Post by: iquid-!ce on January 04, 2006, 10:56:00 AM
Post by: jameswalter on January 04, 2006, 11:43:00 AM
QUOTE(umdkappy @ Jan 4 2006, 09:36 AM) 
I don't think anyones mentioned it here yet, but is the DVD Drive's firmware or bios encrpted or accessable at all? The DVD drive is checking the media type and returning whether it is an original disc or not - can it be modifyed to always return a 'disc is authentic' value? Granted this doesn't help out with being able to run unsigned code, but it would allow for backups and perhaps grant more access to the system since the disc its reading it thinks is real.
Even if the drive's firmware is encrpted, it'll probably be easier to hack then the 360 itself, IE: modchip for the drive....
Try checking the 25+ page thread over at xbox-hacker.net. They have been going into detail on firmware specifics and breaking down the code.
Post by: fandabidozi on January 04, 2006, 11:48:00 AM
Post by: jameswalter on January 04, 2006, 11:57:00 AM
QUOTE(fandabidozi @ Jan 4 2006, 10:55 AM)
I dont think that will work at all unless M$ has the worst copy protection ever and i dont think they have..
Why not....Right now it seems that the media check is the only thing preventing backups from running. Some sort of hardware/software(firmware) hack may be quite possible.
Edit: Idea I metioned about this same type of thing
Post by: 82ross on January 04, 2006, 04:31:00 PM
Post by: jameswalter on January 04, 2006, 08:18:00 PM
QUOTE(-NEUTRINO- @ Jan 4 2006, 02:27 PM)
just a matter of time... I figure a disgruntle M$ employee will export the sig key within a few months or so...
-NEUTRINO-
Yeah...I'm sure MS is careless with the 2048 bit key used for signing...they probably even through it away...maybe we can go dumpster diving at MS to get it.
Post by: Angerwound on January 04, 2006, 09:25:00 PM
QUOTE(82ross @ Jan 4 2006, 04:38 PM)
No "sig key" has ever been leaked for the Xbox why would we be so lucky this time round
There are more then one signing key for the xbox console.
The private/public key combos were used for the encryption of executables.
There is also an XBOX Cert Key, which is used for gamesave signing (Hash CertKey and .XBE SigKey to produce the Auth Key used to resign gamesaves) and producing the contentmeta.xbx SHA1 hash(hash done on HDD Key when installing content). They however didn't use this type of META file for xbox 360. Everything is done with PIRS files.
The XBOX Cert Key, was never officially leaked in it's retail form. A debug form of it can be found within the leaked kernel source code but thats of no use to retail console users. Retail Cert Key must be sniffed out of the kernel itself.
Post by: jameswalter on January 04, 2006, 10:12:00 PM
QUOTE(Angerwound @ Jan 4 2006, 08:32 PM)
The private/public key combos were used for the encryption of executables.
Not encryption....signing. Digital signature is created with the private key.
Post by: Angerwound on January 05, 2006, 03:49:00 AM
QUOTE(jameswalter @ Jan 4 2006, 10:19 PM)
Not encryption....signing. Digital signature is created with the private key.
Forgive my wording. The point was they are "signed" with that key combo
Post by: massareal on January 05, 2006, 04:45:00 AM
Why not try it with: http://boinc.berkeley.edu/
This must run on a Linux server....best would probable be in Australia.....because the law there is more easy than europe or the states.
Post by: armless on January 06, 2006, 11:53:00 PM
QUOTE(wmadoss @ Jan 5 2006, 12:55 PM)
Sure if we have a few billion years we might find the key...
true dat
double true
Post by: jameswalter on January 07, 2006, 11:30:00 AM
QUOTE(massareal @ Jan 5 2006, 03:52 AM)
Sounds maybe wierd, but calculating the key cost loads of time and CPU.
Why not try it with: http://boinc.berkeley.edu/
This must run on a Linux server....best would probable be in Australia.....because the law there is more easy than europe or the states.
People need to learn exactly how long brute forcing actually takes.
Post by: myst1x on January 07, 2006, 02:57:00 PM
QUOTE(jameswalter @ Jan 7 2006, 01:37 PM)
People need to learn exactly how long brute forcing actually takes.
And also learn just how big a 2048 really is...