you gotta have a company to do this?

Yes. You must be incorporated in at least three states, have filed corporate taxes for no fewer than five years, and employ at least a dozen but no more than 25000 people.

Hand, meet back of head. *smack*

FYI, the answers are:

2
True
True
True

Maybe I am paranoid, but wouldn't this allow Microsoft to associate a snailmail address to a passportID, and if MSIE were used, maybe windows licensing information?

I'm not saying this is what they are doing, but how amusing would it be if people who were running illegally obtained copies of MS Windows were mailed legal documents as a bonous prize with or instead of their USB thumb drive?

/me tries to invoke the tinfoil-hat spell. ]:>

It would be a shame to pirate such a fine piece of software ... Also seems like a rather random shot to expect that the tactic would reap major benefits of uncovering people that pirate the OS. OTOH I would sooner expect that they are tracking pirated copies by logging people/hosts downloading updates have not verified with the WGA by using the insanely-brilliant-theyll-never-catch-us workaround that basically flags you as someone not abiding by their license terms.

Of interesting note, the final verification does inform the submitting party that:

I can't wait to see what valuable information is loaded on the drive they mail me. Maybe a list of product keys? :P

Or as another member of the forums (omitted to protect Chris' identity) pointed out, it would be a great way to rootkit your box :)

Not very amusing, so use the tried and true: a handle and a mail drop.
(I'm personally legal).

Al

I got a "bonous prize" for em right heah :>

Now you're making me paranoid, I'm gonna wipe it with a non Windows machine. I guess I'll never get to see what spectacular marketing drivel is on the thing, assuming it's full OS specific apps.

You bring up an interesting point though, why wouldn't they just log non-licensed machines downloading updates and subpoena your ISP RIAA style?

Consider costs involved for legal expense and the opportunity cost of negative publicity when going after ISP with legal subponea in hand.

Now consider the kind of slashdot and internet blogging that might be created as spin doctors on both sides claim and counterclaim that the "big evil/profitable corporation" is/isn't imposing unfair harassment of ordinary citizens.

Compare that to the positive view of MS offering wooden horses err, USB drives to geeks.

A twist on the old phrase, "Beware Geeks, when others are bearing gifts!." (Beware Greek's bearing gifts, like the Torjan Horse.) In addition to the positive publicity, imagine the legal value in customers acquiring these drives AFTER they were required to select entries on forms they submitted, where they claimed they understood licensing issues with software. Compound this with some people freely giving a Passport ID and snailmail address, and then go further, to consdier how this would strengthen a case where ISP records were also included.

Level 2? Run off a bunch of form letters with names, addresses and specifics substituted, and send them off to people thought to be software pirates with an opportunity to pay for the software and avoid legal issues. Depending on how it is handled, it could be a legalized form of extortion. (Pay us or else!)

My tinfoil hat incantation is alsmost done. I wonder how many undead will be raised to wear the tinfoil hats. ]:>

(In zombie voice) "Mmmmm... more brains... and tinfoil hats. urrrhhhnnnnn."

This is such a fun game to play. ]:>

(Added to the spell continued by converge who modified and re-cast a spell by Chris, and the conspiracy theorists will start foaming at the mouth.)

Thinking of ways to poke holes in your theory this morning in the shower, and here is my general thought:

Let's say I'm uber Microsoft pirate #1, downloading only cracked commercial software and avoiding all free alternatives just because I'm a college kid and I can. Determination of this is going to be limited to the system/browser submitted through. Read as: if Microsoft is using this as a metric in any way to determine a pirate->legal-address, how could they get around folks that sign up through work or school systems?

Case:
I grab their offer through my work PC and it is fully legit because the business is smart, now that legit verification is associated with my home address that contains (theoretically, not condoning stealing software here..) piles of illegal software. Does this clear me?

Likewise, I go over to visit a friend and sign up through his computer using my own address; does this now implicate me, even though I had no idea my friend was running a pirated copy? How can they prove the system->owner?

They can't. They can send out scare propaganda to try and convince people to 'go genuine' .. but legally they wouldn't have a foot to stand on without seizing systems as evidence.

Other means I can understand, but I think this conspiracy has been busted. Tune is next week for 'Cleaning Fish Anus with Exposives"


--edit: now.. if they could shows logs of downloaded updates from a known-illegal copy of their software, tied to a static IP address (likely a business or school in this case) they would not need these tactics to obtain mailing addresses .. they can already pursue copyright abuse through ISPs (I think, I do not believe this is limited to transmission of IP)

I think they should follow in the footsteps of those sushi drives, and give out drives that look like Bill's head- with red LEDs in the eyes that flash...

But seriously, I would like to get one of the free drives and crack it open- who knows what they've done HARDWARE wise- with places like Lantronix putting entire webservers into the RJ45 jack...now who's paranoid?

LosT

Even more scary that a microsoft witch hunt is your admission to thinking about CotMan while showering.....

If you want the thumb drive, then jump through their hoops on a linux box.

I'm not really sure why, but web browsers on Mac OS X and Linux did not appear to work. The "survey" comes up only for Internet Explorer.