Support NeoGAF

[luca_29_bg]

This hack doesn't have any keys, of which there will be dozens, and there'll be none residing in ram. Sony can just keep re-rolling the firmware and changing the locks and even the doors.

Jailbroken is when the master key is found to the lock that cannot be changed, then one that is hidden behind the dozens of other locks then we can all get excited.

Hackers has full access to ps4 on 1.76 firmware, deal with it, it's only a matter of time for the rest. Every site about hacking talks about the possibility to run unsigned code, keys or not keys, with kernel exploit indeed it's only a matter of time. And on twitter cTurt has said that he don't want piracy, and people started to offend him for this. But again it's only a matter of time ^^

 

[boredandlazy]

Hackers has full access to ps4 on 1.76 firmware, deal with it, it's only a matter of time for the rest. Every site about hacking talks about the possibility to run unsigned code, keys or not keys, with kernel exploit indeed it's only a matter of time. And on twitter cTurt has said that he don't want piracy, and people started to offend him for this. But again it's only a matter of time ^^

He might not want it, but we all know that's what it inevitably leads to.

 

[JJD]

Hackers has full access to ps4 on 1.76 firmware, deal with it, it's only a matter of time for the rest. Every site about hacking talks about the possibility to run unsigned code, keys or not keys, with kernel exploit indeed it's only a matter of time. And on twitter cTurt has said that he don't want piracy, and people started to offend him for this. But again it's only a matter of time ^^

LOL someone is really involved in this...haha

 

[agiantenemycrab]

It's theft of services (at the least).

What we are referring to as "piracy" is legally called Copyright Infringement. For example, a copyright holder has an exclusive right to make copies of given work - and potentially profit from these copies - and someone else has made a copy, thereby infringing upon the exclusive right of the copyright holder. This is different in a legal sense from theft, which involves a physical item or items being stolen or destroyed or otherwise being devalued deliberately. Indeed copyright as a legal concept was invented because theft does not legally cover the case where ownership of an abstract work (a novel; a play; a film).

I would like state that while I am not a legal scholar, I think that to dismiss this distinction as merely "semantics" is short-sighted and incorrect. Any IP lawyers on GAF want to clarify or poke holes in what I've said? ("Intellectual Property" is another aberration of a term while we're on the subject).

PUT LINUX ON IT!

Why downgrade from FreeBSD to Linux?

Spoiler

Because that would force Sony to comply with the GPL and release their sources. And they can't allow that, can they?

 

[Ted]

The console homebrew scene, with one or two notable exceptions, is so laughable that I can't see running unsigned code as a positive thing for average Joe user only ~2 years in to this gen.

A relatively cheat free multiplayer is one of the main reasons I upgraded from last gen to this one so early. PSN was SO bad in some games towards the end of last gen and one of my favourite games this gen is F2P [hence no requirement for PS Plus] so I'm really not keen on a return to the bad old days.

 

[luca_29_bg]

It enables reverse engineering the consoles at uid 0. What comes out of this, we will have to see but saying it won't do anything is false. From here, anything can happen.

exactly! And do you think that x86 will help or not ?

 

[luca_29_bg]

He might not want it, but we all know that's what it inevitably leads to.

i know, it works in this way!

 

[luca_29_bg]

LOL someone is really involved in this...haha

You think ? Maybe because it seems nothing for someone here, other than this guy, but this on the contrary it's a very huge big big thing! From this my behaviour...

 

[luca_29_bg]

I never said it won't do anything. It will be really interesting, if the knowledge of how to exploit is spread.

Sony should hire this guy ASAP. Or Microsoft.

there are entire groups of hackers that are working on this exploit. not only cTurt that is the more "on the scene" guy on internet. Much more people are working in underground fashion.

 

[DrROBschiz]

Probably one of the few hacks I would have zero use for

PS4 already serves my needs as is and I have no desire to crowd my HDD is legacy software

Much rather have a great Vita hack to run emulators

 

[deadlast]

there are entire groups of hackers that are working on this exploit. not only cTurt that is the more "on the scene" guy on internet. Much more people are working in underground fashion.

At work we are trying to see if we can hack one. It's mostly to see if we put one in the environment what kind of damage can be done. I know when I write up the policy there will be a no jailbreaking clause in it.

 

[chekhonte]

It's theft of services (at the least).

No, it isn't theft by any definition. Nothing can be stolen in a digital space where data is copied while leaving the source unchanged.

Piracy is illegal because otherwise there couldn't be a market around data that can and is freely copied.

 

[c0de]

exactly! And do you think that x86 will help or not ?

x86 is more known than many other architectures, so yes, sure, it is beneficial, at least.

 

[luca_29_bg]

x86 is more known than many other architectures, so yes, sure, it is beneficial, at least.

yeah i knew it!

 

[luca_29_bg]

At work we are trying to see if we can hack one. It's mostly to see if we put one in the environment what kind of damage can be done. I know when I write up the policy there will be a no jailbreaking clause in it.

interesting, let's keep us updated if you can ^^

 

[socksfelloff]

Hackers has full access to ps4 on 1.76 firmware, deal with it, it's only a matter of time for the rest. Every site about hacking talks about the possibility to run unsigned code, keys or not keys, with kernel exploit indeed it's only a matter of time. And on twitter cTurt has said that he don't want piracy, and people started to offend him for this. But again it's only a matter of time ^^

I'm all for homebrew and open system so don't get me wrong.

Geohot released 3.55 with no " peek poke" to not allow piracy and a few hours later a modified custom firmware with "peek poke" was released.

Piracy and cheating comes hand in hand with homebrew and its really unfortunate.

Instead of people's first response being " holy shit we can now swap our HDD/console and reinstall PT" they say " people will pirate COD and ruin online with cheating"

 

[kunnikuman]

Finally, been waiting to run homebrew and play PT.

 

[Alo81]

If this exploit allows memory editing, then could people circumvent microtransactions by just giving themselves near infinite of whatever the item/currency is - like with Cheat Engine? Assuming that stuff isn't stored server side, the memory editing could end up being really interesting.

 

[darkwing]

If this exploit allows memory editing, then could people circumvent microtransactions by just giving themselves near infinite of whatever the item/currency is - like with Cheat Engine? Assuming that stuff isn't stored server side, the memory editing could end up being really interesting.

it's a kernel exploit, with enough time and skill, sure

 

[luca_29_bg]

I'm all for homebrew and open system so don't get me wrong.

Geohot released 3.55 with no " peek poke" to not allow piracy and a few hours later a modified custom firmware with "peek poke" was released.

Piracy and cheating comes hand in hand with homebrew and its really unfortunate.

Instead of people's first response being " holy shit we can now swap our HDD/console and reinstall PT" they say " people will pirate COD and ruin online with cheating"

yeah i know that piracy is a collateral effect of an hacked system, not always from who the first hacked the system! I don't play online so i don't know much about cheating on online games but i suppose it's very tedious!

 

[kitch9]

Hackers has full access to ps4 on 1.76 firmware, deal with it, it's only a matter of time for the rest. Every site about hacking talks about the possibility to run unsigned code, keys or not keys, with kernel exploit indeed it's only a matter of time. And on twitter cTurt has said that he don't want piracy, and people started to offend him for this. But again it's only a matter of time ^^

Lol. Excitable this one.

Until the master key is exposed they'll just keep locking the door and everyone will be stuck desperately trying to get games to run on ancient firmware which will be impossible as the game data will be encrypted on different keys.

I would have thought even the master key can be re rolled at this point in a doomsday scenario as well. They might have even completely re rolled the keys once the exploit was found a year ago.

 

[Shari]

If this exploit allows memory editing, then could people circumvent microtransactions by just giving themselves near infinite of whatever the item/currency is - like with Cheat Engine? Assuming that stuff isn't stored server side, the memory editing could end up being really interesting.

Everything worth money is saved server side, is abc of internet transactions and I doubt anyone is going to make that mistake at this point.

 

[c0de]

Lol. Excitable this one.

Until the master key is exposed they'll just keep locking the door and everyone will be stuck desperately trying to get games to run on ancient firmware which will be impossible as the game data will be encrypted on different keys.

I would have thought even the master key can be re rolled at this point in a doomsday scenario as well. They might have even completely re rolled the keys once the exploit was found a year ago.

You don't necessarily have to own the master key to make piracy a thing on a console which has been proven before.
If you can't break encryption, circumvent it.

 

[rauelius]

So, I wonder how Sony will react when PS1/PS2 Disc emulation is unlocked thanks to this jail-break.

 

[Korezo]

Uh? You realise how much damage this potentially does right? If I'd invested billions and you were threating to damage it I'd have a fookin hit squad at your house.

They have a right to defend their ip within the limits of the law.

I was more thinking about the removal of linux, and Sony starting to put online passes on their games. Since then I thought they deserved all the dmg and hate at that time.

 

[kitch9]

You don't necessarily have to own the master key to make piracy a thing on a console which has been proven before.
If you can't break encryption, circumvent it.

The Brazilians have been pirating PS4 games for a while as far as I'm aware.

If piracy is what you want it's already out there. In this age of 6 hour single player campaigns in favour of online it's pretty fruitless.

 

[Ishida]

And on twitter cTurt has said that he don't want piracy

Ha ha ha ha!

Yeah right.

 

[kitch9]

I was more thinking about the removal of linux, and Sony starting to put online passes on their games. Since then I thought they deserved all the dmg and hate at that time.

Linux was the main attack vector to getting into the machine along with the USB buffer overflow. They initially added it to keep the homebrew guys happy but it was getting abused. The online passes were something the pubs wanted wasn't it?

 

[test_account]

https://gist.github.com/CTurt/27fe7f3c241f69be19e5

A little tease! The inside of a PS4 😁

What does this mean?

 

[TC McQueen]

What does this mean?

I think it's the entire contents of the kernel, so people can figure out where to tweak things for whatever purpose.

 

[test_account]

I think it's the entire contents of the kernel, so people can figure out where to tweak things for whatever purpose.

True, but i'm more curious what it means in terms of functionality. Seeing things is one thing, but what does it mean for what they can do further on?

 

[TC McQueen]

True, but i'm more curious what it means in terms of functionality. Seeing things is one thing, but what does it mean for what they can do further on?

It gives them filenames to look for once they get access to the system and then they can extract those files to start reverse engineering them.

 

[test_account]

It gives them filenames to look for once they get access to the system and then they can extract those files to start reverse engineering them.

Do they have access to the system now? If so, in what way and what can they do?

 

[QaaQer]

True, but i'm more curious what it means in terms of functionality. Seeing things is one thing, but what does it mean for what they can do further on?

I wonder too. I think I'll make a thread about it.

 

[FrsDvl]

What does this mean?

Just means they have unencrypted access to the hard drive

 

[c0de]

True, but i'm more curious what it means in terms of functionality. Seeing things is one thing, but what does it mean for what they can do further on?

Well, they seem to have a root shell which means you have access to everything. That doesn't mean you can read everything because when stuff is encrypted, it didn't help to be root.
But basically you can't get more rights to the operating system.

 

[missile]

Which PS4 is on 1.76?

 

[kittoo]

Which PS4 is on 1.76?

Edit: please check- http://www.neogaf.com/forum/showpost.php?p=189563099&postcount=555

 

[Schrade]

What does this mean?

Shows some directories/files and then process ids (PIDs). You can then look at the process names and figure out what is running in the background on your PS4.

You probably don't have to think too hard to guess what these processes are:

  [+] PID 40, name: SceAvCapture, thread: SceAvCaptureIpc
  [+] PID 41, name: SceGameLiveStreamin, thread: SceGlsStrmJobQue
  [+] PID 42, name: ScePartyDaemon, thread: SceMbusEventPoll
  [+] PID 43, name: SceVideoCoreServer, thread: SceVideoCoreServ
  [+] PID 44, name: SceRemotePlay, thread: SceRp-Httpd

..etc.

 

[Silent Chief]

Here's a good reason for Sony not to increase the HD size.

Just look at the Vita.

 

[Silent Chief]

Shows some directories/files and then process ids (PIDs). You can then look at the process names and figure out what is running in the background on your PS4.

You probably don't have to think too hard to guess what these processes are:

  [+] PID 40, name: SceAvCapture, thread: SceAvCaptureIpc
  [+] PID 41, name: SceGameLiveStreamin, thread: SceGlsStrmJobQue
  [+] PID 42, name: ScePartyDaemon, thread: SceMbusEventPoll
  [+] PID 43, name: SceVideoCoreServer, thread: SceVideoCoreServ
  [+] PID 44, name: SceRemotePlay, thread: SceRp-Httpd

..etc.

It's running BSD. Nothing shocking there.

 

[Silent Chief]

I was more thinking about the removal of linux, and Sony starting to put online passes on their games. Since then I thought they deserved all the dmg and hate at that time.

Linux was interesting to access the processing units for massive float computation.
Besides, that, not much. It was based off a YellowDog distribution that I use a lot at work.
The PPC CPU of the PS3 was underpowered and there's very little anyone would want to run on that.

What's funny is that nowadays it's near impossible to buy a PPC motherboard anywhere.
It's a pain to work on those FreeScale boards, whatever shape they come in.

 

[protomouse]

Linux was the main attack vector to getting into the machine along with the USB buffer overflow. They initially added it to keep the homebrew guys happy but it was getting abused. The online passes were something the pubs wanted wasn't it?

I've always assumed OtherOS was actually there so that they could position PS3 as a home computer in certain regions, thus bypassing certain import taxes. They did the same with Yabasic on PS2.

http://www.theregister.co.uk/2000/11/07/sony_adds_basic_to_playstation/

 

[test_account]

I wonder too. I think I'll make a thread about it.

Just means they have unencrypted access to the hard drive

Well, they seem to have a root shell which means you have access to everything. That doesn't mean you can read everything because when stuff is encrypted, it didn't help to be root.
But basically you can't get more rights to the operating system.

Shows some directories/files and then process ids (PIDs). You can then look at the process names and figure out what is running in the background on your PS4.

You probably don't have to think too hard to guess what these processes are:

  [+] PID 40, name: SceAvCapture, thread: SceAvCaptureIpc
  [+] PID 41, name: SceGameLiveStreamin, thread: SceGlsStrmJobQue
  [+] PID 42, name: ScePartyDaemon, thread: SceMbusEventPoll
  [+] PID 43, name: SceVideoCoreServer, thread: SceVideoCoreServ
  [+] PID 44, name: SceRemotePlay, thread: SceRp-Httpd

..etc.

But does it mean that they can easily access and manipulate/write data everywhere? Can they run every process and then simply dump the ram and get the unencrypted data? I know that more work needs to be done, but is this basically game over as far as security goes for the PS4 (at least up to firmware 1.76)?

 

[Schrade]

It's running BSD. Nothing shocking there.

But does it mean that they can easily access and manipulate/write data everywhere? Can they run every process and then simply dump the ram and get the unencrypted data? I know that more work needs to be done, but is this basically game over as far as security goes for the PS4 (at least up to firmware 1.76)?

Uh.. nothing there was meant to say any of that.

It's just a directory, file and process listing.

So of course it's not shocking. It was just provided to show what the PS4 was running process-wise and some file structure stuff.

 

[test_account]

Uh.. nothing there was meant to say any of that.

It's just a directory, file and process listing.

So of course it's not shocking. It was just provided to show what the PS4 was running process-wise and some file structure stuff.

I didnt claim that anyone said that (unless you only ment that to the guy who didnt say that anything wasnt shocking). I'm just wondering what the hack means so far, and how big of a deal it is regarding breaking the rest of the PS4 security.

 

[Alo81]

Everything worth money is saved server side, is abc of internet transactions and I doubt anyone is going to make that mistake at this point.

Yeah, but there are things like "resource boosters" that just give you more of the normal resources you can get. On top of that, being console games, I wouldn't be surprised if even some of the premium stuff wasn't stored server side just out of convenience.

 

[kitch9]

Just means they have unencrypted access to the hard drive

No they don't, if they did Sony would really be in the shit. That's what they are after.

 

[missile]

The ones which shipped with The last of us remastered, I think.

Thx.

 

[c0de]

The Brazilians have been pirating PS4 games for a while as far as I'm aware.

If piracy is what you want it's already out there. In this age of 6 hour single player campaigns in favour of online it's pretty fruitless.

This depends on which games you want to play. JRPGs, story-driven games, adventures... Many games and genres add online as a bonus but their main focus is on single-player. What really is a show stopper is the exploded sizes of patches which I think you can't apply without being online.