Microsoft Warning Leaked Code Traders 833
An anonymous reader writes "Broadand Reports notes that Microsoft is now sending snail mail warnings to downloaders of the leaked source code. They're also apparently working in conjunction with several un-named peer to peer vendors to send out legal warnings to any users who search for the leaked code. The notice on Microsoft's website has been updated to reflect the new warnings."
Re:How did it leak? (Score:2, Informative)
exploit is a known issue? (Score:4, Informative)
Um, don't usually like to argue semantics, but what was discovered was a security vulnerability (bug) in the code, not an "exploit".
Devising and revealing a method to take advantage of this problem (a virus, worm, bitmap) is an "exploit", right?
Re:silly question (Score:5, Informative)
Now that the source code is leaked, MS will probably get a lot safer, with all those hackers and crackers exploiting their bugs and thus revealing them ;-)
ED2K links for the source. (Score:0, Informative)
(Remove the spaces in the links.)
ed2k://|file|windows_2000_source_code.zip|21374
And:
ed2k://|file|windows_nt_4_source_code.zip|24113
You people are missing an important point. (Score:0, Informative)
Thus, Microsoft has no choice but to make the best effort it can to track and notify people who have acquired its source code without a license. If they didn't, they risk a court case where a defendent could say that Microsoft failed to protect and enforce thier copyright, and the court would have a very good chance of saying the material had thus moved into the public domain.
This has happened in the past, and will again. Microsoft isn't chasing anyone down to prosecute them, it's unlikely they've been monetarily impacted by any single downloader, but they must vigorously defend their copyright and trade secrets, or they lose them.
Re:I'm skeptical (Score:3, Informative)
Your example is a crime because you included hacking into a computer to do the stealing. Just like whoever stole/leaked the MS code committed a crime.
What we're talking about is more like picking up and reading the Harry Potter book that someone stole from a bookstore and left on the table. The reading part is not criminal, the stealing part is.
Furthermore, a books main purpose is to be read. A program's main purpose is to execute. I know that is knitpicking. But I wouldn't consider it copyright infringement to use a book I didn't own the rights to to prop up a table, or a CD I didn't own as a coaster.
My message from Microsoft (Score:5, Informative)
Re:Traders or Traitors? (Score:4, Informative)
Plenty of other vendors do, too. Plus plenty of third party developers who work on windows. Not every component in there was developed in house, after all. I remember a time when RealPlayer was part of the package, Real must have had some source back then.
Re:You people are missing an important point. (Score:4, Informative)
That's trademarks, not copyrights.
Not Just P2P (Score:4, Informative)
Re:law (Score:4, Informative)
Orrrrrr you could go through VALID channels and work for reform of intellectual property laws. Because as it stands now, if you trade in MS's intellectual property, it's WELL within their legal rights to come after you.
If you don't like it, do something about it. Something BESIDES breaking the law anyway because it suits you and hiding behind "civil disobedience".
Re:That is a slick tool.. haven't heard of it befo (Score:3, Informative)
Re:You people are missing an important point. (Score:4, Informative)
Copyright cannot lapse per se, the right is unconditionally granted and there is no concept of abandonment (which you can do with patents and trademarks): however, if a copyright owner didn't take any action against infringements - when it knew that they were happening - it could be a good arguement that the owner has "allowed" an implicit license to come into effect. This is just a common legal principle of estoppel: if you passively consent to something, it becomes difficult to later turn around and retract.
Re:silly question (Score:1, Informative)
Re:I'm skeptical (Score:3, Informative)
This is a bunch of bullshit, people thinking that its just illegal to download, but you can view it all you want.
Re:Illegal? (Score:3, Informative)
If you live in a jurisdiction, which accepts private copying, then you are fine (downloading == making one copy of the work to your hard drive)
In some counties the source has to be legit (Denmark) or there's no notion of private copying (UK). In these places also downloading is illegal.
Re:That is a slick tool.. haven't heard of it befo (Score:1, Informative)
http://mldonkey.berlios.de/modules.php
Re:I'm skeptical (Score:5, Informative)
1. Distribute it
2. Use parts of it as your own
It is not illegal to:
1. Possess a copy of it
2. Read the code
3. Think about what you have read
4. Talk about what you have read
Re:Good news (Score:1, Informative)
If Open Source software developers have to steal code from proprietary software developers in order to make their own software stable, then Linux is already doomed.
Re:I'm skeptical (Score:1, Informative)
While the people who leaked the source code were probably bound by some NDA-like contract with Microsoft, those of us who have not signed any contracts related to it are bound only by copyright law, which does prohibit the distribution (copying) of the source code, but most definitely not its viewing.
The copyright laws in different countries vary in whether they interpret downloading as distribution (and thus copyright infringement).
Making copies of and distributing something you don't have the right to is the only thing that is absolutely and clearly illegal.
Re:Traders or Traitors? (Score:5, Informative)
The leak came from a Microsoft partner, Mainsoft [mainsoft.com]. The partner's access to Microsoft source was given long before Microsoft started their "shared source" program.
BetaNews has the details [betanews.com].
Here's the ACTUAL letter- sent via EMAIL (Score:2, Informative)
J.K. Weston
Microsoft Corporation
One Microsoft Way
Redmond, WA 98052
jkweston@microsoft.com
Tel: (425) 703-5529
** Feb 2004 **:**:** GMT
URGENT/IMMEDIATE ATTENTION REQUIRED
VIA ELECTRONIC MAIL
XYZ ISP COMPANY
123 SESAME ST
Re: NOTICE OF POTENTIAL UNLAWFUL DISTRIBUTION OF MICROSOFT SOURCE CODE AT: ***.***.***.***
Date of Infringement: Detail below.
Dear XYZ ISP CO:
We have received information that one of your users as identified above by the SITE/URL ***.***.***.*** may have engaged in the un lawful distribution of Microsoft's source code for Windows 2000, and/or Windows NT4, by distributing and offering for download the se source code files via a peer-to-peer network.
Since you own this IP address, we request that you take appropriate action against the account holder under your Abuse Policy/Ter ms of Service Agreement.
We also kindly request that you forward this notice promptly to the user of the IP address listed above at the time and date stat ed.
To the user at ***.***.***.***:
The unauthorized copying and distribution of Microsoft's protected source code is a violation of both civil and criminal copyrigh t and trade secret laws. If you have downloaded and are making the source code available for downloading by others, you are violat ing Microsoft's rights, and could be subject to severe civil and criminal penalties.
Microsoft demands that you immediately (1) cease making Microsoft's source code available or otherwise distributing it, (2) destr oy any and all copies you may have in your possession, and (3) provide us any and all information about how you came into possessi on of this code.
Microsoft takes these issues very seriously, and will pursue legal action against individuals who take part in the proliferation of it source code. We look forward to your prompt cooperation. Should you need to contact me, I can be reached at the address abov e or at jkweston@microsoft.com.
Very truly yours,
By
J.K. Weston
CaseID: *****
Re:I'm skeptical (Score:3, Informative)
By the way, viewing it on a webpage still counts as downloading it because you have to make a copy of the webpage onto your local computer in order to view it.
Copyright infringement is not the same as theft. And if you believe otherwise you have been drinking too much of the RIAA Kool-aid.
Re:Traders or Traitors? (Score:4, Informative)
Think about this - the code that was leaked is older than the shared source program. Was shared source the very first time any institution ever got windows code ?
No.
I thought the answer on where this code came from was publicly known, and even discussed here ?
The microsoft statement above, to the best of my knowledge, is correct. (iow what i know doesn't disagree with that statement) If the specific details to back this up aren't widely known, I won't disclose them. IOW, they know how the code got out, and its none of the things you mention. Mostly the distinction is that people have an overbroad interpretation of who the shared source program covers.
Re:Makes you think... (Score:2, Informative)
It was Mainsoft. They were licensed to get the code several years back, before the whole shared source business, to port some MS stuff to Unix. Thus it wasn't shared source, wasn't a breach of Microsoft's security, and wasn't a troubled Microsoft employee. Somebody at Mainsoft fucked up.
Where's my cookie?
Re:Traders or Traitors? (Score:2, Informative)
Mainsoft has been a Microsoft partner since 1994, when we first entered a source code licensing agreement with Microsoft. Mainsoft takes Microsoft's and all our customers' security matters seriously, and we recognize the gravity of the situation.
We are cooperating fully with Microsoft and all authorities in their investigation.
We are unable to issue any further statement or answer questions until we have more information.
From Mike Gullard, Chairman of the Board, Mainsoft Corporation
But still, check out their front-page and count how many times the word Linux appears ^_^
Re:Here's one way MS could find P2P users (Score:1, Informative)
ohhh yes. [gotdotnet.com]