Welcome, Unregistered.

If this is your first visit, be sure to check out the FAQ by clicking the link above. You may have to register before you can post: click the register link above to proceed. To start viewing messages, select the forum that you want to visit from the selection below.

Reply
Old 06-May-2011, 01:10   #476
Akumajou
Member
 
Join Date: Nov 2004
Posts: 508
Default

Quote:
Originally Posted by goonergaz View Post
As much as I am a big fan of Sony you are completely correct. I manage a system where I work and I know for a fact that the suppliers of said system have an identical test server for such updates and I have a test server on site for testing new software - it may take months to plan though...depending on the severity of the issue and complexity of the 'fix'.

I do believe Sony were slow to react but I also believe the dates provided above (I'm sure the FBI will catch them out if anything is untrue) - so Sony told us pretty much as soon as it was confirmed (within a day) not 7/9 days as many seem to suggest.

I wonder if Sony were working on a complete migration and this is why it was left unpatched for so long...it would also explain why they can 'all of a sudden' migrate to new 'more secure' servers when usually such excersises take months of planning.
But Sony's servers are not easily accesible like the usual hacks that plague Windows Operating Systems, you have to have inside access to proprietary Sony software, and these hackers got access to such things as well as reverse engineering/hacking of the Sony firmware that unless they did not have the official documentation they would have never been able to simply crack it.

I personally am very disappointed at how the mainstream tech media keeps making it sound like these hackers are intelligent when they just had access to stuff the average consumer is not supposed to have access to so its no suprise otherwise they would have hacked the PS3 way back in 2006 or early 2007 even if OtherOS was never offered.
__________________
As the Sun touches the ocean, I know it touches you
as the clouds embrace the Moon light, I still think of you.
Akumajou is offline   Reply With Quote
Old 06-May-2011, 03:25   #477
macabre
Member
 
Join Date: Jul 2005
Location: Porta Hercynia
Posts: 696
Default

http://blog.us.playstation.com/2011/...e-restoration/

Quote:
Today our global network and security teams at Sony Network Entertainment and Sony Computer Entertainment began the final stages of internal testing of the new system, an important step towards restoring PlayStation Network and Qriocity services.
http://blog.us.playstation.com/2011/...ugh-debix-inc/

Quote:
A $1 million identity theft insurance policy per user
http://blog.us.playstation.com/2011/...ward-stringer/
macabre is offline   Reply With Quote
Old 06-May-2011, 03:47   #478
Brad Grenz
Philosopher & Poet
 
Join Date: Mar 2005
Location: Oregon
Posts: 2,531
Default

One year of identity theft insurance is a pretty common in these situations. I wonder what Sony actually pays when they sign a contract for so many customers? I bet it isn't very much per customer.
Brad Grenz is offline   Reply With Quote
Old 06-May-2011, 05:38   #479
Xenus
Senior Member
 
Join Date: Nov 2004
Location: Ohio
Posts: 1,316
Default

It's probably not even that they just signed such a contract. It's probably covered under some insurance they bought against this type of thing.
Xenus is offline   Reply With Quote
Old 06-May-2011, 10:22   #480
goonergaz
Senior Member
 
Join Date: Jun 2005
Posts: 1,114
Default

Quote:
Originally Posted by Akumajou View Post
But Sony's servers are not easily accesible like the usual hacks that plague Windows Operating Systems, you have to have inside access to proprietary Sony software, and these hackers got access to such things as well as reverse engineering/hacking of the Sony firmware that unless they did not have the official documentation they would have never been able to simply crack it.

I personally am very disappointed at how the mainstream tech media keeps making it sound like these hackers are intelligent when they just had access to stuff the average consumer is not supposed to have access to so its no suprise otherwise they would have hacked the PS3 way back in 2006 or early 2007 even if OtherOS was never offered.
Sorry, I wasn't aware of the insider info - it was implied somewhere IIRC but I don't recall it being confirmed?
goonergaz is online now   Reply With Quote
Old 06-May-2011, 11:35   #481
JPT
Senior Member
 
Join Date: Apr 2007
Location: Oslo, Norway
Posts: 1,388
Default

The letter from Howard Stringer on the EU blog is pushing it, comparing the breach with the Earthquak and Tsunami, they might not intend it like that. But reading it, definitely sounds like they are playing the poor us card there.
And the stronger defense statement, mmmmm would me much more assuring if they trotted out state of the art or best money can buy. Now their just upgrading with no real faith in the upgrade

http://blog.eu.playstation.com/2011/...ward-stringer/

But most importantly when will it be back? Last estimate we saw was one week from Tuesday last week.
JPT is online now   Reply With Quote
Old 06-May-2011, 12:23   #482
Arwin
Now Officially a Top 10 Poster
 
Join Date: May 2006
Location: Maastricht, The Netherlands
Posts: 15,127
Default

I don't know if it came across that way to everyone (probably not), but I'm sure the point is that Sony was hit hard by the Tsunami / Earthquake problems, but unlike that natural disaster the current problems were actually a man-made criminal attack that is seriously damaging the company (also stock-wise). So from his perspective, and the two things hitting the company so close after each other, it is not a strange comment. I guess to many Europeans the Tsunami / Earthquake in Japan isn't just as big of a deal - heck most of us even got Motorstorm: Apocalypse on the original release date.
Arwin is offline   Reply With Quote
Old 06-May-2011, 12:39   #483
goonergaz
Senior Member
 
Join Date: Jun 2005
Posts: 1,114
Default

I must confess that I thought the anti Sony brigade are going to lap that quote up.
goonergaz is online now   Reply With Quote
Old 06-May-2011, 21:06   #484
AlphaWolf
Specious Misanthrope
 
Join Date: May 2003
Location: Treading Water
Posts: 8,145
Default

I think they need a server vulnerability scale, that would allow them to better inform their customers of the issues at hand.

1.0 - kiddie script.. someone is testing the ports
|
V
8.0 cancel your credit cards
AlphaWolf is offline   Reply With Quote
Old 06-May-2011, 22:19   #485
BoardBonobo
Infraction Magnet
 
Join Date: May 2002
Location: SurfMonkey's Cluster...
Posts: 3,073
Default

Quote:
Originally Posted by AlphaWolf View Post
I think they need a server vulnerability scale, that would allow them to better inform their customers of the issues at hand.

1.0 - kiddie script.. someone is testing the ports
|
V
8.0 cancel your credit cards
9. "Whaddya mean you left it on the train?"

10. "I'm sure we had a server here somewhere... Check the back of the sofa Kaz mate"
__________________
"We're a virus with shoes" - Bill Hicks
"We are all geniuses. If you judge a fish by it's ability to climb a tree, it will spend its entire life believing it is stupid" - Albert Einstein
"The Tree of Life is Self-Pruning" - The Darwin Awards
BoardBonobo is offline   Reply With Quote
Old 07-May-2011, 03:44   #486
deathindustrial
Member
 
Join Date: Jan 2007
Location: Soviet Kanuckistan
Posts: 615
Default

http://blog.us.playstation.com/2011/...ration-update/

Quote:
...When we held the press conference in Japan last week, based on what we knew, we expected to have the services online within a week. We were unaware of the extent of the attack on Sony Online Entertainment servers, and we are taking this opportunity to conduct further testing of the incredibly complex system....
At this rate Duke Nukem Forever is going to be released before PSN is back online.

If their account authentication system is that "incredibly complex" it sounds like they are doing something incredibly wrong.

Cheers
__________________
Couch CO-OP FTW!
deathindustrial is offline   Reply With Quote
Old 07-May-2011, 08:09   #487
-tkf-
Regular
 
Join Date: Sep 2002
Posts: 5,389
Default

Quote:
Originally Posted by deathindustrial View Post
http://blog.us.playstation.com/2011/...ration-update/



At this rate Duke Nukem Forever is going to be released before PSN is back online.

If their account authentication system is that "incredibly complex" it sounds like they are doing something incredibly wrong.

Cheers
I would like that, i have waited for Duke Nukem since 1997.

Itīs obvious that getting PSN online is not a quick fix and the scale doesnīt help.

Being a big supporter of Cloud Services (and preacher) this really made me think. These things happens now and will continue to happen. And as more and more functions is bound to the services in the cloud, services becomes even more vulnerable. If PSN is down, you canīt play online, it doesnīt matter that the servers are hosted somewhere else. If Google has a problem, you canīt access your mail or you docs, pics etc that is in the cloud. The centralized nature is a big weakness when something goes wrong.

I hope that Microsoft, Nintendo and espcially Sony learns from this. I would propose a complete backup system that only works in "read only mode". Providing the basic services so that games work but only basic.
__________________
Batteries NOT included with the XBOX One Controllers: http://techland.time.com/2013/07/29/...ore-expensive/
2nd hand market talk here: http://forum.beyond3d.com/showthread.php?t=59311
-tkf- is offline   Reply With Quote
Old 07-May-2011, 16:59   #488
BRiT
...
 
Join Date: Feb 2002
Location: Cleveland
Posts: 5,503
Default

I believe MS has nothing tech-related to learn from this Sony SNAFU as MS's Azure-based services have provided for a lot of the functionality Sony and others are missing. The likely features being automatic rolling updates and upgrades, automatic rollback of failed patches, failure detections of the nodes, load-based scaling, location independence of nodes, as well as consistent backup policies and procedures. Have a look at the various Azure-based presentations at PDCs (Professional Developer Conference) or TechEds. I first noticed this at the 2008 PDC in Los Angeles.
BRiT is offline   Reply With Quote
Old 07-May-2011, 18:32   #489
-tkf-
Regular
 
Join Date: Sep 2002
Posts: 5,389
Default

Quote:
Originally Posted by BRiT View Post
I believe MS has nothing tech-related to learn from this Sony SNAFU as MS's Azure-based services have provided for a lot of the functionality Sony and others are missing. The likely features being automatic rolling updates and upgrades, automatic rollback of failed patches, failure detections of the nodes, load-based scaling, location independence of nodes, as well as consistent backup policies and procedures. Have a look at the various Azure-based presentations at PDCs (Professional Developer Conference) or TechEds. I first noticed this at the 2008 PDC in Los Angeles.
Could you provide some links? It would be interesting to see how Microsoft is better than Amazon or Google.
__________________
Batteries NOT included with the XBOX One Controllers: http://techland.time.com/2013/07/29/...ore-expensive/
2nd hand market talk here: http://forum.beyond3d.com/showthread.php?t=59311
-tkf- is offline   Reply With Quote
Old 07-May-2011, 19:03   #490
AlphaWolf
Specious Misanthrope
 
Join Date: May 2003
Location: Treading Water
Posts: 8,145
Default

you mean like

http://www.microsoft.com/windowsazure/

?
AlphaWolf is offline   Reply With Quote
Old 08-May-2011, 07:15   #491
deathindustrial
Member
 
Join Date: Jan 2007
Location: Soviet Kanuckistan
Posts: 615
Default

I was curious about the source of the outdated Apache server / no firewall claims. For the moment I am having to assume that it is related to the IRC log that was making the rounds back in February 2011:

http://www.ps3hax.net/showpost.php?p...&postcount=180

Google's cache from March 23 shows the server in question displaying the banner for 2.2.17 of Apache which is current:

http://webcache.googleusercontent.co...laystation.net

I then wanted to know what "forums" Dr.Spafford was using as his source for the congressional testimony (based on various news articles making the rounds) and so took a peek at his written submission and it contains this gem:

Quote:
I have no information about what protections they had in place, although some
news reports indicate that Sony was running software that was badly out of date, and had
been warned about that risk.
http://republicans.energycommerce.ho...1/Spafford.pdf

So anyone using Dr. Spafford as the source for the "they ran outdated software" claim did not actually read his submission - he doesn't know anything more than you or me. The situation is dire enough without media hacks making crap up.

Cheers
__________________
Couch CO-OP FTW!
deathindustrial is offline   Reply With Quote
Old 08-May-2011, 08:12   #492
-tkf-
Regular
 
Join Date: Sep 2002
Posts: 5,389
Default

Quote:
Originally Posted by AlphaWolf View Post
I meant something useful, if Azure does something special compared to the competition it would be interesting to read about it. Considering how slow that Microsoft have been when it comes to Cloud services i would be pleasantly surprised if they do anything better than those that is beating them on a daily basis.
__________________
Batteries NOT included with the XBOX One Controllers: http://techland.time.com/2013/07/29/...ore-expensive/
2nd hand market talk here: http://forum.beyond3d.com/showthread.php?t=59311
-tkf- is offline   Reply With Quote
Old 08-May-2011, 09:00   #493
Brad Grenz
Philosopher & Poet
 
Join Date: Mar 2005
Location: Oregon
Posts: 2,531
Default

Quote:
Originally Posted by deathindustrial View Post
I was curious about the source of the outdated Apache server / no firewall claims. For the moment I am having to assume that it is related to the IRC log that was making the rounds back in February 2011:

http://www.ps3hax.net/showpost.php?p...&postcount=180

Google's cache from March 23 shows the server in question displaying the banner for 2.2.17 of Apache which is current:

http://webcache.googleusercontent.co...laystation.net

I then wanted to know what "forums" Dr.Spafford was using as his source for the congressional testimony (based on various news articles making the rounds) and so took a peek at his written submission and it contains this gem:



http://republicans.energycommerce.ho...1/Spafford.pdf

So anyone using Dr. Spafford as the source for the "they ran outdated software" claim did not actually read his submission - he doesn't know anything more than you or me. The situation is dire enough without media hacks making crap up.

Cheers
Yeah, people are so eager to believe the worst about Sony that any rumor that blackens their eye is immediately repeated as fact. The fact is that "security expert" was literally repeating something he read on a message board once. His claim that Sony knew was based on an assumption that someone from Sony probably read the same post he did. He did not have first hand knowledge. He did not personally inform Sony. He didn't even do the very basic detective work you have that completely repudiates the claims. We are in a backwards world where everything Sony said is assumed to be a lie or conspiracy and "IRC chat logs" have miraculously become the most trusted news source in the industry.

It's an example of just how far the journalistic standards have fallen and the way the "console wars" have made it impossible to have an honest discussion about anything. Everything becomes a proxy battle between internet partisans, and blogs like Kotaku are more than happy to stoke the mob mentality since it gets them clicks (and their writers are paid by the post and will write up anything).

Anyway. You should send a tip to Joystiq or somebody with your findings.
Brad Grenz is offline   Reply With Quote
Old 08-May-2011, 09:48   #494
Shifty Geezer
uber-Troll!
 
Join Date: Dec 2004
Location: Under my bridge
Posts: 30,881
Default

Quote:
Originally Posted by Brad Grenz View Post
Anyway. You should send a tip to Joystiq or somebody with your findings.
I agree with everything you've written, including this. If this expert's testimony is useless, it needs to be known so those listening to him know to disregard his unjustified comments.
__________________
Shifty Geezer
...
Flashing Samsung mobile firmwares. Know anything about this? Then please advise me at -
http://forum.beyond3d.com/showthread.php?p=1862910
Shifty Geezer is offline   Reply With Quote
Old 08-May-2011, 10:44   #495
Brad Grenz
Philosopher & Poet
 
Join Date: Mar 2005
Location: Oregon
Posts: 2,531
Default

Quote:
Originally Posted by Shifty Geezer View Post
I agree with everything you've written, including this. If this expert's testimony is useless, it needs to be known so those listening to him know to disregard his unjustified comments.
For my part I'm going to write it up and post it to Bitmob. That's a better place than my own blog, which is mostly satirical, and maybe a link on N4G can help get this information out. Here's my article: http://bitmob.com/articles/detective...ers-up-to-date
Brad Grenz is offline   Reply With Quote
Old 08-May-2011, 11:21   #496
tuna
Senior Member
 
Join Date: Mar 2002
Posts: 2,118
Default

Quote:
Originally Posted by deathindustrial View Post
I was curious about the source of the outdated Apache server / no firewall claims. For the moment I am having to assume that it is related to the IRC log that was making the rounds back in February 2011:

http://www.ps3hax.net/showpost.php?p...&postcount=180

Google's cache from March 23 shows the server in question displaying the banner for 2.2.17 of Apache which is current:

http://webcache.googleusercontent.co...laystation.net

I then wanted to know what "forums" Dr.Spafford was using as his source for the congressional testimony (based on various news articles making the rounds) and so took a peek at his written submission and it contains this gem:



http://republicans.energycommerce.ho...1/Spafford.pdf

So anyone using Dr. Spafford as the source for the "they ran outdated software" claim did not actually read his submission - he doesn't know anything more than you or me. The situation is dire enough without media hacks making crap up.

Cheers
Thank you for your very informative reporting. I wish more news outlet would do this kind of work, but instead we have to depend on people like you.
tuna is offline   Reply With Quote
Old 08-May-2011, 11:41   #497
Squilliam
Beyond3d isn't defined yet
 
Join Date: Jan 2008
Location: New Zealand
Posts: 3,172
Default

How come Sony hasn't been more clear as to when PSN will be back up? It seems like they're deliberately obfuscating in order to give the impression it's going to be 'any day now' as if they are trying to limit the loss of their audience.
__________________
It all makes sense now: Gay marriage legalized on the same day as marijuana makes perfect biblical sense.
Leviticus 20:13 "A man who lays with another man should be stoned". Our interpretation has been wrong all these years!
Squilliam is offline   Reply With Quote
Old 08-May-2011, 11:51   #498
Shifty Geezer
uber-Troll!
 
Join Date: Dec 2004
Location: Under my bridge
Posts: 30,881
Default

Quote:
Originally Posted by Squilliam View Post
How come Sony hasn't been more clear as to when PSN will be back up? It seems like they're deliberately obfuscating in order to give the impression it's going to be 'any day now' as if they are trying to limit the loss of their audience.
Well they kinda have, but got their forecasts wrong. It was due up this week, but then they found something else to worry about. With something like this you can't give a firm date. It'll be ready when its ready. They can only update on how things are looknig at the moment.
__________________
Shifty Geezer
...
Flashing Samsung mobile firmwares. Know anything about this? Then please advise me at -
http://forum.beyond3d.com/showthread.php?p=1862910
Shifty Geezer is offline   Reply With Quote
Old 08-May-2011, 12:51   #499
Squilliam
Beyond3d isn't defined yet
 
Join Date: Jan 2008
Location: New Zealand
Posts: 3,172
Default

Quote:
Originally Posted by Shifty Geezer View Post
Well they kinda have, but got their forecasts wrong. It was due up this week, but then they found something else to worry about. With something like this you can't give a firm date. It'll be ready when its ready. They can only update on how things are looking at the moment.
It just sucks to be without, it would be easier to make alternative plans if they gave a better indication on when they optimistic/realistic/pessimistic ETA of the return of service.
__________________
It all makes sense now: Gay marriage legalized on the same day as marijuana makes perfect biblical sense.
Leviticus 20:13 "A man who lays with another man should be stoned". Our interpretation has been wrong all these years!
Squilliam is offline   Reply With Quote
Old 08-May-2011, 13:34   #500
BRiT
...
 
Join Date: Feb 2002
Location: Cleveland
Posts: 5,503
Default

Quote:
Originally Posted by -tkf- View Post
I meant something useful, if Azure does something special compared to the competition it would be interesting to read about it. Considering how slow that Microsoft have been when it comes to Cloud services i would be pleasantly surprised if they do anything better than those that is beating them on a daily basis.
How can you say MS have been slow when it comes to Cloud services considering they've been using and providing them since 2008?

One of the modes of Azure services is the OS image is provided as a read-only image. You deploy your service on top of it, and any changes are saved off as a differencing disk. This allows them to do automatic updates of the OS layer underneath your service without affecting the service at all. They also do the OS updates on a different node and run a series of tests after the update(s) are applied to determine if your service works after the update. If it has no issues, they cut over to the new node and remove the old node.
BRiT is offline   Reply With Quote

Reply

Tags
i blame sony, playstation, ps3, psn

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT +1. The time now is 10:49.


Powered by vBulletin® Version 3.8.6
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.