Groups

    Hackers Crack PS3 Security For Good... Geohot Makes PS3 Root Key Public

    I'll be honest, this is something someone's tweeted about and I've had a very brief look at the first page, but supposedly this is what everyone's been waiting for. Custom firmware, no dongles or anything like that...

    neogaf.com/for…296

    45 Comments

    Banned

    Looks very interesting.

    Yes you will undoubtedly get those who have never sinned whining about piracy in the thread.

    Support Sony

    Please give generously

    Banned

    Support Sony

    I like to pay for my ps3 content, was nice having a console that didn't have any hackers and modders playing online ( like the 360 does and makes games online unpleasuarable to play )

    Banned

    X) I like it

    dj_urban

    Support Sony I like to pay for my ps3 content, was nice having a console … Support Sony I like to pay for my ps3 content, was nice having a console that didn't have any hackers and modders playing online ( like the 360 does and makes games online unpleasuarable to play )



    ps3 has had modded waw and mw2 for ages now

    I used to support Sony at one time i had over 30 PS3 games and 20 PSP games, 2 PSP,PS3 and a 350 blu ray but since the fatefull day when they tried to force me into loosing my Linux function which i used for totally legal means by preventing me having access to the later stuff if i did not comply was the day i stopped supporting them. Since then i have sold my Blu ray player sold most of my ps3 collection and am in the process of thinning down the PSP lot. I do have jailbreak but have not felt the need to jailbreak my PS3 since i am happy with its limited functions at the moment. By branding all users has potential pirates is a big marketing mistake on their behalf and it is hardly surprising some have turned to this so not to dissapoint them. I

    Heres the idea of whats happening here.

    The same lads who brought you the Twilight Hack on the Wii (Team Twiizers) are the same people who ripped into the PS3 security here.

    Now, when you install Firmware onto your PS3, your firmware file, lets say 341.PUP, this file has been digitally signed by Sony. Not only has it been signed by Sony, it also has checksum values in this file, so you cannot alter any of the files inside this firmware and then resign the package so that the PS3 thinks its the real original firmware.

    So, with this huge security hole they have found today which is this: Each time something is signed, it really should be pulling in a random integer, in this case, a number to keep the package secure. The problem though is that Sony used the exact same "random" number everytime. The guys here go onto explain even in their own Homebrew Channel updater for the Wii, they followed the correct cryptography rules in generating a random number to sign the package.

    The fact that Sony didnt is why its an Epic Fail. Usually you have to go through major mathematical functions to find these keys, but the PS3 basically just handed the keys right over to them. From this, we can now sign our own packages and make it run in normal GAMEOS mode.

    GAMEOS mode is what your PS3 is running in when you turn it on. The only other option was OtherOS and thats what got removed with the 3.21 firmware update back in...er...Feb i think? It was only here after OtherOS (linux) was removed that any hackers finally paid any attention to the PS3.

    So what these guys are doing is they have their own build of linux called AsbestOS. The difference here using AsbestOS and using the original OtherOS was OtherOS was locked down so much. You didnt have access to the full processing power that the PS3 has. AsbestOS, since it will be ran in GAMEOS, you will have full access to the processors. Its essentially the same as GAMEOS, but correct me if im wrong, it doesnt have 3D capabilities in rendering the same way that the GAMEOS does.

    Someone is already working on a proper port for MPlayer for the PS3. The door is wide open here now. Expect a proper XBMC being ported over as well.

    Then none of this will concern you. Some people want to have Linux back on their ps3 considering it was a selling point of the ps3 at launch. Bit unfair for them to take it away.

    I found Yellow Dog Linux to be slow and clunky when I installed it on my PS3 (before they removed OtherOS)... if AsbestOS is going to be better performing, then I'd certainly be interested. A PS3 running Linux efficiently could potentially replace a desktop PC for me...

    Wow, that is a pretty amazing mistake. A random number generator that returns the same number every time lol...

    Cannot wait to see some of the homebrew that appears now. Yay for Homebrew.

    Banned

    starsparkle2311

    Erm well whatever^^^^^^^^^^^^^^^^^^^^^I would just prefer that there was … Erm well whatever^^^^^^^^^^^^^^^^^^^^^I would just prefer that there was some decent games to play on the PS3


    can you justify making stupid statements like that or have you been in a coma for 2 years?

    keeping an eye on this

    I loled at this:

    http://i.imgur.com/e9jUO.png

    The security is only as strong as it weakest link. Looks like the weak link has been found out and it sure as hell is weak (albeit taking 5 years to find).

    Was going to sell my PS3 as it was being used solely as a media player but I got my first 'Cinavia' drm screen yesterday. If this helps bring something like XBMC I may hold off, otherwise I'm putting the money I'd get for it towards a Revo.

    Banned

    I hear XBMC is an impossibility and won't even be attempted by the team. I hope that's wrong but I can forsee someone coming in and making a whole new media centre for PS3.

    csiman

    can you justify making stupid statements like that or have you been in a … can you justify making stupid statements like that or have you been in a coma for 2 years?



    Does she have to like all the same games you do ?

    I got ylod and sony will not repair, I am not really in the mood to support them.....however I do support developers.

    http://psx-scene.com/tmp/psx-scene/pictures/pwned.jpg

    starsparkle2311

    Erm well whatever^^^^^^^^^^^^^^^^^^^^^I would just prefer that there was … Erm well whatever^^^^^^^^^^^^^^^^^^^^^I would just prefer that there was some decent games to play on the PS3


    im with SS on this one, got a PS3 and found the choice of games smaller than other consoles. I liked RPG's and there wasn't that many good ones to choose from

    Good stuff, so much for their claims of it being unhackable

    Serves them right. That'll teach em to remove features.

    Will invest in a ps3 now lol

    bigflump

    Good stuff, so much for their claims of it being unhackable



    Really? Linky?

    remember this ?

    George Hotz

    I heard he's looking for a job in security now


    So, with this huge security hole they have found today which is this: … So, with this huge security hole they have found today which is this: Each time something is signed, it really should be pulling in a random integer, in this case, a number to keep the package secure. The problem though is that Sony used the exact same "random" number everytime. The guys here go onto explain even in their own Homebrew Channel updater for the Wii, they followed the correct cryptography rules in generating a random number to sign the package.



    Why did it take so long to hack then?? Most secure console (ever?) but people have been able to dissassemble "signed" software since day 1. Why didn't someone twig 3 years ago that the signing code was the same??

    Good news if it means a media centre for my spare PS3. Bad news if it means hackers playing online and messing online gaming up. Don't even know if this hack will be detectable by sony - anyone?

    So any idea when custom firmware becomes public?

    I am mostly interested in this so I can do ps1 emulation on my SD tv, and maybe other emulators(I still have XBMC on my xbox)
    Edited by: "ryouga" 8th Jan 2011

    any update on this??

    cookiemonster83

    http://www.mibz.com/29344-sony-wants-restraining-order-against-geohot-and-fail0verflow-wants-ps3-jailbreak-data-to-be-removed.html[url=http://www.techtree.com/India/News/PS3_Piracy_Begins_with_Unmodded_PS3/551-114114-585.html]http://www.techtree.com/India/News/PS3_Piracy_Begins_with_Unmodded_PS3/551-114114-585.html[/url]



    Thanks mate, interesting.

    Has anyone done this yet?

    any updates??

    Banned

    marsland95l2cr

    any updates??



    CFW with backup manager is available but very unstable. Decent release won't be far off.

    I have tried both custom firmwares, Geohots was fine but decided to test the other one and though it was sucessful(dodgy at minute as only certain models work) it keeps crashing the PS3 and the emulators I have on it dont work.

    thanks for the info will wait for a more stable release.

    Give me XBMC or similar, a decent browser and a PS2 emulator and I'll be a very very happy PS3 owner.

    Banned

    megalomaniac

    Give me XBMC or similar, a decent browser and a PS2 emulator and I'll be … Give me XBMC or similar, a decent browser and a PS2 emulator and I'll be a very very happy PS3 owner.



    Don't think XBMC can be ported over as it is so they may have to develop a new media centre for the PS3.

    master_chief

    Don't think XBMC can be ported over as it is so they may have to develop … Don't think XBMC can be ported over as it is so they may have to develop a new media centre for the PS3.


    There is a PowerPC version already, so they're already part way there. I suspect it's more won't than can't, as it's open source it doesn't stop somebody forking it though.
    Edited by: "megalomaniac" 19th Jan 2011

    Banned

    megalomaniac

    There is a PowerPC version already, so they're already part way there. I … There is a PowerPC version already, so they're already part way there. I suspect it's more won't than can't, as it's open source it doesn't stop somebody forking it though.



    From the devs on their forum they seem to think it's highly unlikely, one of them even said it's an impossibility but I hope they're wrong as I bought a 2nd PS3 purely for something like XBMC.

    things seem to be coming along nicely. anyone installed the CFW yet? running back ups?

    marsland95l2cr

    things seem to be coming along nicely. anyone installed the CFW yet? … things seem to be coming along nicely. anyone installed the CFW yet? running back ups?



    I have the latest custom firmware kmeaw, works fine and the only issue I have is some of my games I have backed up havent played and I havent worked out how to make a modded eboot, thats it, they all are confirmed as working on a few sites.

    Bit of a pain but its the only way, only had 1 game so far work fine without modding it and that is Mortal Kombat vs DC Universe.
    Post a comment
    Avatar
    @
      Text
      Top Discussions
      1. Xbox One - Buying from Other Regions *WITHOUT* A VPN (Virtual Private Netwo…1851339
      2. Lets hope that there are as few injuries as possible - Parson's Green40210
      3. EasyJet flights for summer 2018 (up until 2nd Sept 2018) will be released o…11
      4. Potential upcoming Argos glitch or buggy app?109

      See more discussions