LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Linux support for ARM big.LITTLE

LWN.net Weekly Edition for February 9, 2012

XBMC 11 "Eden"

LWN.net Weekly Edition for February 2, 2012

A tempest in a toybox

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Letter to Editor: Response to Florian Mueller's Release re: "Anti-IP"

Letter to Editor: Response to Florian Mueller's Release re: "Anti-IP"

Posted Aug 26, 2005 13:26 UTC (Fri) by tialaramex (subscriber, #21167)
Parent article: Letter to Editor: Response to Florian Mueller's Release re: "Anti-IP"

Florian Mueller assumes that a copyright holder (actually both parties here have copyright, the Bnetd team of course own Bnetd - but you can rely on Blizzard's lawyers to imply as heavily as possible that it is somehow "stolen" property) is entitled to unlimited protection from competition merely because doing so would allow them to better enforce their existing rights. Specifically Blizzard says that if Bnetd is illegal it would not be available (which is contentious) and once unavailable there would be less incentive to make illegal copies of Blizzard's video games (probably true). They prefer not to draw attention to the fact that it leverages one product (video games) to construct a legal monopoly elsewhere (the servers) perhaps because they naively assumed that mere obfuscation had given them the latter for gratis.

A solution has been proposed[*] which would allow Blizzard, if the illegal copying were genuinely their only concern, to be entirely satisfied. But it was rejected, and instead this is now a matter for the courts. Broadly construed, as corporate entities like Blizzard would prefer, this /change/ to copyright rules would essentially open the floodgates to similar lawsuits in any case where a copyright holder controls one thing, and would prefer to also have a monopoly on related things so long as they can invent a fancy story about "intellectual property rights" that connect the two.

Want to buy a new TV remote? Spare parts too expensive? Today you can buy from a 3rd party, but that's not going to happen if Florian Mueller's argument wins over the higher courts. If it isn't a documented standard pinout, protocol, wavelength, etc. you're a reverse engineer and any hypothetical rights given to you as a citizen are taken away as a consumer. The justification will be (as in this case) financial, and the results will be (of course) ordinary people paying more to get less.

Of course the courts will probably (as a futile gesture) hold that an individual customer is welcome to do whatever she likes in the privacy of her own home. So long as the individual has a software development team, electronics specialists and maybe a chip fab in the kitchen, she'll be no worse off than she is now.

I believe we need the First Sale doctrine strengthened, not more over-reaching of "intellectual property rights", creators have never been more protected that they are today, yet our world is being drained of color using those very same protections. Protest against Software Patents is worthwhile, but only if we also watch our other fronts - such as the use of copyright to remove freedom to interoperate.

[*] So far as I understand it BnetD could be trivially altered to validate against a Blizzard provided authentication system in any of several ways. This would mean people intent on illegal copying would have to create "underground" servers, a situation that exists today and will exist regardless of any court case.

(Log in to post comments)

Letter to Editor: Response to Florian Mueller's Release re: "Anti-IP"

Posted Aug 26, 2005 20:27 UTC (Fri) by Ross (subscriber, #4065) [Link]

'So far as I understand it BnetD could be trivially altered to validate against a Blizzard provided authentication system in any of several ways. This would mean people intent on illegal copying would have to create "underground" servers, a situation that exists today and will exist regardless of any court case.'

I don't know if doing a proxy connection to Blizzard to validate the authenticity of the client would have worked but I doubt it for both technical and legal reasons.

1) The server sends several unpredictable numbers to the client and an equation to use for doing a checksum (presumable for detecting cheats or other things which modify the game binary). The bnetd server wouldn't be able to do anything asychronously... it would have to literally wait for a response from either the client or server on every packet. Additionally, it would have to keep the connection to Battle.net open during the entire time the client is connected, otherwise the whole excercise would be pointless. Keeping a connection open requires a number of things to happen to avoid timeouts, bot detection, etc.

2) It seems likely Blizzard would not appreciate these "bots" connecting and might consider the additional traffic from bnetd servers as abusive. They could block the IPs or take legal action. Additionally, this could be abused by people who do brute force key attacks... they could hide behind bnetd servers to avoid liability just like spammers use open mail relays.

3) The bnetd server would be vulnerable to attacks. If someone wanted to take out a bnetd server they would just submit a bunch of identical authentication requests and the server would be banned from Battle.net.

4) There would be no independent accounts on the bnetd servers. Because each account is only allowed to login once at a time on Battle.net and because the connection for each game would have to be held open, the only workable solution would be to require the user to use their Battle.net username and password on the bnetd system. This defeats some of the benefits of having a local server.

5) Blizzard could implement (and I think they may have) some public key or other non-symmetric crypto fun to avoid these man in the middle "attacks". The solution might take months to implement only to be defeated in the next patch. There would be no way to work around such a change unless major crypto breakthroughs were made... and then remember the DMCA exists... and it is what the proxying was trying to avoid in the first place.

6) It would be a lot simpler for Blizzard to just have the client make a separate authentication connection and ignore the registry setting for the desired game server. This doesn't seem hard, but it didn't happen so I assume Blizzard would rather not have bnetd even if "enabling piracy" were not a factor.

Letter to Editor: Response to Florian Mueller's Release re: "Anti-IP"

Posted Feb 7, 2006 9:43 UTC (Tue) by memeics (guest, #29925) [Link]

Actually, Battle.net does (ie ALWAYS) filters the IP after a single CD-Key
check failure for several hours. Assuming that a bnetd-like program can
proxy the CDkey requests it will never work in practice (it's enough to
have a single client that is rejected and then all your server's proxied
requests will be filtered for a couple of hours).

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds