L ß - PSX Scene

More documents

Recommendations

Info

Hector Martin (marcan42) on Twitter http://twitter.com/marcan42 Case3:11-cv-00167-SI Document4 Filed01/11/11 Page118 of 282 28. 29. 30. 31. 32. 33. 34. 35. 36. 37. 38. 39. 40. 41. 42. 43. Saturday, January 01, 2011 6:45:11 PM via Choqok @Andrea1Liquid you can't use newer firmware with downgraded loaders. Saturday, January 01, 2011 10:55:55 AM via Choqok in reply to Andrea1Liquid @phirenz Sony can't exactly change the GPU to a Tesla if they want to keep backwards compatibility. RSX cmds are baked into PS3 games. Saturday, January 01, 2011 9:11:11 AM via Choqok in reply to phirenz Back from 27c3, just got home after spending New Year's with the family. Time to crash for an undetermined number of hours. Friday, December 31, 2010 4:38:58 PM via Choqok @Idlewild2007 AsbestOS isn't a distro, it's a bootloader that works with any distro (given a tweaked kernel). Wednesday, December 29, 2010 1:13:06 PM via Choqok @KDSBest yes. Wednesday, December 29, 2010 12:52:34 PM via Choqok in reply to KDSBest @LouiseHoffman worse, at least the Wii stuff is mostly C. Sony loves C++, especially in SPU code. Security feature! SPU C++ is hell to RE :P Wednesday, December 29, 2010 12:45:33 PM via Choqok in reply to LouiseHoffman @KDSBest we can't modify lv1 directly yet (no lv1ldr dump) but we can pwn lv1 early in the boot process via a hacked iso module. Wednesday, December 29, 2010 12:41:03 PM via Choqok in reply to KDSBest Clarification #4: the random number isn't 4, it's more like 007eabbb79360e14df1457a4194b82f71a0dc39280 (example). But it's still constant. Wednesday, December 29, 2010 12:39:55 PM via Choqok @LouiseHoffman not much, it's all a large pile of fail. The Wii has better security design (it just has a lot of implementation holes). Wednesday, December 29, 2010 12:35:25 PM via Choqok in reply to LouiseHoffman @Zmathue because that causes the R value to be the same, i.e. the first half of every signature is the same. Wednesday, December 29, 2010 12:34:25 PM via Choqok @badcrc lo sé, pero las tiras de Dilbert hay que licenciarlas :P Wednesday, December 29, 2010 12:33:09 PM via Choqok in reply to badcrc Clarification #3: The private keys refer to keys that Sony HQ uses. PS3s don't have these keys (but we calculated them due to the fail). Wednesday, December 29, 2010 12:32:30 PM via Choqok It's Sony not knowing WTF they're doing when making signatures, and thus mathematically leaking their keys. Wednesday, December 29, 2010 12:30:21 PM via Choqok This is also why we didn't use the term "exploit" or "bug". The PS3 signature fail is neither an exploit nor a bug (in the PS3 firmware). Wednesday, December 29, 2010 12:29:34 PM via Choqok The XKCD "return 4" function that we showed is (essentially) part of the code that Sony HQ runs to sign games, it's not in the PS3 FW. Wednesday, December 29, 2010 12:24:26 PM via Choqok @KDSBest no one can create a new metldr (for an existing 4 of 58 1/9/2011 12:16 PM
Hector Martin (marcan42) on Twitter http://twitter.com/marcan42 Case3:11-cv-00167-SI Document4 Filed01/11/11 Page119 of 282 44. 45. 46. 47. 48. 49. 50. 51. 52. 53. 54. 55. 56. 57. 58. console). Not even Sony (unless they have that console's key stashed somewhere). Wednesday, December 29, 2010 12:21:32 PM via Choqok in reply to KDSBest @AluProductions they could, to some extent, but they'd fuck over everyone who doesn't go online and gets an update from a new game. Wednesday, December 29, 2010 12:11:34 PM via Choqok in reply to AluProductions @KDSBest we don't have the game signing key but the same epic fail applies to it. Once someone dumps appldr they can calculate it too. Wednesday, December 29, 2010 12:09:48 PM via Choqok in reply to KDSBest They actually CAN change keys for LV2/LV1, isolated modules, rvklists, spp, but that's useless because you can just downgrade the loaders. Wednesday, December 29, 2010 12:08:56 PM via Choqok Myth #2: Sony can change keys. No, they can't. These aren't encryption keys, they're signing keys. If they change them GAMES STOP WORKING. Wednesday, December 29, 2010 12:02:17 PM via Choqok Myth #1: It took us 3-4 years to do this. Negative, this exploit only took a few months after we started working. We weren't trying before. Wednesday, December 29, 2010 12:01:45 PM via Choqok FWIW lightning talks tomorrow are at 11:30-13:45. PS3 demo will be 4 minutes _somewhere_ within that range (to be determined) Wednesday, December 29, 2010 9:19:21 AM via Choqok They can try to whitelist every existing piece of official PS3 code... but good luck with that. Wednesday, December 29, 2010 9:17:44 AM via Choqok IOW they CANNOT change keys or fix this in a new firmware, because stuff we sign is every bit as good as existing official software. Wednesday, December 29, 2010 9:16:58 AM via Choqok Wii fakesigning vs. PS3 epic fail: Wii issue is a BUG in console code (fixable), PS3 issue is a FAIL in THEIR secret signer (not fixable). Wednesday, December 29, 2010 9:16:33 AM via Choqok fail0verflow Our current PS3 goal: AsbestOS.pup Wednesday, December 29, 2010 8:41:27 AM via web Retweeted by marcan42 and 22 others fail0verflow For all those out there that think fail0verflow.com has been hacked - it hasn't. We're just busy working on a demo for tomorrow. Patience! Wednesday, December 29, 2010 8:39:52 AM via web Retweeted by marcan42 and 9 others fail0verflow Look out for the awesome treasure hunt on the walls of the hackcenter. Hint, you might need a smartphone ;) Wednesday, December 29, 2010 8:24:57 AM via web Retweeted by marcan42 and 21 others @esanfelix yeah, segher looked at two sigs and it was blindingly obvious (the first half of the sig (R) is equal) Wednesday, December 29, 2010 8:24:04 AM via Choqok in reply to esanfelix You should TOTALLY follow @fail0verflow! Wednesday, December 29, 2010 8:23:18 AM via Choqok Demo (or half-demo if we can't fix the fail) on a Lightning Talk TOMORROW, I'll report on the time once it gets assigned. 5 of 58 1/9/2011 12:16 PM
Page 1 and 2:
0/;:: l ß"' 1 KILPATRICK TOWNSEND
Page 3 and 4:
Case3:11-cv-00167-SI Document4 File
Page 5 and 6:
Page 7 and 8:
PS3 Software Piracy Begins as First
Page 9 and 10:
PS3 Software Piracy Begins as First
Page 11 and 12:
Page 13 and 14:
fail0verflow (fail0verflow) on Twit
Page 15 and 16:
Page 17 and 18:
Page 19 and 20:
PlayStation 3 hack - how it happene
Page 21 and 22:
PlayStation 3 hack - how it happene
Page 23 and 24:
Page 25 and 26:
git.fail0verflow.com Git - ps3tools
Page 27 and 28:
git.fail0verflow.com Git - noralize
Page 29 and 30:
Page 31 and 32:
Project Jerry 7, 2008 Our congratul
Page 33 and 34:
1/9/2011 xyzzy HackMii Notes from i
Page 35 and 36:
1/9/2011 xyzzy 5 SageChaozu // Jul
Page 37 and 38:
1/9/2011 xyzzy P.S. Bushing your op
Page 39 and 40:
Page 41 and 42:
Page 43 and 44:
Page 45 and 46:
1/9/2011 xyzzy close Galleries of b
Page 47 and 48:
1/9/2011 Keys, keys, keys. HackMii
Page 49 and 50:
1/9/2011 Keys, keys, keys. needs to
Page 51 and 52:
1/9/2011 Keys, keys, keys. other th
Page 53 and 54:
Page 55 and 56:
Page 57 and 58:
Page 59 and 60:
1/9/2011 Keys, keys, keys. close Ca
Page 61 and 62:
Page 63 and 64:
Post a Reply Posted 899 days ago 0
Page 65 and 66:
Page 67 and 68: Console Hacking 2008: Wii Fail Is i
Page 69 and 70: Wii Optical Discs (WODs) IOS Modifi
Page 71 and 72: Signatures All RSA signature compar
Page 73 and 74: 1/9/2011 Console Hacking 2008: Wii
Page 75 and 76: 1/9/2011 Console Hacking 2008: Wii
Page 77 and 78: Case3:11-cv-00167-SI Document4 File
Page 79 and 80: 1/9/2011 Wii: Hardware, seguridad,
Page 83 and 84: Títulos Case3:11-cv-00167-SI Docum
Page 85 and 86: El eTicket El eTicket nos da acceso
Page 87 and 88: IOS Case3:11-cv-00167-SI Document4
Page 91 and 92: Twiizer Attack Case3:11-cv-00167-SI
Page 93 and 94: Twilight Hack Case3:11-cv-00167-SI
Page 103 and 104: 1/9/2011 Dev-Team Blog - Search res
Page 109 and 110: Reply Reply Reply gametheory 44p ·
Page 111 and 112: 1/9/2011 Case3:11-cv-00167-SI Dev-T
Page 115 and 116: Hector Martin (marcan42) on Twitter
Page 117: Hector Martin (marcan42) on Twitter
Page 169 and 170:
Hector Martin (marcan42) on Twitter
Page 171 and 172:
Hector Martin (marcan42) on Twitter
Page 173 and 174:
Page 175 and 176:
ushing (gnihsub) on Twitter http://
Page 177 and 178:
Page 179 and 180:
Page 181 and 182:
Page 183 and 184:
Page 185 and 186:
pytey (pytey) on Twitter http://twi
Page 187 and 188:
Page 189 and 190:
Page 191 and 192:
Page 193 and 194:
Page 195 and 196:
Page 197 and 198:
Page 199 and 200:
Page 201 and 202:
Page 203 and 204:
Page 205 and 206:
Page 207 and 208:
Page 209 and 210:
Page 211 and 212:
Page 213 and 214:
Page 215 and 216:
Page 217 and 218:
Page 219 and 220:
Page 221 and 222:
Page 223 and 224:
Page 225 and 226:
Page 227 and 228:
Page 229 and 230:
Page 231 and 232:
Page 233 and 234:
Page 235 and 236:
Page 237 and 238:
Page 239 and 240:
Page 241 and 242:
also @ TechSpot: Tech Tip: Customiz
Page 243 and 244:
trillionsin on January 5, 2011 11:3
Page 245 and 246:
Page 247 and 248:
Geohot: Here is your PS3 Root Key!
Page 249 and 250:
Geohot: Here is your PS3 Root Key!
Page 251 and 252:
Page 253 and 254:
Page 255 and 256:
Page 257 and 258:
*Maximus AVR USB *Acekard2i *modbo
Page 259 and 260:
Burberry Carlton Haymarket Notebook
Page 261 and 262:
Page 263 and 264:
5 January 2011 Last updated at 20:1
Page 265 and 266:
Page 267 and 268:
Page 269 and 270:
Page 271 and 272:
Comment: Re:Same private key? (Scor
Page 273 and 274:
1/10/2011 Case3:11-cv-00167-SI Docu
Page 275 and 276:
Page 277 and 278:
1/10/2011 Slashdot bushing (11) pri
Page 279 and 280:
1/10/2011 Slashdot bushing (11) Com
Page 281 and 282:
show all

L ß - PSX Scene

Create successful ePaper yourself

Delete template?

Save as template?