QTFairUse6 Updated Hours After iTunes7 Release

Nrbelex writes "Mere hours after iTunes 7's release, QTFairUse6 has received an update which enables it to continue stripping iTunes songs of their 'FairPlay' DRM. Some features are experimental but at least it's proof that the concept still works."

DRM is a cryptographical pipe dream

[ControlFreal]

In a DRM system, the consumer's machine needs to get both the encrypted content, and the key to decrypt this content. Otherwise, the consumer cannot listen to the audio he just purchased. As long as we listen to music with our analog ears, and watch video with our analog eyes, this will be the case.

As any cryptographer will tell you: if you have the cyphertext and the correct key, you can decrypt the content. Therefore, DRM systems are, by their very definition, nothing more than security by obscurity. It is a cryptographical pipe dream.

Re:Let the law suits begin

[xtracto]

Only a matter of time till both Apple and MS initiate lawsuits on those that cracked their DRM. No doubt aided and abetted by the **AA. The silver lining is that if this gets to the SC, the DMCA *might* get struck down as unconstitutional.

Cracked DRM? where? What this program does is something similar to dump some part of the memory in your machine into a file. It does not cracks anything, it does not modify any program, it is not any key generator, it just dumps a section of your computer memory into the disk.

Guess what, Microsoft Office does exactly that when you click the "save document" function. =o)

So basically...

[LKM]

They're capturing the unencrypted and unencoded audio stream? That means that they're transcoding if they store it as an AAC file, right?

Re:This is wrong

[jimstapleton]

So, I could download something from iTunes, and without hassle, put it on my non-apple MP3 player, have a copy on my work (windows) PC, my home (Windows) PC, my notebook (BSD), and use it on my Audiotron player (MP3 and WMA compatable) that pipes it through my sterio?

Somehow I doubt it, yet those are all legitimate uses.

Re:So basically...

[SteveEast]

Just the decrypted audio stream. No transcoding. AAC in, AAC out. No loss of fidelity.

Re:So basically...

[TortiusMaximus]

iTunes unencrypts the m4p file to AAC, then transcodes the AAC file to .wav before sending to the sound card driver. QTFairUse6 just intercepts the AAC datastream before it gets transformed to .wav and writes it to disk.

Re:This is wrong

[Shawn is an Asshole]

There is no legitimate reason to strip the DRM from iTunes Store purchases.

Yeah sure. Wanting to listen to purchased music on Linux systems is wrong.

Re:DRM is a cryptographical pipe dream

[TheSpoom]

I like Cory Doctorow's take on the DRM issue, as explained in his talk at Microsoft [uberm00.net]. Eye-opening to anyone who isn't into cryptography, it explains just how easy it is to break DRM.

Re:At what point...

[Anonymous Coward]

> Probably after they start using encryption well enough that programs like QTFairUse6 become impossible to create.

It's a truism I find myself having to repeat: you cannot encrypt something to keep it from its intended recipient. You can't embed it in hardware (CSS tried that, look how trivial that is), you can't do it with online activation. At some point, you the intended recipient of the "plaintext" are going to receive that content, and barring complete end-to-end encryption through the hardware with no leakage whatsoever, some process will always be able to get at those bits.

They're trying to lock down the hardware, but that's also a pretty doomed effort, since it just doesn't work out economically for the hardware manufacturers.

Re:This is wrong

[base3]

That procedure requires the computer still be running. Suffer a crash that requires an OS reinstall or replacement and you're down one machine, forever. Better to preemptively strip the DRM from what you buy and not have to worry about it. It's a symptom of our corporate whore government that doing so is technically a criminal act in the United States.

QTFairUse6/myFairTunes does NOT break DRM!

[tlhIngan]

Sorry, but QTFairUse6 does NOT break DRM in the same way that Hymn, et. al. do it. Hymn breaks DRM by getting the keys and decrypting the files itself. What QTFairUse does is... use iTunes to break it (relying on the fact that you have ciphertext, a key, and a black box (iTunes) that can take those two inputs and produce unencrypted audio).

If you examine the source code, you'll see why it hasn't been ported to Mac - it isn't portable. It relies on the fact that for a brief period of time, there will be a frame of decrypted AAC data. It first attaches to the iTunes process, then it attaches a breakpoint inside of iTunes. You play your audio, and when iTunes finishes decrypting a frame of m4p, it hits the breakpoint. Then QTFairUse, acting as a debugger, grabs a copy of the AAC memory buffer, and writes it to a file, which is (surprise) unencrypted. (This was how the first iTunes hack was done, too).

What QTFairUse6/MyFairTunes does is make it entirely automated by faking out a debugger. If you knew where to set the breakpoint, and where in memory to find the unencrypted data, you could basically do the same thing with your bog-standard VisualStudio debugger (albeit more slowly).

The iTMS 6 format wasn't broken, just an alternate attack vector was found. And it might be more difficult in OS X, since a process can prevent itself from being debugged by setting permissions to do so.

That's why QTFairUse is version specific - it needs to know where to find the memory buffer, and where to set the breakpoint.

Re:Apple - "whoops"

[drcagn]

I was recently in this predicament--I downloaded an episode of HBO's Entourage and I forgot to have PeerGuardian on. HBO contacted my ISP, Cox, and had my internet access disabled. I called Cox up and they had no clue why my internet was out, and after jumping through hoops with an idiot tech who kept wanting me to change router settings, a tech was scheduled to come out a week later, until a day before he was supposed to come they called me up and said they disabled my acccess. Idiots. I had a legit subscription to HBO, but I was penalized. I don't blame HBO because they had my IP address, not my full contact information, so I doubt they could know that I was indeed paying them, but it was still very annoying nonetheless.

Re:Moo

[Fordiman]

Nah. Just register that this time, they knew what the appropriate code looked like, and found it relatively easy to find in the new binaries:

Find the AAC stream decoding function using a subset of the old one as the 'signature bytes'. Do this many times with different sig sets until you find something that more or less consistently matches up.

Look for references to it in other functions that also appear to be stream-decoding. There shouldn't be too many, and one of them must be the FairPlay decryptor.

Hook into the new address you've found, and start dumping.

QED. And, no, I'm not saying "I wish I'd done that". I havent (though, I was in the process of...). Even if I had, I live in the states, so redistribution is a no-no.

Re:At what point...

[nine-times]

They do gain a benefit in that it makes it hard to use iTunes-purchased music on non-iPod MP3 players, true. However, it's also pretty well known (though I don't have a source, it's pretty well accepted as fact) that Jobs has fought with the record companies over the DRM. Jobs wanted cheap music, DRM free, at a flat fee, that could be transfered back-and-forth between the iPod and your computer. The labels wanted music with expensive variable pricing and extremely restrictive DRM. The current system, with mostly flat pricing (more expensive than what Apple wanted but cheaper than the label's intended), somewhat loose DRM, and one-way syncing from iTunes->iPod was the compromise.

Really, when you think of it in a certain way, why would Apple care terribly about the DRM? They don't make much off of these sales, and a lot of their cost probably comes from bandwidth, which isn't used except when someone actually buys something. On their end, it's largely promotional.

You were distributing, that's illegal...

[Anonymous Coward]

Well, if you were using BitTorrent you were also uploading to others, not all of whom necessarily have paid for that episode. That's pretty clearly against the fundamental tenet of copyright law - you don't have the right to distribute that episode (this applies even if you do have the right to download it). So, cutting off your internet access was pretty reasonable in that case.

P.S. Don't take this as an indication that I personally approve of copyright laws. Sneakernet FTW!