Poisoned Torrents Plague Mybittorrent

jambarama writes "One of the biggest problems with the Fasttrack network has been poisoning. This is the practice of sharing a file on a P2P network that looks like the real thing, but isn't. Bittorrent until recently has been largely immune to this. Now a new type of torrent is tricking bittorrent sites to rising to the top of the download lists." From the article: "According to Rex, about 50 new torrents have been released from what he calls "fake" trackers (~31 in total.) These trackers are seemingly part of an elaborate plot to infiltrate the BitTorrent community with intentionally corrupt files. These movie and film titles are specifically designed to report false information to trackers, thereby gaining artificially inflated popularity."

Re:IP addresses for copyright infringement lawsuit

[fm2503]

Esepcially as from TFA:
Those who download these torrents are unable to complete a full download, as the file transfer stops at approximately 97%-98%.

Guess that would give plenty of time to harvest the IP, whilst the pirates end up with gigabytes of useless 1s & 0s....

I mean given the reported posioned torrents so far are:
"The Wedding Crashers"
"Charlie and the Chocolate Factory"
The first three episodes of "The O.C."

It seems unlikely that there is any legitimate use of these.

Re:So what is the problem?

[msim]

Here's the article text, enjoy :-)

New Breed of Corrupt Torrent Infiltrates BitTorrent
September 24, 2005
Thomas Mennecke

myBittorrent is a popular BitTorrent listing site used by tens of thousands of individuals each day. It also has become the focus of an individual or group of individuals looking to undermine the integrity of the BitTorrent community. Although false and corrupt files have been a part of the BitTorrent community since its beginning, a new kind is emerging that aims for maximum exposure.

"I think they are doing this to give BitTorrent a bad name," Rex, the administrator of myBittorrent told Slyck.com.

Of course the proverbial "they" is the real question. According to Rex, about 50 new torrents have been released from what he calls "fake" trackers (~31 in total.) These trackers are seemingly part of an elaborate plot to infiltrate the BitTorrent community with intentionally corrupt files. These movie and film titles are specifically designed to report false information to trackers, thereby gaining artificially inflated popularity.

"In a very short period of time, these false torrents have become most of my top downloads," Rex told Slyck.com. "I've never seen anything else before like it."

Those who download these torrents are unable to complete a full download, as the file transfer stops at approximately 97%-98%.

Here's how this clever plot works.

These trackers have published about 50 variant torrents of only three titles, "The Wedding Crashers", "Charlie and the Chocolate Factory", and the first three episodes of "The O.C." Some titles are published as "DVD-rips" while others are pushed as "XviDs". Others are presented as an English or French releases.

This is done to disguise the origin of the torrent, and also to present a diverse array of choices. For example, if all were DVD-rips, their exposure would be limited to those only with enough bandwidth to download such large films. Having DVD-rips and XviDs exposes the torrent to a wider market.

According to Rex, the torrent originating from false trackers are intentionally reporting false information. For example, a corrupt torrent will report 400 seeds with 3000 leeches. Since the more individuals having a file are indicative of the file's download speed, it becomes a highly downloaded torrent and aids in its popularity.

The ruse is additionally disguised by spreading the torrent release from over 31 different trackers. Interestingly enough, although the identified trackers have different sub domains, they all originate from the same IP address.

It appears myBittorrent has borne the brunt of this attack; however these types of corrupt torrents have begun to appear on Mininova as well. Since the threat has been identified, the administration of myBittorrent has begun eliminating any torrent files originating from the identified trackers. At this time, the origins of the attack are unknown. But their initial goal of gaining maximum exposure certainly did work, if only for a short while.

Not really a problem?

[Udo Schmitz]

This is why you should access torrents through community forums. From the comments sections here you'll quickly learn which torrents are bad. Helps the network in general because you'll also have to look after you UL/DL ratio not going too low.

To little to late.

[thelonestranger]

Theres already a plugin for Azureus that prevents it connecting to the IP addresses of known bad torrent seeders and goverment agencies using a regularly auto-updated list. I think its called 'Safepeer'.

Re:Don't allow those trackers in the torrents...

[thelonestranger]

Been done. At least for Azureus. http://azureus.sourceforge.net/plugin_details.php? plugin=safepeer [sourceforge.net]

Re:Answer me this.

[Carthag]

If you use bittorrent, you are uploading, it's part of how the protocol works.

IP Ban!

[StrawberryFrog]

the identified trackers ... all originate from the same IP address.

The solution suggests itself. Is PeerGuardian [sourceforge.net] onto that IP address yet?

The nature of torrent sites

[Celt]

While this may affect public trackers theirs 100's of private torrent sites out their that will remain unaffected. Worth a try by the RIAA/MPAA I suppose and it might stop Mr John Smith and/or his son but plenty of people will continue to use torrent sites.

Unlike kazaaaaaaaaaaaa *ahem* torrent sites are well enough maintained and policed and false files can be easilyed removed.

RTFA

[Stickerboy]

Your privilege to download an unauthorized copy of the X-Men TV series isn't being hurt.

"These trackers have published about 50 variant torrents of only three titles, "The Wedding Crashers", "Charlie and the Chocolate Factory", and the first three episodes of "The O.C." Some titles are published as "DVD-rips" while others are pushed as "XviDs". Others are presented as an English or French releases."

Hmm... The Wedding Crashers, Charlie and the Chocolate Factory, the OC. Yep, sounds like old and obscure stuff to me that you can't find at the theater/DVD aisle at Wal-Mart.

Re:Enforcement

[barthrh2]

Bad news: You do break the law. Downloading is legal here, but uploading definitely is not. While you're downloading, you are feeding data to peers and that makes you an uploader. Also, if you leave the torrent open after downloading, you are seeding (which of course you should do, lest you be branded a leecher).

criminal vs civil

[tacokill]

We have the same thing in the US but it only applies to criminal cases. Copyright, etc are CIVIL CASES. That is, they are not government prosecuted, rather, they are prosecuted by the perceived vicitim (RIAA, MPAA, Big Company, etc) -- at the victim's expense. No jail time can be rendered. Only fines and penalties.

We do have entrapment laws when it comes to criminal cases, however. IANAL but there is lots of controversy around how entrapment is applied. The basics are just like you outlined above. Essentially, a law enforcement agent can not break the law in order to get YOU to break the law. That's a simplistic version but hopefully someone else smarter than me can chime in and explain it better.

Re:IP addresses for copyright infringement lawsuit

[Anonymous Coward]

Only the police can commit entrapment.

Right. When non-police do it, it's called something else. If I trick you into doing something that hurts me, and then sue you for doing so, that's fraud instead of entrapment.

Re:isn't it illegal?

[KZigurs]

No, why. there is no crime here, except for misuse of, probably, trademarked names :) The rest is just a garbage.

And as we know - the intent is not enough. Or is it over there in USA?

IP Addresses of the Banned Trackers (for Azuerus)

[mc_barron]

I compiled a list of the IP addresses of the banned trackers listed here: http://www.mybittorrent.com/bantrackers.txt/ [mybittorrent.com]

Here are the IP's:
85.64.70.229
71.130.204.152
71.132.6.18
206.81.133.67
69.236.99.244

Re:IP addresses for copyright infringement lawsuit

[CmdrGravy]

No obviously if you aren't distributing copyrighted items then you aren't infringing any copyrights. My point was that it's not illegal to download copyrighted stuff, just to distribute it.

Re:IP addresses for copyright infringement lawsuit

[TheSurfer]

For those who're interested: reaction from the mininova admins here: http://www.slyck.com/forums/viewtopic.php?p=207569 #207569 [slyck.com]

Media Sentry

[Anonymous Coward]

the company who is doing this:

http://www.mediasentry.com/ [mediasentry.com]

They have thousands of linux boxes scattered around out there, some of which they make high profile so people think they "know" where their boxes are, but there are others that are a lot more discreet, some which don't even corrupt just take notes on whats being stolen, then they sell that data to the copyright holders.

I think what they do is on the fuzzy side of legal, however, it is helping copyright holders protect what is theirs.

Re:Only if you never have a problem with software

[William_Lee]

He probably downloaded it because in cases where activation is required, that code is stripped out by the pirate release group, so it's not always as simple as just getting a keygen.

Re:Am I the only one?

[Fingerbob]

it depends on the seeds. if the swarm is majority leech (or virtually totally leech), then the best ratio you'll get will approximate 1:1, and you'll cap at your upload speed.

if there's lots of friendly seeders who keep BT open once they're done, then the amount of "free" download you can get without needing to upload rises. this is where you'll see your download speeds outpace your upload speeds.

today's lesson - be nice, and leave your torrents seeding. everyone benefits.

if you're in a swarm with 20% or higher seeds, and you still cap out at your upload speed, then you need to examine your local settings - make sure ports are open in your firewall, make sure you're not swamping your upstream and stopping downstream acks from going out, etc.

No, you're wrong.

[Grendel Drago]

It becomes criminal infringement if you make money off of doing it, or are part of an organized ring that deals in piracy. Although, IANAL.

I got pimp-slapped for repeating this some time ago right here on Slashdot, so allow me to pass on some enlightenment about US copyright law.

The 1997 No Electronic Theft Act [wikipedia.org] "amends the definition of "commercial advantage or private financial gain" to include the exchange of copies of copyrighted works even if no money changes hands and specifies penalties of up to five years in prison and up to $250,000 in fines".

Nothing there about any "organized ring". If you're running a P2P client and you upload six hojillion copies of the latest plebeian pablum, guess what---you're liable for jail time and a hefty fine. Enjoy!

Uh, no.

[Grendel Drago]

The Pirate Act [wikipedia.org] is not yet law, but since the enactment of the No Electronic Theft Act [wikipedia.org], uploading is indeed a criminal offense, and I doubt you get up to five years and a quarter million in fines for a misdemeanor.

Now, skipping commercials on DVDs, if it requires that you go around the CSS, does violate the DMCA [wikipedia.org]---though I'm not sure if only the coder who cracked CSS (thus creating a device to circumvent copyright protection) is liable under that law, or you are for using it. IANAL, after all. But what you describe is mostly already illegal.

Re:IP addresses for copyright infringement lawsuit

[Godwin O'Hitler]

OK then, let's say for the sake of argument that you want to download some copyrighted Metallica via bit torrent, that the RIAA have already got the police to put the file you want on the Net, and that downloading is a crime.

The definition states:

Government agents have performed entrapment if three things occur:

1) the idea for committing the crime came from the government agents and not from the person accused of the crime.

2) the government agents then persuaded or talked the person into committing the crime. Simply giving him the opportunity to commit the crime is not the same as persuading him to commit the crime.

3) the person was not ready and willing to commit the crime before the government agents spoke with him.

1) It was your idea to download it, not the goverment agent's
2) Nobody said "pssst, you really should download some Metallica, come on, forget the law!"
3) You were definitely ready and willing to go ahead with the download

I don't see how you cold argue against any of those points.

So it's not entrapment or whatever passes for entrapment.

Re:Answer me this.

[MrResistor]

Law Enforcement might be able to entrap people (undercover cops pretending to be hookers for example)

I think you're confused about what entrapment actually is. Entrapment is inducing someone to break the law, like if an undercover cop was luring ricers into racing him so his buddy down the road could bust them. Simply setting up a situation where people will get caught doing what they would be doing anyway is NOT entrapment.

Those prostitution stings are carefully arranged so that they aren't entrapment. The undercover cop doesn't go walking up to peoples cars and soliciting them. Instead, she just stands around looking like she might be a prostitute, and the johns approach her. It's still a honeytrap, but not entrapment, since the john walks into it entirely of his own accord.

And while we're on the subject, a civil case has a much lower bar for what's admissible as evidence than a criminal trial. Something that would be thrown out as entrapment in a criminal case could be perfectly acceptable in a civil one.

Re:So what?

[mrchaotica]

What entitles you to the entire x-men cartoon series?

The US Constitution, as the men who wrote it intended it to be interpreted. Copyright was never intended to benefit artists; it was created to benefit the public. Giving the artist a temporary monopoly was considered a necessary evil from the beginning.

So yes, I do feel entitled to the X-Men cartoon series, as well as any other media, because I actually am entitled to it! The Public Domain is the natural state of intellectual works. It is only by my (and every other American citizen's) good graces that artist have any monopoly at all.

Re:Are you sure?

[Tink2000]

Well, the Napster case actually says that downloaders are infringing on the copyright holder's reproduction rights. Witness:

"Napster users infringe at least two of the copyright holders' exclusive rights: the rights of reproduction, 106(1); and distribution, 106(3). Napster users who upload file names to the search index for others to copy violate plaintiffs' distribution rights. Napster users who download files containing copyrighted music violate plaintiffs' reproduction rights." See A&M RECORDS, Inc. v. NAPSTER, INC., 239 F.3d 1004 (9th Cir. 2001) (emphasis added)."