Technological discussion on PS3 security and crack.*

Discussion in 'Console Technology' started by senas8, Jan 23, 2010.

  1. AzBat

    AzBat Agent of the Bat
    Legend Veteran

    Joined:
    Apr 1, 2002
    Messages:
    6,198
    Likes Received:
    2,066
    Location:
    Alma, AR
    Evidently the pirate industry. LOL

    Tommy McClain
     
  2. draconian

    Newcomer

    Joined:
    Jun 17, 2005
    Messages:
    162
    Likes Received:
    0
    I'm not arguing that either. The gameOS dumps does nothing also.
     
    #322 draconian, Apr 7, 2010
    Last edited by a moderator: Apr 7, 2010
  3. Npl

    Npl
    Veteran

    Joined:
    Dec 19, 2004
    Messages:
    1,905
    Likes Received:
    6
    Installing CFW without glitching the hardware?? Good Lord... things will get very ugly pretty soon.
    Sony shouldve just silently fixed all holes with subsequent Firmwares. I know I would`ve upgraded to 3.21 by now if this was the case.
     
  4. SG79

    Regular

    Joined:
    Jun 28, 2008
    Messages:
    534
    Likes Received:
    0
    Yes, this will get ugly for sure. Units bricking and then Sony refusing to touch them, even if they're under warranty since he mentioned the possibility of using this with slims.

    I wonder if people actually realize that manufacturers refuse to support units with CFW. It's no different than mod chips of yesteryear.
     
  5. JPT

    JPT
    Veteran

    Joined:
    Apr 15, 2007
    Messages:
    1,941
    Likes Received:
    318
    Location:
    Oslo, Norway
    Okay, I think I am a bit of here, but did he not just re-install a "module" on the 3.21 fw?
    I am not familiar with the PS3 filesystem, but that is what it sounded like to me when he wrote "just by restoring a custom generated PUP file".
     
  6. patsu

    Legend

    Joined:
    Jun 25, 2005
    Messages:
    27,614
    Likes Received:
    60
    No idea, but there may be issues if someone uses an outdated firmware to try to play a new game, or connect to a new PSN infrastructure.
     
  7. SG79

    Regular

    Joined:
    Jun 28, 2008
    Messages:
    534
    Likes Received:
    0
    Some new games won't even boot up without the latest firmware and they're on disc. I actually had to updated to 3.15 from 3.10 to play Tekken 6.

    This will work fine until the next firmware update or if Sony figures out a way to lock out users with CFW out of PSN.
     
  8. Npl

    Npl
    Veteran

    Joined:
    Dec 19, 2004
    Messages:
    1,905
    Likes Received:
    6
    I have no clue what PUP means (Playstation Updater package?). I understood this as as installing a modified 3.21 FW, which is disastrous if this is possible without messing with the hardware. The SPU Isolation facility should prevent exactly this, having a trusted facility for the most important duties which remains intact even if the rest of the system is compromised.

    Even if its "just" adding/changing some modules (which would be surely be bound to get complicated to ensure everything stays compatible).. its still horrible if patching in GameOs is that easy.
     
    #329 Npl, Apr 7, 2010
    Last edited by a moderator: Apr 7, 2010
  9. Nite_Hawk

    Veteran

    Joined:
    Feb 11, 2002
    Messages:
    1,202
    Likes Received:
    35
    Location:
    Minneapolis, MN
    He's shown before that he can change what is displayed on the screen in gameos. It's entirely possible he's just taking an old firmware and changing what version is being displayed.
    Nite_Hawk
     
  10. Npl

    Npl
    Veteran

    Joined:
    Dec 19, 2004
    Messages:
    1,905
    Likes Received:
    6
    Yeah, its possible hes just faking it, but I`m giving him the benefit of doubt.

    Its one thing if he can break in via his OtherOS exploit, requiring opening the PS3 and glitching the hardware to gain access.
    Its an entirely different thing if he found a hole in GameOS which doesnt require any hardware-"hacking" and works even on Slims.
     
  11. -tkf-

    Legend

    Joined:
    Sep 4, 2002
    Messages:
    5,632
    Likes Received:
    36
    I came to think of one thing, if he actually hacked the firmware, ie. the real 3.21, then he must have done something very clever since that Firmware removed the Other OS function and he got it back. In my opinion there is 3 options:

    1: He just changed the version number
    2: Sony did not remove it completely, but let the function stay and only "disabled" it from the menu.
    3: He actually created his own firmware that would boot the OtherOS
     
  12. JPT

    JPT
    Veteran

    Joined:
    Apr 15, 2007
    Messages:
    1,941
    Likes Received:
    318
    Location:
    Oslo, Norway
    Giving the guy the benefit of the doubt, I think we are talking about #2.
     
  13. Nite_Hawk

    Veteran

    Joined:
    Feb 11, 2002
    Messages:
    1,202
    Likes Received:
    35
    Location:
    Minneapolis, MN
    Yeah, I'm going to reserve judgment until he releases his work. We'll see.

    Nite_Hawk
     
  14. grandmaster

    Veteran

    Joined:
    Feb 6, 2007
    Messages:
    1,159
    Likes Received:
    0
    Breaking down and extracting the PUP file, changing or replacing a signed module is basically Sony's worst nightmare and that's exactly what he's saying he's done here. My guess would be it's a straight component swap from one firmware to the next, but it still shouldn't be possible.
     
  15. Silent_Buddha

    Legend

    Joined:
    Mar 13, 2007
    Messages:
    16,845
    Likes Received:
    5,961
    Maybe there's some kind of loophole which enables someone to mix and match signed modules? So he's basically taken a module from an older update and somehow injected it into the new update?

    Regards,
    SB
     
  16. patsu

    Legend

    Joined:
    Jun 25, 2005
    Messages:
    27,614
    Likes Received:
    60
    It the Sony engineers over-rely on the Cell security framework, they may get sloppy with their implementation (e.g., leave certain stuff unsigned). If the hackers have access to the hypervisor and GameOS code, then they can analyze the code for such weaknesses.
     
  17. draconian

    Newcomer

    Joined:
    Jun 17, 2005
    Messages:
    162
    Likes Received:
    0
    He said that he has read and write privileges everywhere. After the cell boots up, loads, decrypts the firmware, I would imagine his pulse is sent. Then he simply rewrites the memory location of where the firmware version string is?

    I really wish someone who knows about this stuff could write up an article.
     
  18. -tkf-

    Legend

    Joined:
    Sep 4, 2002
    Messages:
    5,632
    Likes Received:
    36
    I feel the same way, this is all over the place for me, if he can "patch" the firmware then how deep is he actually into the system. I would say neck deep, but then, if i understand it correct, it´s more of a OS running some basic stuff like Friend lists etc. The more complex stuff is programs that is started from the XMB, like gallery, Vidzone, Home etc...

    But it does have access to the Account information, it includes a video player, music player and stuff like that. The important Protection in regards to games seems to be decoupled completely from the XMB, it essentially starts games that then has to run though the build in protection.

    But maybe it opens up Region free Blu-Rays since the Blu-Ray player is a part of the firmware.

    Maybe Eastman could really get what he wants here, access to features that he can´t live without and noway of playing pirate games :)
     
  19. RobertR1

    RobertR1 Pro
    Legend

    Joined:
    Nov 2, 2005
    Messages:
    5,678
    Likes Received:
    804
    Maybe he'll fix what Sony broke over a year ago. The ability to play UK Blu Ray's that are encoded in 1080i 50.
     
Loading...

Share This Page

  • About Us

    Beyond3D has been around for over a decade and prides itself on being the best place on the web for in-depth, technically-driven discussion and analysis of 3D graphics hardware. If you love pixels and transistors, you've come to the right place!

    Beyond3D is proudly published by GPU Tools Ltd.
Loading...