{"id":929,"date":"2009-08-08T21:36:21","date_gmt":"2009-08-09T01:36:21","guid":{"rendered":"http:\/\/rbach.net\/blog\/?p=929"},"modified":"2022-12-30T12:15:30","modified_gmt":"2022-12-30T17:15:30","slug":"check-your-eula","status":"publish","type":"post","link":"https:\/\/rbach.net\/index.php\/check-your-eula\/","title":{"rendered":"Check Your EULA"},"content":{"rendered":"<p><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignleft wp-image-110106\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/computer_security.jpg?resize=125%2C106&#038;ssl=1\" alt=\"\" width=\"125\" height=\"106\" srcset=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/computer_security.jpg?resize=150%2C127&amp;ssl=1 150w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/computer_security.jpg?resize=75%2C64&amp;ssl=1 75w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/computer_security.jpg?w=333&amp;ssl=1 333w\" sizes=\"auto, (max-width: 125px) 100vw, 125px\" \/>I have been trying out <a href=\"http:\/\/www.javacoolsoftware.com\/eulalyzer.html\" target=\"_blank\" rel=\"noopener noreferrer\">EULAlyzer\u00a0 2.0<\/a> from <a href=\"http:\/\/www.javacoolsoftware.com\/\" target=\"_blank\" rel=\"noopener noreferrer\">Javacool Software<\/a> for a couple of months and have found the results to be interesting to say the least. EULAyzer scans the software publishers&#8217; End User License Agreements (EULA) for privacy risks, unwanted software, and other surprises like pop-up ads, sending personally identifiable information, or using unique identifiers to track the user&#8217;s activity.<\/p>\n<p>EULA<a href=\"http:\/\/www.javacoolsoftware.com\/eulalyzer.html\" target=\"_blank\" rel=\"noopener\"><img data-recalc-dims=\"1\" loading=\"lazy\" decoding=\"async\" class=\"alignright wp-image-110108\" title=\"Check Your EULA\" src=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/eulalyzer.png?resize=110%2C89&#038;ssl=1\" alt=\"Check Your EULA\" width=\"110\" height=\"89\" srcset=\"https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/eulalyzer.png?w=147&amp;ssl=1 147w, https:\/\/i0.wp.com\/rbach.net\/wp-content\/uploads\/eulalyzer.png?resize=75%2C61&amp;ssl=1 75w\" sizes=\"auto, (max-width: 110px) 100vw, 110px\" \/><\/a>lyzer searches the publishers&#8217; documents for what the vendor calls &#8220;<a href=\"http:\/\/www.javacoolsoftware.com\/eulalyzer.html#Browsers\" target=\"_blank\" rel=\"noopener noreferrer\">words of interest<\/a>&#8221; and then assigns its &#8220;Interest Rating&#8221; to the program. Like other anti-spyware programs, EULAlyzer ranks risks on a scale of 1 to 10 based on how crucial the disclosed information can be to the user&#8217;s security based on suspicious wording. The product also includes a search function that can be used to perform user-specific keyword searches of the entire EULA.<\/p>\n<p>The copy and paste function can be used to quickly find suspicious parts of web-based license agreements, website terms, privacy policies, and other similar documents. By default the program scans for language that deals with:<\/p>\n<ul>\n<li>Advertising<\/li>\n<li>Tracking<\/li>\n<li>Data Collection<\/li>\n<li>Privacy-Related Concerns<\/li>\n<li>Installation of Third-Party \/ Additional Software<\/li>\n<li>Inclusion of External Agreements By Reference<\/li>\n<\/ul>\n<p>EULAlyzer leverages the power of\u00a0<a href=\"http:\/\/en.wikipedia.org\/wiki\/Crowdsourcing\" target=\"_blank\" rel=\"noopener noreferrer\">crowdsourcing<\/a> through a related \u00a0<a href=\"http:\/\/www.eularesearchcenter.com\" target=\"_blank\" rel=\"noopener noreferrer\">EULA Research Center<\/a><cite><\/cite>, which optionally allows users to anonymously submit license agreements they scan to enlarge the underlying database of EULA&#8217;s and further improve the program.\u00a0 There is also a <a href=\"http:\/\/www.wilderssecurity.com\/forumdisplay.php?f=19\" target=\"_blank\" rel=\"noopener noreferrer\">web forum<\/a> available to provide support on the application.<\/p>\n<p><strong><em>rb-<\/em><\/strong><\/p>\n<p><em>EULAlyzer is a proactive tool in the fight against malware. In the enterprise, this tool can be used by those responsible for developing and maintaining disk images. It can also be used by the compliance staff to quickly flag potential issues and pass them up the line to SME or the legal department.<\/em><\/p>\n<p><em>EULAlyzer is no substitute for reading the EULA. We all know that the EULA should be read and understood before proceeding with any software installation. What EULAlyzer does is save time and effort by flagging the most onerous parts of a EULA for your review to focus on potentially riskier behavior.<\/em><\/p>\n<p><em>I found EULAlyzer interesting and effective. It made me realize the lengths that software manufacturers go to hide the details of the EULA. The EULA&#8217;s are <\/em><em>buried deep down in sub-sub-sub directories, <\/em><em>cryptically named and\/or huge. The web-based EULA for Adobe Acrobat Reader is part of a <a href=\"https:\/\/www.adobe.com\/products\/eulas\/pdfs\/Reader_Player_WWEULA-Combined-20060724_1430.pdf\" target=\"_blank\" rel=\"noopener noreferrer\">282 page PDF<\/a>. <\/em><\/p>\n<p><em>As for the application itself, I would like to see better explanations of the items the program flags, either through an in-depth help file or a web-based resource.<\/em><\/p>\n<p><em>EULAlyzer is a donation-ware application that is free for personal and educational uses (there is a corporate version also <a href=\"http:\/\/www.javacoolsoftware.com\/eulalyzerpro.html#Pricing\" target=\"_blank\" rel=\"noopener noreferrer\">available<\/a> ) Compatible with: Windows 2000, XP, 2003, Vista.<\/em><\/p>\n<p><strong>NOTE:<\/strong> This blog does not provide legal advice. It can only highlight information that you may want to consider before making your own decisions to proceed or not. You should always consult a lawyer (or other competent authority) for advice on legal issues.<\/p>\n<p>&nbsp;<\/p>\n<p><em><a title=\"Ralph Bach\" href=\"https:\/\/rbach.net\/index.php\/new-resume\/\" target=\"_blank\" rel=\"noopener noreferrer\">Ralph Bach<\/a>\u00a0has been in IT long enough to know better and has blogged from his\u00a0<a title=\"Bach Seat\" href=\"https:\/\/rbach.net\/\" target=\"_blank\" rel=\"noopener noreferrer\">Bach Seat<\/a> about IT, careers, and anything else that catches his attention since 2005. You can follow him on <a class=\"broken_link\" href=\"http:\/\/www.linkedin.com\/in\/rb48334\" target=\"_blank\" rel=\"noopener noreferrer nofollow\">LinkedIn<\/a>,\u00a0<a href=\"https:\/\/www.facebook.com\/ralph.bach.14\" target=\"_blank\" rel=\"noopener noreferrer\">Facebook<\/a>,\u00a0and\u00a0<a href=\"https:\/\/twitter.com\/rbach48334\" target=\"_blank\" rel=\"noopener noreferrer\">Twitter<\/a>. Email the Bach Seat\u00a0<a href=\"mailto:\/\/bach.seat@gmail.com\" target=\"_blank\" rel=\"noopener noreferrer\">here<\/a>.<\/em><\/p>\n","protected":false},"excerpt":{"rendered":"<p>EULAlyzer is a proactive tool that can be used by staff kook for the most egregious end user license agreements EULA and flag potential issues for legal<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[4],"tags":[3216,2350,71,23,4],"class_list":["post-929","post","type-post","status-publish","format-standard","hentry","category-security","tag-3216","tag-crowdsource","tag-eula","tag-malware","tag-security"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts\/929","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/comments?post=929"}],"version-history":[{"count":3,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts\/929\/revisions"}],"predecessor-version":[{"id":125222,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/posts\/929\/revisions\/125222"}],"wp:attachment":[{"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/media?parent=929"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/categories?post=929"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rbach.net\/index.php\/wp-json\/wp\/v2\/tags?post=929"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}