The latest change to iPod software that rendered the audio listening device less interoperable has been broken. This isn’t the first time iPod and iTunes-related algorithms were broken and it won’t be the last.

Read more about the news or download a local copy of the public domain source code that implements the new hashing algorithm.

Here’s a sample of what people are saying about the latest break:

Really the only “correct” solution is for folks to stop using Apple products.

Ian Monroe

screw you and your pathetic failed attempt to use your ridiculously trendy device to lock its owners into your sorry excuse for music playing software.

i know you’re afraid of the linux desktop eating away at your precious niche market, but at least you could play fair.

Ryan Lortie

Although we -the Linux community- can choose not to buy iPods, many other people will. And it is our goal to make Linux a viable modern computing platform that allows people to use all of their existing devices.

Breaking the hash is not really a long-term solution, as they can keep making the process harder every time. The long-term solution is for iPods to have a standard interface that third parties can communicate with.

This probably should be compounded to the EU’s findings on Apple’s anti-trust practices to ensure open access to a popular device.

Miguel de Icaza

Background

Apple has changed the way iPods work so that only Apple’s software can successfully manipulate the songs on an iPod. Until the new arrangement is reverse-engineered, Apple has locked in iPod users into their software, transforming a more useful general-purpose audio listening and file carrying device to something that chiefly obeys Apple’s wishes.

Lennart Poettering is a free software hacker, author of important software including Avahi (which helps computers connect to each other and discover services) and PulseAudio (which allows computers to play multiple sounds simultaneously, even sending audio over networks to be heard somewhere else). He is quite familiar with the relevant protocols Apple uses to allow iTunes to share files and send audio around the network. These aren’t the kinds of programs one uses directly but they’re quite necessary for any modern system.

Analysis

Poettering’s analysis of Apple’s latest move is quite apt. There’s more on this issue from Boing Boing and Hubert Figuiere, another free software hacker.

At one point, Poettering concludes to use a technically inferior protocol to do the job DAAP does because DAAP is not an open protocol and UPnP is an open protocol:

I believe that DAAP is the superior protocol in comparison to UPnP MediaServer. (Not really surprising, since I wrote most of Avahi, which is a free implementation of mDNS/DNS-SD (“Zeroconf”), the (open) Apple technology that is the basis for DAAP.) However, due to the closedness of DAAP I would recommend everyone to favour UPnP MediaServer over DAAP. It’s a pity.

Apple did the right thing with the mDNS/DNS-SD protocol (which allows computers to see what services they offer and help make it easier for ordinary users to connect computers together on a local network). Apple allows everyone to use mDNS/DNS-SD and encourage broad acceptance by publishing complete specs under a license that encourages implementation, allow an Apple employee to help with technical questions, and build valuable programs and devices which use the protocol.

But make no mistake, if Apple were a more popular consumer electronics company they would treat you no better than they could get away with. Best not to become dependent on them.

Update

A little over a day after this news broke, Apple’s latest exclusion scheme has been broken.

Thanks to Lovely Lizzie for the tip: If you received a passport recently, you’ve probably got one with an RFID tag in it. Radio Frequency Identification tags are a chip and antenna combination that receive a signal from a scanner. When the scanner sends one a signal, the RFID tag uses the energy in the signal to possibly do a light bit of computation and broadcast a signal back.

RFID tags are embedded in a number of goods we already own and that is quite troubling from a privacy standpoint, but chief among them is in the passport and in a human being. By carrying an RFID tagged passport one is basically broadcasting some information about their passport to anyone with an RFID scanner. I don’t need to get into the details of how unwise this as the US bombs the world into democracy.

Katherine Albrecht and Liz McIntyre co-authored “Spychips: How Major Corporations and Government Plan to Track Your Every Purchase and Watch Your Every Move“, long-time listeners of my show will probably recall the interview. In Spychips Albrecht & McIntyre examine ways in which our privacy is being eroded through RFID, shopper cards, and similar tracking technology. They take on the ethical implications of making us all more easily tracked by anyone who wishes to do so. You’ve probably read about their protests and informative talks in the mainstream media. I keep up with their activities through the CASPIAN mailing list.

In case you’re thinking “why would I care about privacy, I have nothing to hide!” Bruce Schneier reminds you that privacy is not about hiding a wrong, it’s a fundamental requirement for human decency. There are plenty of things we commonly do where we desire privacy; we’re not doing something wrong or shameful, we just don’t wish to broadcast our activities. We also use privacy as a check on those in power by denying those who would oppress us the information they’d use against us. Privacy should be respected and not given away without serious consideration about how the information will be used and who will have access to it.

AMD owns ATI, a computer videocard manufacturer. Recent ATI videocards have no free software drivers. The proprietary ATI driver which works with a typical GNU/Linux system is poor quality and as a result many users have problems with it. At the Red Hat summit going on right now, an AMD representative discussed the situation and Tom Calloway blogged about it:

An executive VP from AMD gave a keynote this morning, and he talked up open source and committed to making the ATI driver “better”.

We don’t need the driver to be “better”, Mr. AMD, we need the driver to be “free”. You make it free. Free your specs. Free up a little of your manpower to answer technical queries from developers. Free Dave Airlie from his NDA restrictions. Free your existing code.

You make it free. We’ll make it better. Everyone will benefit.

Calloway has the right message; software freedom will lead to improved code quality. If ATI supported our freedom we could change our position from recommending against ATI hardware to telling people which ATI videocards to buy, just like we tell people which Intel hardware to look for in their next machines as a direct result of Intel’s stance supporting free software. On a related note, consider what ATI spokesperson Henri Richard is reported to have said and the skeptical reaction recorded on Christopher Blizzard’s blog.

The situation Calloway describes here bears an eerie similarity to something we’ve heard before.
Continue reading →