Post: [UPDATED] PS3 'Private Key,' Enabling Unauthorized Code
Options
12-29-2010, 10:52 PM
#1
CLM
[b]They say sorry Mr. West is..[/b]
PS3 'Private Key,' Enabling Unauthorized Code
UPDATE: Some tools for ps3 files. Expect some fail, this is still WIP. Check it out here: You must login or register to view this content.
UPDATE:
UPDATE: Sha1 hashes for some keys
UPDATE: The scam videos are gone now but the fake Fail0verflow account is still there. Don't get fooled by imposter's.
UPDATE: Watch out for Fail0verflow impersonators. They will scam you.
UPDATE: What Sony has to do to patch this! (Thanks manster)
1) Respin the hardware. There's an incredible exploit in that the verification of bootloaders loaded off the NAND/NOR is verified after they've been loaded, and then they're allowed to continue to execute. This is why ALL EXISTING PS3s on the market are from now on hackable. Really. There's nothing that can be done to stop this.
2) Design new firmware(s) that contains the infamous "whitelist" of all previously (and erroneously) signed software, but with new keys and new signature verification algorithms. Deploy these firmwares/loaders ONLY on the respinned hardware (see above).
3) For older hardware (that is, everything already produced from the factory and on the market) release new firmware that contains the new signature verification algorithms, but NOT any of the new keys. Remember, what you deploy on the old hardware is fully transparent. Update the loaders as well, as talked about in the presentation, since that will force everyone who wants to have a still jailbroken console to install a modchip (see #1).
4) Dual-sign all new stuff. Old broken consoles will be able to run it, and the new secure model will verify with new keys. Previously signed software will only execute on the new systems if they pass the whitelist-test.
UPDATE: What Marcan had to install in order to dump/change the NOR chip. This is probably what your going to have to do.
UPDATE:
This should be released by January
Fail0verflow releases this statement about Geohot
UPDATE: Marcan @ 27C3 Lightning Talk
[ame]https://www.youtube.com/watch?v=lGI0EnNQ5GE[/ame]
Read the slide presentation during the conference here: You must login or register to view this content.
UPDATE: PS3 Demo NOW in #Saal3 at #27c3
You must login or register to view this content.
WATCH HERE: You must login or register to view this content.
(Note: Streaming from that room is a little overloaded atm. If you can't connect be patient)
You must login or register to view this content.
You must login or register to view this content.
You must login or register to view this content.
WATCH HERE: You must login or register to view this content.
(Note: Streaming from that room is a little overloaded atm. If you can't connect be patient)
You must login or register to view this content.
You must login or register to view this content.
Fail0verflow, the hackers responsible for the Wii's Homebrew channel, gave a presentation during the Chaos Communication Conference 27C3 in which they are claiming they have figured out the 'private key' used by Sony to authorize code to run on retail PS3 systems. This could potentially give "full control of the PS3 system," without having to use a usb device. For those of you who don’t understand yet, this will make us able to sign our own files with Sony’s encryption will and allow us to create our own software/homebrew and load it without even needing to jailbreak the PS3, because it will look like a legit piece of software from Sony.
Btw: PSN ACCESS NOT YET CONFIRMED
The group will explain more when their website launches, and have planned a demo for tomorrow's conference. But what they have explained is how Sony didn't bother generating any random numbers to secure the PS3. Look at the picture below.
Read the tweet below on what this is supposed to do. As it is not meant to enable PS3 game piracy.
But don't expect to see the website launch tomorrow. Fail0verflow told Joystiq the folllowing via twitter.
UPDATE: Full presentation after the break, courtesy of PSGroove.
[ame]https://www.youtube.com/watch?v=HEFMAP0mTvY[/ame]
[ame]https://www.youtube.com/watch?v=qFuTCEtK6l8[/ame]
[ame]https://www.youtube.com/watch?v=84WI-jSgNMQ[/ame]
Fail0verflow just launched another statement on the PS3's security
To keep up to date with Fail0verflow's progress and work, check out their You must login or register to view this content. and You must login or register to view this content.
Note: Their website is currently down at the moment because they are working on a demo.
Source: You must login or register to view this content.
The following 64 users say thank you to CLM for this useful post:
-Smurf-, $oulja, Alpha, Analdogfag, angel_of_deth, balerdoni, benyon, BooshMayne, Carbon0x, MikeOxBig, Clutch Hunterr, CRACKbomber, CRaZyY, danielsarpa, davirus_, dela_tiges12, divybc, DR-Dizzy, egonadrian, Extrazior, helpmeoprah, I'm A Rep Whore, I3LaCkOuTz, ihatecompvir, ihaxgames, johndahon94-PS3, JP, jubz-2k10, juddylovespizza, kaliboi, Kill_tony485, kjoshi, Kombust, LAD_Dodgers, legitmod, Lick, Lucy Pinder, Matteram, MBO, Mr. DarkKV, Mr. Star, Mr.MoldyOrange, Mw21212, Night Wolf, NorskTnaka, NwO_OweN, ogbrandon, River J, CHAOZ, sauronith, Shieldsy, ShottinG STarzz, Sk8erFerSur, Skylines, snipedu7512, sofeball, tcwyw, Teh Niganator, the stuff, Vampytwistッ, w8t4it, Weehuntz, xCamoLegend, xMagiik
12-30-2010, 08:21 PM
#110
Lucy Pinder
At least I can fight
i can see this is going to be a big thing
i cant wait for this
i cant wait for this
12-30-2010, 09:20 PM
#111
E0000B6FAF25838
Nikolai Reznov
Originally posted by gaz189
But if you watched the video where they showed the table of days, weeks, months, n years. it took the PS3 4 years to be hacked and yet its not really hacked just a exploit with the dongle
Or how about when they said that no one did any work on the PS3 for the first 3 years because it already had Linux support? You know, it was in the same exact video, shortly after they introduced that chart. They said after they started working on it, it took less than a year.
And no, it's not limited to a dongle. These guys HACKED it. They got the priv key, which allows for homebrew without a dongle. A permanent jailbreak.
12-30-2010, 09:26 PM
#113
E0000B6FAF25838
Nikolai Reznov
Originally posted by IIIII
We r supposed to make money from the hack. We spend money on buying the jailbreak dongle and we hack our ps3 just so we could make lobbies for the people that dont have a jailbroken ps3 and we deserve money from that.
No you're not SUPPOSED to be making money from it. You think that you SHOULD be making money from it, but you're not SUPPOSED to be. It was inevitable that jailbreaking would eventually be free, and to buy the dongle WITHOUT FORESEEING THAT POSSIBILITY* is just plain stupid.
*Note, I'm not saying that buying the dongle is stupid, but buying it without considering that it may eventually be free is stupid.
12-30-2010, 09:37 PM
#114
NP Carling26
Trolling is a art
Originally posted by E0000B6FAF25838
You're not supposed to be making money.
But I find it funny how the PS3's security is actually worse than the Wii's. And SONY would have been perfectly fine if they hadn't been trying to promote their overpriced processing...devices... (don't remember what they called them
)
But I find it funny how the PS3's security is actually worse than the Wii's. And SONY would have been perfectly fine if they hadn't been trying to promote their overpriced processing...devices... (don't remember what they called them
)
Someone finally says it. Everyone who hacks thinks that they should get paid for what they do, and they didn't even ****ing discover it. All they did was plug a USB flash drive (which now costs $10) into their PS3, and now they are making ridiculous amounts of money. I despise people who do this.
The following 6 users say thank you to NP Carling26 for this useful post:
12-30-2010, 09:48 PM
#115
Jordans:)
Banned
Originally posted by NP
Someone finally says it. Everyone who hacks thinks that they should get paid for what they do, and they didn't even ****ing discover it. All they did was plug a USB flash drive (which now costs $10) into their PS3, and now they are making ridiculous amounts of money. I despise people who do this.
Exactly, I know a person that recieved over 300 dollar's doing challenge lobby's. All i charge is shit. I don't like people that charge out rage's price's.
It's ****en stupid they didn't discover so why should they charge.
Seriously people are you really that desperate for money.
12-30-2010, 11:08 PM
#116
MarioDaKid
.:SwagTeam or Die:.
They have hacker conferences? That is sweeet!
12-31-2010, 06:22 AM
#118
xCamoLegend
Mario!
Originally posted by SpiritX987
lol someone fill me in what is this?
The discovery of the Private Keys used to sign Games, DLC etc it will allow us to sign home brew such as FTP Servers and Backup manager while in normal mode no dongle needed.
Also Linux for PS3 slims and firmware above 3.15 :y:
Copyright © 2026, NextGenUpdate.
All Rights Reserved.
