|
|
綠壩·花季護航被指盜版 可能遭遇國際官司(圖)
一家叫Solid Oak Software的美國軟體公司指控綠壩軟體盜用其CyberSitter軟體的編碼.「綠壩」的圖形界面完全模仿CyberSitter,更要命的是,公司CEO Brian Milburn稱,「綠壩」的編碼使用了和Cybersitter擁有完全知識產權的Dll編碼完全一樣的名字,甚至還發回Solid Oak的伺服器更新黑名單
美軟體公司稱綠壩更新要經過他們的伺服器
密歇根大學的研究人員早前已經發現,綠壩的安裝文件含有美產過濾軟體 CyberSitter的dll文件和分類和過濾列表。星期五,CyberSitter的開發商Solid Oak Software公開指責綠壩抄襲代碼。
Solid Oak Software聲稱綠壩的用戶界面模仿了CyberSitter的風格。公司執行官Brian Milburn說,十分可惡的是綠壩使用了CyberSitter的dll文件后連名字都不改,更荒謬的是綠壩軟體的更新還要訪問他們的伺服器。Milburn說,當密歇根研究人員的分析報告發布之後,他100%相信綠壩使用了他們的私有代碼,他不能確定對方是反向工程,還是直接偷取。
Milburn表示他們正在考慮採取什麼手段防止他們所有的代碼被濫用。為了避免伺服器因大量中國用戶的更新請求而癱瘓,他們考慮的一種可能的方法是屏蔽中國的地址。這不是第一次CyberSitter的代碼被竊取,早在90年代黑客就反向工程CyberSitter,允許用戶能訪問成人內容。
專家認為,電腦過濾軟體,保護未成年人最有效
綠壩軟體含有漏洞易受攻擊
密歇根大學研究人員今日發布了一份綠壩的分析報告,報告中指出了一些綠壩的安全隱患,包括一個可以被遠程利用的棧溢出漏洞。這三名研究人員分別是密歇根大學計算機系的Scott Wolchok, Randy Yao和J. Alex Halderman。漏洞演示地址:http://wolchok.org:8000/。請注意,安裝了綠壩的用戶,訪問上述網址,瀏覽器將會崩潰(無其它危害)。當然如果精心設置網頁,可以直接控制用戶電腦。
如果此漏洞被惡意黑客利用,5000萬的綠壩用戶將可能全部被黑客控制,淪為肉雞和傀儡。目前的解決方案是:
1、關閉綠壩的過濾功能
2.、卸載綠壩(研究也顯示軟體自身的卸載並不幹凈)
根據密歇根大學團隊反向工程綠壩的dat加密文件,顯示它監視的對象簡直是無所不包,監控和屏蔽的網站甚至包括了download.windowsupdate.com,liveupdate,也就是說它將控制Windows補丁的安裝。
附一:綠壩被指盜版,可能遭遇國際官司
如此技術實力的一家軟體公司,有能力破解別人的源代碼,知道程序內核的來龍去脈,卻無法依葫蘆畫瓢。卻要活生生的去盜版。真是丟人。
今天的香港有線新聞 正不斷的播出:綠壩--被美國軟體公司指控盜版,所謂的綠壩,正在源源不斷的通過用戶電腦,發回娘家叫Solid Oak Software的美國軟體公司的伺服器一些信息。證明這軟體正在不斷的被盜用,甚至還發回Solid Oak的伺服器更新黑名單!!
另外的是,國家公職負責採購人員,卻沒有正真去驗收這軟體的合法性及原創性。也是對人民的莫大恥辱,害得國家白白花4000多萬銀子,也是該好好反省了。
還有的是中國的名聲要再次受損。美國佬一直就在找茬,現在卻花錢去買難受了。也許要受一次的外交勒索了。美國佬最重視的就是人權,知識產權。一般都是罰掉你所有,再加一倍懲罰性索賠,估計沒有超過1億,是買不了單了。最後的受害者又是誰啊。
是該好好查一下,一查到底 ,不要手軟了
一家叫Solid Oak Software的美國軟體公司指控綠壩軟體盜用其CyberSitter軟體的編碼.「綠壩」的圖形界面完全模仿CyberSitter, 更要命的是, 公司CEO Brian Milburn稱, 「綠壩」的編碼使用了和Cybersitter擁有完全知識產權的Dll編碼完全一樣的名字, 甚至還發回Solid Oak的伺服器更新黑名單。
附二:美聯社的相關報道
Company alleges Chinese software has stolen code
By JORDAN ROBERTSON
SAN FRANCISCO (AP) — A California company claims that the Internet-filtering software China has mandated for all new personal computers sold there contains stolen programming code.
Solid Oak Software of Santa Barbara said Friday that parts of its filtering software, which is designed for parents, are being used in the "Green Dam-Youth Escort" filtering software that must be packaged with all computers sold in China from July 1.
Solid Oak's founder, Brian Milburn, said he plans to seek an injunction against the Chinese developer that built the software, but acknowledged that it's new legal terrain for his company.
"I don't know how far you can try and reach into China and try to stop stuff like this," he said in an interview. "We're still trying to assess what they're doing."
A phone number for the Chinese developer could not immediately be located. A call by The Associated Press to China's embassy in the U.S. after business hours Friday went unanswered.
China has mounted a vigorous public defense of the software, saying it wants it to block violence and pornography. But critics say it censors many more things, and does it on a deeper level than the Internet censorship China currently employs.
China has more than 250 million Internet users and employs some of the world's tightest controls over what they see, often called the "Great Firewall of China," which refers to technology designed to prevent unwanted traffic from entering or leaving a network.
Political sites and others the government deems offensive are routinely blocked, but that happens at the network level. Savvy users can get around it by bouncing through "proxy" servers in other countries, but it takes some sophistication. Blocked sites simply won't load in users' Web browsers.
The new software blocks sites directly from a user's machine.
A report released Thursday by University of Michigan researchers who examined the Chinese software supports Solid Oak's claim that the Green Dam software contains pirated code. The report also found serious security vulnerabilities that could allow hackers to hijack PCs running the Chinese software.
The report found that a number of the "blacklist" files that Green Dam employs were taken from Solid Oak's CyberSitter program.
Blacklists are lists of Web sites that have been flagged as violent or pornographic or malicious or otherwise offensive. Web browsers on computers where blacklists are in use are instructed to block those sites.
The report's authors — researchers in the university's computer science and engineering division — also said they found another clue that Solid Oak's code was stolen: a file that contained a 2004 CyberSitter news bulletin that appeared to have been accidentally included in Green Dam's coding.
來源: 綜合 |
|
狗仔卡
提升卡
置頂卡
沉默卡
喧囂卡
變色卡
搶沙發
樓主
