Print

[PedrosPad]

QUOTE (PedrosPad @ Sep 27 2004, 12:33 AM)

Posts here imply that this 5680 Dashboard seems to have both the font and audio flaws still in it QUOTE (eh. @ Sep 27 2004, 12:58 AM) Pedro, I hope I'm wrong but my findings yesterday and today have me believing it requires retail fonts eh.

GIGO - Garbage In, Garbage out.  I did say "Posts here imply that..." - I've seen posts that state the font flaw isn't caught, and posts that say the audio flaw isn't caught - both promising.

QUOTE (triggernum5 @ Sep 27 2004, 05:54 AM)

Different fonts with different results?  Sounds like a good sign..

I concur.

QUOTE (eh. @ Sep 27 2004, 08:42 AM)

@EthanHunt_IMF: I agree about the fonts, but the audio could potentially... (1) be really useful for non-NTSC-U 5713+ softmodders (as it's "region free"); (2) provide a non-gamesave, XBL compatible backdoor eh.

I concur.
Leaving the C:\fonts as retail will allow retail XBOX functionality - boot to M$ Dash, access to XBL console, etc.

If the DVD-Rom booted Dashboard suffers from the audio exploit, the HDD modification may be limited to the E:\TDATA\fffe0000\music\ST.DB file.  Since this file contains user entered track names, it can't be signed by M$ (which, btw, is why this file was originally targeted for exploit).  A future M$ HDD boot Dashboard could validate, and zap this file on boot (similar to the way that D:5690 verifies C:\xodash\xboxonlinedash.xbe) but there's not one out yet - and if released, would only kick in if the user booted the new Dash from the HDD.
(And yes, I realise that all this would still require one time FTP access to the XBOX HDD to place the ST.DB file.)

[PedrosPad]

On another point, I've seen several posts asking "how this helps?", "how do we get this on the HDD?", etc.  I think these people are missing the vision.  I believe any breakthroughs here would be used to create DVD-Rom based homebrew that boot on unmodified XBOXs.

E.g. Once you're in the club, and have a working E:\TDATA\fffe0000\music\ST.DB file on your, otherwise unmodified, XBOX HDD (even one running the latest M$ Dashboard - with all holes closed!)...
You pick up a copy of the latest homebrew XBOX Linux dist. at a car boot sale,
pop it in your XBOX and boot from it (drive D:).
it boots the DVD-Rom D:5680 Dashboard (which, in this dream, still has the audio flaw), (drive D:)
You fire the audio exploit (copy track), (drive E:)
The audio exploit then launches D:\homebrew\default.xbe. (drive D:)

While far from ideal or easy to use - still something not previously possible.

[PedrosPad]

QUOTE (rmenhal @ Sep 27 2004, 11:13 AM)

The Hulk xboxdash.xbe code indicates that the audio hole has not been closed. It'd be easy to take the source code from the doubledash package I once made and adjust it.

Sounds like excellent news rmenhal.

Do you have any ideas as to the conflicting messages regarding the 5680 Dashboard font flaw?  I imagine you examined the code before posting that you believed it closed, but actual experimentation is throwing up some odd results.  

[PedrosPad]

QUOTE (devz3ro @ Sep 23 2004, 07:16 AM)

Taken from disc 2: xboxdash.xbe (1,568,768 bytes & found in xboxdash) QUOTE Certificate ~~~~~~~~~~~ Size of certificate                 : 0x000001EC Certificate timestamp               : 0x3F205497 Thu Jul 24 17:50:15 2003 Title ID                            : 0xFFFE0000 Title name                          : "Xbox Dashboard" Alternate title ID's                : none Allowed media types                 : 0x00000030                                      : XBE_MEDIA_1LAYER_DVDROM                                      : XBE_MEDIA_2LAYER_DVDROM

The red ink above implies that ROE would be on if this disk was booted - which kills the idea of creating a single exploit disk, booting to Evox, then swapping the disk for a standard homebrew DVD.

However, compatible DVDs may still be able to be created - as described here.

[total_ass]

there has been some excellent possibilities occuring, i only hope that you guys can exploit these to improve softmodding.

i still stand by my previous statement that an exploitable 1.6 pal is the most important thing to concentrate on.

[PedrosPad]

QUOTE (rmenhal @ Sep 27 2004, 11:45 AM)

QUOTE (PedrosPad @ Sep 27 2004, 11:27 AM) Do you have any ideas as to the conflicting messages regarding the 5680 Dashboard font flaw?  I imagine you examined the code before posting that you believed it closed, but actual experimentation is throwing up some odd results.  Well, with 5659+ you get error 21 with hacked fonts because the checksum (the first 64 kb) for the fonts don't match. That code is not yet quite ready in the Hulk xboxdash.xbe because there's an infinite cli, hlt instead.

Thanks for that explanation rmenhal.  That explains the lack of the Error 21 screen, and the lockups.  But the reboots?

[BluhDeBluh]

QUOTE (total_ass @ Sep 27 2004, 11:48 AM)

there has been some excellent possibilities occuring, i only hope that you guys can exploit these to improve softmodding. i still stand by my previous statement that an exploitable 1.6 pal is the most important thing to concentrate on.

I think you're kinda missing the point. The best way to find an exploit is to find what's already there waiting to be discovered, rather than try to discover something that doesn't exist. Example in point, the Star Wars thread which created this thread which found the exploit that has always been there.

BTW, great news about the Audio Exploit. Looks like we're going oldsk00l - the Audio Exploit rebirth. Never saw that one comin'....

[total_ass]

QUOTE (BluhDeBluh @ Sep 27 2004, 11:23 AM)

I think you're kinda missing the point. The best way to find an exploit is to find what's already there waiting to be discovered, rather than try to discover something that doesn't exist. Example in point, the Star Wars thread which created this thread which found the exploit that has always been there. BTW, great news about the Audio Exploit. Looks like we're going oldsk00l - the Audio Exploit rebirth. Never saw that one comin'....

it's possible that an exploitable pal does exist, it just hasn't been found yet. i mean i can't say for sure, but i bet it was pure luck that the exploitable nfl fever xbe was found.

[BluhDeBluh]

QUOTE (total_ass @ Sep 27 2004, 12:29 PM)

it's possible that an exploitable pal does exist, it just hasn't been found yet. i mean i can't say for sure, but i bet it was pure luck that the exploitable nfl fever xbe was found.

Yeah, it is but we can't actively do much to find it, while we can actively work on this new audio exploit.

[Angerwound]

I have been thinking that this would be a possible boot disc for those that wouldn't mind running a legacy dashboard. Meaning they would have to use 4034 or earlier since it checks for fonts within the root. Then we could have these hacked fonts within the /fonts folder - This wouldn't be very helpful since most have an updated version of the dashboard and want to use live.

[Kthulu]

i understand PedrosPad's vision for this, but i still don't see how it's very useful.  however, i think it should still be persued.  you never know what MS will throw at us in the future.  so this might become MORE useful in the future.  other useful discoveries might be made along the way.

i'm no historian, but most significant discoveries/advancements that i've seen on discovery channel   were made by accident.  people trying to turn lead into gold, lead to many important discoveries in the area of chemistry.  no, they didn't succeed in turning lead into gold, but think about what we wouldn't have if they hadn't tried...

[triggernum5]

QUOTE

no, they didn't succeed in turning lead into gold,

Haven't succeeded yet actually.. Ppl are still working on on the whole transmutation thing..

[Chicken Scratch Boy]

if we can get a working st.db we can work on ghetooing it onto the hdd later...  

[PedrosPad]

QUOTE (Kthulu @ Sep 27 2004, 04:33 PM)

i understand PedrosPad's vision for this, but i still don't see how it's very useful.

This research could be very useful for a PAL v1.6 K:5713+ XBOX owner, with good investment in original PAL XBL games.

Since UDE2 prevents access to the original PAL XBL game collection (due to the mandatory region change), currently there are few avenues open to play your PAL XBL game collection, and the occasional homebrew title from DVD media.

In fact the only method I know of is the PAL EEE/SC1 exploit - for which a noob package doesn't even exist yet.
(Short of toggling your EEPROM back and fourth.)

[eh.]

QUOTE (total_ass @ Sep 27 2004, 04:29 AM - part)

but i bet it was pure luck that the exploitable nfl fever xbe was found.

It wasn't "pure luck", it was more of an "evolution" that went something like this (IIRC) eh...

PedrosPad and other visionaries identified and pursued the double-dash possibility, rmenhal overcame the font barrier, devz3ro nurtured and grew it with Angerwound plus Pedro recognised and established UDE (all with more godly fonts and files from rmenhal).

devz3ro then identified the XBL HDD possibilities, PedrosPad pursued that and ldots created a scanner.  This enabled other sceners that were willing to make an effort and help to do so ... almost immediately it revealed the UDE2 bootstrap had been staring someone in the face but they (embarassingly) hadn't even realized eh!

Although it was apparently pure luck that it was present in my box, wasn't it the case that the efforts and achivements of these folks (and others that preceded them) resulted in it being found eh?