KaZaAs' BDE/Altnet Close To Turn-On? - P2P-Zone

JackSpratts · 05-05-02, 09:14 PM

Tom Spring, PCWorld.com
Millions find their PCs' bandwidth and hard disk space siphoned for mysterious but worthy-sounding scientific projects, just because they downloaded the client for a music and file-swapping program. But when Altnet's seeded software is awakened some time in May--the company won't say exactly when--even more users may be caught by surprise. On the chosen day, the slumbering software will be roused the next time the user connects to the Kazaa network. That activates the controversial software, a program called SecureInstall. "Consumers have nothing to fear," says Brilliant Digital's Bermeister. Here's what he says will happen next.
http://www.pcworld.com/news/article/0,aid,98344,00.asp

- js.

butterfly_kisses · 05-05-02, 10:25 PM

Personally, I'm excited about this and look forward to it jack.
initially i hated the idea but let's look at it from a different angle:

a)what good has come out of the ALTNET project?

a1)The problem with disappearing downloads resulting from a browser crash or hang has been fixed.

only one major bug (no i've not mentioned it here) remains and that is when you go into tools>options and look at the settings for or under "firewall" it disconnects you from the KaZaA network

okay that is one advantage what are the others?

b2)In order to establish and keep a stronger user-base KaZaA has begun updated their clients more often and adding better features (sure they come with a lot of extra surprises, some nice and some not-so-nice but the computer literate and savvy know better than to click on the New.net and bonzi buddy features...honestly you'd think they would consider this [i]compromising the security of the ALTnet network along with those of the regular fasttrack p2p network or just plain old "kazaa" to put it simply.

c3)The whole ALTNET scandal/controversy has shed so much more light on the p2p world and made for some very interesting reading almost maybe on par with the likes of the The Young and The REstLess and As the PC Turns to name a few.
We've learned that its a lowdown dirty shame but it is a business however flawed the revenue model seems to be it is in our advantage for them [Sharman Networks] to pull this off.

Now the Con's

A1)Nikki Hemming has been trying to get a bill passed (in congress if my memory holds up correctly) that will impose a "tax or levy" on broadband customers through their ISP's

The reasoning behind this: "they are gonna steal anyway...all broadband user's are crooks and thieves so let's make them pay for it in advance that way our liability is gone and the RIAA/Mpaa are satisfied and we've reached an agreement to compensate the artists?

There was another point but I think this bad one speaks volumes in and of its self...

Now then on to hacking and reversing the client and its technology

This will shed maybe a little more light on the fasttrack protocol for us by the very nature that the components to run the Altnet network are being downloaded in bits piecse e.g., dll's (dynamic link library's which means they can be set-up and used by other applications besides the original program [the Altnet] that they were intended for.

Now then for anyone who is a true hacker or programmer out there go get you a copy of the latest IMESH version 3.1

Use a setup monitor to monitor the installation ...if you want use a startup monitor to monitor changes made to your registry upon rebooting...use filemon/regmon whatever...but the important part for you is this

open up a dll called AppManager.dll and you will see information pertaining to the fasttrack network....this may offer some clue as to portability (import/export calls to ?whatever? [remember i'm not a programmer just an idea man ;O)

snowman · 06-05-02, 12:23 AM

The start up of that software if going to be a serious problem world wide.

I have yet to meet somebody who does not think it is serious security risk.

Scyth · 06-05-02, 01:49 AM

Quote:

Originally posted by snowman
I have yet to meet somebody who does not think it is serious security risk.

Meet me. I don't think it is a serious security risk. Certainly, there is some risk, but I don't think that it's serious. Lots of programs have auto-update features, and I've yet to see one be comandeered by 'evil hackers'.

Mowzer · 06-05-02, 02:48 AM

The risk lies in the fact BDE and Kazaa arent very renowned for security measures. In fact BDE has had its own servers compromised a few times before, as was mentioned on slashdot.

What scares people is who are the ones acessing the other end? Basically if it falls into the wrong hands BDE has developed a very powerful DoS machine, for taking out porn sites.

05-05-02, 09:14 PM	#1
JackSpratts Join Date: May 2001 Location: New England Posts: 10,018	KaZaAs' BDE/Altnet Close To Turn-On? Tom Spring, PCWorld.com Millions find their PCs' bandwidth and hard disk space siphoned for mysterious but worthy-sounding scientific projects, just because they downloaded the client for a music and file-swapping program. But when Altnet's seeded software is awakened some time in May--the company won't say exactly when--even more users may be caught by surprise. On the chosen day, the slumbering software will be roused the next time the user connects to the Kazaa network. That activates the controversial software, a program called SecureInstall. "Consumers have nothing to fear," says Brilliant Digital's Bermeister. Here's what he says will happen next. http://www.pcworld.com/news/article/0,aid,98344,00.asp - js.

06-05-02, 12:23 AM	#3
snowman Registered User Join Date: Mar 2002 Posts: 56	altnet The start up of that software if going to be a serious problem world wide. I have yet to meet somebody who does not think it is serious security risk. __________________ snow man

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode

05-05-02, 10:25 PM	#2
butterfly_kisses Napsterite Join Date: Apr 2002 Posts: 138	Personally, I'm excited about this and look forward to it jack. initially i hated the idea but let's look at it from a different angle: a)what good has come out of the ALTNET project? a1)The problem with disappearing downloads resulting from a browser crash or hang has been fixed. only one major bug (no i've not mentioned it here) remains and that is when you go into tools>options and look at the settings for or under "firewall" it disconnects you from the KaZaA network okay that is one advantage what are the others? b2)In order to establish and keep a stronger user-base KaZaA has begun updated their clients more often and adding better features (sure they come with a lot of extra surprises, some nice and some not-so-nice but the computer literate and savvy know better than to click on the New.net and bonzi buddy features...honestly you'd think they would consider this [i]compromising the security of the ALTnet network along with those of the regular fasttrack p2p network or just plain old "kazaa" to put it simply. c3)The whole ALTNET scandal/controversy has shed so much more light on the p2p world and made for some very interesting reading almost maybe on par with the likes of the The Young and The REstLess and As the PC Turns to name a few. We've learned that its a lowdown dirty shame but it is a business however flawed the revenue model seems to be it is in our advantage for them [Sharman Networks] to pull this off. Now the Con's A1)Nikki Hemming has been trying to get a bill passed (in congress if my memory holds up correctly) that will impose a "tax or levy" on broadband customers through their ISP's The reasoning behind this: "they are gonna steal anyway...all broadband user's are crooks and thieves so let's make them pay for it in advance that way our liability is gone and the RIAA/Mpaa are satisfied and we've reached an agreement to compensate the artists? There was another point but I think this bad one speaks volumes in and of its self... Now then on to hacking and reversing the client and its technology This will shed maybe a little more light on the fasttrack protocol for us by the very nature that the components to run the Altnet network are being downloaded in bits piecse e.g., dll's (dynamic link library's which means they can be set-up and used by other applications besides the original program [the Altnet] that they were intended for. Now then for anyone who is a true hacker or programmer out there go get you a copy of the latest IMESH version 3.1 Use a setup monitor to monitor the installation ...if you want use a startup monitor to monitor changes made to your registry upon rebooting...use filemon/regmon whatever...but the important part for you is this open up a dll called AppManager.dll and you will see information pertaining to the fasttrack network....this may offer some clue as to portability (import/export calls to ?whatever? [remember i'm not a programmer just an idea man ;O)

06-05-02, 02:48 AM	#5
Mowzer ' Join Date: Jan 2002 Posts: 209	The risk lies in the fact BDE and Kazaa arent very renowned for security measures. In fact BDE has had its own servers compromised a few times before, as was mentioned on slashdot. What scares people is who are the ones acessing the other end? Basically if it falls into the wrong hands BDE has developed a very powerful DoS machine, for taking out porn sites.