exe file located on your CD. > Once the application has been launched and the End User License > Agreement has been accepted, you can click the Copy Songs button on the > top menu. > Follow the instructions to copy the secure Windows Media Files (WMA) to > your PC. Make a note of where you are copying the songs to, you will > need to get to these secure Windows Media Files in the next steps. > Once the WMA files are on your PC you can open and listen to the songs > with Windows Media Player 9.0 or higher. You may also play them in any > compatible player that can play secure Windows Media files, such as > MusicMatch, RealPlayer, and Winamp, but it will require that you obtain > a license to do so. To obtain this license, from the Welcome Screen of > the user interface, click on the link below the album art that says "If > your music does not play in your preferred player, click here". Follow > the instructions to download the alternate license. PLEASE NOTE: This > license is only necessary for playing the copied songs in a media player > other than iTunes or Windows Media Player. If you are just trying to use > iTunes, simply continue with these instructions. > Using Windows Media Player only, you can then burn the songs to a CD. > Please note that in order to burn the files, you need to upgrade to or > already have Windows Media Player 9 or greater. > Once the CD has been burned, place the copied CD back into your computer > and open iTunes. iTunes can now rip the songs as you would a normal CD. > Please note an easier and more acceptable solution requires cooperation > from Apple, who we have already reached out to in hopes of addressing > this issue. To help speed this effort, we ask that you use the following > link to contact Apple and ask them to provide a solution that would > easily allow you to move content from protected CDs into iTunes or onto > your iPod rather than having to go through the additional steps above. > http://www.apple.com/feedback/ipod.html > Please let us know if we can assist you further. > Thank you, > Rob > SunnComm Tech Support
>>I wrote SunnComm about using the Imogen Heap CD with iTunes. Here is >>their reply:
>>Your ticket xxxxxx has been Answered
>>Thank you for contacting us. We appreciate your purchase of the Imogen >>Heap CD and will be happy to assist you with the music transfer. >>Please follow the instructions below in order to move your content into >>iTunes and onto an iPod:
>>If you have a Mac computer you can copy the songs using your iTunes >>Player as you would normally do.
>>If you have a PC place the CD into your computer and allow the CD to >>automatically start. If the CD does not automatically start, open your >>Windows Explorer, locate the drive letter for your CD drive and >>double-click on the LaunchCD.exe file located on your CD. >>Once the application has been launched and the End User License >>Agreement has been accepted, you can click the Copy Songs button on the >>top menu. >>Follow the instructions to copy the secure Windows Media Files (WMA) to >>your PC. Make a note of where you are copying the songs to, you will >>need to get to these secure Windows Media Files in the next steps. >>Once the WMA files are on your PC you can open and listen to the songs >>with Windows Media Player 9.0 or higher. You may also play them in any >>compatible player that can play secure Windows Media files, such as >>MusicMatch, RealPlayer, and Winamp, but it will require that you obtain >>a license to do so. To obtain this license, from the Welcome Screen of >>the user interface, click on the link below the album art that says "If >>your music does not play in your preferred player, click here". Follow >>the instructions to download the alternate license. PLEASE NOTE: This >>license is only necessary for playing the copied songs in a media player >>other than iTunes or Windows Media Player. If you are just trying to use >>iTunes, simply continue with these instructions. >>Using Windows Media Player only, you can then burn the songs to a CD. >>Please note that in order to burn the files, you need to upgrade to or >>already have Windows Media Player 9 or greater. >>Once the CD has been burned, place the copied CD back into your computer >>and open iTunes. iTunes can now rip the songs as you would a normal CD. >>Please note an easier and more acceptable solution requires cooperation >>from Apple, who we have already reached out to in hopes of addressing >>this issue. To help speed this effort, we ask that you use the following >>link to contact Apple and ask them to provide a solution that would >>easily allow you to move content from protected CDs into iTunes or onto >>your iPod rather than having to go through the additional steps above. >>http://www.apple.com/feedback/ipod.html >>Please let us know if we can assist you further. >>Thank you, >>Rob >>SunnComm Tech Support
> Play it back in any CD player and feed the audio into your PC through > your sound card - much easier. And no nasty droppings left on your hard > drive.
> > > >>>>You've likely heard about Sony CDs installing rootkits on Windows > > > >>>>computers. Looks like they install kernel extensions on Macs too.
> > > >>>>"Darren Dittrich followed up on the discovery that Sony was playing a > > > >>>>dirty trick on its customers, secretly installing a malware-style "root > > > >>>>kit" on their computers via audio CDs:
> > > >>>>I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > > >>>>Victor release, but with distribution credited to Sony/BMG. Reading > > > >>>>recent reports of a Sony rootkit, I decided to poke around. In addition > > > >>>>to the standard volume for AIFF files, there's a smaller extra > > > >>>>partition for "enhanced" content. I was surprised to find a "Start.app" > > > >>>>Mac application in addition to the expected Windows-related files. > > > >>>>Running this app brings up a long legal agreement, clicking Continue > > > >>>>prompts you for your username/password (uh-oh!), and then promptly > > > >>>>exits. Digging around a bit, I find that Start.app actually installs 2 > > > >>>>files: PhoenixNub1.kext and PhoenixNub12.kext. > > > >>>> Personally, I'm not a big fan of anyone installing kernel extensions > > > >>>>on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > >>>>essentially tell you that they will be installing software. Also, this > > > >>>>is apparently not the same technology used in the recent Windows > > > >>>>rootkits (made by XCP), but rather a DRM codebase developed by > > > >>>>SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > > >>>What happens if you decline their generous offer?
> > > >>>Does the CD fail to play?
> > > >>>Moral - don't purchase anything from Sony, hardware or software, ie, run > > > >>>the bastards out of business.
> > > >>So the Mac has got some malware now. Funny how you guys didn't just > > > >>come out and admit to that directly.
> > > > Steady on - I've spent weeks trying to persuade Oxford, primarily, that > > > > OS X isn't immune to exploits.
> > > I guess it depends on how you define malware and exploits.
> > IOW, you're going to redefine malware and exploits to let the Mac off > > the hook?
> > > In this case, the package was marked as to what it contains.
> > The package was marked as containing spyware that robs your system of > > resources? You're sure about that?
> > > In this case, the exploit was accompanied by a EULA.
> > How many people read those?
> > > Only after presenting you with the license agreement, does the software > > > install. And that installation requires an administrator username/password.
> > > Do most Windows exploits follow these rules?
> > A great many Windows exploits depend on the cooperation of the user. > > One even required a password be entered aftet the file was unzipped.
> Not this one bubba, and if you think not, you haven't been paying > attention to your Windows centric world.
This one wouldn't install either if you weren't running as Admin in Windows.
How did you negate the Mac malware aspects of this with what you wrote?
> > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > dirty trick on its customers, secretly installing a malware-style "root > > > kit" on their computers via audio CDs:
> > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > recent reports of a Sony rootkit, I decided to poke around. In addition > > > to the standard volume for AIFF files, there's a smaller extra > > > partition for "enhanced" content. I was surprised to find a "Start.app" > > > Mac application in addition to the expected Windows-related files. > > > Running this app brings up a long legal agreement, clicking Continue > > > prompts you for your username/password (uh-oh!), and then promptly > > > exits. Digging around a bit, I find that Start.app actually installs 2 > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > Personally, I'm not a big fan of anyone installing kernel extensions > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > essentially tell you that they will be installing software. Also, this > > > is apparently not the same technology used in the recent Windows > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > What happens if you decline their generous offer?
> > Does the CD fail to play?
> > Moral - don't purchase anything from Sony, hardware or software, ie, run > > the bastards out of business.
> So the Mac has got some malware now. Funny how you guys didn't just > come out and admit to that directly.
That is not yet determined. For it to be malware, the software that Sony installs must do something malicious.
-- Alan Baker Vancouver, British Columbia "If you raise the ceiling 4 feet, move the fireplace from that wall to that wall, you'll still only get the full stereophonic effect if you sit in the bottom of that cupboard."
> > > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > > dirty trick on its customers, secretly installing a malware-style "root > > > > kit" on their computers via audio CDs:
> > > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an RCA > > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > > recent reports of a Sony rootkit, I decided to poke around. In addition > > > > to the standard volume for AIFF files, there's a smaller extra > > > > partition for "enhanced" content. I was surprised to find a "Start.app" > > > > Mac application in addition to the expected Windows-related files. > > > > Running this app brings up a long legal agreement, clicking Continue > > > > prompts you for your username/password (uh-oh!), and then promptly > > > > exits. Digging around a bit, I find that Start.app actually installs 2 > > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > > Personally, I'm not a big fan of anyone installing kernel extensions > > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > > essentially tell you that they will be installing software. Also, this > > > > is apparently not the same technology used in the recent Windows > > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > > SunnComm, who promotes their Mac-aware DRM technology on their site. "
> > > What happens if you decline their generous offer?
> > > Does the CD fail to play?
> > > Moral - don't purchase anything from Sony, hardware or software, ie, run > > > the bastards out of business.
> > So the Mac has got some malware now. Funny how you guys didn't just > > come out and admit to that directly.
> That is not yet determined. For it to be malware, the software that Sony > installs must do something malicious.
IOW, you're deliberately ignoring ZnU's post to this thread, and you think it needs to be "determined" if spyware is going to "do something malicious."
"Edwin" <thorn...@juno.com> wrote: > Alan Baker wrote: > > In article <1131725885.257074.229...@g44g2000cwa.googlegroups.com>, > > "Edwin" <thorn...@juno.com> wrote:
> > > Peter Hayes wrote: > > > > Super Spinner <Pepe.Smy...@gmail.com> wrote:
> > > > > You've likely heard about Sony CDs installing rootkits on Windows > > > > > computers. Looks like they install kernel extensions on Macs too.
> > > > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > > > dirty trick on its customers, secretly installing a malware-style > > > > > "root > > > > > kit" on their computers via audio CDs:
> > > > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an > > > > > RCA > > > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > > > recent reports of a Sony rootkit, I decided to poke around. In > > > > > addition > > > > > to the standard volume for AIFF files, there's a smaller extra > > > > > partition for "enhanced" content. I was surprised to find a > > > > > "Start.app" > > > > > Mac application in addition to the expected Windows-related files. > > > > > Running this app brings up a long legal agreement, clicking Continue > > > > > prompts you for your username/password (uh-oh!), and then promptly > > > > > exits. Digging around a bit, I find that Start.app actually installs > > > > > 2 > > > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > > > Personally, I'm not a big fan of anyone installing kernel > > > > > extensions > > > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > > > essentially tell you that they will be installing software. Also, > > > > > this > > > > > is apparently not the same technology used in the recent Windows > > > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > > > SunnComm, who promotes their Mac-aware DRM technology on their site. > > > > > "
> > > > What happens if you decline their generous offer?
> > > > Does the CD fail to play?
> > > > Moral - don't purchase anything from Sony, hardware or software, ie, > > > > run > > > > the bastards out of business.
> > > So the Mac has got some malware now. Funny how you guys didn't just > > > come out and admit to that directly.
> > That is not yet determined. For it to be malware, the software that Sony > > installs must do something malicious.
> IOW, you're deliberately ignoring ZnU's post to this thread, and you > think it needs to be "determined" if spyware is going to "do something > malicious."
This hasn't been shown to be spyware.
-- Alan Baker Vancouver, British Columbia "If you raise the ceiling 4 feet, move the fireplace from that wall to that wall, you'll still only get the full stereophonic effect if you sit in the bottom of that cupboard."
Alan Baker wrote: > In article <1131752190.626895.306...@g49g2000cwa.googlegroups.com>, > "Edwin" <thorn...@juno.com> wrote:
> > Alan Baker wrote: > > > In article <1131725885.257074.229...@g44g2000cwa.googlegroups.com>, > > > "Edwin" <thorn...@juno.com> wrote:
> > > > Peter Hayes wrote: > > > > > Super Spinner <Pepe.Smy...@gmail.com> wrote:
> > > > > > You've likely heard about Sony CDs installing rootkits on Windows > > > > > > computers. Looks like they install kernel extensions on Macs too.
> > > > > > "Darren Dittrich followed up on the discovery that Sony was playing a > > > > > > dirty trick on its customers, secretly installing a malware-style > > > > > > "root > > > > > > kit" on their computers via audio CDs:
> > > > > > I recently purchased Imogen Heap's new CD (Speak for Yourself), an > > > > > > RCA > > > > > > Victor release, but with distribution credited to Sony/BMG. Reading > > > > > > recent reports of a Sony rootkit, I decided to poke around. In > > > > > > addition > > > > > > to the standard volume for AIFF files, there's a smaller extra > > > > > > partition for "enhanced" content. I was surprised to find a > > > > > > "Start.app" > > > > > > Mac application in addition to the expected Windows-related files. > > > > > > Running this app brings up a long legal agreement, clicking Continue > > > > > > prompts you for your username/password (uh-oh!), and then promptly > > > > > > exits. Digging around a bit, I find that Start.app actually installs > > > > > > 2 > > > > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > > > > Personally, I'm not a big fan of anyone installing kernel > > > > > > extensions > > > > > > on my Mac. In Sony's defense, upon closer reading of the EULA, they > > > > > > essentially tell you that they will be installing software. Also, > > > > > > this > > > > > > is apparently not the same technology used in the recent Windows > > > > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > > > > SunnComm, who promotes their Mac-aware DRM technology on their site. > > > > > > "
> > > > > What happens if you decline their generous offer?
> > > > > Does the CD fail to play?
> > > > > Moral - don't purchase anything from Sony, hardware or software, ie, > > > > > run > > > > > the bastards out of business.
> > > > So the Mac has got some malware now. Funny how you guys didn't just > > > > come out and admit to that directly.
> > > That is not yet determined. For it to be malware, the software that Sony > > > installs must do something malicious.
> > IOW, you're deliberately ignoring ZnU's post to this thread, and you > > think it needs to be "determined" if spyware is going to "do something > > malicious."
> This hasn't been shown to be spyware.
Yes it has. It does the same thing as does the Windows version.
Wally wrote: > On 12/11/05 7:00 AM, in article > 1131750036.816628.288...@o13g2000cwo.googlegroups.com, "Edwin" > <thorn...@juno.com> wrote:
> > Jim Polaski wrote:
> <snip>
> >> Not this one bubba, and if you think not, you haven't been paying > >> attention to your Windows centric world.
> > This one wouldn't install either if you weren't running as Admin in > > Windows.
> > How did you negate the Mac malware aspects of this with what you wrote?
> I must have missed where "malware" has been redefined! is it no longer...
> "(mal´wãr) (n.) Short for malicious software, software designed specifically > to damage or disrupt a system, such as a virus or a Trojan horse."
Funny how you gave no reference to that quote. Was that because you had to trim the defininiton to get it to come out the way you want?
Even if you ignore the spyware aspect of this (because you've decided spyware isn't malware), there's still what ZnU wrote in his post, about how this is kernel level software that steals system resources, and introduces security holes.
> If it has not been redefined could you explain what is "malicious" about > this Sony thing Edwin?
Explain it to you again? Why don't you try reading the other posts in this thread and elsewhere?
> > > > > > > "Darren Dittrich followed up on the discovery that Sony was > > > > > > > playing a > > > > > > > dirty trick on its customers, secretly installing a malware-style > > > > > > > "root > > > > > > > kit" on their computers via audio CDs:
> > > > > > > I recently purchased Imogen Heap's new CD (Speak for Yourself), > > > > > > > an > > > > > > > RCA > > > > > > > Victor release, but with distribution credited to Sony/BMG. > > > > > > > Reading > > > > > > > recent reports of a Sony rootkit, I decided to poke around. In > > > > > > > addition > > > > > > > to the standard volume for AIFF files, there's a smaller extra > > > > > > > partition for "enhanced" content. I was surprised to find a > > > > > > > "Start.app" > > > > > > > Mac application in addition to the expected Windows-related > > > > > > > files. > > > > > > > Running this app brings up a long legal agreement, clicking > > > > > > > Continue > > > > > > > prompts you for your username/password (uh-oh!), and then > > > > > > > promptly > > > > > > > exits. Digging around a bit, I find that Start.app actually > > > > > > > installs > > > > > > > 2 > > > > > > > files: PhoenixNub1.kext and PhoenixNub12.kext. > > > > > > > Personally, I'm not a big fan of anyone installing kernel > > > > > > > extensions > > > > > > > on my Mac. In Sony's defense, upon closer reading of the EULA, > > > > > > > they > > > > > > > essentially tell you that they will be installing software. Also, > > > > > > > this > > > > > > > is apparently not the same technology used in the recent Windows > > > > > > > rootkits (made by XCP), but rather a DRM codebase developed by > > > > > > > SunnComm, who promotes their Mac-aware DRM technology on their > > > > > > > site. > > > > > > > "
> > > > > > What happens if you decline their generous offer?
> > > > > > Does the CD fail to play?
> > > > > > Moral - don't purchase anything from Sony, hardware or software, > > > > > > ie, > > > > > > run > > > > > > the bastards out of business.
> > > > > So the Mac has got some malware now. Funny how you guys didn't just > > > > > come out and admit to that directly.
> > > > That is not yet determined. For it to be malware, the software that > > > > Sony > > > > installs must do something malicious.
> > > IOW, you're deliberately ignoring ZnU's post to this thread, and you > > > think it needs to be "determined" if spyware is going to "do something > > > malicious."
> > This hasn't been shown to be spyware.
> Yes it has. It does the same thing as does the Windows version.
It does? Where has that been shown?
> You're still ignoring ZnU's post too.
That says what? That software uses resources? I didn't realize it contained anything that needed attention.
Software needs resources, and it would probably be better if they hadn't written this stuff as kernel extensions. But absent any technical information, it's a little tough to tell whether the resource usage is significant.
-- Alan Baker Vancouver, British Columbia "If you raise the ceiling 4 feet, move the fireplace from that wall to that wall, you'll still only get the full stereophonic effect if you sit in the bottom of that cupboard."
> > >> Not this one bubba, and if you think not, you haven't been paying > > >> attention to your Windows centric world.
> > > This one wouldn't install either if you weren't running as Admin in > > > Windows.
> > > How did you negate the Mac malware aspects of this with what you wrote?
> > I must have missed where "malware" has been redefined! is it no longer...
> > "(mal´wãr) (n.) Short for malicious software, software designed specifically > > to damage or disrupt a system, such as a virus or a Trojan horse."
> Funny how you gave no reference to that quote. Was that because you > had to trim the defininiton to get it to come out the way you want?
> Even if you ignore the spyware aspect of this (because you've decided > spyware isn't malware), there's still what ZnU wrote in his post, about > how this is kernel level software that steals system resources, and > introduces security holes.
That's not what Znu wrote at all. He wrote that it *uses* system resources, specifically: that it uses "wired" memory that can't be used for other purposes when the software is idle.
He said nothing at all about security holes. Only that a kext has to be written carefully, because if it generates a memory exception it can bring down the system. That's not a security hole.
> > If it has not been redefined could you explain what is "malicious" about > > this Sony thing Edwin?
> Explain it to you again? Why don't you try reading the other posts in > this thread and elsewhere?
Explaining it once would be nice.
What is a malicious action taken by this software?
-- Alan Baker Vancouver, British Columbia "If you raise the ceiling 4 feet, move the fireplace from that wall to that wall, you'll still only get the full stereophonic effect if you sit in the bottom of that cupboard."
|
