No it really is. So are the comments. Font too.Withnail said:You know that's just a webcomic right, not the actual code.
No it really is. So are the comments. Font too.Withnail said:You know that's just a webcomic right, not the actual code.
...wow.Withnail said:You know that's just a webcomic right, not the actual code.
kamorra said:Two wrongs don't make a right. You guys are not discussing you are raging. It won't accomplish anything.
LiquidMetal14 said:Sigh, I guess you guys can start posting me as the local Sony defender on the web now. I swear I can't even voice my opinion in an issue I care about.
Or you can twist my words and look at me as a bad guy or internet heathen. All I want is for the network to be secure.
I don't get this shit. People are hacking games all over the place on the PS3 right now and it's fucking ruining games. Sony wants to stop it so if you want to access PSN you have to pass their verification tests.IrishNinja said:thanks, i caught that the first hundred times in this thread; (potentially) doing something invasive/shitty and mentioning it in your TOS isnt a free pass.
if you're asking who's "good or bad" i mean, i dont even know where to start with a question like that.
i get that its sony's network and their rules, but that doesnt mean i have to be pleased with the idea of something like this, much less celebrate it.
Jan 27 14:46:22 <Mathieulh> noone it's not that simple
Jan 27 14:46:29 <Mathieulh> the server awaits a proper reply
Jan 27 14:46:34 <Mathieulh> and that reply isn't in the firmware
Raist said:I dunno, I mostly see one side raging and panicking.
This.LiquidMetal14 said:UNDERSTAND THIS THOUGH - What I'm saying is related to PSN. DO whatever you want as long as you don't log onto PSN or you will likely be ever to log in ever again.
Not necessarily you but how people on the internet misunderstand the intent or wording. Anyways, I've stated my opinions, you're free to your own as welljorma said:I quoted you straight up, how was i twisting your words?
Ploid 3.0 said:People can still use CFW, dongles, otherOS as they please, just not on a PS3 that has 3.56 to access PSN, and soon any PS3 that access PSN. That's the point, people that mod their consoles with custom firmwares shouldn't be on PSN anyway. If they are using cheats, pirate games, or doing honest homebrewing.
Dibbz said:I don't get this shit. People are hacking games all over the place on the PS3 right now and it's fucking ruining games. Sony wants to stop it so if you want to access PSN you have to pass their verification tests.
Want to play Mario Bros on your HDTV then don't fucking use PSN.
Inanna said:This.
I'm not corporate cheering. I am well aware that Sony has their own best interest at heart, as they should. I support their decision to keep hacked consoles offline because it benefits me as well, I do not want people hacking online games. I'm not against modding consoles. Just keep it off PSN/online gaming.
Bojanglez said:Doesn't a rootkit try and subvert the standard operation of an OS to give the person that wrote the rootkit external (and unauthorised) access to the OS?
As far as I can see it this is not doing that, it is merely the OS author adding functionality to its own software, there is no subversion involved it is software that is designed by the original OS author. If you don't trust the author of the OS to maintain that OS then I suggest you don't use that OS in the fist place.
kamorra said:Yeah, that's completely normal. You will always see your side as the calm one and the others as the raging bulls.
If someone robs a store and the store owner puts in a camera and you just fucking hate cameras....then who's fault is it the camera is there, the thief or the store owner?IrishNinja said:thanks, i caught that the first hundred times in this thread; (potentially) doing something invasive/shitty and mentioning it in your TOS isnt a free pass.
if you're asking who's "good or bad" i mean, i dont even know where to start with a question like that.
i get that its sony's network and their rules, but that doesnt mean i have to be pleased with the idea of something like this, much less celebrate it.
Inanna said:This.
I'm not corporate cheering. I am well aware that Sony has their own best interest at heart, as they should. I support their decision to keep hacked consoles offline because it benefits me as well, I do not want people hacking online games. I'm not against modding consoles. Just keep it off PSN/online gaming.
Raist said:Seriously? It's not really hard to see, in an objective way.
It's their network service, they run it how they want. If that includes sending code when you login to it then so be it.iapetus said:It's my console, not theirs. If they think they own it, they can pay me for it.
BobTheFork said:If someone robs a store and the store owner puts in a camera and you just fucking hate cameras....then who's fault is it the camera is there, the thief or the store owner?
I'm not trolling I'm asking for your opinion.
I'm not calling the CFW people all thieves but there are pirates and cheaters and that's why we get this. Sony didn't do this to stop people from playing SNES games.
Vagabundo said:Ive no problems with them keeping PSN clean. Just keep it off my PS3. I ain't running CFW so why should I get compromised security or privacy.
It is a pretty shotgun like solution. They open a big hole to give them the ability to make the checks hard to pass and in doing so give other a big hole to exploit.
There is some reality to that - assuming that the changes that are in the new firmware are what the OP says they are. It feels like it might be in the form of a giant backfire. Up until now, when Sony wanted to install new software on a connected PS3, it had to ask - literally - click here to install. The change now is that they don't. In fact, they've set it up so that it can pretty much be done automatically upon login.Raist said:I see a lot of arguments/replies being completely ignored here and people carry on with the "OMG IT'S A ROOTKIT AND EVIL HACKERS ARE GOING TO RUN MALICIOUS CODE ON MY PS3 NOW" bullshit.
Metalmurphy said:It's their network service, they run it how they want. Being your console you can simply unplug the network cable or disconnect it from the wireless router. Problem solved.
panda21 said:is it not possible that sony have used a different key than the one that got cracked to encrypt the code that gets sent?
that would be a pretty easy way to stop hackers from exploiting it
and isnt this basically equivalent to saying that because you can trick DNS, any web browser is a rootkit because you could redirect someone into downloading whatever.
it would be a security flaw in whatever is providing your DNS, not the PS3 or PSN
kamorra said:Well you have to be objective first. Let me guess, you are?
iapetus said:It's my console, not theirs. If they think they own it, they can pay me for it.
N.A said:They are using new keys and fixed the random number bug. No more private keys.
Public keys are still accessible though but you can only decrypt things with those, not sign things.
tzare said:seems fair to me, as this is PSN related afterall. And PSN ain't your console, it's their service.
shuri said:YOu FAIL AT BASIC NETWORKING
but nobody doubts his word, people on the pro-Sony side dislike him because of his involvement in the scene and people on the pro-Consumer side dislike him because he always teases what he knows and mentions he knew it all along when someone else does something cool. people just generally have a lot of reasons to dislike him, but that doesn't mean people don't believe him...Raist said:So after everyone in the CFW thread spitting on/laughing at Mathieulh for being a jerk and not doing shit to help the community, now we're supposed to take his word on that supposed rootkit thing? Well OK then.
Games come with firmware update on the disc don't they?Vagabundo said:You still have to update to the latest firmware for new games. I'd have no problem here if offline games didn't require firmware upgrades.
No because in the dns case you need a lot moré things, like a poisoned dns server for starters. Plus the end user interaction to download that file.panda21 said:is it not possible that sony have used a different key than the one that got cracked to encrypt the code that gets sent?
that would be a pretty easy way to stop hackers from exploiting it
and isnt this basically equivalent to saying that because you can trick DNS, any web browser is a rootkit because you could redirect someone into downloading whatever.
it would be a security flaw in whatever is providing your DNS, not the PS3 or PSN
RyanDG said:The problem is though, you are making an assumption about how this works that seems to be contrary to what little we know about it. You aren't being asked to compromise your security or privacy, because honestly (and especially with the chat logs being posted), I'm starting to really call into question the dubious nature of any kind of security concerns that this may have on the PS3. To me, it's definitely not analogous to the rootkit from the Sony BMG days from the description we have...
Metalmurphy said:Games come with firmware update on the disc don't they?
Metalmurphy said:It's their network service, they run it how they want. If that includes sending code when you login to it then so be it.
well you must be a pirate thenVagabundo said:True and hopefully we get more details in the next while. The homebrewers are eagerly dissecting it as we speak.
Even if they did manage to security it. I still don't like that Sony could run code on my system even if I login to PSN. I like to approve anything that runs on it and I don't like not know what it does. If it start scanning through my hard drive connected to my PS3 I'd be pissed.
And I don't like that the PS3 reports home whenever I turn it on either.
Would you rather risk updating it with official manufacturer FW or charlie with his own computers in moms basement FW?The Faceless Master said:this isn't Sony specific, but it's hilarious how these companies try to act like they own the software despite you owning the hardware... EXCEPT WHEN YOUR CONSOLE BREAKS DURING A FIRMWARE UPDATE... then they're like "lol, not my problem!"
BMF said:There is some reality to that - assuming that the changes that are in the new firmware are what the OP says they are. It feels like it might be in the form of a giant backfire. Up until now, when Sony wanted to install new software on a connected PS3, it had to ask - literally - click here to install. The change now is that they don't. In fact, they've set it up so that it can pretty much be done automatically upon login.
What this all means, is if someone compromises PSN itself, they can install their own software on each and every PS3 that connects to PSN silently. Chances are that that will just be software to turn PS3s into spam zombies or LOIC zombies or something, but it could just as easily brick them all.
Someone more malicious could set it up so that infected PS3s also connect to a webserver to download new code at the same time as they connect to PSN. That new code could also be anything. It could turn the PS3 into any type of zombie or brick or whatever.
The problem is that Sony just made the problem much worse.
Mithos said:It not what Sony "might" do that scares them, its what Dibbz, Raist, jcm, Mithos, LiquidMetal14 might do to your console, when they send remote programs to YOUR PS3 what worries people.
I am connecting to their service, so that is why PS3 rings home. What is the point to have your ps3 online unless you want to connect to PSN?Beer Monkey said:The system 'phones home' when you boot it up as long as it can see playstation.net on the internet. This is regardless of whether you log in to PSN or even have an account.
If boot time, instead of login time, is when the rootkit requests and executes code, then this is a PS3 issue and not a PSN issue.
Dunlop said:What's funny with this line of logic is that CFW can pose a risk to others who choose not to go down that route either malicious or just in loss of enjoyment for a product they purchased (read: Modern Warfare 2 atm), Sony is responding to this to keep them the fuck off of PSN.
Don't jump to conclusions.Vagabundo said:Ive no problems with them keeping PSN clean. Just keep it off my PS3. I ain't running CFW so why should I get compromised security or privacy.
It is a pretty shotgun like solution. They open a big hole to give them the ability to make the checks hard to pass and in doing so give other a big hole to exploit.
maniac-kun said:well you must be a pirate then