|
This news comes just under a month after he resumed PlayStation 3 hacking!
To quote: "Hello hypervisor, I'm geohot
I have full read/write access to the entire system memory, and HV level access to the processor.
In other words, I have hacked the PS3. The rest is just software. And reversing. I have a lot of reversing ahead of me.
Took 5 weeks, 3 in Boston, 2 here, very simple hardware cleverly applied, and some not so simple software.
Shout out to George Kharrat from iPhoneMod Brasil for giving me this PS3 a year and a half ago to hack. Sorry it took me so long :)
As far as the exploit goes, I'm not revealing it yet. The theory isn't really patchable, but they can make implementations much harder. Also, for obvious reasons I can't post dumps. I'm hoping to find the decryption keys and post them, but they may be embedded in hardware. Hopefully keys are setup like the iPhone's KBAG.
A lot more to come..."
Stay tuned for more PS3 Hacks news. Also be sure to drop by the PS3 Hacks Forum for updates!
Post a Reply
Comments
Holy Shnikes! What a headline! Got that heart skips a beat sensation when I saw this. I suppose one of the next steps would be to duplicate this on another PS3 and hopefully he shares what he has learned with the appropriate people to analyze/investigate further. Here's hoping! 
Amazing news!!
Anyone want to comment on how he managed to get somewhere when on his blog and here devs have been saying he would not be able to do it with his chosen method? Wondering if he tried some other way.
Well, this is it I guess. Congrats again george, lets see those baby steps now and lets see if we can have something cool by may working 
This guy is close to nuts and we have to give it to him, at his short age he is indeed a hacking genius. Whatever the method he used doesn't matter as long as he can give us a way to homebrew. We've seen a lot of development on ps3 dev consoles like mame emulators and what not, so if he opens the door a lot of devs can come in and develop for all of us.
Word from the PS3 Dev channel is that GeoHot dumped lv1 apparently... so we'll see what happens from here as he shares more details. 
I was following his tweets when this came across and I was like "YES!". I knew it wouldn't be long for it got posted here. Good work Geohot!
Could this be true? Let`s hope so and wait to see Goehot`s next posts. What do the resident devs have to say about it? Do they think it`s possible that he`s done it so fast? I mean, he`s got credibility, hasn`t he??
And could CJPC say something about Geohot`s comments on a hardware exploit? Any idea what could it be?
And could CJPC say something about Geohot`s comments on a hardware exploit? Any idea what could it be?
personally, i'll believe it when i see it... this wouldn't be the first time someone posted something that was wrong, also i would wait to see what comes from it if anything... i just find it hard to believe, no one agreed with his method, he went from the iphone, and that he did what no one else thus far publicly has been able to do in such a short span on time.
Waoh. He is really good at this. Congrats to Geo, and now lets see if he makes this public and the devs get to work with homebrew.
Holy smoke, batman.
I just came by to scan the forums and I did a double-take when I seen this headline. So he found a way in huh. lol, I guess if you attack if from everywhere eventually you find that crack. amazing news. I canīt wait to see what follows up on this.
i suspect a chip might be needed though. hehe, will we see the 1st ps3 chip popping up in the future.
I just came by to scan the forums and I did a double-take when I seen this headline. So he found a way in huh. lol, I guess if you attack if from everywhere eventually you find that crack. amazing news. I canīt wait to see what follows up on this.
i suspect a chip might be needed though. hehe, will we see the 1st ps3 chip popping up in the future.
Quote:
|
Originally Posted by ModderFokker
Who's working on XMBC already or USB loader... LOLz
|
glad to see the ps3 is hacked
Quote:
|
Originally Posted by mondoparalelo
Could this be true? Let`s hope so and wait to see Goehot`s next posts. What do the resident devs have to say about it? Do they think it`s possible that he`s done it so fast? I mean, he`s got credibility, hasn`t he??
And could CJPC say something about Geohot`s comments on a hardware exploit? Any idea what could it be? |
However, even with LV1, the beauty of the Cell's security is the Isolated SPU mode, which keeps code out of main memory, and it isolates itself totally - so it "in theory" can not be dumped, which is of course, where all the goodies are (keys, keys, keys)
I hope that he's having success in attacking that area - but lets see if anything gets released, at this moment it seems like nothing is being shared.
Quote:
|
Originally Posted by Rav
now you know its him that posted the same on geohots blog lolz
glad to see the ps3 is hacked |
Quote:
|
Originally Posted by CJPC
Not yet - I know there should be an easier way than to have some hardware wired up to the PS3's board at all times tho
However, even with LV1, the beauty of the Cell's security is the Isolated SPU mode, which keeps code out of main memory, and it isolates itself totally - so it "in theory" can not be dumped, which is of course, where all the goodies are (keys, keys, keys) I hope that he's having success in attacking that area - but lets see if anything gets released, at this moment it seems like nothing is being shared. |
Quote:
|
Originally Posted by ModderFokker
But it is a nice step in the good direction right CJPC ? Well if some sort of info does come out of it ..
|
If it means having a PC/FPGA nearby all the time to do stuff it will be a pain, however, GeoHot says he has access to the SPU routines so hopefully he will be able to extract keys eventually which would mean real homebrew then.
Hopefully GeoHot's next update will arrive soon.
God! I'm really excited now! I dunno what to say, I just wanted to post because I'm thrilled!
Let's see what the following week's news bring!
Let's see what the following week's news bring!
Well i have to hand it to him, if indeed this is the case he is a genius. The funny thing is that just a day ago he was being called out for taking the wrong direction and so on. If it works great, if it doesn't that is okay too.
One day you are hated, one day you are loved. That is just the way of the scene.
One day you are hated, one day you are loved. That is just the way of the scene.
Quote:
|
Originally Posted by monkeysez
Well i have to hand it to him, if indeed this is the case he is a genius. The funny thing is that just a day ago he was being called out for taking the wrong direction and so on. If it works great, if it doesn't that is okay too.
One day you are hated, one day you are loved. That is just the way of the scene. |
Quote:
|
Originally Posted by gravesg
......*waits for some super codecs for ps3.. mkv 1080P anyone ??*
|
Geohot is simply put, made of win. I can't wait to see what hacks go across this baby now. To think I ever doubted him.....
I wouldn't be suprised if sony stepped in and offered a huge cash payout to keep quiet. they're doomed to loose money over this i knew he'd do it
i knew he'd do it
It brings tears of happiness to my eyes seeing some news like this... Like I said before, Geohot was minty fresh, so he probably tried some overlooked detail the DEVs left behind and... Boing! The miracle happens! Btw, to the people doubting, Geo has some reputation so he definitely ain't lying.
He did dump lv1 or at least believes so. What will he do with it? Will he be able to extract the keys? We will see in the future. Perhaps we will see some homebrew soon, perhaps he will reach another brick wall... We will see.
Cheers
He did dump lv1 or at least believes so. What will he do with it? Will he be able to extract the keys? We will see in the future. Perhaps we will see some homebrew soon, perhaps he will reach another brick wall... We will see.
Cheers
yeah sony is prolly gonna go upwards of 300K to keep this quiet... or they may not give a rats ass due to the size of blu-ray disc lol ... i on the other welcome downloading 20-50GB images on my 50Mbit connection... I WILL WIN MWUWHAHAHAH.... Fios, and Docsis 3 ftw. *buys 640GB harddrive for ps3, and blu-ray burner from new egg*
waits for geo to go over to the software boys to get some coding done
waits for geo to go over to the software boys to get some coding done
Quote:
|
Originally Posted by adrianc1982
Well, thats why I kept my mouth shut and only watch how the geohot post developed because I didnt want anyone telling me something If I called him a genius. I really had a feeling, I'm no dev and have no coding skills, but I've been here for a long time to realize he had the time, tools, and knowledge to get somewhere. That doesnt mean it was going to be able just had the feeling that he was the right tool for the right job. But whatever.
|
Don't think Sony will offer him money. In our scene, it sure seems like every breathing person is a pirate, but I bet the real numbers are kinda small.
Just look at the Wii and Xbox 360. If piracy would be such a huge problem, those companies would be bankrupt by now. Especially Microsoft, since they are a 90% software/10% hardware business.
Just look at the Wii and Xbox 360. If piracy would be such a huge problem, those companies would be bankrupt by now. Especially Microsoft, since they are a 90% software/10% hardware business.
This headline was definitely something I was almost never expecting read. Props to GeoHot for getting somewhere for the scene, I'm not surprised that he was able to do it as he started from square one without any help, and thus didn't have any pre-conceived thoughts of what will and wont work.
Well i cant believe my eyes when i saw the news GeoHot has hacked the PS3. I wokeup in the the morning and grab my lappy just clicked on PS3NEWS and voila. Gud GOD hes really a genious HE DID IT WITH IPHONE NOW IT DID THIS TO PS3.
I hope he'll soon share his findings/expolits/hacks with other PS3 DEVS.
I hope he'll soon share his findings/expolits/hacks with other PS3 DEVS.
Quote:
|
Originally Posted by chipsy
I love the fact that Mathieulh was telling him that he was looking in the wrong place and that he would not get anything out of it but he managed to dump lv0 and Lv1
|
Obviously we'll know more when he posts further details, but as CJPC mentioned on IRC: keep in mind the XBox 360 was hacked in 2006, yet it took 3 years for people to do more with it than Linux.
The point being, I don't think anyone knows the extent of the 'usefulness' to GeoHot's find (not even GeoHot himself) just yet... lv0 (bootloader) just takes a tiny bit of code, pushes it to the cell to start the bringup and lv1 doesn't do any crypto, it just sends an encrypted image (the ldr's) to a isolated SPU which is what actually "works the magic."
Sure, that might be sufficient for saying "Hello World" in Linux but it wouldn't help with using the "PS3" part of the PlayStation 3 to do everything else... but here is to hoping it leads to the "full access" we're all seeking.
Amazing stuff, well done geo!!... hope this leads to full access, even if only in linux think of the power!! the power!!! mwahahaha
If the devs would admit it is a new discovery, then yes, we are one step in the RIGHT direction.
What version of the firmware has he done it on? Was it a slim or a phat?
Will it work on other consoles... Such as if it was done on a phat would it work on a slim. Does it work under all firmwares?
Will it work on other consoles... Such as if it was done on a phat would it work on a slim. Does it work under all firmwares?
Quote:
|
Originally Posted by Haksam
If the devs would admit it is a new discovery, then yes, we are one step in the RIGHT direction.
|
Right now all we have is a known hacker who stated they have hacked the PS3, so we can only wait and hope pretty much.
Quote:
|
Originally Posted by Drakhen
What version of the firmware has he done it on? Was it a slim or a phat?
Will it work on other consoles... Such as if it was done on a phat would it work on a slim. Does it work under all firmwares? |
Quote:
|
Originally Posted by Drakhen
What version of the firmware has he done it on? Was it a slim or a phat?
Will it work on other consoles... Such as if it was done on a phat would it work on a slim. Does it work under all firmwares? |
but what I think he meant was, sony can update the architectural harware in the Slims in the next manufacturing batch (very similar case to the iphone 3G S, which I doubt, will ever have permanent jailbreak again).
That's some really nice news! Let's hope that geohot will actually share his information so others can advance too.. He may have been able to find a flaw, but he can't take on the whole beast by himself..
ok so we don't know if he's going in a right direction but i really hope i can manage to get homebrew on my ps3. even if the ps3 iso loader was to be released tomorrow, even then it would take some time for people to upload the ps3 isos at least. i don't know of a site that has so right now i just hope for some homebrew and also for linux to run without any restrictions some little mods so i can run any windows game like running gta4 on linux with my sixasis.
i wouldn't mind the diference but thanks geohot your the best and if you manage to fully hack the ps3 you will have your statue made a side of the rocky statue thanks and hope this goes on and also will; appreciate for everyone to not ask so many questions about it the least sony knows the better i mean c'mon if u waited 3 years you can wait another one.
thanks and everything is apreciated
ps3- it only does everything
hacked ps3- do the inexplainable
lol sorry for my bad english
i wouldn't mind the diference but thanks geohot your the best and if you manage to fully hack the ps3 you will have your statue made a side of the rocky statue thanks and hope this goes on and also will; appreciate for everyone to not ask so many questions about it the least sony knows the better i mean c'mon if u waited 3 years you can wait another one.
thanks and everything is apreciated
ps3- it only does everything
hacked ps3- do the inexplainable
lol sorry for my bad english
I've said before and i'll say it now! He took 4 weeks!! YEAH!! That's how it works fast and to the point!!
God this guy rocks!! I'm so happy!!! There is not a happy face here to express myself!
God this guy rocks!! I'm so happy!!! There is not a happy face here to express myself!
wow no "This is fake" comments and a maybe from CJPC and PS3NEWS. If he does get to level 0, will this mean backups very soon?
Quote:
|
Originally Posted by xxLindenxx
wow no "This is fake" comments and a maybe from CJPC and PS3NEWS. If he does get to level 0, will this mean backups very soon?
|
As soon as the Devs (and really everyone around the world) is able to examine what GeoHot has in front of him already there will be some definitive feedback on the potential of the hack/exploit he found. Our biggest concern at this point is whether he will share/disclose it or if someone (Sony, DMCA, a mod-chip company, etc) will persuade him not to either out of fear or profit.
I will say this for GeoHot... nobody was able to scare/buy him off with the iPhone hacks so that is a good sign for the PS3 scene hopefully.
Quote:
|
Originally Posted by xxLindenxx
wow no "This is fake" comments and a maybe from CJPC and PS3NEWS. If he does get to level 0, will this mean backups very soon?
|
Still, we don't know how hard it will be to replicate GeoHots HW setup for end users, or whether a software exploit will be found...
Things I'm looking forward to:
Custom Rock Band Songs
Custom Fallout 3 Mods (Editing the DLC)
Maybe Modern Warfare 1/2 maps
With the PS3's more open system of being able to transfer data, installing mods will probably just be copy and paste.
Custom Rock Band Songs
Custom Fallout 3 Mods (Editing the DLC)
Maybe Modern Warfare 1/2 maps
With the PS3's more open system of being able to transfer data, installing mods will probably just be copy and paste.
Quote:
|
Originally Posted by NZHawk
Why do people immediately think Hack/Exploit = Backups/iSO loader? Its annoying lol. Things like that take time, and theres still not been a Hello World yet, so no custom code running (yet). The ps3 will be a beast with Homebrew, cant wait for something like XMBC.
Still, we don't know how hard it will be to replicate GeoHots HW setup for end users, or whether a software exploit will be found... |
"I must admit that I was sceptical at first but after talking to geohot it seems his hack is real, If so, congratulations are in order."
from http://twitter.com/Mathieulh/status/8097806925
from http://twitter.com/Mathieulh/status/8097806925
Time will be the real truth here, its better to wait have it perfected to where it cant be patched and so that the average user can use this hack.
Mainly just wanted to join the bandwagon... Couldn't believe my eyes (I'm still skeptical) when I first saw the headline this morning. Let's just hope it's of good use. Congratulations to Geohotz and to everyone who ever contributed to the scene.
Here, here for a good year!!!
Here, here for a good year!!!
This is certainly very interesting news! Looks like he still has a big job ahead of him though. I hope he can get the keys out without to much trouble now
Hopefully the Devs here to be able to put some of their knowledge into action soon creating wonderful homebrew for the PS3. Would be interesting to see what can be done with this little box Quite interested in it's musical ablilitys with things like DSD playback etc, I wonder if it can be made to bitstream DSD over HDMI instead of converting it to PCM first etc...
How about the models that play SA-CD's... Perhaps a way to do something with SA-CD's that we can't do yet.... Anyhow George has made a good start.
Hopefully the Devs here to be able to put some of their knowledge into action soon creating wonderful homebrew for the PS3. Would be interesting to see what can be done with this little box
Quite interested in it's musical ablilitys with things like DSD playback etc, I wonder if it can be made to bitstream DSD over HDMI instead of converting it to PCM first etc... How about the models that play SA-CD's... Perhaps a way to do something with SA-CD's that we can't do yet.... Anyhow George has made a good start.
Quote:
|
Originally Posted by Leongfun
OBJECTION ! Hey i just hacked a PS3 2 years ago... anyone can say it... we need proof.
|
I'm with some of the others on this forum. Yes he has a reputation but until we see proof this is yet just another rumor. Having said that we have seen hello world and loader videos before that turned out to be FAKE!!!, lets see something concrete.
If he ain't that close to releasing anything then he should keep it to himself like the other devs would, thus not giving Sony a chance to investigate and patch his exploit. He is getting the hopes of the community up and for what?
If he ain't that close to releasing anything then he should keep it to himself like the other devs would, thus not giving Sony a chance to investigate and patch his exploit. He is getting the hopes of the community up and for what?
Quote:
|
Originally Posted by gravesg
......*waits for some super codecs for ps3.. mkv 1080P anyone ??*
|
exactly what i was thinking
Quote:
|
Originally Posted by plains203
This is certainly very interesting news! Looks like he still has a big job ahead of him though. I hope he can get the keys out without to much trouble now
Hopefully the Devs here to be able to put some of their knowledge into action soon creating wonderful homebrew for the PS3. |
From things he's done in the past, i'd say the reason he isn't keeping it to himself is that he likes to be first (or so it seems, eg: purplera1n, blackra1n) so this again would be much of the same, imo.
Yep, lets not go overboard yet. Wait till we have a PoC announcement and let us see what we need to run this hack. If it only works on certain older firmwares and/or the phat model (linux) a lot of people are going to be SoL.
I must admit I was skeptical when I heard this guy was going to try his luck on the PS3, BUT someone has to be the first to hack this baby up so why not GeoHot?
Waiting patiently to see what comes of this.
I must admit I was skeptical when I heard this guy was going to try his luck on the PS3, BUT someone has to be the first to hack this baby up so why not GeoHot?
Waiting patiently to see what comes of this.
I'm sure this is 100% true. Congrats to Geohot! Today history was made. He is really one of the best hackers in history indeed.
Give him a place in the hall of fame!
Give him a place in the hall of fame!
WOW nearly spat coffee all over pc reading this news.. congrats on geohot, good luck on opening this beast machine wide open for code to run hopefully.
This guy is insane... 5 weeks... Bet Sony shat bricks when they saw this, or will when they see it.
Good job GeoHot!
Good job GeoHot!
Well what a great news
I am quite optimistic but hopefully he will post some proof soon. Did GeoHot mention when it will be revealed?
I am quite optimistic but hopefully he will post some proof soon. Did GeoHot mention when it will be revealed?
wow guys! I just woke up, turned on my netbook, and the 2nd page I visited was ps3news with the sharing of incredible news. That's a good start of the day.
At least now we have a known hacker that spreaded the news, instead of an anonymous person posting yet another (fake) hack. I'm really curious how he managed to do it though. But I agree that he shouldn't just post it everywhere.
I just woke up, turned on my netbook, and the 2nd page I visited was ps3news with the sharing of incredible news. That's a good start of the day. At least now we have a known hacker that spreaded the news, instead of an anonymous person posting yet another (fake) hack. I'm really curious how he managed to do it though. But I agree that he shouldn't just post it everywhere.
I admit that I'm also looking forward to a possible iSO Loader sooner or later now, but I guess we'd need a CFW first before the PS3 can manage iSOs greater than 4GB.
Unless they make it like the ps2 and wii iso loaders, where you add a game with a manager and it makes it into several parts. 
Ok he got access to the hypervisor calls. What next? Hypervisor isn't authorized to access the isolated SPE. And the data needed by this SPE is loaded in it's Local Storage, not in the main memory where he got full access.
And this data is securely loaded in there. No way to access it with the hypervisor. So I can't think of any method to get in the LS where the keys (keys keys keys) are located. Am I missing something?
Still it's some news though
And this data is securely loaded in there. No way to access it with the hypervisor. So I can't think of any method to get in the LS where the keys (keys keys keys
) are located. Am I missing something? Still it's some news though
Quote:
|
Originally Posted by sika
Unless they make it like the ps2 and wii iso loaders, where you add a game with a manager and it makes it into several parts.
|
Someone post in the comments section speculate that the ps3 xmb has a built in iso loader. This true? Might be easier to develop a means then.
Quote:
|
Gam said...
For those of you who have not noticed, the PS3 XMB comes with built in ISO Loader. |
He has helped me crack my iphone 3gs, now the ps3? he is truly the man. I have never doubted him or his work, he is trully 1 of the best. When he released the latest iphone hack, i asked him how the process on ps3 was coming along, he didn't reply, i guess kept it quiet
Cannot wait for the results of this hacking discovery.
GeoHot - 2 Apple/Sony - 0
Way to go, i think if theres any ladies on this site they need to head over to hes house and offer services he deserves.
Cannot wait for the results of this hacking discovery.
GeoHot - 2 Apple/Sony - 0
Way to go, i think if theres any ladies on this site they need to head over to hes house and offer services he deserves.
Some updates of interest from the comments:
Quote:
|
Mathieulh said...
@geohot there wont be any keys in lv1, the keys NEVER Leave the isolated spu. (even the useless ones) |
Quote:
|
George Hotz said...
I know, I'm not looking for keys in the dump directly. But I now have all the routines that set up and talk to the SPU |
Has any of the devs that have talked to geohot asked if it will work on both the fat and slim?
Quote:
|
Originally Posted by cmccmc
Has any of the devs that have talked to geohot asked if it will work on both the fat and slim?
|
Quote:
|
Originally Posted by semitope
Someone post in the comments section speculate that the ps3 xmb has a built in iso loader. This true? Might be easier to develop a means then.
|
Quote:
|
Originally Posted by cmccmc
Has any of the devs that have talked to geohot asked if it will work on both the fat and slim?
|
And maybe this hack can enable OtheroS on slim if it was not removed by the means of hardware...
Nice news indeed, but i still wonder whats goin on with zpack, there were some guys that claimed they ordered it so where are they now?
hell, as i said xD this guy is god. i'm happy to see that geohot did it.
i cant wait for the first infos about backuplaunching or ps3 backward compatiblity.
i cant wait for the first infos about backuplaunching or ps3 backward compatiblity.
According to his blog posts it looks like he achieved this by "glitching" rambus memory addresses through linux. Also don't talk on devs like mathieulh he was a god on PSP hacking.
Actually.. i'm a little bit pessimistic because so many hackers anouced that they're already succes breaking this black box. But after that... Zaaaaap!!!! they're gone... maybe they got graft from sony... and then live peace fully with a lot of many ^_^
happly ever after...
happly ever after...
Quote:
|
Originally Posted by solbadguy71
Actually.. i'm a little bit pessimistic because so many hackers anouced that they're already succes breaking this black box. But after that... Zaaaaap!!!! they're gone... maybe they got graft from sony... and then live peace fully with a lot of many ^_^
happly ever after... |
if he says he hacked the ps3 he did it and we will see the results in some weeks. =)
lets see when the first CFW comes out and backups or backward compatiblity gets to standard for the ps3. =)
this is damn good news, I really hope its for all systems and not just fat because my 60gb release just took a crap 5 days ago and I was forced to get a slim =( either way I hope after 3 years the system will finely be cracked wide open cuz its been far too long that nothing has been done 
good luck
good luck
Quote:
|
Originally Posted by evilsperm
this is damn good news, I really hope its for all systems and not just fat because my 60gb release just took a crap 5 days ago and I was forced to get a slim =( either way I hope after 3 years the system will finely be cracked wide open cuz its been far too long that nothing has been done
good luck |
back to topic: I think is likely that this exploit will work on slim, but we will have to wait for geohot to come out with more details about his findings.
what i am interested in.. will geohot work together now with the devs to create a custom firmware? i think this would be the best idea.
not releasing the exploit. just creating a custom firmware that backups can be played and the backward compatiblity gets in the ps3.
and the greatest of all. all psp games playable on the ps3 O.O
not releasing the exploit. just creating a custom firmware that backups can be played and the backward compatiblity gets in the ps3.
and the greatest of all. all psp games playable on the ps3 O.O
Quote:
|
Originally Posted by Warrorar
what i am interested in.. will geohot work together now with the devs to create a custom firmware? i think this would be the best idea.
|
If the exploit proves useful for more than just PS3 Linux, for example, then I'm sure many groups will begin working on porting their own homebrew to the PS3, making loaders and so on... GeoHot isn't likely to get involved in all that stuff, he will probably go back to class with a smile on his face that he was the first to hack the PS3 and leave it at that.
I've once imagined that in the past. With the ps3 wide open, wouldn't be possible to use a ps3 as a pc ?
You would be able to run linux with 100% of it and play games, browse the web, msn.. everything that a home computer does.
And i've heard you can attach 2 or more ps3 together to become a super computer. Is it too crazy to think in a possible "sli" or dual-ps3 system to use as a home computer ? It would be fast!
But that's just my imagtination going by...
You would be able to run linux with 100% of it and play games, browse the web, msn.. everything that a home computer does.
And i've heard you can attach 2 or more ps3 together to become a super computer. Is it too crazy to think in a possible "sli" or dual-ps3 system to use as a home computer ? It would be fast!
But that's just my imagtination going by...
Quote:
|
Originally Posted by veggav
I've once imagined that in the past. With the ps3 wide open, wouldn't be possible to use a ps3 as a pc ?
You would be able to run linux with 100% of it and play games, browse the web, msn.. everything that a home computer does. And i've heard you can attach 2 or more ps3 together to become a super computer. Is it too crazy to think in a possible "sli" or dual-ps3 system to use as a home computer ? It would be fast! But that's just my imagtination going by... |
well done geo, yeh man he has done it bet ya a ps3 lolz he is good congrats geo again and here is to the future of the scene! 
YEEEEHARRR
YEEEEHARRR
I think with this heart pounding news I will have to increase my daily visits to the site, i think i'll find myself checking the site everytime i'm on the pc haha, it will probably be a while till we hear anything as he stated he has a lot of reversing ahead of him, I just hope the ps3 is as powerful as I keep thinking, wii emulator?
I don’t see why not (until I get corrected very soon), maybe a dreamcast emulator, or even a xbox360 emulator muhuhahaha ok that may be pushing it, regardless of what comes this is the best news I’ve heard in a while regarding the beautiful ps3.
Thanks Geohot for all your hard work.
Thanks PS3News for keeping us all updated.
I don’t see why not (until I get corrected very soon), maybe a dreamcast emulator, or even a xbox360 emulator muhuhahaha ok that may be pushing it, regardless of what comes this is the best news I’ve heard in a while regarding the beautiful ps3.
Thanks Geohot for all your hard work.
Thanks PS3News for keeping us all updated.
Quote:
|
Originally Posted by rashayad
Any chance this draws DAX out of "retirement"?
|
Of course it's a little premature to speculate that far ahead since we don't even know the extent of things yet... chances are, if GeoHot is finishing his work solo it will take him quite some time to reverse everything.
Here is to hoping he does share some more progress updates along the way though, which from the sound of things, he plans to.
Quote:
|
Originally Posted by PS3 News
Here is to hoping he does share some more progress updates along the way though, which from the sound of things, he plans to.
|
Hey guys, would the countless hackers interested in the PS3 actually be able to create ANYTHING for the PS3 without a DECR1000 Tool?
Because if not, all eyes are on CJPC. Can you feel the pressure?
Because if not, all eyes are on CJPC. Can you feel the pressure?
A Tool isn't needed, however, the only issue might be in running PS3 backups... the possibility exists that they may end up needing to be dumped properly via Debug PS3 the way some Devs have been doing all along. If this is the case, CJPC will release a complete guide with all the necessary tools of course so don't worry.
However, if someone cracks the isolated SPU that may not be an issue at all, as then it may be possible to make the SPU decrypt the data after patching the kernel... of course the BD drive will also check the data, etc.
The above is all rampant speculation though, as until GeoHot posts more details it's all anyone can do pretty much.
However, if someone cracks the isolated SPU that may not be an issue at all, as then it may be possible to make the SPU decrypt the data after patching the kernel... of course the BD drive will also check the data, etc.
The above is all rampant speculation though, as until GeoHot posts more details it's all anyone can do pretty much.
If this does lead to homebrew on the PS3, is there a chance that Bluray Drive keys can be extracted and flashed onto a different drive so that you don't have to use the drive that came with the PS3's motherboard?
This is great news but a lot of commenters seem to be jumping the gun. I have no doubt that Geohot has performed a significant feat, but there's a lot of work before we see homebrew and ISO loaders (and there's no guarantee this will even lead to that).
Regardless, I am pretty excited about the possibilities. If nothing else I think it will open up some new avenues and perhaps give devs some new ideas.
Regardless, I am pretty excited about the possibilities. If nothing else I think it will open up some new avenues and perhaps give devs some new ideas.
Very impressive, can't wait until we are able run homebrew XBMC-PS3 also ISO loaders can be useful in some cases but not really my cup of tea, I much perfer to have my stack of games right at the side of my console, it just looks so much better
also ISO loaders can be useful in some cases but not really my cup of tea, I much perfer to have my stack of games right at the side of my console, it just looks so much better
To be honest, I see this as a bittersweet victory. And I'm not talking about piracy... that's a rather complicated topic I'd rather not touch. I'm talking about the wave of idiots doing hacks/exploits on online games, ruining the fun for those who want to play the game the way it was intended to be.
Now, I know that this happens already to some extent for some PS3 games (MW2 comes to mind), but this will make it easier for the idiots, and harder for the devs to stop it from happening.
Yet, on the other side... HOMEBREW! I get a nerdgasm just thinking of the possibilities!
(PS: Do you think Sony will develop a way to detect hacked PS3's and start doing mass bans from PSN, like Microsoft on XBL?)
Now, I know that this happens already to some extent for some PS3 games (MW2 comes to mind), but this will make it easier for the idiots, and harder for the devs to stop it from happening.
Yet, on the other side... HOMEBREW! I get a nerdgasm just thinking of the possibilities!
(PS: Do you think Sony will develop a way to detect hacked PS3's and start doing mass bans from PSN, like Microsoft on XBL?)
To be honest i'm not really bothered with backups etc... i just want to an MAME emulator with the power of the ps3... and maybe with online support
I personally can't wait till backups are an option, I despise using my original discs and now Blu-Ray discs are affordable enough for backups to be an option. Too bad the burners are still at the very least $200.
geo updated his blog.. topic name: I know some function names...
And now if calls have restrictions I don't like, I zap them.
And now if calls have restrictions I don't like, I zap them.
Quote:
|
George Hotz said...
lv1 is in ram, i r/w ram... |
Quote:
|
Here comes the mapping of the kernel:
The kernel: c00000000xxxxxxx -> 0000408f92c94xxxxxxx c: 0 l: 1 n: 0 kp: 1 ks: 0 c000000000000000 - c000000000f00000 vmalloc regions: d00000000xxxxxxx -> 0000f09b89af5xxxxxxx c: 0 l: 0 n: 0 kp: 1 ks: 0 d000000000000000 - d000000000004000 d000000000008000 - d00000000000c000 d000000000038000 - d000000000044000 d000000000048000 - d000000000054000 d00000000005c000 - d000000000074000 d000000000078000 - d0000000000a8000 d0000000000ac000 - d0000000000c0000 d0000000000c4000 - d000000000130000 d000000000134000 - d000000000140000 d000000000144000 - d000000000150000 d000000000154000 - d000000000164000 d000000000168000 - d000000000178000 d00000000017c000 - d00000000019c000 d0000000001a0000 - d0000000001f4000 d0000000001f8000 - d000000000208000 d00000000020c000 - d000000000224000 d000000000228000 - d00000000023c000 d000000000240000 - d000000000254000 d00000000025c000 - d000000000270000 d00000000027c000 - d0000000002d8000 d0000000002dc000 - d00000000032c000 d000000000330000 - d00000000033c000 d000000000340000 - d000000000430000 d000000000434000 - d000000000520000 d000000000524000 - d000000000558000 d00000000055c000 - d000000000598000 d00000000059c000 - d0000000005e0000 d0000000005e4000 - d000000000618000 d00000000061c000 - d000000000638000 d00000000063c000 - d00000000064c000 d000000000650000 - d000000000664000 d000000000668000 - d000000000678000 d00000000067c000 - d00000000068c000 d000000000690000 - d0000000006e4000 d0000000006e8000 - d000000000728000 d00000000072c000 - d00000000075c000 d000000000768000 - d000000000794000 d000000000798000 - d0000000007ac000 d0000000007b0000 - d0000000007f0000 d0000000007f4000 - d0000000008c4000 d0000000008c8000 - d000000000960000 d000000000964000 - d0000000009d4000 d0000000009d8000 - d0000000009f8000 d000000000a00000 - d000000000a1c000 d000000000a20000 - d000000000a2c000 d000000000a44000 - d000000000a50000 d000000000a58000 - d000000000abc000 d000000000ac0000 - d000000000b20000 d000000000b24000 - d000000000b3c000 d000000000b40000 - d000000000b60000 d000000000b64000 - d000000000b78000 d000000000b7c000 - d000000000bc0000 d000000000bc8000 - d000000000c48000 d000000000c4c000 - d000000000d3c000 d000000000d40000 - d000000000d68000 d000000000d6c000 - d000000000d90000 d000000000d94000 - d000000000d9c000 d000000000da0000 - d000000000da8000 d000000000db0000 - d000000000dc4000 d000000000dc8000 - d000000000df0000 d000000000df4000 - d000000000e10000 d000000000e14000 - d000000000e2c000 d000000000e30000 - d000000000e44000 d000000000e48000 - d000000000e60000 d000000000e64000 - d000000001014000 d000000001018000 - d00000000105c000 d000000001060000 - d000000001068000 d00000000109c000 - d0000000010c8000 d0000000010cc000 - d0000000010ec000 d000000001174000 - d0000000011d8000 d0000000011dc000 - d000000001224000 Bolted regions f00000000xxxxxxx -> 0000dc19498bexxxxxxx c: 1 l: 0 n: 0 kp: 1 ks: 1 f000000007aa8000 - f000000007aac000 f000000007ac4000 - f000000007acc000 f000000007b48000 - f000000007b4c000 f000000007ba4000 - f000000007bb0000 f000000007ecc000 - f000000007ed0000 f000000007f2c000 - f000000007f84000 f000000007f88000 - f000000007fac000 f000000007fb0000 - f000000007fd8000 f000000007fdc000 - f000000007fe4000 f000000007fec000 - f000000007ffc000 The HTAB d00008008xxxxxxx -> 0000d3df8b595xxxxxxx c: 1 l: 0 n: 0 kp: 1 ks: 1 Mappings in user area: 000000000xxxxxxx -> 0000dc19498bexxxxxxx c: 1 l: 0 n: 0 kp: 1 ks: 1 0000000007aa8000 - 0000000007aac000 0000000007ac4000 - 0000000007acc000 0000000007b48000 - 0000000007b4c000 0000000007ba4000 - 0000000007bb0000 0000000007ecc000 - 0000000007ed0000 0000000007f2c000 - 0000000007f84000 0000000007f88000 - 0000000007fac000 0000000007fb0000 - 0000000007fd8000 0000000007fdc000 - 0000000007fe4000 0000000007fec000 - 0000000007ffc000 00000000fxxxxxxx -> 0000d3df8b595xxxxxxx c: 1 l: 0 n: 0 kp: 1 ks: 1 000000004xxxxxxx -> 0000d1a140344xxxxxxx c: 1 l: 0 n: 0 kp: 1 ks: 1 0000000040000000 - 000000004001c000 0000000040028000 - 0000000040034000 0000000040074000 - 00000000400a4000 |
some hypervisor calls posted just a few mins ago..
these function names: http://wiki.ps2dev.org/ps3:hypervisor
these function names: http://wiki.ps2dev.org/ps3:hypervisor
I'll reserve my views until he actually releases some proof, I don't doubt his skills since he did hack the iPhone, but since the launch of the console in 2006 people have been trying to hack this thing and were making little to no progress, and now out of the blue its suddenly been done by one person.
[QUOTE=GeoHot]I know some function names...
And now if calls have restrictions I don't like, I zap them. [/QUOTE]
What about returning the lv1_panic function so it cannot panic anymore? Then we could search for a normal bufferoverflow.
And now if calls have restrictions I don't like, I zap them. [/QUOTE]
What about returning the lv1_panic function so it cannot panic anymore? Then we could search for a normal bufferoverflow.
Quote:
|
Originally Posted by Misled3k
To be honest, I see this as a bittersweet victory. And I'm not talking about piracy... that's a rather complicated topic I'd rather not touch. I'm talking about the wave of idiots doing hacks/exploits on online games, ruining the fun for those who want to play the game the way it was intended to be.
Now, I know that this happens already to some extent for some PS3 games (MW2 comes to mind), but this will make it easier for the idiots, and harder for the devs to stop it from happening. Yet, on the other side... HOMEBREW! I get a nerdgasm just thinking of the possibilities! (PS: Do you think Sony will develop a way to detect hacked PS3's and start doing mass bans from PSN, like Microsoft on XBL?) |
On the other hand I hope we get a pretty good ps2 emulator, so we can all enjoy those rare ps2 titles that are so hard to find. For someone thats been looking for ICO for months this is pretty good news (I'm outside USA).
Quote:
|
Originally Posted by Warrorar
geo updated his blog.. topic name: I know some function names...
And now if calls have restrictions I don't like, I zap them. |
Quote:
|
Originally Posted by D3M0N2009
I'll reserve my views until he actually releases some proof, I don't doubt his skills since he did hack the iPhone, but since the launch of the console in 2006 people have been trying to hack this thing and were making little to no progress, and now out of the blue its suddenly been done by one person.
|
Quote:
|
Originally Posted by adrianc1982
I agree with you, think about all those lamers that will mod their trophy score and what not to look cool... We will probably gain in a lot of areas but will lose our beloved online experience. Buying the games wasnt bad at all and I like having my games and knowing that I supported the developers.
|
Quote:
|
Originally Posted by Misled3k
To be honest, I see this as a bittersweet victory. And I'm not talking about piracy... that's a rather complicated topic I'd rather not touch. I'm talking about the wave of idiots doing hacks/exploits on online games, ruining the fun for those who want to play the game the way it was intended to be.
Now, I know that this happens already to some extent for some PS3 games (MW2 comes to mind), but this will make it easier for the idiots, and harder for the devs to stop it from happening. Yet, on the other side... HOMEBREW! I get a nerdgasm just thinking of the possibilities! (PS: Do you think Sony will develop a way to detect hacked PS3's and start doing mass bans from PSN, like Microsoft on XBL?) |
Quote:
|
Originally Posted by Preceptor
I'm not sure what he meant by that though, since the names of most of the functions were already documented.
|
Quote:
|
Benjamin said...
these function names are nothing new http://wiki.ps2dev.org/ps3:hypervisor |
Quote:
|
Carlos said...
@Benjamin: he just match them from the mem dump |
Quote:
|
George Hotz said...
@Benjamin yea, thats the point |
wow great news i knew geohot was the man first the iphone then the ps3, what's next nexus one?
GEO U ARE GOD! =) butt kissing apart keep in mind this: using the PS3 to do everything else besides playing games... gaining "full access" to use ps3 brute force with Linux or other OS. Making it the 1st open source super computer for everyone.
Some more comments of interest:
This means the PS3's hypervisor does not disable the GPU as expected, the only thing that prohibits OtherOS from using the graphic card 100% is the lack of an optimized driver. 
Quote:
|
Mathieulh said...
There is more than enough infos on this blog for sony to patch this exploit though, How long until they start using lv1ldr to hash lv1's ram or its interesting bits I wonder ? |
Quote:
|
Mathieulh said...
By the way, most of these hypercalls were documented in the following place: http://wiki.ps2dev.org/ps3:hypervisor |
Quote:
|
George Hotz said...
If they start using lv1ldr for anything I don't like...I'll just kick it out. Just because it's isolated doesn't mean it keeps running. PPE can say no. |
Quote:
|
George Hotz said...
And for GPU access, I think you already have it, just no driver. Hacking doesn't change that, although reversing lv1 could aid development. |
Quote:
|
Mathieulh said...
@geohot, how can you kick it out when lv1ldr is the one that actually loads lv1 in the first place ? They can just make resident in the spu (which is what they already do) and have it permanantly check the lv1 ramspace (or even just the bits that set it to r/w) then store the hash in the isolated spu ram to make sure you can tweak with that either That would make your hack quite hard to perform then. Not to mention considering the spu cache is way faster than xdr is, the system wouldn't suffer any slowdowns would this kind of security be enforced. |
Quote:
|
George Hotz said...
On my system SPE3 is disabled and SPE2 runs security, leaving 6 SPEs for games and otheros. Theres another fuse register which says which SPEs are actually broken and hard disabled in manufacture, which mine is. But yea, I bet a percentage of PS3s could get access to all 8. |
Mathieulh is aways so negative 
The hypercalls he said were documented were already covered in the comments.
The hypercalls he said were documented were already covered in the comments.Quote:
|
If they start using lv1ldr for anything I don't like...I'll just kick it out.
Just because it's isolated doesn't mean it keeps running. PPE can say no. |
Quote:
|
Originally Posted by semitope
Mathieulh is aways so negative
|
Some more comments from the blog:
Quote:
|
S said...
Until you extract the decryption keys that are securely stored in the SPE, you cannot say that you hacked the PS3, like you stated in your other post. |
Quote:
|
Mathieulh said...
@S Whoever you are, you've got the truth to it xD In my opinion as well, the ps3 will only truly be hacked once the isolated spu loaders are dumped and the keys leaked. (though then sony just have to update the loaders and change the keys..., this means to really hack the console you need to dump the hardware root key and decrypt the bootloader, good luck on that) I do agree that dumping lv1 is a nice step forward and that it is no easy task, for that I give my kudos to geohot. |
Quote:
|
George Hotz said...
The SPUs don't actually need to be hacked to do anything with the system. The PPE can kick out isolated SPUs, so it has the higher level of control. You can just use the SPUs to load things, kick them out, then patch to your hearts content. |
Quote:
|
George Hotz said...
Granted, if we could decrypt the ISO SPUs, things would be a lot easier. |
Quote:
|
Mathieulh said...
@geohot yes but the whole security relies on the isolated spu, all the keys are there and it does much more than just decryption and checks, so yes you can manage without hacking them, you can even get rid of them (though I can't guarantee that wont crash the system) but it still isn't hacking the system overall until you get to hack every single part of the console and dump every single piece of hidden code. In that regard even the psp isn't truly hacked considering the kirk and spock engines have not been dumped. |
Quote:
|
George Hotz said...
Read your last paragraph in your last comment, and you'll see why I'm right. You can't expect to know everything and dump every piece of code. This hack is enough for homebrew, full linux, and even backups. |
Quote:
|
S said...
Once data leaves the SPE its encrypted again,how do you plan on patching that? But, if you're planning to just execute data using the PPU then you are limited with what you can do. NO gpu access will work for example. for that you will need to run it through SPE. |
GeoHot: "This hack is enough for homebrew, full linux, and even backups." Although some still are doubting the back-up claim:
Quote:
|
ppcasm said...
@George How do you suppose you will play these "backups"? If you find a vulnerability in a hypervisor syscall per say, you would still need to communicate with the HV in gameos for "backups". Unless you can hijack the boot process early, which seems unlikely at this point. Then you would have to do something like find a usermode vuln, write an exploit paying careful attention not to return to the stack/heap since they are not executable, THEN, somehow leverage that and find a vulnerability in the kernel, THEN use that leverage to leverage a HV vuln, since the HV can only communicate with code through syscalls. Not even mentioning that it's likely expecting encrypted memory anyway. all of this with no gameos memdump of any sort, and no real attack vector in gameos where you claim "backup loading"? Care to elaborate on your plan for this? In otheros you are already running as kernelmode since you can write drivers, so you can directly communicate with the hv there through syscalls, but to claim backup's is a little far fetched don't you think? |
Quote:
|
Mathieulh said...
well running backups is very theoretical at this point, for one would need to load a patched version of lv2 in order to do so, at this point this is still premature, a lot of things could prevent such an implementation from happening. I am not saying this can't be done but in my opinion we are months away with the hack in its current state of seeing this happen. |
Quote:
|
Originally Posted by PS3 News
I'd say this confirmation means a lot for most users here
GeoHot: "This hack is enough for homebrew, full linux, and even backups." |
what's funny is [SIZE=2]Mathieulh [/SIZE]states himself that he is no expert but he's totally along the lines of trying to make everyone think he is.
he needs to butt out of it and let someone take some credit for their work. this is one of those guys that would do anything to put someone else down.
he needs to butt out of it and let someone take some credit for their work. this is one of those guys that would do anything to put someone else down.
this comment made me laugh
Quote:
|
j said...
OMG everyone leave him alone just get on your knees and bow down because admit it he's better than you just look back to the iphone unhackable lol ya eat it |
If we can retrieve keys, won't it be sufficient to decrypt firmware updates? Then we can patch it to create custom firmware and use a loophole to install it? Just like in the case of PSP.
I guess it all comes down to each person's definition of 'hacked' in terms of the PS3... some want to see the root keys decrypted, etc before it being considered "hacked" while others are happy being able to run homebrew and back-ups.
Not being a developer, my own opinion is the latter... if I can run homebrew and back-ups on the PS3 I feel it's acceptable to label it as "hacked" for me, but I know several others feel the opposite.
I imagine from a general 'scene' perspective (not a developer's one) the PS3 will be considered "hacked" when all of the releases posted to topsites, newsgroups, etc are playable on a retail PS3 console.
Not being a developer, my own opinion is the latter... if I can run homebrew and back-ups on the PS3 I feel it's acceptable to label it as "hacked" for me, but I know several others feel the opposite.
I imagine from a general 'scene' perspective (not a developer's one) the PS3 will be considered "hacked" when all of the releases posted to topsites, newsgroups, etc are playable on a retail PS3 console.
the ps3 is hacked, in my eyes, when I can download a blu ray PS3 game from a torrent site, copy to my external HDD and play on my slightly modified (chip or software) retail PS3. that said I think geohot is extremly talented in getting places and things done that no one else has been able to do.
In the end we are still all waiting aren't we. Nobody playing backups and no knowledge as to when.
Good luck to everyone involved and working on my definition of a hacked ps3.
In the end we are still all waiting aren't we. Nobody playing backups and no knowledge as to when.
Good luck to everyone involved and working on my definition of a hacked ps3.
Quote:
|
Originally Posted by ionbladez
what's funny is [SIZE=2]Mathieulh [/SIZE]states himself that he is no expert but he's totally along the lines of trying to make everyone think he is.
he needs to butt out of it and let someone take some credit for their work. this is one of those guys that would do anything to put someone else down. |
Because geohot is the first to post about a working playstation3 hack, doesn't mean he is the first to actually have achieved it.
Just my 2 cent here.
Quote:
|
Originally Posted by PS3 News
I guess it all comes down to each person's definition of 'hacked' in terms of the PS3... some want to see the root keys decrypted, etc before it being considered "hacked" while others are happy being able to run homebrew and back-ups.
Not being a developer, my own opinion is the latter... if I can run homebrew and back-ups on the PS3 I feel it's acceptable to label it as "hacked" for me, but I know several others feel the opposite. I imagine from a general 'scene' perspective (not a developer's one) the PS3 will be considered "hacked" when all of the releases posted to topsites, newsgroups, etc are playable on a retail PS3 console. |
More brilliant people will step out of the shadows soon that will code wonderful apps and games once this is completed and released and the homebrew race will start once again.
Oh well, if the Ps3 does eventually get hacked, it will only mean more hardware sales for Sony. $$$
In some terms i agree with Mathieulh. Look at the other consoles. There always plz out they already have discovered something. This is only the first time it would be done puplically in case of the ps3. Why you plz thing sony have buyed scene hackers to work for them? Maybe they have found the same or some similär?
In other terms i agree to the Boss. If i can execute HB and/or Backups on my ps3 then IT IS a hacked ps3.
Definition of Hacked =
In other terms i agree to the Boss. If i can execute HB and/or Backups on my ps3 then IT IS a hacked ps3.
Definition of Hacked =
Quote:
|
hack 1 (hk)
v. hacked, hack·ing, hacks v.tr. 1. To cut or chop with repeated and irregular blows: hacked down the saplings. 2. To break up the surface of (soil). 3. a. Informal To alter (a computer program): hacked her text editor to read HTML. b. To gain access to (a computer file or network) illegally or without authorization: hacked the firm's personnel database. 4. Slang To cut or mutilate as if by hacking: hacked millions off the budget. 5. Slang To cope with successfully; manage: couldn't hack a second job. v.intr. 1. To chop or cut something by hacking. 2. Informal a. To write or refine computer programs skillfully. b. To use one's skill in computer programming to gain illegal or unauthorized access to a file or network: hacked into the company's intranet. 3. To cough roughly or harshly. n. 1. A rough, irregular cut made by hacking. 2. A tool, such as a hoe, used for hacking. 3. A blow made by hacking. 4. A rough, dry cough. |
Thats great news ! as all pepole out there, i`ve been waiting for this news a long time.
so big THANKS to George for the hard work and effort, and to all ps3 news guys as well.
so big THANKS to George for the hard work and effort, and to all ps3 news guys as well.
Quote:
|
Originally Posted by Mathieulh
Well I am no expert next to other people I know that really make me (and geohot or anyone else I know for that matters) look like a moron in regards to playstation 3 security architecture knowledge.
|
I read a bit on the security architecture. For code to be run in isolated spu it has to be encrypted / signed and that would be done via the IBM CELL SDK, wouldn't it? They have 2 Versions of it normal and cda. And as of the description of the cda version I'd assume it's what's used in the PS3.
So wouldn't the cda version state how to get the "public key" for each CELL Chip so that one can enter it in the SDK do use the security feature?
Meaning, get the cda version and run your own, signed code!?
So with geohot's dumps you would be able to alter the code?!
i hope we have good news soon!!! keep up the good work!!!
i pay so much for original games, i think its time to hack this monster!!!
i pay so much for original games, i think its time to hack this monster!!!
Even got the "public key"... it may be just for this one PS3, coz ps3 is logic board pair with BD-ROM ID.
Quote:
|
Originally Posted by Zerotacg
You still might know an answer to my question
I read a bit on the security architecture. For code to be run in isolated spu it has to be encrypted / signed and that would be done via the IBM CELL SDK, wouldn't it? They have 2 Versions of it normal and cda. And as of the description of the cda version I'd assume it's what's used in the PS3. So wouldn't the cda version state how to get the "public key" for each CELL Chip so that one can enter it in the SDK do use the security feature? Meaning, get the cda version and run your own, signed code!? So with geohot's dumps you would be able to alter the code?! |
Does it matter if he wasnt the first? If he isnt the first then more rep to him for not being a mean and holding it back which if it has been done prior to this then they obviously didnt want to share. I find it extremely hard to believe that anyone has achieved anything of REAL substance prior to this, it would be leaked or at least known about.
And i ain't talkin crappy Warhawk hdd bs! Good on you Geohotz and screw the biters they're just upset its not them.
And i ain't talkin crappy Warhawk hdd bs! Good on you Geohotz and screw the biters they're just upset its not them.
Quote:
|
Originally Posted by Mathieulh
Once the hardware root key is set, there is no unsetting it, it's on OTP rom. (most likely efuses) Only sony then know this key and can sign content to be decrypted and verified for it.
|
I think its just cautious optimism. I think some of the experts want this to be true as much as anyone, but they more than anyone know not to get too caried away when faced with news like this, as success in this scene has proven most difficult in the past.
I think I see why he works alone. Besides his attitude I get the impression that most people would hold him back if he had to listen to them. When he started this he said he had read EVERYTHING yet people were still doubting he had any idea what he was doing.
GeoHotz stated that he will release all to the puplic when its done. So this means the first who will be able to release will be the first who have released a iso loader. Remember back onto the Wii and Team Twiizers with the common key.
I get my own information and as for hacking a system, I don't mind having it hacked as long as it is for educational purposes, if homebrews come as a plus, why not ?
Beside my reasons are far better than the ones of people that only care about piracy and whine whenever they do not get what they want.
Beside my reasons are far better than the ones of people that only care about piracy and whine whenever they do not get what they want.
I lol'd when I saw comments like "Is it really hacked? Where can I download it?" on various other sites.
People seem to think that GeoHot already created a CFW, an iSO Loader and some other goodies.
People seem to think that GeoHot already created a CFW, an iSO Loader and some other goodies.
I can't wait to have full linux access!!!! I totally envy this kid for his intelligence. But he deserves a lot of respect.
a ps2 emulator would be nice too... but I'm definitely waiting for the 3D acceleration and full hw access inside Linux!
I totally envy this kid for his intelligence. But he deserves a lot of respect.a ps2 emulator would be nice too... but I'm definitely waiting for the 3D acceleration and full hw access inside Linux!
I, as a lot of people here, am very excited with these news. Not only because It's some real hack news but because it's finally a step in the right direction that everyone can see.
It won't mean anything to have a hacked ps3 after the ps4 is out. I wanna run homebrews in my current generation console and that is it. George finally found some way in the low level system and I really think that's great. I'm not sure what he will be able to do with it but it's a nice find anyway. Pehaps when george release his hack, everything could be compiled for a complete hack, no?
And just a question, If George got Hv access to the whole system, couldn't he just use it to skip the firmware signature check and upload a modified version of the firmware to the system? If he could, the need for a level 2 hack doesn't make sense for me.
It won't mean anything to have a hacked ps3 after the ps4 is out. I wanna run homebrews in my current generation console and that is it. George finally found some way in the low level system and I really think that's great. I'm not sure what he will be able to do with it but it's a nice find anyway. Pehaps when george release his hack, everything could be compiled for a complete hack, no?
And just a question, If George got Hv access to the whole system, couldn't he just use it to skip the firmware signature check and upload a modified version of the firmware to the system? If he could, the need for a level 2 hack doesn't make sense for me.
Agreed. Twiizers never released half-a-hack, first they discovered buffer overflow, then they tested it for days and days. Then made chainloader, tools, etc etc, install files, etc etc, month of testing and volia! We have fully-workable, non-glithcing final, end-user hack. And only then they released it to the public.
Exactly my question some pages ago, still no answer.
Quote:
|
Originally Posted by Preceptor
And just a question, If George got Hv access to the whole system, couldn't he just use it to skip the firmware signature check and upload a modified version of the firmware to the system? If he could, the need for a level 2 hack doesn't make sense for me.
|
I think im gonna freeze my self up in the mountains until something comes out for an end-user, maybe be an iso loader or custom firmware?
Please unfreeze me at these gps cordinates when its all done and good to go; +38° 53' 40.68", -77° 1' 29.04"
Please unfreeze me at these gps cordinates when its all done and good to go; +38° 53' 40.68", -77° 1' 29.04"
Lets just be happy that there is progress in the PS3 scene.. Thats all.. Be happy people and be patient.. only time will tell the future of ps3 homebrew
//xplozion
//xplozion
Quote:
|
Originally Posted by Mathieulh
Well I am no expert next to other people I know that really make me (and geohot or anyone else I know for that matters) look like a moron in regards to playstation 3 security architecture knowledge.
Because geohot is the first to post about a working playstation3 hack, doesn't mean he is the first to actually have achieved it. Just my 2 cent here. |
and i also aggree with you that a hack is only 100% that it is possible that he isn't the first one. BUT i think, if the other devs would have this hack found out or a similiar they would already told it to the public.
because, like geo said. its theoretical unpatchable, so i don't think that anybody else found this solution already. i follow geo now very long and when i learned something about him.. he always do things nobody thinks about, and i think thats the point why he got to this point.
i totally hope that in 2-3 months the first infos about cfw's and so on are available and with specs about backward compatiblity or backup gaming from bd/hdd. i would be so happy to hear that i can play my games from hdd and dont have to use my bd rom drive....(allready killed one and had so sell my 469€ ps3 for 111€ on ebay q.q)
Quote:
|
Originally Posted by Kiriller
I think im gonna freeze my self up in the mountains until something comes out for an end-user, maybe be an iso loader or custom firmware?
Please unfreeze me at these gps cordinates when its all done and good to go; +38° 53' 40.68", -77° 1' 29.04" |
This is really impressive that he finally hacked the system after 5 weeks of work... 3 years after the PS3 launch
If it's real and I think that's the case, George Hotz is really a little genius. I want to see more news..
If it's real and I think that's the case, George Hotz is really a little genius. I want to see more news..
Funny the 3.15 firmware was optional, at least for the last month or so and yesterday I tried to go online without luck. Seems firmware 3.15 is now mandatory, the timing from geo's news and the mandatory upgrade makes me wonder...
Quote:
|
Originally Posted by adrianc1982
Funny the 3.15 firmware was optional, at least for the last month or so and yesterday I tried to go online without luck. Seems firmware 3.15 is now mandatory, the timing from geo's news and the mandatory upgrade makes me wonder...
|
Quote:
|
Originally Posted by mckarlsson
Two weeks ago i also had to update to 3.15, else i cannot play mw2 online..
|
Quote:
|
Originally Posted by Preceptor
And just a question, If George got Hv access to the whole system, couldn't he just use it to skip the firmware signature check and upload a modified version of the firmware to the system? If he could, the need for a level 2 hack doesn't make sense for me.
|
For instance, loading a SELF from BD-ROM, still gets passed through the isolated SPU, where it can check if the disk is valid or not before decrypting - why backups, even on a debug unit tend to not work encrypted.
So, like I said, its still not a walk in the park, not impossible, but it takes time!
I am very happy for this result. GG for the best one Geohot, but anyway 1000 thx for all PS3 Dev community!!!
p.s. sorry for my "bad" english
GG for the best one Geohot, but anyway 1000 thx for all PS3 Dev community!!!p.s. sorry for my "bad" english
Quote:
|
Originally Posted by CJPC
Well, the whole issue is that its not just 'skip a check', for example say to load a backup, after LV2 would be dumped, reverse engineered, patched, somehow re-loaded - even then, all of the routines for decrypting applications needs to get changed as well.
For instance, loading a SELF from BD-ROM, still gets passed through the isolated SPU, where it can check if the disk is valid or not before decrypting - why backups, even on a debug unit tend to not work encrypted. So, like I said, its still not a walk in the park, not impossible, but it takes time! |
great news indeed!
i just hope it's not a fake again, i think not for the moment.. it's geohot, not unknow man !
i just hope it's not a fake again, i think not for the moment.. it's geohot, not unknow man !
Quote:
|
Originally Posted by Preceptor
Hmmm.. But the check I meant was the modified firmware check. What I meant was if it was possible to load any modified firmware we want in the system because it always get checked for signature before installing. The routines still needed to be changed but, being able to make the system use any firmware is a BIG start indeed. It could be downgraded, upgraded, modified, etc. We could even easily turn retails into debugs and the opposite as well. Is it possible?
|
Namely we have had a PS3 here that allows us to change and install ANY PUP we wish, and even edit the PUP contents - which, is very, very cool, and has allowed us to test lots of stuff, like having FW 1.50 but with an ingame XMB
The problem is, the PKG files inside the PUP are still encrypted, and, like everything else in the box, decrypted by the ldr's.
On top of that, when the PS3 goes into Update mode is is rebooted into a special "slimmer" bootloader, with elevated access.
So, just dropping in an update may not work, the "Updater Mode" bootloader would need to be changed, reloaded (which, is also checked by a ldr!), and modified to allow our own PKG's - ignoring the fact that the keys and algo to the PKG files are unknown, which is, of course, inside a ldr, in a nice safe isolated SPU.
In regards to retail->debug stuff, it (also) goes back to the system, from a "firmware" point of view, there are a handful of checks that it makes against the system, so either a total R/E of the FW to patch the hell out of it, or some way of changing said flags in areas that are signed as well, let alone the rest of the flags in other areas...
So, before the PS3 was hacked, we were fighting against HyperVisor. Now the system is hacked, here comes another thing: Isolated SPU. So, what is next?
At least, instead of the things that can not be done, can you tell us what can be done
At least, instead of the things that can not be done, can you tell us what can be done
Quote:
|
Originally Posted by SCE
At least, instead of the things that can not be done, can you tell us what can be done
|
He's running the show on the "PS3 Hack" front right now, so until he shares more details (as it doesn't sound like he plans to post files based on his blog post stating "Also, for obvious reasons I can't post dumps.") all we can do is wait for for his next update to comment on as we have been thus far.
From the blog comments of note:
Quote:
|
Landyn said...
A Quote from http://www.ibm.com/developerworks/power/library/pa-cellsecurity/ "A hacker who has gained root or hypervisor privileges is not a threat to an application executing on an isolated SPE. The supervisory privileges will not enable him to control the application, nor will it allow him to read or write the memory used by it. The execution flow and the data of the isolated application are safe" |
Quote:
|
Originally Posted by SCE
So, before the PS3 was hacked, we were fighting against HyperVisor. Now the system is hacked, here comes another thing: Isolated SPU. So, what is next?
At least, instead of the things that can not be done, can you tell us what can be done |
But, in theory working with the SPU loaders vs fighting them is the best bet, let them handle all of your decryption needs.
This of course, does not stop Sony from rolling out a FW update, changing decrypt keys for new executables, and adding in some data to the loader to check the integrity of LV1- might not stop the hack, if he can control the SPU loading- but it would stop decryption of new data, and then the endless fight begins.
Quote:
|
Originally Posted by CJPC
This of course, does not stop Sony from rolling out a FW update, changing decrypt keys for new executables, and adding in some data to the loader to check the integrity of LV1- might not stop the hack, if he can control the SPU loading- but it would stop decryption of new data, and then the endless fight begins. |
You can bet they will fight them with all their might, likely taking lessons from Microsoft (XBL) too, mainly because as a business they have a responsibility to their partners, developers, investors, yada..
I'm just wondering if they will be as "friendly" to PS3 hackers as they were to PSP hackers and not go after them personally or try to hold them legally accountable for the millions of revenue lost.
From the blog comments, here is something "interesting" also if it's true HEHE... it may persuade GeoHot to show his work sooner:
I'm just wondering if they will be as "friendly" to PS3 hackers as they were to PSP hackers and not go after them personally or try to hold them legally accountable for the millions of revenue lost.
From the blog comments, here is something "interesting" also if it's true HEHE... it may persuade GeoHot to show his work sooner:
Quote:
|
ライトダーク3D said...
Geohot, could you email me lightdark3d gmail com, I think I figured out what you done and would like to discuss it off this blog |
Quote:
|
Originally Posted by PS3 News
From the blog comments, here is something "interesting" also if it's true HEHE... it may persuade GeoHot to show his work sooner:
Quote:
|
Well we do not have to forget that hacking ps3 MEANS more ps3 to sell out! Of course sony couldn't be greatful with hackers, but IF things will works, can be possible similar psp? CFW cames out even BEFORE (lol) orignal. I don't know what they do but seems that sony not changing so much, or not? Doing us a favor?
Quote:
|
Originally Posted by Pirata Nervo
I give it two weeks until he finds the keys
|
lol if so will be looking at the next console sony brings out is a ps3-go... there won't be ps4 untill sony is sure that it won't be hacked... same with psp2 will be seeing more versions of the original psp till its hack proof
Geo certainly is a talented guy. He's done an amazing job to get this far in such a short space of time. I really hope something good comes of this. I would love homebrew running on the PS3 and also a Blu-Ray multiregion hack
Quote:
|
Originally Posted by Balkanboy
lol if so will be looking at the next console sony brings out is a ps3-go.... there wont be ps4 untill sony is sure that it wont be hacked.... same with psp2 will be seeing more versions of the original psp till its hack proof
|
Next time they might just use less security or have hardware with weaker security than the cell.
Wow... My hat goes off to him! It is finally done, the ps3 security has finally fallen. I for one was skeptic of how much he would be able to accomplish but hopeful, and now stand corrected. He really is something else I guess, and I hope nothing but the best of luck in his future hacking endeavors! As for the bet, put me down for getting the keys by Valentine's Day. Anyone ready to monitor the surge in ps3 sales getting about ready to occur? Once again, congratulations geo, you are truly the man.
Quote:
|
Originally Posted by xUb3rn00dlEx
Wow... My hat goes off to him! It is finally done, the ps3 security has finally fallen. I for one was skeptic of how much he would be able to accomplish but hopeful, and now stand corrected. He really is something else I guess, and I hope nothing but the best of luck in his future hacking endeavors! As for the bet, put me down for getting the keys by Valentine's Day. Anyone ready to monitor the surge in ps3 sales getting about ready to occur? Once again, congratulations geo, you are truly the man.
|
It's only a matter of time before we can run our own programs on the PS3 without restrictions and use backups. 
I give it a month before we see solid results.
It's funny how at least 95% of the people posting on here is already congratulating him and patting him on the back as if he just "managed" to hack the PS3. First thing is first, it is very doubtful that he can crack this system in just a weeks when professionals from around the world were given years to become the first to create a successful modchip for it.
Though it is true he is very talented, the Ipod in my opinion is nothing compared to the Playstation 3 in terms of security and versatility. Plus if the PS3 were cracked, why don't he show proofs? Because don't get your hopes up just yet, the Playstation 3 is far from hacked and the road he is going on will soon lead to a dead end. Then silence will be all that remains...
Though it is true he is very talented, the Ipod in my opinion is nothing compared to the Playstation 3 in terms of security and versatility. Plus if the PS3 were cracked, why don't he show proofs? Because don't get your hopes up just yet, the Playstation 3 is far from hacked and the road he is going on will soon lead to a dead end. Then silence will be all that remains...
Quote:
|
Originally Posted by lilshortwun
It's funny how at least 95% of the people posting on here is already congratulating him and patting him on the back as if he just "managed" to hack the PS3. First thing is first, it is very doubtful that he can crack this system in just a weeks when professionals from around the world were given years to become the first to create a successful modchip for it.
Though it is true he is very talented, the Ipod in my opinion is nothing compared to the Playstation 3 in terms of security and versatility. Plus if the PS3 were cracked, why don't he show proofs? Because don't get your hopes up just yet, the Playstation 3 is far from hacked and the road he is going on will soon lead to a dead end. Then silence will be all that remains... |
CJPC, thanks for the INFO. I didn't know the ps3 had a completely separated bootloader just to load and check firmwares and pkgs before implanting them into the system.
Just an off topic question... Weren't you supposed to have received some leet piece of hardware last Wednesday or something and would post some news about it this weekend?
Just an off topic question... Weren't you supposed to have received some leet piece of hardware last Wednesday or something and would post some news about it this weekend?
Still, this is one of the greatest news ever for the scene. At least on-par with CJPC getting a TOOL unit (I'm no expert at all, but I felt the same way --> ).
I can't wait to see where this leads. It's time for me to stop updating my Ps3, just in case. Now I'm dreaming about a Ps3 Homebrew scene as lively and imaginative as the Psp or Wii ones... Let's start by a 1080p "Hello world"
A big big thanks to GeoHot and all the resident Devs, for your past, present, and future efforts.
).I can't wait to see where this leads. It's time for me to stop updating my Ps3, just in case. Now I'm dreaming about a Ps3 Homebrew scene as lively and imaginative as the Psp or Wii ones... Let's start by a 1080p "Hello world"
A big big thanks to GeoHot and all the resident Devs, for your past, present, and future efforts.
Quote:
|
Originally Posted by Preceptor
Just an off topic question... Weren't you supposed to have received some leet piece of hardware last Wednesday or something and would post some news about it this weekend?
|
Nice job for hacking and getting into the PS3 firmware internals. From what I know the PS3 is a hard walnut to crack. A lot of times hacking the system can tend to improve it from what you get from Factory as like the PSP units and PSP homebrew.
Quote:
|
Originally Posted by lilshortwun
It's funny how at least 95% of the people posting on here is already congratulating him and patting him on the back as if he just "managed" to hack the PS3. First thing is first, it is very doubtful that he can crack this system in just a weeks when professionals from around the world were given years to become the first to create a successful modchip for it.
Though it is true he is very talented, the Ipod in my opinion is nothing compared to the Playstation 3 in terms of security and versatility. Plus if the PS3 were cracked, why don't he show proofs? Because don't get your hopes up just yet, the Playstation 3 is far from hacked and the road he is going on will soon lead to a dead end. Then silence will be all that remains... |
Btw how do you know its going to lead to a dead-end? What proof do you want? I don't think he is concerned about proof anyway. He will say what he needs to when he is done, worst case is he underestimates what he can achieve with his methods
Quote:
|
Originally Posted by lilshortwun
It's funny how at least 95% of the people posting on here is already congratulating him and patting him on the back as if he just "managed" to hack the PS3. First thing is first, it is very doubtful that he can crack this system in just a weeks when professionals from around the world were given years to become the first to create a successful modchip for it.
Though it is true he is very talented, the Ipod in my opinion is nothing compared to the Playstation 3 in terms of security and versatility. Plus if the PS3 were cracked, why don't he show proofs? Because don't get your hopes up just yet, the Playstation 3 is far from hacked and the road he is going on will soon lead to a dead end. Then silence will be all that remains... |
Even though the title is misleading, i think i should congratulate Geohot for such a great achievement, he's definitely a breath of fresh air in the scene.. but lets not forget about the previous progress made by the resident ps3 devs, i'm sure Geohot wouldn't be at this point if there wasn't previous achievements made by the devs.
congratulations to all.
congratulations to all.
Quote:
|
Originally Posted by cenoxdj
Well we do not have to forget that hacking ps3 MEANS more ps3 to sell out! Of course sony couldn't be greatful with hackers, but IF things will works, can be possible similar psp? CFW cames out even BEFORE (lol) orignal. I don't know what they do but seems that sony not changing so much, or not? Doing us a favor?
|
Equally, if it means the PS3 can now be used as a HTPC and full Media Centre, then it might just boost sales. (and without being able to run Isos as that would harm the software side of their business).
I am not sure what SCE had in mind with regards to lifecycle of the PS3, but 3 years is not bad. I guess they know they need to move on, how would you explain those rumours about PS4 and Xbox720?
But wouldn't it be something to be able to use the PS3s hardware fully deristricted under Linux and add new codecs? Away with standalone players, etc.
Just a playstation and an amplifier Nice!
http://www.ibm.com/developerworks/power/library/pa-cellsecurity/
I'm not really into PS3 architecture but as I understand from this document SPU has hardcoded private key inside and it's a part of SPU(something like CPUID) that can't be changed, system loads code into Local Store (LS) and SPE verifies it and if its valid it begins decryption and allows execution of code that is loaded into LS. To me it looks like Sony gave private key to IBM so SPE can decrypt what Sony encrypts with their public key. Even in case if you will figure out the private key you will be only able to decrypt/verify selfs. So only possible way its to buy this this public key from Sony
PS: Maybe it's possible to compromise the system with DMA manipulation + exploit but who know...
Please correct me if i'm wrong i just speculating with info that are on public thnx.
I'm not really into PS3 architecture but as I understand from this document SPU has hardcoded private key inside and it's a part of SPU(something like CPUID) that can't be changed, system loads code into Local Store (LS) and SPE verifies it and if its valid it begins decryption and allows execution of code that is loaded into LS. To me it looks like Sony gave private key to IBM so SPE can decrypt what Sony encrypts with their public key. Even in case if you will figure out the private key you will be only able to decrypt/verify selfs. So only possible way its to buy this this public key from Sony
PS: Maybe it's possible to compromise the system with DMA manipulation + exploit but who know...
Please correct me if i'm wrong i just speculating with info that are on public thnx.
Quote:
|
Originally Posted by int0
I'm not really into PS3 architecture but as I understand from this document SPU has hardcoded private key inside and it's a part of SPU(something like CPUID) that can't be changed, system loads code into Local Store (LS) and SPE verifies it and if its valid it begins decryption and allows execution of code that is loaded into LS. To me it looks like Sony gave private key to IBM so SPE can decrypt what Sony encrypts with their public key. Even in case if you will figure out the private key you will be only able to decrypt/verify selfs. So only possible way its to buy this this public key from Sony
PS: Maybe it's possible to compromise the system with DMA manipulation + exploit but who know... |
ps2 took 2 years to hack, ps3 took 3 years to hack, ps4 4 years ? i think sony is learning from mistakes
i think sony is learning from mistakes
Geohot posted update in comments
Quote:
|
George Hotz said...
the stupid hypervisor is PPC and C++ if it were C and ARM, maybe i'd have a public sw exploit already. |
BBC News jumping on it PlayStation 3 'hacked' by iPhone cracker (http://news.bbc.co.uk/1/hi/technology/8478764.stm)
PlayStation 3 'hacked' by iPhone cracker (http://news.bbc.co.uk/1/hi/technology/8478764.stm)Quote:
|
A US hacker who gained notoriety for unlocking Apple's iPhone as a teenager has told BBC News that he has now hacked Sony's PlayStation 3 (PS3).
George Hotz said the hack, which could allow people to run pirated games or homemade software, took him five weeks. He said he was still refining the technique but intended to post full details online soon. The PS3 is the only games console that has not been hacked, despite being on the market for three years. "It's supposed to be unhackable - but nothing is unhackable," Mr Hotz told BBC News. "I can now do whatever I want with the system. It's like I've got an awesome new power - I'm just not sure how to wield it." Sony said it was "investigating the report" and would "clarify the situation" when it had more information. 'Open curiosity' Mr Hotz said that he had begun the hack last summer when he had spent three weeks analysing the hardware. After a long break, he spent a further two weeks cracking the console, which he described as a "very secure system". He said that he was not yet ready to reveal the full details of the hack but said that it was "5% hardware and 95% software". Playstation 3 (Sony) The hack could allow gamers to play pirated games "You can use hardware to inject an insecurity and then you can build on that," he said. He admitted that he had not managed to hack the whole system, including the protected memory, but had worked out ways to trick the console into doing what he wanted. Mr Hotz said that he was continuing to work on the hack and, once finished, would publish details online in a similar way to his previous iPhone exploits. In particular, he said, he would publish details of the console's "root key", a master code that once known would make it easier for others to decipher and hack other security features on the console. He said his motivation was "curiosity" and "opening up the platform". "To tell you the truth, I've never really played a PS3," he said. "I have one game, but I've never really played it." Opening the system could allow people to install other operating systems on their console and play homemade games, he said. In addition, he said, the hack would allow people to play older PS2 games on their consoles. Recent versions of the PS3 do not have the ability to play PS2 games after Sony controversially removed a piece of hardware. He admitted that it could also allow people to run pirated games. "I'm not going to personally have anything to do with that," he told BBC News. Gaming firms do not take the issue of game piracy and console modification lightly. Recently, Microsoft disconnected thousands of gamers from its online gaming service Xbox Live for modifying their consoles to play pirated games. Mr Hotz said that the nature of his PS3 hack means that Sony may have difficulty patching the exploit. "We are investigating the report and will clarify the situation once we have more information," said a Sony spokesman. Mr Hotz rose to fame in 2007 at the age of 17 when he unlocked the iPhone, which could only be used on the AT&T network in the US at launch. The hack allowed the popular handset to be used on any network. He has since released various other hacks, allowing people to unlock later versions of the popular handset. |
Quote:
|
Mr Hotz said that he was continuing to work on the hack and, once finished, would publish details online in a similar way to his previous iPhone exploits.
In particular, he said, he would publish details of the console's "root key", a master code that once known would make it easier for others to decipher and hack other security features on the console. |
Getting interesting. He also claims to be able to do anything he wants with the system...
At this point i wouldnt say "claim". Its a fact that nearly every ps3 hacker have told him to do other things and not to do the way he hase done and successful hacked the console.
So the also said you need root key and private key for games and with this hack he can not do backups.But he hase the root-key and the master-key.
The also sayed that hacking lv1 doesnt lead in anything becouse the sys works like that and yada,yada,yada.But...he hase found a way to get into the sys and alter it than from inside.
So i really dont would say "claim" from now on.
So the also said you need root key and private key for games and with this hack he can not do backups.But he hase the root-key and the master-key.
The also sayed that hacking lv1 doesnt lead in anything becouse the sys works like that and yada,yada,yada.But...he hase found a way to get into the sys and alter it than from inside.
So i really dont would say "claim" from now on.
Another interesting twist, if it's legitimate... from: ps3gen.fr/sony-reagit-hack-playstation-3-actualite-8701.html
Quote:
|
We'll give you some information about this hack in the next few hours because we recovered the dump done by geohot.
|
Hope it isn't the guy from Motorstorm exploit LOL. After that clown ps3gen has lost it's credibility as for me.
How would the BBC have got in contact with him? Can't wait to find out what Geohotz posts up next. I'm glad its a hardware mod, won't be as many noobs complaining about why there modding has gone wrong etc.
Very interesting that he said he could have a sw hack ready by now if the security was different. I don't think it will be long at all before he has a completed hello world.
From the blog comments:
That being said, GeoHot apparently has grown tried of the pressure as he has now leaked the lv0 and lv1 dumps (which still require a key, as predicted) so it's only a matter of time now until they make their way more public. Currently PS3 Devs are examining them for vulnerabilities.
If I had to guess, they will first appear on the PS3Gen French site and then spread from there... time will tell.
Both GeoHot (and those examining the code) have confirmed that you need the OtherOS to use it... meaning those with a PS3 Slim are currently SOL (as expected)... so only the "fat" PS3 is "hacked" for those curious.
Quote:
|
George Hotz said...
Seriously, with all the noobs posting here, selling out sounds like a reasonable plan. This is quickly getting worse than the iPhone scene. |
If I had to guess, they will first appear on the PS3Gen French site and then spread from there... time will tell.
Quote:
|
George Hotz said...
Everyone can already run unsigned code, it's called OtherOS |
Both GeoHot (and those examining the code) have confirmed that you need the OtherOS to use it... meaning those with a PS3 Slim are currently SOL (as expected)... so only the "fat" PS3 is "hacked" for those curious.
Hopefully he'll have the entire working thing out soon, but I'm not rushing him. It takes time. I might have missed the post, but I have been having personal side of life taking up my time so I had a break from posting for a couple days.
If someone would be so kind as to tell me whether it would be difficult to bring the "hack" to the slim, as I'm more interested in allowing home brew on that just for the sake of having it. And, just how easy would it be to patch this up over at Sony? I'm just curious because they now have the first test for their security team to tackle.
If someone would be so kind as to tell me whether it would be difficult to bring the "hack" to the slim, as I'm more interested in allowing home brew on that just for the sake of having it. And, just how easy would it be to patch this up over at Sony? I'm just curious because they now have the first test for their security team to tackle.
Quote:
|
Originally Posted by xUb3rn00dlEx
If someone would be so kind as to tell me whether it would be difficult to bring the "hack" to the slim, as I'm more interested in allowing home brew on that just for the sake of having it.
|
would any of the key that could possibly be extracted form a ps3 fat help in the works for a slim. i know there are console specific keys but, would it at all bring us a step closer to the slim being included?
Quote:
|
Originally Posted by PS3 News
It requires the OtherOS, which as you know the PS3 Slim doesn't have, so sadly odds are this will remain a "fat" only PS3 Hack for quite some time (until the Slim is unlocked another way, etc).
|
I guess I might be just asking questions which make no sense/ have no answers, but I'm just interested, sa'll. From what I have been reading it seems X number of levels in difficulty greater than the fat PS3, but the fat PS3 was deemed impossible to hack for nearly 3 years now. I'd be willing to wait another 3 just to be able to hack the Slim, and maybe by that time I'd know enough to be able to contribute
Just read through his blog and he's made pretty quick progress in the last few weeks.
From what I gather this hack is similar to the XBR hack - load code into memory & reset the CPU (correct me if I'm wrong)
When or IF this becomes public the PS3 will be a much better seller than the 360 and a much better platform for custom apps etc.
Time will tell...
From what I gather this hack is similar to the XBR hack - load code into memory & reset the CPU (correct me if I'm wrong)
When or IF this becomes public the PS3 will be a much better seller than the 360 and a much better platform for custom apps etc.
Time will tell...
Quote:
|
Originally Posted by PS3 News
That being said, GeoHot apparently has grown tried of the pressure as he has now leaked the lv0 and lv1 dumps (which still require a key, as predicted) so it's only a matter of time now until they make their way more public. Currently PS3 Devs are examining them for vulnerabilities.
|
Quote:
|
Originally Posted by Raze1988
This means we have it? Or a bunch of other people too? It sounded like Geohot was really pissed about all those comments on his blog. I wonder if he told them everything or left something out because of that.
|
so whether GeoHot continues work or not, at least it's heading in the right direction. According to some people on IRC, it's already far in the "leaking" process so I wouldn't be surprised if it surfaces publically on sites like RS/MU in hours or days to come.
Quote:
|
Originally Posted by PS3 News
According to some people on IRC, it's already far in the "leaking" process so I wouldn't be surprised if it surfaces publically on sites like RS/MU in hours or days to come. |
We're now closer than we ever were. I don't want Sony to patch it asap
Quote:
|
Originally Posted by Raze1988
Oh wow. Isn't that a bad thing?
We're now closer than we ever were. I don't want Sony to patch it asap |
Quote:
|
Originally Posted by Raze1988
Oh wow. Isn't that a bad thing?
We're now closer than we ever were. I don't want Sony to patch it asap |
Wow... some people overreact about nothing. Now geohot has done some pretty nice work but he didn't really accomplish anything useful to the public like everybody assumes. When you "hack" something it's different from when you use a "hack" so software is needed he is jus providing the necessary tools to write software for it.
Sounds like things are moving. I have just unplugged the PS3 from the network! Some of the newer games seem to do an in game check of firmware version and if you're not on the latest they crash (probably documented elsewhere on here but I've not been around much lately).
lets see. my mind always thinking about... who i wake up. look at ps3 news and then theres a news "PS3 CFW 3.15 DAX released" xD
that would be the funniest what i can imagine =)
but never mind. what i'm laughing actually about is that some sites write that geohot is trying to hack the system since 3 years 2months and 11 days ^^
i think they didnt understood what he wrote =)
that would be the funniest what i can imagine =)
but never mind. what i'm laughing actually about is that some sites write that geohot is trying to hack the system since 3 years 2months and 11 days ^^
i think they didnt understood what he wrote =)
Quote:
|
Originally Posted by Warrorar
lets see. my mind always thinking about... who i wake up. look at ps3 news and then theres a news "PS3 CFW 3.15 DAX released" xD
that would be the funniest what i can imagine =) but never mind. what i'm laughing actually about is that some sites write that geohot is trying to hack the system since 3 years 2months and 11 days ^^ i think they didnt understood what he wrote =) |
I read that the hack has something to do with the other os part of the Phat Ps3 leaving the slim version users Out of luck on the hack, I do believe it came from the french site that claims they have the geohot dumps, and they say within the next several hours they will release more info, I guess only time will tell, so as far as a patch to prevent this, has not Sony already done there part and came out with the slim and removed the other OS option?
Quote:
|
Originally Posted by Drakhen
so as far as a patch to prevent this, has not Sony already done there part and came out with the slim and removed the other OS option?
|
The French site (PS3Gen) thread is linked here also: http://www.ps3news.com/forums/ps3-hacks/playstation-3-hacked-george-hotz-hello-hypervisor-im-geohot-109519-21.html#post281876
Whether the dumps will surface there remains to be seen, I'm guessing they will just post pics or something myself but we'll see.
What exactly will happen if someone finds a vulnerability in the lv1 and lv0 dump? Will it require loading an OtherOS of some sort?
So what's the verdict in the case of Geohot hacking the PS3? Was the passing on of the dumps his last action? Did he mention anywhere "That's it, I'm out"? He could always fake it and tell the media/public that it's over, but continue to work on it in secrecy. Sadly, I don't think he'd do that. He was just interested in the PS3, because it was so secure for all those years.
Quote:
|
Originally Posted by Ihatecompvir
What exactly will happen if someone finds a vulnerability in the lv1 and lv0 dump? Will it require loading an OtherOS of some sort?
|
Quote:
|
Originally Posted by Raze1988
So what's the verdict in the case of Geohot hacking the PS3?
|
Apparently they have been working on a deal or agreement of some type with GeoHot and believe they will get the file from him... it's sounding less likely to me now, so if I had to guess they may just post some info on it versus the dump itself.
If anyone hears any more (I don't check PS3Gen a lot since I can't read French) feel free to post/translate it here.
Quote:
|
Originally Posted by PS3 News
Correct, Sony has already removed OtherOS from the Slim so really this "hack" only affects the older PS3 consoles no longer in production.
|
Quote:
|
Originally Posted by PS3 News
The current verdict, at least according to the IRC "rumor" grapevine, is that (despite claiming otherwise) PS3Gen doesn't have the GeoHot dump yet.
Apparently they have been working on a deal or agreement of some type with GeoHot and believe they will get the file from him... it's sounding less likely to me now, so if I had to guess they may just post some info on it versus the dump itself. If anyone hears any more (I don't check PS3Gen a lot since I can't read French) feel free to post/translate it here. |
We'll give you some information about this hack in the next few hours because we recovered the dump done by Geohot. To be continued ....
that is using google toolbar to translate the french
so then no one has the rumored dumps... was it not stated that devs are already looking for exploits in them?? or did i miss something?
Quote:
|
Originally Posted by xUb3rn00dlEx
If I am not mistaken, Sony still produces the PS3 fat models, as they are available from PS3.com in the 80gb, 160gb versions. I might be missing something, but I hope not!
|
Quote:
|
Originally Posted by pro2oman
so then no one has the rumored dumps... was it not stated that devs are already looking for exploits in them?? or did i miss something?
|
ok thanks for the clear up there lol
so then people on the job and safe from mass leak.. good to hear
now hopefully someone can pick out them keys...
so then people on the job and safe from mass leak.. good to hear
now hopefully someone can pick out them keys...
Quote:
|
Originally Posted by pro2oman
now hopefully someone can pick out them keys...
|
Quote:
|
Originally Posted by PS3 News
Selling and manufacturing are different though... sure lots of places sell the "fat" PS3 stock still but Sony is only making Slims these days.
|
I can see them emphasizing production on the slim, but they did state that they would not be getting rid of the Fat PS3 models even after they released the slim. I don't mean to be imposing on your statement, I am just seeking clarification, and I believe I do understand what you are saying.
Quote:
|
Originally Posted by xUb3rn00dlEx
Is it your opinion then that Sony has just amassed fat PS3s and are selling them off until each and every last one is sold? Or would they still be producing them, seeing as how a company only produces item X as long as the marginal revenue for it > 0.
|
If anyone can find a recent article stating otherwise, feel free to post it and I'll +Rep ya.
Quote:
|
Originally Posted by PS3 News
In my opinion (based primarily off what I've read elsewhere) Sony halted production of the fat PS3 consoles entirely... meaning all they can do is unload existing stock of it to companies for resale.
If anyone can find a recent article stating otherwise, feel free to post it and I'll +Rep ya. |
http://arstechnica.com/gaming/news/2009/08/sony-answers-our-questions-about-the-new-playstation-3.ars
The first q&a says so. Again, I apologize.
More articles stating the same.
http://kotaku.com/5340286/sony-market+boosting-slim-ps3-will-phase-out-old-models
http://en.wikipedia.org/wiki/PlayStation_3
Quote:
|
Originally Posted by xUb3rn00dlEx
You are correct. I've been doing the research after your post and now apologize for earlier.
|
Thank you very much. It makes sense on Sony's part since it's cheaper, sadly I didn't think like a businessman in the beginning. I guess for now the hack will only be available for the "fatty." I am curious as to what this hack means for any possible re-implementation of otherOS in any future PS3 releases (like SlimV2 or whatever you want to call it.)
I'm guessing they completely scrapped it with this one with no intention of ever bringing it back, ever. Still, one can dream no? Perhaps after the devs work this hack out more and more we'll be able to launch a different operating system on the slim through external means? (This is if the hack for the fat PS3 gives any indication that something may also have a loophole on the slim version.)
I'm guessing they completely scrapped it with this one with no intention of ever bringing it back, ever. Still, one can dream no? Perhaps after the devs work this hack out more and more we'll be able to launch a different operating system on the slim through external means? (This is if the hack for the fat PS3 gives any indication that something may also have a loophole on the slim version.)
Another GeoHot update:
Quote:
|
I'll tell you what I have so far. I have added two hypercalls, lv1_peek and lv1_poke. peek reads memory in real space(including all the MMIO), poke writes it. I can also add other arbitrary hypercalls as I see fit.
The hypervisor is complicated, it is written in C++ and is PPC, which I am not that familiar with yet. At first I was trying to add a hypercall to add arbitrary real memory to the LPAR, but it kept crashing(because I can't code), which is really annoying, because I have to wait while Linux reboots. Some people pointed out that I have not accessed the isolated SPEs. This is true. Although as far as doing anything with the system, it doesn't matter. The PPE can't read the isolated data, but it can kick the isolated SPEs out. Decrypt the PPE binary you need using the intact SPE and save the decrypted version. Kick out the SPE, and patch the decrypted version all you want. And interesting note, by the time you get to OtherOS, all 7 working SPEs are stopped. Despite this, I am working on the isolated SPEs now(which I can now load), because what I'd really like to do is post decryption keys here so you guys can join the fun. |
been glued to the computer all day following this, cannot wait for something concrete.. looks promising at the moment
would be nice to have some new dashboards like seen on the xbox1... cannot imagine what sort of homebrew awaits. and the emulators, n64 should run rather nice
anyway here's to hoping GeoHot finds those keys, or whatever needs to be done
would be nice to have some new dashboards like seen on the xbox1... cannot imagine what sort of homebrew awaits. and the emulators
, n64 should run rather nice anyway here's to hoping GeoHot finds those keys, or whatever needs to be done
25 Janvier 2010, 23:33 ps3gen.fr/forums/hack-ps3-sony-reagit-publiquement-et-le-geant-ne-semble-pas-content-t36580-252.html
Ketchup wrote:
Sorry for my bad english guy.. i do my best
edit 1 -> it's about that ps3gen has a dump :-)
they say, there is no reason to claim they have dump if they don't have it (by the administrator ketchup)
Ketchup wrote:
Quote:
|
Since PSPgen, and on PS3gen to, when there is a news like this (hack), it's generaly not just to speak about (->have a lot of poeple on the website), because we'll lost credibility (We are present ont the psp Scene), and we'll get nothing..
And "there is other website more "integrated" in hack than ps3gen.fr"... don't forget that in the psp scene, we have some dev who is not so bad... |
edit 1 -> it's about that ps3gen has a dump :-)
they say, there is no reason to claim they have dump if they don't have it (by the administrator ketchup)
This is going to be annoying as people will cheat online!! You have to update to play online, so I wouldn't be able to stop myself from updating.
If it does get hacked, I hope there's someway of running the whole of the 360 firmware so I can laugh at XBox 360 users even more. A similar method to Apples Bootcamp but for PS3 should be possible, right?
According to BBC it needs 5% hardware modding, modchips? And in the pictures it shows various components connected to the motherboard that are not in the PS3, yeh I know they're not PS3 componenets as I opened mine up when it got the YLOD.
If it does get hacked, I hope there's someway of running the whole of the 360 firmware so I can laugh at XBox 360 users even more. A similar method to Apples Bootcamp but for PS3 should be possible, right?
According to BBC it needs 5% hardware modding, modchips? And in the pictures it shows various components connected to the motherboard that are not in the PS3, yeh I know they're not PS3 componenets as I opened mine up when it got the YLOD.
Here is an other update:
Quote:
|
archie4oz said...
SPE's aren't "deactivated", they're just stopped, i.e. idle. PS3 Linux isn't using them out of the box. It doesn't mean you can't. YDL comes with an SPE-gcc compiler and you can compile and execute code on the SPEs. You can even get IBM's XLC for PPE and SPE along with threading and matrix math libraries for free from IBM's website. |
Quote:
|
George Hotz said...
@archie4oz Spot on about the SPEs And actually, the RSX being restricted is just theory as far as I know. OtherOS under the hypervisor may have the access required to write a 3D driver, just no one wrote one. |
Quote:
|
George Hotz said...
Details of the exploit are still private, hence why I'm hoping to get keys to give people something to reverse and document. |
But i don't understand a thing, if he get the keys, this are the same for all ps3, fat and slim or are different ?
Quote:
|
Originally Posted by boybergamo76
But i don't understand a thing, if he get the keys, this are the same for all ps3, fat and slim or are different ?
|
anyway after all this i would only say even goehot needed sony's help imagine the ps3 fat didn't have the otheros option in the first place then the hack thing is going to be even harder (sorry for my bad english though).
i understand what you mean Dante489 but if the security sistem is the same for all ps3, if he gets the keys something can work even on slim or im telling a stupid thing ? Sorry for my bad english too ^^
i think the keys they are talking about will enable people to decrypt files, and possibly re-encrypt.. if i am right, this would allow for a custom firmware to be created, and encrypted using a proper key/signature.. meaning a retail ps3 will be able to read the new firmware and install it, its up to whoever creates the firmware to get things going in terms of actual homebrew, and if this is correct, it should work for the slims aswell.. it will take quite some time i'm guessing, need the keys first... thats my understanding atleast.
as far as needing the otherOS, i think thats just for using the method GeoHot is using to perform the hack, the end result being the keys.. will open the doors to using homebrew/hacks without needing otherOS on all ps3 models
i'm a real noob at this sort of stuff, but to me that makes sense.
as far as needing the otherOS, i think thats just for using the method GeoHot is using to perform the hack, the end result being the keys.. will open the doors to using homebrew/hacks without needing otherOS on all ps3 models
i'm a real noob at this sort of stuff, but to me that makes sense.
yes i think you'right scrapy, i really hopes whatever will came out from this thing, that can work on slim too ^^
i think we should wait and see that direction it goes.
when i started to flash my psp i had to use a downgrad exploit in 2.7x i remember. my friend updated to 2.81b and had to use the gta exploit.
whats now. you only have to find a friend with a jigkick battery and then you can flash your psp in 1minute. and even better. you dont have to worry about a brick. because at this time its possible to reflash the system.
i think the same will happen to the ps3. at startup its hard to get it hacked and ut on the homebrews etc.
but afte r1 or 2 years the system will gets updated form many people and there will be several tools who helps you. even easy installer or usb dongles who doe the work for you.
just stay calm people and wait for the day. i will do.
when i started to flash my psp i had to use a downgrad exploit in 2.7x i remember. my friend updated to 2.81b and had to use the gta exploit.
whats now. you only have to find a friend with a jigkick battery and then you can flash your psp in 1minute. and even better. you dont have to worry about a brick. because at this time its possible to reflash the system.
i think the same will happen to the ps3. at startup its hard to get it hacked and ut on the homebrews etc.
but afte r1 or 2 years the system will gets updated form many people and there will be several tools who helps you. even easy installer or usb dongles who doe the work for you.
just stay calm people and wait for the day. i will do.
you are true! i think so! just for start i think it will be playstation 3 spi flasher! And then i think it will be some thing like usb dongle and e.t.c. yes its cool!! Good job Geo hot!! You just kick it out!
Quote:
|
Originally Posted by Scrapy
i think the keys they are talking about will enable people to decrypt files, and possibly re-encrypt.. if i am right, this would allow for a custom firmware to be created, and encrypted using a proper key/signature.. meaning a retail ps3 will be able to read the new firmware and install it, its up to whoever creates the firmware to get things going in terms of actual homebrew, and if this is correct, it should work for the slims aswell.. it will take quite some time i'm guessing, need the keys first... thats my understanding atleast.
as far as needing the otherOS, i think thats just for using the method GeoHot is using to perform the hack, the end result being the keys.. will open the doors to using homebrew/hacks without needing otherOS on all ps3 models i'm a real noob at this sort of stuff, but to me that makes sense. |
And the other thing is, as far as I'm concerned, each PS3 unit is entitled with its own unique key, which means that getting the key from one unit won't do the job for all other units. The hacking process done by Geohot would have to be indiviadually redone on each console at unlocking, thus making it necessary for the console to run OtherOS. You'd have to get the keys from YOUR console only.
Apart from that, the hack is 5% hardware, and that means there won't be a software that you can download, run and it'll unlock your system. The PS3 is much more complicated than that. I figure you'd need to take your console to some expert to perform the hack and then, after extracting the keys, something we don't have yet would have to be done in order for your console to run unsigned code. But as many have stated, it's still too early to say something about that.
Probably, since the keys are individual to each console, some sort of modchip would be necessary to do the decrypting/encrypting thing, given that the keys are gotten, but all that are just mere speculation.
Apart from that, the hack is 5% hardware, and that means there won't be a software that you can download, run and it'll unlock your system. The PS3 is much more complicated than that. I figure you'd need to take your console to some expert to perform the hack and then, after extracting the keys, something we don't have yet would have to be done in order for your console to run unsigned code. But as many have stated, it's still too early to say something about that.
Probably, since the keys are individual to each console, some sort of modchip would be necessary to do the decrypting/encrypting thing, given that the keys are gotten, but all that are just mere speculation.
i knew i should have waited befor buying that slim last week lol... but could some one clarify: is the otherOS feature only locked in the newer slims (hidden but still in the FW?) or is the slims hardware to different that it just cant do the otherOS like the original fats?
oh wow awesome news! i wasnt expecting this when i got back from my holiday! i knew he could do it!
i knew he could do it!
Quote:
|
Originally Posted by mondoparalelo
And the other thing is, as far as I'm concerned, each PS3 unit is entitled with its own unique key, which means that getting the key from one unit won't do the job for all other units. The hacking process done by Geohot would have to be indiviadually redone on each console at unlocking, thus making it necessary for the console to run OtherOS. You'd have to get the keys from YOUR console only.
Apart from that, the hack is 5% hardware, and that means there won't be a software that you can download, run and it'll unlock your system. The PS3 is much more complicated than that. I figure you'd need to take your console to some expert to perform the hack and then, after extracting the keys, something we don't have yet would have to be done in order for your console to run unsigned code. But as many have stated, it's still too early to say something about that. Probably, since the keys are individual to each console, some sort of modchip would be necessary to do the decrypting/encrypting thing, given that the keys are gotten, but all that are just mere speculation. |
Quote:
|
Originally Posted by int0
Theoretically if even PS3 has own key for NAND you don't need to fish it, all what's needed its to fish a key which is used to decrypt ps3 firmware update since ps3 using AES (AFAIK) one key is used for encryption/decryption therefore it should be same for all consoles. But as I said before it seems keys are in SPE and you won't be able to get them
|
Quote:
|
Originally Posted by pro2oman
i knew i should have waited befor buying that slim last week lol... but could some one clarify: is the otherOS feature only locked in the newer slims (hidden but still in the FW?) or is the slims hardware to different that it just cant do the otherOS like the original fats?
|
I don't think Sony builted a 2 differnts kind of consoles... i think it's like the PS2 Fat and slim, same functions, just smaller sizes...
I think that many sceens could be open with a "real understanding" of the internal structure (software) of the ps3 sistem...all we have to do now is just to wait for something new or just try to be "usefull" if we know something about programming and dev!
Bye
Quote:
|
Originally Posted by mekisi
will we be able to play backups with this when everything has done?
|
Geohot clearly stated that he does not support piracy.
Quote:
|
Originally Posted by Raze1988
No.
Geohot clearly stated that he does not support piracy. |
Quote:
|
Originally Posted by mekisi
he will not but can other devs do it? (when he released the keys)
|
Quote:
|
Originally Posted by Mahabco
Who published the final stages of Hack much??
|
Quote:
|
George Hotz said...
@SquidMan Details of the exploit are still private, hence why I'm hoping to get keys to give people something to reverse and document. |
Lol I just realized, Microsoft will be loling now as not only did Geohot hack Apples iPhone and Sonys PS3, both big MS rivals.
I hope Geohot totally blocks off access to the "Game" part of the PS3 so no copied games and no cheat plugins like on PSP which ruined online.
I hope Geohot totally blocks off access to the "Game" part of the PS3 so no copied games and no cheat plugins like on PSP which ruined online.
Quote:
|
Originally Posted by PS3 News
If he releases the keys, then sure.. odds are someone will so I wouldn't worry too much.
As someone posted earlier here, currently GeoHot has no plans to disclose the actual hack he used... instead, he plans to continue work until he obtains the keys and pass them on to developers. For those who missed it: |
Do you think Geohot will only leak the keys to certain 'trusted' developers, thus avoiding the piracy issue (ISO loaders etc.)?
Fonz,
Fonz,
If I had to guess, initially that may be the case but from what he wrote on his blog it sounds like his goal is to share them publically at some point:
I guess we will see what happens if/when he posts that he has found the keys...
Quote:
|
what I'd really like to do is post decryption keys here so you guys can join the fun.
|
Heres to hoping! What a time to have a break through, right in the middle of Uni mid term exams 
Fonz,
Fonz,
Quote:
|
Originally Posted by Awayze
Lol I just realized, Microsoft will be loling now as not only did Geohot hack Apples iPhone and Sonys PS3, both big MS rivals.
I hope Geohot totally blocks off access to the "Game" part of the PS3 so no copied games and no cheat plugins like on PSP which ruined online. |
Quote:
|
Originally Posted by mondoparalelo
And the other thing is, as far as I'm concerned, each PS3 unit is entitled with its own unique key, which means that getting the key from one unit won't do the job for all other units. The hacking process done by Geohot would have to be indiviadually redone on each console at unlocking, thus making it necessary for the console to run OtherOS. You'd have to get the keys from YOUR console only.
Apart from that, the hack is 5% hardware, and that means there won't be a software that you can download, run and it'll unlock your system. The PS3 is much more complicated than that. I figure you'd need to take your console to some expert to perform the hack and then, after extracting the keys, something we don't have yet would have to be done in order for your console to run unsigned code. But as many have stated, it's still too early to say something about that. Probably, since the keys are individual to each console, some sort of modchip would be necessary to do the decrypting/encrypting thing, given that the keys are gotten, but all that are just mere speculation. |
If keys allow you to create essentially legit applications what would stop the hack from being software only? getting at them is the hard part but like the iPhone situation it could really be software only.
If someone writes a CFW that the system thinks is legit and an updated version...
Posting dumps, exploits, keys and whatever he had been able to discover till now, would be an huge mistake/own goal for us. sony already know, knows who and when, but doesn't know how he obtained all the priviledges
ps3proxy, hdd decryption and lot of other stuff have been patched after become pubblic, it's useless for me, for us, for devs and for all the community making pubblic those dumps, i believe this time for us it's better to wait for the release of complete tool, also because geohot is not a stupid/unknow guy, we know him, we trust him, now it's time for him to work for us
ps3proxy, hdd decryption and lot of other stuff have been patched after become pubblic, it's useless for me, for us, for devs and for all the community making pubblic those dumps, i believe this time for us it's better to wait for the release of complete tool, also because geohot is not a stupid/unknow guy, we know him, we trust him, now it's time for him to work for us
Ok, so right now he tries to extract "encryption keys". Those are the keys you need to sign your own code, right?
Sounds like the first "Hello world" is imminent.
Sounds like the first "Hello world" is imminent.
Personally I only bought a 360 because I can download games. I buy the games that I know are worth it and burn all the others. I have owned the ps3 from the beginning and only own 5 or so games. i've had my 360 for less than a year and already own 8 retail but have all the other interesting ones. I have two controllers for the ps3 and 4 for the 360.
I bought the $100 hard drive and subscribe to live, my son is the only one to play the ps3. I don't even waste money renting ps3 games. geohot is the only reason I bought an ipod touch. I hate apple and their business practices. but they made a great piece of hardware and geohot opened it up, so the way I see it sony will be getting more revenue (from me anyways) by not fighting him too much.
I bought the $100 hard drive and subscribe to live, my son is the only one to play the ps3. I don't even waste money renting ps3 games. geohot is the only reason I bought an ipod touch. I hate apple and their business practices. but they made a great piece of hardware and geohot opened it up, so the way I see it sony will be getting more revenue (from me anyways) by not fighting him too much.
Quote:
|
Originally Posted by Corradoc
I think it's just a FW locking... no more
I don't think Sony builted a 2 differnts kind of consoles... i think it's like the PS2 Fat and slim, same functions, just smaller sizes... I think that many sceens could be open with a "real understanding" of the internal structure (software) of the ps3 sistem...all we have to do now is just to wait for something new or just try to be "usefull" if we know something about programming and dev! Bye |
As for keys, wouldn't all the updates also have to be incremented the same way.. with a master key so that all models can use them?
Quote:
|
uf6667 said...
if you're able to modify HV code, why don't you modify your interrupts? this way you modify machine check (0x200?), illegal address translation (0x300?) and illegal instruction (0x400?) to output you the last accessed addresses. evade the problem of rebooting everytime :P |
Quote:
|
George Hotz said...
Saw two intelligent posts here @Cameron and @uf6667. Awesome idea with the interrupts! Will try it today. |
A programmer of a great studio said some months ago in an interview.
"i dont think that games piracy is a big problem, because poeple who burn those games does not belong to our main target group".
i think its 50% truethness in that. if people burn games, then they are not 100% interested in the games, or they are to dumb to understand that games who are great needs to be supported.
for myself i cant say that i allways played legal copys. but if i like a game, i buy it original. online mode, multiplayer or what ever. i want to play it with other people if i like it.
best example. command & conquer. i own all titels (the first two times O.o) and i would never burn one of these games because the guys do a great job and deserve to be supported by my money.
i can only say, i hope that the ps3 doesnt get a backup launcher, or sony implements a system that every game can only be locked on ONE account with a serial.
"i dont think that games piracy is a big problem, because poeple who burn those games does not belong to our main target group".
i think its 50% truethness in that. if people burn games, then they are not 100% interested in the games, or they are to dumb to understand that games who are great needs to be supported.
for myself i cant say that i allways played legal copys. but if i like a game, i buy it original. online mode, multiplayer or what ever. i want to play it with other people if i like it.
best example. command & conquer. i own all titels (the first two times O.o) and i would never burn one of these games because the guys do a great job and deserve to be supported by my money.
i can only say, i hope that the ps3 doesnt get a backup launcher, or sony implements a system that every game can only be locked on ONE account with a serial.
Quote:
|
Originally Posted by semitope
Unlikely, unless all games are programmed with all keys a system having its own decryption key would not work with most applications for the console. Mass production limits things like that really.
If keys allow you to create essentially legit applications what would stop the hack from being software only? getting at them is the hard part but like the iPhone situation it could really be software only. If someone writes a CFW that the system thinks is legit and an updated version... |
My question now is: can the decryption key be used to encrypt data? I guess those are two different keys, right? I mean, the PS3 uses its own individual private key to encrypt stuff like, say, the HDD. And it uses a public key, common to every console, to decrypt data and perform checks.
So, my question is, the key used by Sony and game devs to encrypt and sign data, like a FW update for instance, its not present in the console, is it? So how could you actually create legit applications?
As for the Slim x OtherOS question, way I see it there are only two reasons why Sony could have removed OtherOS from the Slim line: 1) changes in hardware made it impossible for OtherOS to run; 2) OtherOS can be run on a Slim PS3 but was removed for security reasons. In both cases I guess Sony would've made it impossible to install OtherOS on a Slim PS3.
Is it just me ? but I'm picking up that geohot is not 'excited' by this anymore ? Either that or he is curbing his enthusiasm as Sony are on to him. Either way, I hope he achieves his goals.
Quote:
|
Originally Posted by mondoparalelo
Yeah, came to think about it after the guy answered mentioning the AES stuff... it's true cuz if it were like I said, then a specific FW update would be necessary for each console.
My question now is: can the decryption key be used to encrypt data? I guess those are two different keys, right? I mean, the PS3 uses its own individual private key to encrypt stuff like, say, the HDD. And it uses a public key, common to every console, to decrypt data and perform checks. So, my question is, the key used by Sony and game devs to encrypt and sign data, like a FW update for instance, its not present in the console, is it? So how could you actually create legit applications? |
First of all, there is some key, let us name it "Official content key". Sony has ENCRYPTION for using to encrypt their games, demos, content and so on. It is not stored inside PS3, only Sony has it.There is simply no point storing it inside PS3. PS3 decrypts this content with DECRYTPION key.
There is "HDD encryption keys" which are different from the ones mentioned above and BOTH of them are inside PS3 (as PS3 decrypts and encrypts this type of content within the system)
Correct me if I'm wrong.
Quote:
|
Originally Posted by Tidusnake666
AFAIK, things are a little bit complicated.
First of all, there is some key, let us name it "Official content key". Sony has ENCRYPTION for using to encrypt their games, demos, content and so on. It is not stored inside PS3, only Sony has it.There is simply no point storing it inside PS3. PS3 decrypts this content with DECRYTPION key. There is "HDD encryption keys" which are different from the ones mentioned above and BOTH of them are inside PS3 (as PS3 decrypts and encrypts this type of content within the system) Correct me if I'm wrong. |
Continue the discussion in our working thread here guys: http://www.ps3news.com/forums/ps3-hacks/geohot-releases-sample-playstation-3-linux-isolated-spu-loader-code-109554.html
Related PS3 News and PS3 Hacks Articles
|
|
Sony Adds Cinavia DRM Protection in as Automatic PS3 Download
Posted 2 hours ago by jul644
with 22 Comments
Posted 2 hours ago by jul644
with 22 Comments
Game file encryption using the PS3 Debug/Test console (Development Kit)
Posted 3 hours ago by Darny
with 5 Comments
Posted 3 hours ago by Darny
with 5 Comments
| Dead to Rights Retribution USA PS3-HR Released 07-30-2010 |
| Toy Story 3 EUR PS3-BHTPS3 Released 07-29-2010 |
| Lost Planet 2 EUR PS3-BHTPS3 Released 07-29-2010 |
| Prince of Persia The Forgotten Sands EUR PS3-BHTPS3 Released 07-26-2010 |
| Clash Of The Titans The Videogame EUR PS3-BHTPS3 Released 07-25-2010 |
| Akatsuki HD PS3 Theme Posted 07-31-2010 |
| Red Dead Redemption PS3 Theme Posted 07-20-2010 |
| Ninja Scroll HD PS3 Theme Posted 07-07-2010 |
| Borderlands HD PS3 Theme Posted 07-03-2010 |
 | Prince of Persia The Forgotten Sands (Official QORE) XMB PS3 Theme Posted 07-03-2010 |
