Latest PS3 News Forum Updates

  • News
  • Posts
  • PS3 CFW
  • PS3 Files
  • PS3 Hacks
  • PS3 Help
  • PS3 Releases
  • PS3 Themes
  • PS3 Trophies
  • PS Vita Trophies
suudee How to Check the PS3 Base Firmware Version with MinVerChk - 32m ago
suudee Introductions: Hello Everyone, I'm New at PS3News.com! - 37m ago
SwordOfWar Video: The Witness on PlayStation 4 / PS4: Creator Conversations - 41m ago
pakistanos Call Of Duty: Black Ops 2 Game Spoofer for PS3 3.55 CFW Out - 3h ago
PS3 News Ice-cool Skate Em Up OlliOlli Kickflips Onto PS Vita This Year - 4h ago
PS3 News Codemasters Unveils Grid 2 Mono Edition, Ultimate Collector's Item - 4h ago
PS3 News Rogero CEX PS3 Custom Firmware (CFW) v4.21 is Now Released! - 4h ago
karpof PS3 DVDROM can I remarry help? - 4h ago
zael91 Installing pkg files over 4gb from PS3 hdd help? - 5h ago
Azrial PS_Unban v0.1: PS3 3.55 Unban and 4.21 Unban PKG Files Arrive! - 6h ago
  1. 10-13-2008 #11
    CJPC's Avatar
    CJPC
    CJPC is offline Toucan Sam CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of CJPC has much to be proud of
    Well, in regards to the file - it is for Debug Systems only, and uses a different key, we have already looked into that.

    Furthermore, we can change files on the flash, HOWEVER the certificates are stored inside an encrypted filesystem, which is stored like a file on the flash, so we can not (yet) alter contents inside of it.

    In regards to the SELF, the basis for retail SELF's is a SCE header with certain flags, an ELF header with flags, some hashes of encrypted data, then the encrypted data, followed by relocated ELF data at the bottom, which is mostly tables to tell where data is stored inside the decrypted ELF. No, we can not run a SELF inside otheros.

    As for any unencrypted self, its a development self.

    Reply With Quote Reply With Quote
  3. 01-13-2009 #12
    RexVF5's Avatar
    RexVF5
    RexVF5 is offline Registered User RexVF5 is on a distinguished road
    Quote Originally Posted by jesss View Post
    hi kakarotoks

    i had your same idea about man-in-the-middle attack but i was so sad when i saw that ps3 don't allow unsigned certificates :|
    i used stunnel to perform the attack providing a self made certificate to the ps3 and the error was "unknown_issuer"

    but i have an idea to make the ps thinks that the certificate is valid....
    pm me if you're interested.
    Not to ruin your enthusiasm but this is hardly going to work. The PS3 most probably (as browsers and OSs do) stores hashes of the trusted certificate authorities (like VeriSign for example). The certificate of Sony servers are signed by these top-level authorities and PS3 can verify that what comes in is really a Sony certificate. It maybe even stores Sony's certificates directly.

    So unless you can alter those stored trusted certificates (which you can't) or get a certificate that appears to be Sony's and sign by Verisign (or whoever signed their SSL certificates) you're out of luck - i.e. PS3 won't accept the incoming stuff as genuine and you end up with exactly the same message you have already received... One more option is to brute-force the keys


    Last edited by RexVF5; 01-13-2009 at 04:04 PM
    Reply With Quote Reply With Quote
  4. 01-13-2009 #13
    apie's Avatar
    apie
    apie is offline Registered User apie is on a distinguished road
    Quote Originally Posted by RexVF5 View Post
    One more option is to brute-force the keys
    Why not? http://www.ps3cluster.org/index.html


    Last edited by apie; 01-13-2009 at 04:26 PM
    Reply With Quote Reply With Quote
  5. 01-14-2009 #14
    RexVF5's Avatar
    RexVF5
    RexVF5 is offline Registered User RexVF5 is on a distinguished road
    Quote Originally Posted by jesss View Post
    if ps3 uses openssl there's a way... look here: http://www.securityfocus.com/bid/33151/info

    it can be triggered using a manipulated certificate
    Interesting and probably worth trying. However if posted information about PS3 running AIX is true, we're probably out of luck...

    Reply With Quote Reply With Quote
  6. 01-14-2009 #15
    omar8503's Avatar
    omar8503
    omar8503 is offline Registered User omar8503 will become famous soon enough
    Sony's 34 certs are stored in dev_flash\data\cert\CA01.cer up to CA34.cer

    Would that be useful? They can not be written back though.

    Reply With Quote Reply With Quote