PS3 Exploits - Official & Custom Firmware

Myrddin

Following on as we mentioned earlier, we are taking some of the load off of the big PS3 thread, in an effort to clean up the information and make it more accessible.

We've had good indications from a similar Limux thread, so with this thread I think it's a good idea to move all firmware discussion/problems etc here.

As of now, there are the following choices:

Sony Ofiicial Firmware 3.56v2 (the v2 was introduced to repair a bug in the original 3.56). Homebrew removed due to new private keys, PSN requires this firmware.

GeoHot Custom Firmware 3.55 - This fimrware only supports pkg's signed using GeoHot's PS3 signing tools. It also does not support being able to use Syscall 36/37 (Peek & Poke), meaning backup managers do not function on this firmware. No PSN.

Waninkoko's 3.55v2 - Waninkoko's second attempt at CFW, after his first attempt proved to completely brick old models that had the 256Mb nand. Syscall 36 & 37 have been patched in, it will install signed & non signed pck's, & there's another function that allows the user to dump the contents of LV1 (Hypervisor) through LV2 (GameOS). There is also a new payload introduced, which is a combination of PL3 & Hermes. This payload will apparently not work with other cfw's. No PSN.

Kmeaw's 3.55 - Much the same as Waninkoko's, syscall 36 & 37 have been patched in, it can install signed & non signed pkg's, the payload can be selected via Kmeaw's LV2 patcher. It doesn't support the dumping of Lv1 through Lv2 to my knowledge, but that's really only a dev feature anyway. No PSN.

Wutangrza's 3.55 - Much the same as GeoHot's, with the exception that Lv1 & 2 is or can be patched allowing Backup Managers ro run. No PSN.

That's the jist of it so far.

madmoe

We allowed to post which one we are currently running guys??

Myrddin

madmoe wrote: »

We allowed to post which one we are currently running guys??

I don't see why not, it'll be important for the thread. Once we keep away from PSN bypass hacks etc & backup managers then I'll be happy enough. The thread can be used for installation problems, compatibility issues, etc etc.

Inquitus

Add a poll to the top, what CFW are you using, public where we can see who voted for what.

Voted.

madmoe

I'm on 3.55 Kmeaw as well gents.....

Stuxnet

Saying No PSN in first post in relation to cfw, is inaccurate, it is still possible if you know what your at (you could say PSN possible, with console ban risk associated with it).....just saying
from what ive read, only geohot cfw peeps have been banned so far ???

Kmeaw 3.55 here !!

TouchingVirus

Official 3.xx here, been so long since I turned it on I don't even know anymore

Soon joining your ranks though, you filthy pirates :pac: :P

madmoe

TouchingVirus wrote: »

Official 3.xx here, been so long since I turned it on I don't even know anymore

Soon joining your ranks though, you filthy pirates :pac: :P

Good man, will that be on the new one you won? Had you one already? What FW it running?

tman

iPwnage wrote: »

Saying No PSN in first post in relation to cfw, is inaccurate, it is still possible if you know what your at (you could say PSN possible, with console ban risk associated with it).....just saying
from what ive read, only geohot cfw peeps have been banned so far ??

Probably better that we don't go down the route of offering advice on how to circumvent it imo... I think the stance here should be that you can either use CFW or have access to PSN, your choice! (sorry for bringing the thread OT already...)

Kmeaw 3.55 here and I intend to stay that way! (bring on xbmc!)

M00lers

madmoe wrote: »

Good man, will that be on the new one you won? Had you one already? What FW it running?

Wrong fella madmoe.:D

Myrddin

iPwnage wrote: »

Saying No PSN in first post in relation to cfw, is inaccurate, it is still possible if you know what your at (you could say PSN possible, with console ban risk associated with it).....just saying
from what ive read, only geohot cfw peeps have been banned so far ???

Kmeaw 3.55 here !!

It is accessible via a man in the middle spoof with digital certs, & I wouldn't expect it to last long. So for reasons that it's a blatant authorisation hack, I don't feel it warrants attention here. Every poster here knows what can & can't be done, it's just handy having a place where we get some personal advice in a clean environment.

Stuxnet

i'm not saying it warrants attention, or offering advice on how to go about it, but saying its not available is false information, thats my point, i mean you say which cfw allow for backup managers and those that dont, same kinda thing... is all...whatever tho

Myrddin

iPwnage wrote: »

i'm not saying it warrants attention, or offering advice on how to go about it, but saying its not available is false information, thats my point, i mean you say which cfw allow for backup managers and those that dont, same kinda thing... is all...whatever tho

Well let me makes this simple for you, on any of the above listed CFW's you cannot access PSN unless you perform the authorisation hack with the certs. None of the CFW's offer native PSN access anymore, & there's no 'false information' in that.

Stuxnet

fair enough kid

Myrddin

Apparently 3.60 is about to be released after some PSN maintenance tomorrow...we get the epic feature of being able to back up 150MB worth of game saves to the Sony cloud...just incase your multi GB internal hdd is full :rolleyes: Still no incentive to update, (psn excluded of course).

Inquitus

EnterNow wrote: »

Apparently 3.60 is about to be released after some PSN maintenance tomorrow...we get the epic feature of being able to back up 150MB worth of game saves to the Sony cloud...just incase your multi GB internal hdd is full :rolleyes: Still no incentive to update, (psn excluded of course).

They must have a dedicated pointless feature team to help them try to justify the new fortnightly firmware updates! :pac:

Myrddin

Inquitus wrote: »

They must have a dedicated pointless feature team to help them try to justify the new fortnightly firmware updates! :pac:

I have to keep reminding myself about psn as I don't use it, but other than that it's nothing, literlla ynothing of use in the real world. The cloud storage thing seems like a complete gimmick, what's the point?

red_fox

EnterNow wrote: »

The cloud storage thing seems like a complete gimmick, what's the point?

It's in case one of the security updates bricks your PS3

Myrddin

red_fox wrote: »

It's in case one of the security updates bricks your PS3

Lol, it's about as good a use as I can think of anyway. What good is 150MB of space? If saves are so small, then cloud storage isn't needed, if they're big files, then it's crippled before it's even released. What size is the average savefile...a couple of KB I'd imagine?

red_fox

At the moment there's no practical way to backup all saves (some are copy protected but I don't how often this is the case) so I think this is actually a reasonable solution in case of hard drive failure, update bricking etc, but only if it works without the need to manually upload (and given Sony's love of syphoning information from the PS3 without the user's knowledge, then I can't see why it won't be done in the background).

Although since I don't use PSN, meh!

Myrddin

red_fox wrote: »

At the moment there's no practical way to backup all saves (some are copy protected but I don't how often this is the case) so I think this is actually a reasonable solution in case of hard drive failure, update bricking etc, but only if it works without the need to manually upload (and given Sony's love of syphoning information from the PS3 without the user's knowledge, then I can't see why it won't be done in the background).

Although since I don't use PSN, meh!

Nah, a reasonable solution would to allow the user to backup to removeable media in an encrypted form...much too easy though for Sony.

Myrddin

Well 3.60 is out, & wait for it...you can now set inactivity timers to turn off your controllers :eek: W.o.w....dunno bout you guys, but I'm convinced :rolleyes:

In more slightly ambiguos news, on initial examination, the PS3 has again reen resecured. Kakarotoks said he had a quick look, & all of the loaders are now redundant (LV1/LV2'MetLDR) and have been replaced with a newly signed LV0.2. That means it's basically nullified any existing exploits, & any new ones will need to go different routes.

As for playing 3.60 games on <=3.55, that remains to be seen. In a way I'm kind of glad, that may sound strange coming from a modding enthusiast, but the stigma this mod has brought up is ridiculous...and for all intents & purposes, my ps3 still never gets used. If newer games can still be played on 3.55 that's kind of a saving grace, but if not...then its useless.

Wow, in 3.60, Sony removed all the loaders, no more isoldr/lv1ldr/lv2ldr/appldr.. but they added lv0.2! Seems they found a way to secure ps3

Source

Stuxnet

its very easy get old games work on newer fw's, 3.6 on 3.55 & below wont be any different i'd imagine, a quick eboot edit

automatic controller turn off, what a killer feature, just what the masses have being calling for, glad sony listen to customer feedback,

so glad i bought sony !:rolleyes:

Myrddin

iPwnage wrote: »

a quick eboot edit

The metldr got its P45...if the new eboots are signed in conjunction with LV0.2 then we won't be able to decrypt them. Time will tell.

Inquitus

EnterNow wrote: »

Well 3.60 is out, & wait for it...you can now set inactivity timers to turn off your controllers :eek: W.o.w....dunno bout you guys, but I'm convinced :rolleyes:

That's actually one of the things that annoys me most about the PS3 is the lack of Controller inactivity timers. The kids play, go, leave controllers on and whenever I want to play a game or use a controller its flat as a dodo.

Myrddin

Inquitus wrote: »

That's actually one of the things that annoys me most about the PS3 is the lack of Controller inactivity timers. The kids play, go, leave controllers on and whenever I want to play a game or use a controller its flat as a dodo.

A console shouldn't be half-way through its lifespan before it gets that feature. It should have been available on FW1.0 tbh.

M00lers

They was a power saving option for controllers before 3.60, what's so different about this "new" option?

Myrddin

moolers2000 wrote: »

They was a power saving option for controllers before 3.60, what's so different about this "new" option?

This has a timer, maybe the old one was a preset time?

M00lers

So they gave us more options of when the controllers turn themselves off?
Lame!!

kc66

I've been using that feature for a long time. I think it turns off the controller after 5 mins. Great for saving battery.

Myrddin

moolers2000 wrote: »

So they gave us more options of when the controllers turn themselves off?
Lame!!

If Sony allowed game installs to hdd (internal & external, obviously using the PS file system) and you just needed the disc for authentication like the 360...it would go a huge way towards incentivising cfw users to ofw. Game installs, PLUS psn...I'd say a huge amount of people would revert to ofw.

But no...joypad power timers.

M00lers

kc66 wrote: »

I've been using that feature for a long time. I think it turns off the controller after 5 mins. Great for saving battery.

Yeah, I've been using it since it was added as an update ages ago. What's the difference with the new update?

Myrddin

moolers2000 wrote: »

Yeah, I've been using it since it was added as an update ages ago. What's the difference with the new update?

You can change it from 5 mins to 6 mins, or whatever other time you see fit.

TouchingVirus

And 3.60 slams the door on homebrew - no more loaders or faffing around, just a new lv0.2 that's been signed with the new secure key.

Bad news for modders

Edit: I know 3.56 didn't allow homebrew but that was a minor change, the removal of actual loaders is a big step.

Myrddin

TouchingVirus wrote: »

And 3.60 slams the door on homebrew - no more loaders or faffing around, just a new lv0.2 that's been signed with the new secure key.

Bad news for modders

Edit: I know 3.56 didn't allow homebrew but that was a minor change, the removal of actual loaders is a big step.

Yep, it's back to square one. I see form reports team Rebug has released a 3.60 spoofer that's allowing PSN access. Too early to tell if its the real deal though, as PSN is always much more 'open' after a firmware release. Hopefully it'll be killed, I really can't stand another round of evil hacker debates.

Also, 3.56 to my knowledge doesn't allow homebrew due to the new whitelist, what makes you say it does? 3.56 slammed the door, 3.60 is turning the key closed.

TouchingVirus

EnterNow wrote: »

Also, 3.56 to my knowledge doesn't allow homebrew due to the new whitelist, what makes you say it does? 3.56 slammed the door, 3.60 is turning the key closed.

I may have worded my edit badly, but I didn't say 3.56 could run homebrew :P I effectively said your last sentence, but without being so dramatic

Myrddin

TouchingVirus wrote: »

I may have worded my edit badly, but I didn't say 3.56 could run homebrew :P I effectively said your last sentence, but without being so dramatic

Ugh, my brain made "I know 3.56 did'nt allow homebrew" read like "I didn't know 3.56..."

Moment of dyslexia over, normal duties can be resumed

Stuxnet

EnterNow wrote: »

Y 3.56 slammed the door, 3.60 is turning the key closed.

wonder would Mathieulh now release the info he has on 3.56 metldr exploit in this case ? ...if he's not bull ****ting, surely it might be handy now in the hands of the community

would be no logical reason to hold back now, if 3.60 + as i understand it doesn't use metldr anymore ?

Myrddin

iPwnage wrote: »

wonder would Mathieulh now release the info he has on 3.56 metldr exploit in this case ? ...if he's not bull ****ting, surely it might be handy now in the hands of the community

would be no logical reason to hold back now, if 3.60 + as i understand it doesn't use metldr anymore ?

Depends, he's terrified of being a bold boy so I doubt he'll release anything. If his exploit could possibly gain control of LV0.2 then for sure we won't see it. If not, he'll still be hoping for the job at Sony.

Besides, with the exploit out in the public, there'd be no influx of requests to massage his ego.

DanTheMan1

about time, i thought this should have been standard feature, with a sleep timer in ps3 controller, thats one feature i liked on the xbox and you did not have to configure it!

madmoe

Installed the Rebug PSN 3.60 Spoofer last night and can access Vidzone again now :-)

Stuxnet

A well respected developer who goes by the name drizzt, just tweeted a chat log belonging to Mathieulh. In the log, assuming that it’s true (or genuine), Mathieulh says that he has codes running on firmware v3.60; but added that he’ll keep it to himself. Ouch!

Update: Mathieulh just tweeted a video of custom firmware v3.60 running on the PS3. This video was made by winocm, which he says, “here’s that 3.60 hack that’ll never be released.”

https://www.youtube.com/watch?v=JZfES89eZwM

3.60 jailbroken, looks legit !!


eta vid is gone !! **insert conspiracy theory** it was the real deal anyway, i saw it with me own eye's !! the vid had a ps3 running 3.60, he showed it, he went on to show the new cloud saving feature in the xmb, which is a 3.60 thing, he had his package installer on the xmb, and he installed a signed .pkg,

it was the real deal,

try this mirrored vid

https://www.youtube.com/watch?v=Qohuq0Vvm6M

madmoe

Deadly hurling!

iPwnage wrote: »

https://www.youtube.com/watch?v=JZfES89eZwM

3.60 jailbroken, looks legit !!


eta vid is gone !! **insert conspiracy theory** it was the real deal anyway, i saw it with me own eye's !! the vid had a ps3 running 3.60, he showed it, he went on to show the new cloud saving feature in the xmb, which is a 3.60 thing, he had his package installer on the xmb, and he installed a signed .pkg,

it was the real deal,

try this mirrored vid

https://www.youtube.com/watch?v=Qohuq0Vvm6M

Myrddin

Looks legit to me, its actually better demo'd than the very first usb hack vids. As to the point of releasing videos, I don't see it generating anything other than n00b worship...but then, maybe thats what it was designed to do?

Does it even need to be released? No, I can't think of a single reason why this is needed. I'm delighted they've found an exploit, but keeping it to themselves is wise for the foreseeable future, full functionality is still retained on 3.55, & it will only tip their hand to Sony.

I say keep it hush until there's something to be gained form it.

Edit - Seems there's certain people saying this is a debug console, due to the fact there's some ip message or something at the start of the video. I havn't seen Mathieulh's video, but I find it very difficult to believe he'd be in possession of debug fw 3.60, unless he has a contact or something. He also doesn't strike me as the bullsh1tting type, from looking at the other vids, I'd say the exploit is real. Unless debug FW3.60 is floating about in small dev circles, but most of them are mature enough not to create hoax vids.

Stuxnet

a long Mathieulh irc chat log from yesterday, if ya like long boring nosy insight to irc nerdiness

http://gaia.psfree.net/logs/extract.log.html

Myrddin

iPwnage wrote: »

a long Mathieulh irc chat log from yesterday, if ya like long boring nosy insight to irc nerdiness

http://gaia.psfree.net/logs/extract.log.html

I killed it after the first line tbh, the ego's of some of those lads beggar belief

Private Snafu

Have just read through the whole log.... My heads bursting :rolleyes:

senorwipesalot

Showtime Media Player for PS3 Released

Anyone tried this yet?I installed it but all the tv channels are in danish or swedish.Looks like it may have great potential.Anyone know of a way to get english channels on it?

Myrddin

senorwipesalot wrote: »

Showtime Media Player for PS3 Released

Anyone tried this yet?I installed it but all the tv channels are in danish or swedish.Looks like it may have great potential.Anyone know of a way to get english channels on it?

I posted about it in the general ps3 thread, and as its not firmware related we can discuss it on that thread.

senorwipesalot

EnterNow wrote: »

I posted about it in the general ps3 thread, and as its not firmware related we can discuss it on that thread.

sorry missed that.

Stuxnet

built my own cfw, details!

im sure most are happy with what they have ! its on my github if anyone fancy's a cleaner xmb interface !
3.55 btw