From owner-freebsd-questions@FreeBSD.ORG Tue Jul 19 09:41:51 2011 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 7845A106566B for ; Tue, 19 Jul 2011 09:41:51 +0000 (UTC) (envelope-from f.bonnet@esiee.fr) Received: from hp9.esiee.fr (hp9.esiee.fr [147.215.1.4]) by mx1.freebsd.org (Postfix) with ESMTP id E6F8A8FC08 for ; Tue, 19 Jul 2011 09:41:50 +0000 (UTC) Received: from mail.esiee.fr (mail.esiee.fr [147.215.1.3]) by hp9.esiee.fr (Postfix) with ESMTP id 802DA14E994D; Tue, 19 Jul 2011 11:41:49 +0200 (CEST) X-DKIM: OpenDKIM Filter v2.4.1 hp9.esiee.fr 802DA14E994D DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=esiee.fr; s=MAILOUT; t=1311068509; bh=DIQOXjv/Y9DpT5Rbdzkvid1BQgPbtfhdg9ai8SYtRYo=; h=Message-ID:Date:From:MIME-Version:To:CC:Subject:References: In-Reply-To:Content-Type; b=NAFET+zvjhb601TDAbHW9jtE3JDJkcNd587Rzeu1bx+R1fR7BoW6tn7GNBT3pDgex jNv3QSZ1b2SUJ3c5BOnxAGPCH+j6RazCprVnjRZuD833lBTOVz3pSYxbbRUVI8QRaK 8C1v9Ez4GMidOZhkewQoVDMNrWIekQy2v3/8sVrM= Received: from mail.esiee.fr (localhost [127.0.0.1]) by VAMS.dummy (Postfix) with SMTP id 7E3143C4F2A; Tue, 19 Jul 2011 11:41:49 +0200 (CEST) Received: from secure.esiee.fr (secure.esiee.fr [147.215.1.19]) by mail.esiee.fr (Postfix) with ESMTP id 4EDFC3C3CBD; Tue, 19 Jul 2011 11:41:49 +0200 (CEST) Received: from [147.215.1.21] (lisa.esiee.fr [147.215.1.21]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) (Authenticated sender: bonnetf) by secure.esiee.fr (Postfix) with ESMTPSA id 42B00EAE2B; Tue, 19 Jul 2011 11:41:49 +0200 (CEST) Message-ID: <4E25515D.3000901@esiee.fr> Date: Tue, 19 Jul 2011 11:41:49 +0200 From: Frank Bonnet User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.2.18) Gecko/20110617 Lightning/1.0b2 Thunderbird/3.1.11 MIME-Version: 1.0 To: "C. P. Ghost" References: <201107190549.p6J5n6sP028960@mail.r-bonomi.com> <4E252119.3030208@esiee.fr> <89EB5E14-AA8E-4265-9C5D-22641ECC1C37@my.gd> In-Reply-To: Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: "freebsd-questions@freebsd.org" Subject: Re: Tools to find "unlegal" files ( videos , music etc ) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 19 Jul 2011 09:41:51 -0000 On 07/19/2011 11:06 AM, C. P. Ghost wrote: > On Tue, Jul 19, 2011 at 8:55 AM, Damien Fleuriot wrote: >> On 19 Jul 2011, at 08:15, Frank Bonnet wrote: >>> In France it's illegal and I have my boss's instruction : >>> >>> - find and delete the files that's all. >> Bon courage then... >> >> A file can not be illegal per se, so you won't be able to detect >> these by looking up names or contents. >> Even then, if a file is labeled as personal, privacy protection >> applies and it is *unlawful* for you to process it. >> (That is in the same way that your employer is strictly forbidden >> from peeking inside your email messages clearly labeled as personal, >> even if they were received on your work mailbox.) > Exactly! > > Speaking with my university sysadmin hat on: you're NOT allowed to > peek inside personal files of your users, UNLESS the user has waived > his/her rights to privacy by explicitly agreeing to the TOS and > there's legal language in the TOS that allows staff to inspect files > (and then staff needs to abide by those rules in a very strict and > cautious manner). So unless the TOS are very explicit, a sysadmin or > an IT head can get in deep trouble w.r.t. privacy laws. > >> You may want to look for files that are unusually large. >> They could possibly be ISOs, dvdrips, HD movie dumps... > Not to forget encrypted RAR files (which btw. could contain anything, > including legitimate content, so be careful here). > >> We have the same problem here with users sharing movies on the file >> servers, and what makes it worse is some of their movie files are >> legit because they're, for example, official trailers that are >> reworked and redistributed to our customers. >> >> You won't win this, tell your boss it can not be done. > What can technically be done is that the copyright owner provides a > list of hashes for his files, and requests that you traverse your > filesystems, looking for files that match those hashes. AND, even > then, all you can do is flag the files, and you'll have to check with > the user that he/she doesn't own a license permitting him/her to own > that file! > > However, even that isn't foolproof: nothing prevents a user from > flipping a bit or two, rescaling, resampling, splitting the files into > multiple files in a non-obvious manner, adding random bytes at the end > etc...: the result would still be infringing, but can't be detected > automatically (at least not in a reasonable amount of time). > > Better talk with your users and resolve the problem using > non-technical means. Inventive users WILL always outsmart any > technical solution that you implement: this is a race you absolutely > can't win. > > -cpghost. > I agree with most of what you write , my real goal is not to win the race but only warn users about the nonsense of keeping those files in a space they do not own even it is called "private" In fact is our filers are really expensives machines (NetAPP...) paid by our institution to store users's work not their private data, personnal computers are build/sold for that. I think we should close this thread for now , thanks to all that respond. --=20 Frank BONNET 01.45.92.66.17 Service des Moyens Informatiques Generaux ESIEE PARIS Cit=E9 Descartes / BP 99 93162 NOISY-LE-GRAND Cedex http://www.esiee.fr