Photography, Linux, MySQL, Python, WordPress, Book Geek
8317 stories
·
6 followers

EFF will defend McMansion Hell from Zillow's copyfraudulent bullying

1 Share

McMansion Hell is a hilarious blog where Johns Hopkins Peabody Institute graduate student Kate Wagner posts scorching critiques of the architecture of McMansions -- but this week, Wagner announced that she had shut down her blog after spurious legal threats from Zillow, which admits that it doesn't even hold the copyrights to the images it wants Wagner to stop using. (more…)

Read the whole story
Manzabar
16 hours ago
reply
Cedar Rapids
Share this story
Delete

How to "fix" a Canon printer with a giant hand-made hammer

1 Share

I like John Heisz' way of getting things done:

The U052 Canon printer error can be fixed in the following way:

"To try and resolve the U052 error, please remove and then reseat all of the ink tanks and print head in the unit. Next, please turn off the printer, unplug the power cord from the back and leave it out for at least 10 minutes, then plug it back in and turn it back on."

Or, when that doesn't work, there's always the stake maul fix.

[via Core 77]

Read the whole story
Manzabar
16 hours ago
reply
Cedar Rapids
Share this story
Delete

Weapons from a galaxy far, far away

1 Share

I have to admit, I never really gave much thought about Chewbacca’s weapon of choice until Han Solo gave it a go in The Force Awakens. What I can’t believe is that in all those galactic years, Han never had a chance to wield this weapon, not even for target practice. What I do know is that this build by LEGO Admiral does the bowcaster justice with the level of detail on it.

My Lego MOC of Chewbacca's Bowcaster

Other weapons wielded by Ray and Solo respectively have been built with equal care and attention, with the bases making for excellent for a table top display. I’d certainly like to have these on my office desk, as would any self-respecting Star Wars fan.

Rey & Han Solo Blasters

The post Weapons from a galaxy far, far away appeared first on The Brothers Brick.

Read the whole story
Manzabar
1 day ago
reply
Cedar Rapids
Share this story
Delete

Make: hand-embroidered patches based on photos of your beloved cat

1 Share

https://youtu.be/CTx4cy9gNXY

Becky Stern writes, "My elderly cat passed away earlier this month, so I spent some mourning time stitching up these embroidered cat patches based on photos of my kitty Beatrice. I made a tutorial walking through the process from Photoshop to embroidery hoop."

Read the whole story
Manzabar
1 day ago
reply
Cedar Rapids
Share this story
Delete

Copyright Office Realizes The DMCA Fucks With Security Research While The W3C Still Doesn't See It

1 Share

Last week, the Copyright Office finally released a report that it had been working on for some time, looking specifically at Section 1201 of the DMCA. In case you're new around here, or have somehow missed all the times we've spoken about DMCA 1201 before, that's the "anti-circumvention" part of the DMCA. It's the part that says it's against copyright law to circumvent (or provide tools to circumvent) any kind of "technological protection measures," by which it means DRM. In short: getting around DRM or selling a tool that gets around DRM -- even if it's not for the purpose of infringing on any copyrights -- is seen as automatically infringing copyright law. This is dumb for a whole host of reasons, many of which we've explored in the past. Not only is the law dumb, it's so dumb that Congress knew that it would create a massive mess for tons of legitimate uses. So it built in an even dumber procedure to try to deal with the fact it passed a dumb law (have you noticed I have opinions on Section 1201?).

Specifically, every three years, people and companies can petition the Copyright Office/Librarian of Congress to "exempt" certain technologies or uses from 1201, saying that it is legal to circumvent the technological protection measures in that case, for the succeeding three years (yes, after three years, the original exemption expires, unless it is renewed). This triennial review process has historically been an (annoying) joke, where people basically have to beg the Copyright Office to let them, say, get around DVD DRM, in order to make documentaries. Or, famously, that time in 2012 when the Librarian of Congress refused to renew the phone unlocking exemption, magically making it illegal to unlock your phone for no clear reason at all. The whole thing is fairly described as a hot mess.

And, it really harms our own security the most.

That's because security researchers often need these exemptions the most, because they don't want to be accused of violating copyright law for doing their jobs in figuring out where there are weaknesses and vulnerabilities in various technologies. So, many of the applied for exemptions tend to come from the security community -- and sometimes they're granted, and other times they are not. A year ago, some security researchers (along with the EFF) sued the US government, arguing that 1201 violates the First Amendment, scaring off security researchers, and providing none of the usual defenses against infringement, such as fair use (which the Supreme Court has argued is a necessary First Amendment valve on copyright). That case is still waiting for a judge to rule on early motions (and it's waiting a long time).

Given all that as background, it's somewhat fascinating (and marginally surprising) to see that the Copyright Office officially agrees that the 1201 setup totally sucks for security researchers, and it would actually like Congress to fix that. The report specifically recommends expanding the existing "permanent exemption" for certain types of "security testing" to make it more applicable to a wider set of security practices:

... the Office recommends that Congress consider expanding the exemption for security testing under section 1201(j). This could include expanding the definition of security testing, easing the requirement that researchers obtain authorization, and abandoning or clarifying the exemption’s multifactor test for eligibility.

There's another section in the law for "encryption research" and, again, the Copyright Office recognizes that should be expanded:

The exemption for encryption research under section 1201(g) may benefit from similar revision, including removal of the requirement to seek authorization and clarification or removal of the multifactor test.

For what it's worth, the report (obviously remembering how it got basically mocked and burned by everyone for removing the cell phone unlocking exemption in 2012) now asks for phone unlocking to be designated a permanent exemption under the law.

These are fairly small changes being sought by the Copyright Office, but it strikes me as somewhat incredible (and very disappointing) that this small bit of enlightenment goes much further than the World Wide Web Consortium's (W3C) view on DRM and security research. As you may recall, there's this ongoing battle over DRM in HTML 5. When the W3C refused to block it outright, some members came up with a fairly straightforward no-brainer rule: all members had to agree not to go after security researchers for circumventing the DRM in HTML 5. And the W3C rejected that proposal.

In other words, the Copyright Office -- famous for its historically expansionist view of copyright, as well as its general tilt towards supporting Hollywood over everyone else -- is now recognizing that it's obvious that security researchers should have the right to circumvent DRM without violating copyright law, while the W3C -- famous for promoting an open web -- is against this. This is "up is down, night is day, cats & dogs living together" kind of stuff. Maybe someone should let the W3C know that it's position on security researchers and DRM is now more extremist than the Copyright Offices?

Either way, at the very least, Congress should follow up on this report and expand the exemptions for security research. It doesn't just help out those researchers, it helps all of us when security researchers are able to do their jobs and help to protect us all.



Permalink | Comments | Email This Story
Read the whole story
Manzabar
1 day ago
reply
Cedar Rapids
Share this story
Delete

Copyright Office Admits That DMCA Is More About Giving Hollywood 'Control' Than Stopping Infringement

1 Share

We already wrote about the new Copyright Office report on DMCA 1201 -- the section of the law that deals with the "anti-circumvention" provisions of the DMCA. That post focused on the realization by the Copyright Office that the current setup of 1201 does significant harm to security research, as researchers are often frightened to actually investigate certain technologies out of a fear that they may accidentally violate copyright law in getting around some sort of "technological protection measure."

But there's much more in the report as well, and I want to focus on one part, in particular, because it demonstrates a disturbing way in which the Copyright Office thinks about copyright law. But to understand why, we need some background. One of our big complaints about Section 1201 is that it says that circumventing a "technological protection measure" (TPM) is a violation of copyright law by itself. That's always troubled us, because it means you can violate copyright law even if you're not infringing on anyone's copyright. And that seems... wrong. And it's why 1201 has been cited in various lawsuits that clearly have nothing whatsoever to do with copyright: such as cases about printer ink cartridges and garage door openers. And the courts have struggled with this quite a bit. Thankfully, there have been some good rulings, noting that interpreting 1201 this way is bonkers, and a clear abuse of the law for issues that have nothing to do with copyright. But... not all courts.

The Copyright Office report actually has a nice rundown of some of the key caselaw history, so we'll let the report do it for us. The key issue, as the report notes, is whether or not 1201 requires a "nexus" to infringement. Specifically: should it be a 1201 violation if the underlying circumvention is done for a reason that is not even remotely connected to what copyright law actually protects?

Although the United States has consistently interpreted section 1201 as creating a cause of action separate and independent from copyright infringement, courts construing the statute to date have divided over its relationship to the traditional rights of copyright owners. There currently is a circuit split as to whether a violation of the access‐control provisions under section 1201(a) requires a “nexus” to infringement—i.e., that the circumvention be done for the purpose of, or otherwise relate to, infringing an exclusive right under section 106 of the Copyright Act. This issue has particular significance in the context of copyrighted computer programs embedded in everyday consumer products.

In 2004, the Federal Circuit held in Chamberlain Group, Inc. v. Skylink Technologies, Inc. that there must be a “reasonable relationship” between the access gained by the circumvention and the protections conferred by section 106. Chamberlain’s garage door openers contained copyrighted software controlling operation of the motor. The software included a “rolling code,” which prevented the system from activating unless it received a signal from an authorized transmitter. Chamberlain alleged that Skylink’s manufacture and sale of “universal transmitters,” which circumvented the rolling code and accessed the copyrighted software, violated the anti‐trafficking provisions of section 1201(a)(2). The court, however, rejected that claim, holding that section 1201 did not create a new property right, but rather, “introduce[d] new grounds for liability in the context of the unauthorized access of copyrighted material.” The court further stated that “circumvention is not a new form of infringement but rather a new violation prohibiting actions or products that facilitate infringement.” The court also expressed policy concerns, including the view that without an infringement nexus requirement, section 1201(a) would result in anticompetitive conduct unrelated to copyright concerns. The court ultimately held that the Copyright Act granted consumers “the right to use the copy of Chamberlain’s embedded software that they purchased” and, therefore, in the absence of copyright infringement or facilitating copyright infringement, the defendant could not be liable for a section 1201(a)(2) trafficking violation.

In 2010, the Fifth Circuit in MGE UPS Systems, Inc. v. GE Consumer & Industrial, Inc., relied on Chamberlain to conclude that “[t]he DMCA prohibits only forms of access that would violate or impinge on the protections that the Copyright Act otherwise affords copyright owners.” The United States, however, urged rehearing on the ground that that construction was “inconsistent with the text, structure, and legislative history of the DMCA.” Such a reading, the United States argued, “threatens to frustrate Congress’s purpose in section 1201(a)(1), which was to provide a federal prohibition against bypassing passwords, encryption, and other technologies that regulate access to a copyrighted work in circumstances in which the copyright owner would not otherwise have a remedy under the Copyright Act.” The court subsequently withdrew its opinion and substituted an opinion omitting the challenged portion of the original.

Later that year, the Ninth Circuit expressly declined to follow Chamberlain and instead rejected a nexus requirement as “contrary to the plain language of the statute.” In MDY Industries, LLC v. Blizzard Entertainment, Inc., the court held MDY liable under section 1201(a)(2) for trafficking in technology in the form of a self‐playing bot, which was designed to circumvent a technological control on a video game sold by Blizzard. In rejecting the reasoning of Chamberlain, the Ninth Circuit looked to both the statutory text and its legislative history. Among other textual considerations, the court noted that section 1201(a) refers to technological measures protecting access to “a work protected under this title,” while section 1201(b) refers to measures protecting “a right of a copyright owner under this title.” The court read this distinction to indicate that Congress intended section 1201(a) to “extend[] a new form of protection, i.e., the right to prevent circumvention of access controls, broadly to . . . copyrighted works.” Section 1201(b), meanwhile, was intended “to reinforce copyright owners’ traditional exclusive rights under § 106 by granting them an additional cause of action against those who traffic in circumventing devices that facilitate infringement.”

So here's where the Copyright Office is supposed to step in and agree with the Chamberlain ruling and say that for 1201 to apply, it should require an underlying nexus to actual infringement under Section 106 of the Copyright Act, right? Right? RIGHT?!? I mean, that's the only sane response if you want to argue that anti-circumvention rules are truly about protecting copyright.

So, of course, that's not at all what the Copyright Office decided. Instead, it argues that there shouldn't be such a "nexus" requirement, because it might upset Hollywood to have less control. I mean, that's not the phrase it actually uses, but that's exactly what it's saying here:

The Copyright Office shares the concern that section 1201(a)’s protections for access controls have the potential to implicate activities far outside the traditional scope of copyright law. The Office does not, however, believe enacting an infringement nexus requirement to be advisable, as it could severely weaken the right of copyright owners to exercise meaningful control over the terms of access to their works online—a right that both Congress and the Executive Branch have properly recognized as essential to the development of the digital marketplace for creative content

If you don't live in the copyright world, this statement may not seem like a big deal, but it's actually a massive and hugely troubling admission. It's the Copyright Office saying that the point of anti-circumvention should be about giving copyright holders more control over digital marketplaces and not about preventing infringement. Of course, that's not what Hollywood has always claimed in the past. They always insist the reason they need anti-circumvention provisions all over the place is to stop infringement. But everyone has always assumed it's truly because they want more control and leverage over digital marketplaces. And here you have the Copyright Office admitting, right up front, that, sure, these provisions are about giving Hollywood extra control and not about stopping infringement.

The Copyright Office tries to justify this by arguing that (for example) bypassing the password protection on a Netflix or Spotify account might violate 1201, but wouldn't infringe on an underlying Section 106 right -- and thus 1201 without a nexus requirement is necessary to enable more Netflix or Spotify like markets:

In particular, Congress sought to facilitate the development of online content delivery platforms in which the consumer pays for access to copyrighted material rather than for possession of a copy. Section 1201(a) reflects Congress’ understanding that such models will succeed only if copyright owners have the legal right to prohibit persons from evading electronic paywalls or other technical measures used to limit access to users who satisfy the rightsholder’s specified terms.

But... this is not a copyright concern. That's a business model concern. If things like password sharing become an issue, then it's up to companies to figure out a way to deal with it -- not make it a violation of copyright law.

If Congress truly wants to protect Hollywood from people sharing their Netflix passwords, there are other ways to do it without trying to loop it into copyright law -- and 1201 is a part of copyright law. It shouldn't then be abused for completely non-copyright purposes. Having an underlying nexus to copyright is the only sane way for the law to actually be related to the fundamental rights under copyright law. But here, the Copyright Office is arguing that Hollywood should get non-copyright rights of control over digital marketplaces, just because it thinks that's good for Hollywood. And it may be good for Hollywood, but the Copyright Office's job is supposed to be about copyright. Not about what's good for Hollywood.



Permalink | Comments | Email This Story
Read the whole story
Manzabar
1 day ago
reply
Cedar Rapids
Share this story
Delete
Next Page of Stories