Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
Hector Martin (marcan42) on Twitter http://twitter.com/marcan42<br />
Case3:11-cv-00167-SI Document4 Filed01/11/11 Page118 of 282<br />
28.<br />
29.<br />
30.<br />
31.<br />
32.<br />
33.<br />
34.<br />
35.<br />
36.<br />
37.<br />
38.<br />
39.<br />
40.<br />
41.<br />
42.<br />
43.<br />
Saturday, January 01, 2011 6:45:11 PM via Choqok<br />
@Andrea1Liquid you can't use newer firmware with downgraded<br />
loaders. Saturday, January 01, 2011 10:55:55 AM via Choqok in<br />
reply to Andrea1Liquid<br />
@phirenz Sony can't exactly change the GPU to a Tesla if they want<br />
to keep backwards compatibility. RSX cmds are baked into PS3<br />
games. Saturday, January 01, 2011 9:11:11 AM via Choqok in reply<br />
to phirenz<br />
Back from 27c3, just got home after spending New Year's with the<br />
family. Time to crash for an undetermined number of hours. Friday,<br />
December 31, 2010 4:38:58 PM via Choqok<br />
@Idlewild2007 AsbestOS isn't a distro, it's a bootloader that works<br />
with any distro (given a tweaked kernel). Wednesday, December 29,<br />
2010 1:13:06 PM via Choqok<br />
@KDSBest yes. Wednesday, December 29, 2010 12:52:34 PM via<br />
Choqok in reply to KDSBest<br />
@LouiseHoffman worse, at least the Wii stuff is mostly C. Sony<br />
loves C++, especially in SPU code. Security feature! SPU C++ is<br />
hell to RE :P Wednesday, December 29, 2010 12:45:33 PM via<br />
Choqok in reply to LouiseHoffman<br />
@KDSBest we can't modify lv1 directly yet (no lv1ldr dump) but we<br />
can pwn lv1 early in the boot process via a hacked iso module.<br />
Wednesday, December 29, 2010 12:41:03 PM via Choqok in reply<br />
to KDSBest<br />
Clarification #4: the random number isn't 4, it's more like<br />
007eabbb79360e14df1457a4194b82f71a0dc39280 (example). But<br />
it's still constant. Wednesday, December 29, 2010 12:39:55 PM via<br />
Choqok<br />
@LouiseHoffman not much, it's all a large pile of fail. The Wii has<br />
better security design (it just has a lot of implementation holes).<br />
Wednesday, December 29, 2010 12:35:25 PM via Choqok in reply<br />
to LouiseHoffman<br />
@Zmathue because that causes the R value to be the same, i.e. the<br />
first half of every signature is the same. Wednesday, December 29,<br />
2010 12:34:25 PM via Choqok<br />
@badcrc lo sé, pero las tiras de Dilbert hay que licenciarlas :P<br />
Wednesday, December 29, 2010 12:33:09 PM via Choqok in reply<br />
to badcrc<br />
Clarification #3: The private keys refer to keys that Sony HQ uses.<br />
PS3s don't have these keys (but we calculated them due to the fail).<br />
Wednesday, December 29, 2010 12:32:30 PM via Choqok<br />
It's Sony not knowing WTF they're doing when making signatures,<br />
and thus mathematically leaking their keys. Wednesday, December<br />
29, 2010 12:30:21 PM via Choqok<br />
This is also why we didn't use the term "exploit" or "bug". The PS3<br />
signature fail is neither an exploit nor a bug (in the PS3 firmware).<br />
Wednesday, December 29, 2010 12:29:34 PM via Choqok<br />
The XKCD "return 4" function that we showed is (essentially) part<br />
of the code that Sony HQ runs to sign games, it's not in the PS3 FW.<br />
Wednesday, December 29, 2010 12:24:26 PM via Choqok<br />
@KDSBest no one can create a new metldr (for an existing<br />
4 of 58 1/9/2011 12:16 PM