Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

Earthstation 5 Claimed to be Malware

michael posted about 11 years ago | from the compiled dept.

Security 548

Rob from RPI writes "You may remember the announcement about a company, or program, or both called Earthstation 5 who recently 'Declared War' on the MPAA. Well guess what? Turns out that it's got code in it that allows anyone to delete any file on your computer. I suggest that you un-install as soon as possible!"

Sorry! There are no comments related to the filter you selected.

HAHAHAHAHA FUCKERS!!!! (-1, Offtopic)

Anonymous Coward | about 11 years ago | (#7123604)

suck it, you shameless pirates!

OSH (-1, Troll)

Kedisar (705040) | about 11 years ago | (#7123607)

Hear ye hear ye

WELCOME TO OPEN SOURCE HELL

It's a well known fact that open source is like Hell. Besides the obvious uselessness of open source (open source is more like open sauce- if sauce is left open, it spoils. It's also like open sores, where sores left open fester) and the total niggerfication of Linux, it's obvious that using open source is like going to Hell, only thousands of times worse.

When Bill Gates sent his only begotten son to die on the cross for your sins, he didn't plan for all of us to turn against him and use the disgusting, fecal OS that is Linux. Linus originally wanted to use a devil for his OS's mascot, but the asshats at BSD took it before he could.

The "penguin" is an actual hidden message for Hell freezing over, which is what will happen if it gains a market share of more than 5% and is actually used by someone besides a virgin geek for more than 5 minutes.

Did you know Linux is used to oppress niggers? What about jews? Linux is used across the world as a digital whip to put all the niggers and hook-nosed fucks in line, ready to suck Linus's (i.e. The Antichrist's) dick.

Use Linux, you'll see. You'll feel the shackles of Satan himself around your neck as you fail completely to install a piece of software. You'll scream in agony as your dependencies aren't perfect and your OS gives you a fatal error, causing your testicals to fall off. You'll wail in horror as you realize you didn't pay your $699 SCO license fee, and therefore reduced to teabagging Darl.

So break free the gay bonds of Hell and use the angelic OS that is Windows XP, you ignorant fucks.

first post! (-1, Offtopic)

Anonymous Coward | about 11 years ago | (#7123611)

w00t!

Geocites eh? (5, Informative)

Anonymous Coward | about 11 years ago | (#7123616)


Because the link is on geocities it's sure to be /.'d in 23 milliseconds. Here is a mirror I put up with the bin and src. [grub.net]
Don't trust code from sources you don't know. I only provide these for the inevitable geocities /.ing

Re:Geocites eh? (0)

Anonymous Coward | about 11 years ago | (#7123809)


Whoops, I should clarify this. The link to geocities is in the posting at lists.netsys.com which is linked to from the submission. Sorry about the ambiguity.

where... (1)

Spetiam (671180) | about 11 years ago | (#7123884)

did he get the source from? that's what i want to know.

Too bad (1, Funny)

Gortbusters.org (637314) | about 11 years ago | (#7123618)

Too bad slashdotting them doesn't delete their files!

In Soviet Russia, the files delete you!

Not surprising (3, Funny)

aacool (700143) | about 11 years ago | (#7123632)

This isnt surprising - the slashdot rage/paranoia/humor when Earthstation 5 was announced was palpable.


Just goes to show you can't trust anyone but the RIAA for f'air and balanced info-warfare:)

Stupid stupid people. (2, Interesting)

Anonymous Coward | about 11 years ago | (#7123633)

Whats worse the RIAA/MPAA or people trying to get on our good sides then backstabbing us?

Re:Stupid stupid people. (1)

LinuxInDallas (73952) | about 11 years ago | (#7123683)

People trying to get on your good side, then backstabbing you. By far.

It's much better to know your enemies. I wonder if we could call this network terrorism? Someone call ASScroft!

Re:Stupid stupid people. (2, Funny)

hobbespatch (699189) | about 11 years ago | (#7123708)

From their website... (quote) Our group is made up of many people, Jordanians, Palestinians, Indians, Americans, Russians and Israelis. Some of us are Jewish, some Christians, some Hindus and other of us are Muslim. Believe it or not, we all love and respect each other. (/quote) Yesh, now we know that was too good to be true.

Re:Stupid stupid people. (2, Insightful)

dcphoenix (528517) | about 11 years ago | (#7123802)

Well, you know what Sun-Tsu said about knowing yourself and your enemies ( he who knows both is assured a victory ).

In a computer's case, it's knowing as much about the program you're about to install as you can and monitoring your computer to see what's going on with it. That way, malware stands a smaller chance of screwing with your system.

This is absolutely shocking. (5, Funny)

Ygorl (688307) | about 11 years ago | (#7123636)

Really, I mean it. From looking at their web site one would have thought they were totally legitimate!

Just what the MPAA wants... (2, Funny)

Kedisar (705040) | about 11 years ago | (#7123639)

Now they can delete all those movies from your hard disk!

Re:Just what the MPAA wants... (0)

Anonymous Coward | about 11 years ago | (#7123657)

>Now they can delete all those movies from your hard disk!

Not if I delete them first! Lousy formulaic pieces of shit each and every one of them!

MOD PARENT UP (0, Offtopic)

Anonymous Coward | about 11 years ago | (#7123696)

How the HELL is this redundant!?! There isn't a comment that says this so far!

Re:MOD PARENT UP (-1, Offtopic)

turambar386 (254373) | about 11 years ago | (#7123777)

Both that redundant moderation as well as your off-topic moderation have been meta-moderated as unfair.

Now I hope that when a moderator moderates THIS comment as off-topic that their moderation is meta-moderated unfair, too.

I don't have to uninstall... (3, Funny)

BlackBolt (595616) | about 11 years ago | (#7123641)

It deleted itself.

fidhhr opdder mnyu hssy oopd! (-1, Offtopic)

Anonymous Coward | about 11 years ago | (#7123646)

l.pddd[ pplk hgtd dftttg hyddhr Zkm,m? oikkmd irddjr!!

Well yeah.. (5, Insightful)

Anonymous Coward | about 11 years ago | (#7123647)

A P2P service that ACTIVELY PROMOTES piracy? It sounded too good to be true, and it was. All of this wonderful information from some schmoe with an email @yahoo.com? This whole deal is shady, no matter how you look at it.

Re:Well yeah.. (1)

maxbang (598632) | about 11 years ago | (#7123727)

But he has a WEBSITE! Maybe if he posted this on his "blog" you would believe him? ;-)

Re:Well yeah.. (1)

gl4ss (559668) | about 11 years ago | (#7123874)

well, fuck, they had(may still have) naked news for free.

they can delete any file i care :)

Now who couldn't see this coming? (0, Redundant)

adrianbaugh (696007) | about 11 years ago | (#7123652)

That's what you get for installing binaries from an untrusted/unknown source.
How long have the RIAA been making noises about hacking people's computers to delete illegal mp3s? And after this, people are still happy to trust that a binary program from a very mysterious organization isn't just a piece of RIAA spy/malware? Quick, break out the cluebats...

Re:Now who couldn't see this coming? (1)

grub (11606) | about 11 years ago | (#7123763)


That's what you get for installing binaries from an untrusted/unknown source.

Yup. I compile my own eMule client from source (with a few custom things that help my bandwidth ;)) Of course it would be foolish to assume that I've gone through every line of source looking for exploits but there are a lot of contributors to the project and the source is there for all to see.

Re:Now who couldn't see this coming? (1)

Spetiam (671180) | about 11 years ago | (#7123798)

notice especially how many different languages it's in. now who could possibly have the funding and interest to make all those translations? hmmmmmm...

Earth Station 5 - legalese (5, Funny)

Stalyx (633692) | about 11 years ago | (#7123654)

And in other news when Reuter's contacted Earth Station 5's lead programmer, he had apparently mumbled under his breath.. "its not a bug damnit!, it's a feature"

Tinfoil alarm! (4, Insightful)

sebi (152185) | about 11 years ago | (#7123656)

Wouldn't that be just the cleverest act of terrorism you can think of? Bait the "foreign devils" with all you hate about them and then, BAM!, nuke millions of computers in an instant. Takes more preparation to get off the ground than your garden variety virus or worm but the pay-off is much greater, isn't it? And if I was living in Palestine threat of legal action by some American interest group would be the least of my worries.

Re:Tinfoil alarm! (-1, Flamebait)

Troed (102527) | about 11 years ago | (#7123786)

Defending your own country against and invader (please check it for yourself - that's what Israel is) is not "terrorism".

For the US citizens: If Mexico invades Texas, you're allowed to defen yourselves without Mexico calling you terrorists.

Re:Tinfoil alarm! (0)

Anonymous Coward | about 11 years ago | (#7123827)

Wow, you must be a smart college educated type.


Fuckwad. (please check it yourself - that's what you are)

Re:Tinfoil alarm! (0)

Anonymous Coward | about 11 years ago | (#7123860)

Defending your own country against and invader (please check it for yourself - that's what Israel is) is not "terrorism".
It's not the cause that deinfes terrorism it's the tactics. Blowing up busses with civilian children on them is terrorism.

Re:Tinfoil alarm! (0)

Anonymous Coward | about 11 years ago | (#7123863)

Uh, perhaps you should re-read history. I believe it was the ARAB states which attacked Israel first on three separate occasions. (Once on a Jewish high holy day -- that kinda reveals the basic hypocrisy of Islam: Scream if it affects you, Do it if it helps you)

Yes, yes, I know that Palistine was taken away from the the Palistinians, but it was the BRITS who partitioned the country. Not the Israelis. The Israelis are just trying to protect themselves against idiots who think targeting children is legitimate warfare.

Re:Tinfoil alarm! (0, Offtopic)

adam613 (449819) | about 11 years ago | (#7123888)

Defending your own country against and invader (please check it for yourself - that's what Israel is) is not "terrorism".

Please check your history before you post. The Palestinians did not come into existence until 16 years after the British handed over 1/3 of what the UN resolution required to form present-day Israel. The creation of the Palestinians was a response to Egypt and Syria realizing that they couldn't destroy Israel by military force. Since the Palestinians didn't exist when Israel invaded, Israel is not an invader.

Furthermore, purposely attacking civilians is a war crime, and therefore is terrorism even if you are being invaded.

For the US citizens: If Mexico invades Texas, you're allowed to defen yourselves without Mexico calling you terrorists.

This is also incorrect. Since George Bush was elected governor of Texas, and he is a terrorist, the Mexicans can call Texans terrorists whether or not they are defending themselves from invasions.

Re:Tinfoil alarm! (1)

sebi (152185) | about 11 years ago | (#7123909)

Defending your own country against and invader (please check it for yourself - that's what Israel is) is not "terrorism".

While I might be tempted to agree with that statement under certain circumstances it does not apply here. Should my assumption be correct (and there are some huge "ifs" involved) then this attack would, or could, be targeted at every nation with a high percentage of personal computers. Israel is not the only country that qualifies for that. As such it would not be defence against an aggressor but offence against multiple bystanders. I would not go as far as calling them innocent, but they might not be actively involved in the conflict.

...or a brilliant MPAA/RIAA tactic (2, Funny)

LilJC (680315) | about 11 years ago | (#7123840)

1. Release excellent mother-of-them-all P2P software under guise of legitimate software
2. Once everyone has it, delete all pirated files
3. Profit!

I half wish they'd actually do that - maybe it would incite a full boycott. Though I am happy with the understanding that their sales are declining already.

Hmm (0)

Anonymous Coward | about 11 years ago | (#7123878)

Well, that IS an interesting point... A little overreacting IMO. I feel if they had any shred of intelligence, they wouldn't nuke the computers at first; first they'd steal all the info on the targets computers, then try to distribute their "program" further, as a worm would, and maybe after a certain amount of time nuke the machine, if at all. It's more valuable to have the computer owned, as is shown to anyone with a shred of intelligence by worms like Slammer, MSBlaster, et. al.

If they do that, they must REALLY hate us. Well, I suppose that's what we get when we support the bullies... The victims tend to get angry at the man hiding in the shadows. It's really quite depressing. If we continue supporting Israel, looks like there will eventually be genocide. The hate will grow to such a level, that both sides will never rest until the other side is completely destroyed. Nobody wants that, but it looks like our options are pretty limited. At this point, I don't see how these two ancient peoples can live side-by-side in peace. It would literally take a miracle.

Re:Tinfoil alarm! (4, Insightful)

cybermace5 (446439) | about 11 years ago | (#7123933)

I realize that perhaps, to many of you, computers and the Internet is Life Itself. However, a massive computer mixup is NOT a disaster on the scale of WTC or some other event causing major casualties.

I just get annoyed when I hear a computer attack referred to as an effective terrorist strategy. I certainly could survive if my computer didn't turn on today; no terror here, just kind of disappointment. Perhaps something like this could be called a "bummer. oh well" attack.

Good thing it wasn't email (4, Interesting)

Nick of NSTime (597712) | about 11 years ago | (#7123660)

If I had received this in my Inbox, I probably would have ignored it. It's interesting that I'm conditioned (brainwashed?) to ignore this stuff when it's in an email, but when I read it on /. I take it seriously.

Re:Good thing it wasn't email (1)

supergiovane (606385) | about 11 years ago | (#7123780)

Welcome to Slashdot!
It's always a pleasure to meet new friends. 'Cause ... mmh ... are you new to this place, ain't you?

Re:Good thing it wasn't email (0)

Anonymous Coward | about 11 years ago | (#7123891)

Have you noticed his UID is *lower than yours*?!

Re:Good thing it wasn't email (5, Funny)

chicoy (305673) | about 11 years ago | (#7123931)

If I had received this in my Inbox, I probably would have ignored it. It's interesting that I'm conditioned (brainwashed?) to ignore this stuff when it's in an email, but when I read it on /. I take it seriously.

you must be new here.

Not surprising (4, Funny)

skryche (26871) | about 11 years ago | (#7123662)

What about the terrible GUI? That's the real crime here!

Nice try, MPAA! (0, Redundant)

niceandsunny (665663) | about 11 years ago | (#7123663)

Nuff said.

Re:Nice try, MPAA! (1)

WindBourne (631190) | about 11 years ago | (#7123825)

Who said it was the MPAA?
This came from the gaza strip.
It could easily be a true spyware. I am guessing that not only did they have code to delete, but I would be willing to bet that they had code to grab files other than what was in the exchange directory.
Amazing how useful closed source can be in the wrong hands.
This is more likely a terrorist outfit than MPAA.

Not a bug... (-1, Redundant)

Anonymous Coward | about 11 years ago | (#7123666)

... it's a feature!

Now tell the bastards what you think! (0, Informative)

Anonymous Coward | about 11 years ago | (#7123671)

We'll be more than glad to hear your comments or questions at:
Ras Kabir 121 Gaza Gaza, Palestine
phone: +972 673 51065
fax-no: +972 673 51065
e-mail: ras@earthstationv.com

For General Sales and related questions,
contact: sales@earthstationv.com

If you are a member of the Press,
please contac us at: press@earthstationv.com

For Suggestions on ways we can improve our software, please contact us at: suggestions@earthstationv.com

Re:Now tell the bastards what you think! (5, Interesting)

nucal (561664) | about 11 years ago | (#7123886)

This WHOIS just looks incredibly fake to me ...

earthstation5.com Back-order this name

Domain EARTHSTATION5.COM

Date Registered: 2/26/2002
Date Modified: 6/13/2002
Expiry Date: 2005-2-26
DNS1: ns1.earthstationv.com
DNS2: ns2.earthstationv.com
Registrant

Earthstationv Ltd, A Palestinian Corporation
Jenin refugee camp #23
Jenin (PS)
NONE

Administrative Contact

EarthstationV Ltd., A Palestinian Corporation
Mr Domain Administrator
Jenin refugee camp #23
Jenin (PS)
NONE
067351065
67351065
ras@earthstationv.com
Technical Contact
EarthstationV Ltd., A Palestinian Corporation
Mr Domain Administrator
Jenin refugee camp #23
Jenin (PS)
NONE
067351065
67351065
ras@earthstationv.com
Registrar: NameScout.com

Methods known (3, Interesting)

Doesn't_Comment_Code (692510) | about 11 years ago | (#7123682)

Well, even if these guys are backstabbers (which apparently they are) they've disclosed their methods. And that should allow for a somewhat speedy recoding of a similar program that doesn't include screw_up_my_file(char* filename).

Seriously, it was good theory, but they didn't have anything earthshattering that couldn't be replicated.

I'll be watching for anything more that is discovered about motives. This seems to be the most curious and intriguing part of the story.

Can you say ... (0)

Anonymous Coward | about 11 years ago | (#7123726)

I'll be watching for anything more that is discovered about motives. This seems to be the most curious and intriguing part of the story.
honeypot?

Battlestations... (4, Insightful)

finalnight (709885) | about 11 years ago | (#7123685)

This mofos were the ones behind the summer DoS attacks on all the big BT sites, and now this. Gentlemen, start your cracking...

Where did this message go .... ? (-1, Troll)

Anonymous Coward | about 11 years ago | (#7123687)

Where did this message go ?

>>Hear ye hear ye
>>
>>WELCOME TO OPEN SOURCE HELL
>>
>>It's a well known fact that open source is like >>Hell. Besides the obvious uselessness of open >>source (open source is more like open sauce- if >>sauce is left open, it spoils. It's also like
>>open sores, where sores left open fester) and

Unconfirmed, as of yet. (5, Informative)

caferace (442) | about 11 years ago | (#7123689)

This came across the FD list yesterday afternoon. Typically, an announcement of this type would elicit a fair amount of discussion. Usually at leat *one* other person would have confirmed it, or at least rebutted the claim.

As of this writing, I haven't seen a single follow-up post.

Is it true? I don't know, Is it a hoax? I don't know that either. It has more than a few caveats about using the exploit, that's for sure.

What I do know is that that Geocities site with the exploit code will disappear bandwidth constrained faster than snot. :)

just goes to show... (0, Redundant)

greendoggg (667256) | about 11 years ago | (#7123691)

If it looks too good to be true, then it probably is :(

Based in Palestine? (0)

Anonymous Coward | about 11 years ago | (#7123695)

Is it common to have a software company based in palestine, or is this just some sort of untracable front that the Riaa is umploying?

Re:Based in Palestine? (0)

Anonymous Coward | about 11 years ago | (#7123773)

Declaring war on the MPAA. They should have just declared it a jihad. Given their rabid sensibilities i wonder why in the hell would anyone trust software shipped out of the West Bank?

A complicated world (3, Funny)

TopShelf (92521) | about 11 years ago | (#7123700)

Wait a minute, I thought these guys were anti-MPAA and anti-RIAA, meaning they can only be powerful forces for good!

Arggggghhhhh

Binary world-view is breaking down as we speak...

Earthstation 5 sounds like... (4, Funny)

vudufixit (581911) | about 11 years ago | (#7123701)

A bad UPN science fiction series.

Re:Earthstation 5 sounds like... (1)

fallingdown (709840) | about 11 years ago | (#7123796)

No, that's Enterprise.

BAH! THIS IS JUST FUD (-1, Troll)

Anonymous Coward | about 11 years ago | (#7123712)

The RIAA and the MPAA is pissed off that we're getting stuffs for free and they aren't robbing us anymore. The code posted at that sight is bogus because when I looked with my hex editor, I didn't see such things. I'm keeping the program on my computer because I dot all kinds of free stuff with it that I couldn't get with Kazaa. And latest movies too. Down with the RIAA/MPAA mafia fuckers! They have no right to gouge us for their substandard products. If they decide to sell things at reasonable prices ($2.00 per CD and $1.50 for theater admission) then they would see this stuff go away. BUt as long as they try and gouge us for their crap, we'll gouge right back and take what's ours.

Re:BAH! THIS IS JUST FUD (2, Insightful)

I8TheWorm (645702) | about 11 years ago | (#7123781)

Um.... $2.00 doesn't cover the hardware costs of producing a professional cd. If your requests are unresonable, don't be surprised when they're not met.

On the other side of that, $16-20 is unreasonable. $10 would be fair, I think. Considering the hours spent in the studio recording, AFM scale per musician per song being $50 (and that's for low grade musicians), the cost of a decent engineer, cost of using a decent studio (that's not cheap), mastering costs... Then you've got to either spend $$ on an expensive fast cd dup'er, or pay someone to burn 10,000 cd's in a week, artwork for the j-page, printing of the j-page, cd cases, shringwrapping, a UPC, distribution, etc....

Do you honestly think all of that can be done for $2.00 per? Get real.

Re:BAH! THIS IS JUST FUD (1)

RevMike (632002) | about 11 years ago | (#7123895)

On the other side of that, $16-20 is unreasonable. $10 would be fair, I think.

I'd maybe even go a little lower, perhaps to $8.00. I doubt that any cost in the cycle is more than that for producing a cassette tape.

What really gets my goat is that the price of a new release CD has never dropped. I remember in 1985 or so when the format was just getting traction the prices would be high. All the equipment was new and had to be paid for, people weren't sure it would be accepted, etc. So it cost about $16 for a new cd. AND IT NEVER CHANGED even after all the new cd pressing equipment was paid for. Even as the manufacturing cost per unit dropped through the floor. It never even dropped to the $12 price of a new LP.

Re:BAH! THIS IS JUST FUD (0)

Anonymous Coward | about 11 years ago | (#7123795)

Hmm.... bad english, "death to the RIAA/MPAA" elitism, swearing, encouragement of piracy, and unsubstantiated claims that ES5 is safe. You don't happen to work for ES5, do you?

Re:BAH! THIS IS JUST FUD (-1, Troll)

Anonymous Coward | about 11 years ago | (#7123817)

we'll gouge right back and take what's ours.

Whats yours?

Tell me; would your dick drop off if you couldn't get your MPAA/RIAA approved hit for the day? Are you addicted to this shit or something?

Parent is a TROLL (0, Offtopic)

jbottero (585319) | about 11 years ago | (#7123842)

Read the parent post closely. It's a troll.

Re:Parent is a TROLL (1, Funny)

Anonymous Coward | about 11 years ago | (#7123916)

Yeah, you're right. I'm glad to see the rise in subtle trolling around this place, even if we do have to do it as AC's.

Re:BAH! THIS IS JUST FUD (1, Funny)

Anonymous Coward | about 11 years ago | (#7123852)

Please welcome the lead programmer for ES5!!

Thanks for stopping by!

Let me summarize you're argument,

"pay no attention to the man behind the curtain, keep using the app, there is no bad code, keep leeching!"

right... nice try.

Mod Parent Jackass Down (0, Offtopic)

goldspider (445116) | about 11 years ago | (#7123861)

"BUt as long as they try and gouge us for their crap, we'll gouge right back and take what's ours.

I cordially invite you to shut your pie-hole. It's crap like that that makes the rest of us look like irrational frothing anti-capitalist lunatics, and invites the likes of the RIAA/MPAA to treat us as such.

Indulging in paranoid speculation - tinfoil alert (5, Insightful)

Badgerman (19207) | about 11 years ago | (#7123714)

Tinfoil hat on . . .

Let's say ES5 is an MPAA/RIAA front to discredit file sharing and harm filesharers.

Now, apparently, ES5 is in Palestine.

What better way to do "double damage" than to not only have a way to attack filesharers, but also to connect it to a location people associate with terrorism?

OK, tinfoil hat off now.

Re:Indulging in paranoid speculation - tinfoil ale (0, Flamebait)

adam613 (449819) | about 11 years ago | (#7123804)

Now, apparently, ES5 is in Palestine.

They're probably going to claim the code was inserted by the Israeli army or something.

Re:Indulging in paranoid speculation - tinfoil ale (1)

Zocalo (252965) | about 11 years ago | (#7123885)

Yeah, I'd go for the same thing, but this seems a little bit beyond the RIAA/MPAA's usual demonstated technical level. The registrant data on the domains and the IP block data submitted by their upstream ISP (SpeedNet) tallies, and the IPs *are* in Israel. It might be bonafide in that I doubt very much that the RIAA/MPAA are going to have much legal sway in Palestine, but the thing just smacks of blatant scam to sucker in the terminally dense to me; *far* too good to be true.

Re:Indulging in paranoid speculation - tinfoil ale (1)

abb3w (696381) | about 11 years ago | (#7123938)

Re-donning the tinfoil...

Well, thinking about it-- it wouldn't be a bad terrorist plan. Create a popular application with a popular primary function (such as P2P file sharing). Build in a set of secret secondary functions, that allow things like DDOS, file deletion, server crashing, and other fun things. Let it get popular enough that it becomes common -- say, 10% of Windows users. The unleash your slave army on your targets in an attempt to destroy modern western society. It would be inconvenient trying to run our present society if Windows machines all went kablooey at once...

Possible, but unlikely.

Tinfoil back off...

If you use a computer (5, Insightful)

ruiner13 (527499) | about 11 years ago | (#7123718)

I'm sure everyone has at least seen one article where they tell you to NEVER install software from a company you've either never heard of, or don't trust. At this point, the internet has been around long enough that most people realize this, especially if you have data on your machine that is so important that you can't risk getting a virus or a trojan (such as this, apparently) on it. Live by the internet, die by the internet. Just because someone claims to be against the RIAA doesn't make them your friend. Just because someone is against SCO, doesn't make them about free software rights. There are such things as self-serving deeds, even if they appear to be good gestures to all.

Re:If you use a computer (1)

fleener (140714) | about 11 years ago | (#7123887)

>the internet has been around long enough
> that most people realize this

What people are you speaking of? The 50% of America that lives its life offline?

Dateline "Jenin, West Bank?" (4, Funny)

Anonymous Coward | about 11 years ago | (#7123721)

Rest assured, brothers, your files have not been deleted; they have been martyred and are currently being serviced by 72 virgins.

Also look out for these P2P programs... (3, Funny)

Anonymous Coward | about 11 years ago | (#7123725)

Deep Space 9
Babylon 5
The Dagobah System

Re:Also look out for these P2P programs... (1)

00_NOP (559413) | about 11 years ago | (#7123934)

Nah, they won't get away with that again. Better off tracking the company directors instead - Zaphod Beebelbrox is quite a rare name.

now I know why my computer has been complaining (2, Funny)

dnotj (633262) | about 11 years ago | (#7123730)

About a missing file: /home/dnotj/.wine/fake_windows/boot.ini

They aren't fighting the RIAA... (1)

SwansonMarpalum (521840) | about 11 years ago | (#7123740)

They're in cohoots! In exchange for providing a backdoor for the RIAA to delete illegal MP3s off your computer, they each got a new copy of 's CD!

Not a buffer overflow? (5, Insightful)

Durzel (137902) | about 11 years ago | (#7123744)

I'm curious - how can it be determined without the benefit of source code for ES5 that the exploit isn't just a horrendous oversight instead of a malicious pre-meditated function of the software?

If it is malicious it seems odd that they would make it possible for ANYONE to delete someone elses files through crafted search strings, thus significantly increasing the chance of their nefarious plans being uncovered.

If it were me, and I was secretly working for the RIAA, I'd just code in a simple client/server protocol that the RIAA could use to delete people's files, entirely seperate from the normal operation of the program itself. This would be much harder to identify as malicious code.

Sorry, but this just looks to me like a bad "failure to chroot()" bug and not the big conspiracy theory its purported to be...

Re:Not a buffer overflow? (1)

godzillion (693800) | about 11 years ago | (#7123910)

Yes. Looks more like a terrible security oversight than a deliberate backdoor. I am not convinced by:

"IMPORTANT: This is not a bug! They intentionally added this code to ES5."

as much as the author would have me be.

Re:Not a buffer overflow? (0)

Anonymous Coward | about 11 years ago | (#7123913)

What? Do you even understand the concept of buffer overflows? A one packet delete command to a service that regularly handle multi-packet search requests is not a buffer overflow - it is intentional.

Re:Not a buffer overflow? (2, Insightful)

scambaiter (703904) | about 11 years ago | (#7123918)

Well, the conclusion simply says that they dont know what the use for some special "delete file" command could be and add the MPAA/RIAA story as a theory.

I dont think that its simply something like a missing chroot() bug, i cant think of any good reason why you would have "delete file" command implemented in a P2P client... Fellow slashdotters, anyone got an idea why one would implement this?

malware? (0)

Anonymous Coward | about 11 years ago | (#7123745)

I don't have this problem, I use Linux.

Re:malware? (1)

WindBourne (631190) | about 11 years ago | (#7123920)

Yes, but the real question is would you have, had the realised it on Linux?
It would have been closed source, but a "secured" program. Would you have downloaded this program? Quite possibly. Would you have chrooted it to make it secure? probably not?
WOuld you have cared that it came from an enemies (al qaeda) stronghold and noticed that this is more likely to be a spying tool and not mpaa/riaa tool? not likely.

Quick to criticise (0)

Anonymous Coward | about 11 years ago | (#7123746)

Why so quick to criticise? The posting referred to in the article says "This is not a bug" and that the feature was deliberately added? How could they possibly know this? Nobody but the coders of ES5 could know what their true intentions were. I don't see any mention of their coders coming clean in the posting.

Personally, I'll uninstall as it's a bug not worth risking time with, but I'll certainly be waiting for the response from ES5.

Once again: (-1, Flamebait)

Anonymous Coward | about 11 years ago | (#7123761)

1. Never trust a goddamn jew or arab [earthstation5.com] !

2. If it sounds to be too good to be true, it's not true.

IT'S A TRAP! (4, Interesting)

teamhasnoi (554944) | about 11 years ago | (#7123784)

It sounds interesting - any /.ers try the exploit out yet?

The first place I heard about E5 was on Slashdot, in a sig - I thought about trying it out, but something didn't seem quite right.

Too much flash and cash on the website, and sweeping claims that hadn't made it elsewhere turned me off.

I'm thinking it's the same 'spidey sense' that goes off when I get an email with an evil attachment.

MY WINDOWS HAS THIS CODE IMPLEMENTED IN IT'S CORE (0, Flamebait)

cies (318343) | about 11 years ago | (#7123789)

MY WINDOWS HAS THIS CODE IMPLEMENTED IN IT'S CORE!

since the program only runs on windows, this "feature" is not as original as it seems...

cheers,
cies.

Re:MY WINDOWS HAS THIS CODE IMPLEMENTED IN IT'S CO (0)

Anonymous Coward | about 11 years ago | (#7123839)

idiot.

Verify the presence of malware (4, Funny)

Bingo Foo (179380) | about 11 years ago | (#7123791)

$ grep "rm" ~/W4R3Z/es5
Binary file ~/W4R3Z/es5 matches
$

Do people think before they download? (1)

Damon C. Richardson (913) | about 11 years ago | (#7123794)

To think someone downloaded software from a company in Palestine..... Hmmm... Has anyone told bush and ashcroft about this? This could be a terrorist plot!

Anagram conspiracy theory (5, Funny)

mblase (200735) | about 11 years ago | (#7123813)

Did you know that you can rearrange the letters of "EARTHSTATION FIVE" to spell "RIAA VOTES IN THEFT"?

They're behind the whole thing, I'm telling you.

Heres the trojan code (5, Informative)

ghost1 (713051) | about 11 years ago | (#7123830)

Link to Zeropaid discussion with the actual code http://www.zeropaid.com/news/articles/auto/1002200 3i.php

You actually bought into ES5? (0, Troll)

winkydink (650484) | about 11 years ago | (#7123862)

Please tell me you are joking. Are you that naive?

Whois (2, Funny)

Xerxes2695 (706503) | about 11 years ago | (#7123867)

www.es5.com is regestered to (get this)

Earthstationv Ltd., A Palestinian Corporation
Jenin refugee camp #23
Jenin (PS)

Rfugee camp? Palestine? Unless they lied on the registration I doubt this is RIAA.

Blimey! (0)

Anonymous Coward | about 11 years ago | (#7123875)

Alright, I was foolish enough to have installed ES5, and now that I try to uninstall it, it won't all go away. All of the DLLs can't be deleted, I'm guessing because they're currently in use. Curses!

Amazement... (1)

acousticiris (656375) | about 11 years ago | (#7123902)

I'm amazed at how many *truly technically savvy people* I work with just randomly install p2p apps and then are surprised that they have holes, bugs and even Malware.
I mean, really, if networked applications that are *supposed* to be bullet proof like OpenSSH encounter vulnerabilities--in an open source environment--with so many people reviewing the actual code, can we be too surprised that some silly P2P application with authors who make no bones about the fact that they are violating (albiet bad) American laws might slip something like this in intentionally?
Even if there was no intention to slip this code in there (which I find hard to believe in this case), the idea that there would be Buffer Overflow vulnerabilities and the like doesn't surprise me one bit.
Most people don't take security seriously...even those who you would expect to.

What's the big deal? (2, Funny)

Giant Ape Skeleton (638834) | about 11 years ago | (#7123927)

It's not a bug, it's a *feature* !

;-)

where's the money? (1)

heh2k (84254) | about 11 years ago | (#7123928)

can someone tell me how they planned to make money? let's see: give away sw, give away movies. i must be missing something.

It could happen with any closed source software.. (2, Informative)

pirhana (577758) | about 11 years ago | (#7123940)

This is a good example which shows again and again that any closed source is inherently not trustable. When you are installing a proprietory software, you are basically trusting them not to screw you up or put any back door. Nobody has any guaranty that windows or any other closed source software is free of this issue. Safe bet is to stick with open source software exclusively.
Load More Comments
Slashdot Login

Need an Account?

Forgot your password?