Slashdot Mirror
New "Secure" Xbox Cracked In Under A Week
ilsie writes "Numbnut says it all in his post at xboxhacker.net. To quote his post, 'On behalf of the Xbox Linux Team, I am proud to announce that at 10:45BST the 'v1.1' secure version of the Xbox was proven to be running arbitrary BIOS code in a normal 256KByte modchip - with no additional hardware required. In short, in under a week we were able to normalize the new box to enable it to interoperate with Linux properly.'"
By any chance, has anyone checked to see if Microsoft modified the EULA when they released the new version of the Xbox? It would be interesting if they stuck anything in there that would strengthen their ability to prosecute and/or seek damages for circumvention of the protection scheme.
-- Button up, your ignorance is showing
and crack it.
We could all benefit from my education.
could these xbox hackers come over and get my ms office from asking for my cd every time i do a 'find' in explorer?
that would REALLY impress me.
It brings me to this following tought: You can't protect anything that user has physical access to. Same situation is observable amongst CD 'copy (mis)protection' . Smart lads crack it in one week session. Maybe people should stop wasting money on copy proections and focus instead on actual product?
Lone Gunmen crew.
The good, hard working, people at Microsoft(tm) have worked long and hard to give you a Video-Game systmem that plays the games you want.
Instead of happily purchasing the system and all twelve games, and three extra HandHurt(tm) controllers - you go and make the poor people at Microsoft(tm) cry.
I think it's time you helped a good American(tm) company like Microsoft, instead of promoting the Communist-Finnish Linux.
Please, don't take food out of a fellow American(tm) - buy your Xbox today!
(MS: Please credit MSDN account #2341 for this post)
Moneyed corporations, non-working 'poor' and criminal prisoners are turning productive citizens into tax-slaves.
What about waiting for the first Palladium machines, and hacking those ?
Hacking the X-Box is great, I'm sure. But how much greater to wait for the companies most keen to restrict all our rights to invest a whole lot of money in Palladium - just to see it cracked and made completely useless ? It might even make them completely give up on the whole idea for a long, long time to come.
Because the product is an autonomous unit, obviously anybody is free to hit it from any angle until the security is broken.
I'm sure Microsoft doesn't really expect that the XBox product will be totally secure. So it's probably not such a big deal whenever the product is cracked.
However Microsoft's sporatic changes to the XBox security may easily cause confusion to consumers who try to purchase mod chips (because different version exist), which in and of itself it a good tactic. Frustrated consumers are probably less likely to spend money on modifications after they find some mods don't work (because they are meant for a different version of the XBox).
It seems that everyone is considering this new xbox revision to be a security upgrade, which it really doesnt seem to be. A few things on the PCB have changed, such as the USB header now being integrated on the main mobo, and few other things.
It seems to me (and others) that MS did a slight revision to cut costs. While they were at it, they did a few (very minor) changes to the BIOS to deter hackers. It's kind of gotten out of hand how people are calling this the 'new version that MS created just to not be hackable'.
--falz
It doesn't matter if you hire the smartest people you can find... theres always someone out there smarter. Microsoft may have put it's best people behind it's security initiative, but there are always going to be people out there that are more intelligent- not to mention more motivated. Or to make this a bit simpler... I think there are more people who want to hack the Xbox then there who don't want it hacked- it's pretty obvious who's gonna win. All MS will do is going to do is make it more challenging and guess what... theres plenty of people who like challenges. The more challenging it is, the more it's "just gotta" be hacked.
Blender And Linux Fan
Didn't Nvidia have to write off a bunch of hardware that became obsolete when Microsoft changed the XBox?
"WHY would you want to run Linux on your X-Box? That is beyond me. You can get a fast PC for under $300. And a monitor - TVs have totally shitty resolution"
Answer (for some)
Find me a PC that can do progressive scan and/or component-out for under 300$. Now, hooked up to a nice plasma/front projector, etc etc, I can
- Run emulator's, yum!
- Watch any type of media that I please, full screen
That's just for starters. There is always a legit counter point. For me, I could pick up the new AIW 9700 with component-out, but I've already spent 300$ right there.
This is what excites joe-blows like me, no more having to drag the PC into the den and run a shitty s-video/whatever output to my HDTV.
I hope I've helped people to see one appeal for going through the long process of getting the xbox ready to run Linux, then running 100's of things thru that, including W2K.
It doesn't matter wether Palladium gets cracked or not, because for the vast majority of users, there will be no difference. The security may be "good enough" so that it can only cracked by using illegal hardware.
If the majority ("average users") can't break the security, then any solution is useless.
Don't you get it? The Xbox is Microsoft's test case for Palladium. They try their best to secure the Xbox and wait for the hackers to bust it. They keep on doing this until they find a way to lock it down to the point were nobody can hack it. Then they role out Palladium with all the safe-guards in place and hacker tested. You XBox hackers are just a tool of Microsoft!
Disclaimer: I am numbnut.
The 1.1 version of the Xbox is certainly designed to be Palladium Lite. The concept is that no code is executed unless it matches a one way hash signature. The only exception is the boot ROM (512 bytes) which lives in the nVidia-designed MCPX chip; this is used to validate the next code to execute, which validates the next code to execute and so on.
Unfortunately for MS (and perhaps nVidia), they chose a hashing algorithm which already had a known flaw. The hash, which works on QWORDS (64-bit quantities) is completely insensitive to b31 and b63 of a QWORD both being inverted.
Doubly unfortunately for MS, the VERY FIRST DWORD of the hashed region is the entry point, and contains a long relative jump. The effect of flipping b31 and b63 on this QWORD is to retarget the jump to RAM.
Triply unfortunately for MS, they have a small interpreter built into their ROM code, whose instruction set is capabel to to IO amd memory r/w before the bootrom is validated and executed. It was trivial to add some memory writes to the interpreted code stream to prep the memory targetted by the modified jump with a jump back into the flash.
The end result is perversion of the hashed region in a way invisible to the hashing algorithm, and execution flow jumping to arbitrary code in the flash.
I urge anyone interested in both the technical detail and the larger issues raised by this to read the threads on http://www.xboxhacker.net as this is a much larger issue than simply another Xbox crack.
... why anyone should want to run Linux on an Xbox? What will you be able to do with it that you can't do with Linux running on a proper computer?
Actually, the paddalium is what Bill Gates will shortly be applying to the bottoms of these naughty hackers.
I would recommend you read up on the legal issue of reverse engineering because it is under attack and it is not at all obvious that it will survive. I believe the latest issue of ACM Communications has an excellent article on the topic. Recent US Government laws are very disconcerting.
Microsoft would avoid the embarrassment by including a Linux CD with each Xbox.
.htm docs in Windows....
Yeah, but they'd call it "MS Unix" or "MS OpenSource" something. I had no idea Microsoft invented HTML until I saw the file type for
moto411.com
Please show me the $199 PC that has a DVD drive, onboard NIC, decent video and sound that I can run into my TV and, while on, is pretty much noiseless that also plays Xbox games. Provide links, if possible, and I'll go buy one instead of the Xbox I was planning on buying (refurb on sale for $159.99 at Electronics Boutique!) today. If you could, please hurry as the sale ends this weekend.
I'm not being entirely sarcastic (if there really is a place that sells comparable $200 PCs, I would buy one), but I am tired of this whole "you can get PCs for the price of an Xbox" argument. My motherboard cost almost that much by itself. My video card cost more than that. Just because I can get a crappy Microtel or whatever at Wal-Mart for $200 bucks doesn't mean it's just as good.
Anyways, all of this hacking stuff is over my head, but I would assume that the challenge is kind of interesting and being part of the group that is a watchdog to the predecessor to Palladium must be at least part of the intrigue. But what do I know. *shrug*
Judging from the X-Box's market share (or lack thereof), the general populace cares about as much about the X-Box as they do about Linux (which isn't a whole lot).
And even though the number of people using X-Boxes as cheap PCs is small, Microsoft certainly appreciates not having those consoles as unsold inventory (which would cost them even more).
Ita erat quando hic adveni.
I don't recall the EB guys hounding me to sign some sort of contract when I bought my Xbox. In fact, I don't recall any sort of contract in the box with it that I signed.
The closest thing I could find was the ABOUT XBOX in the dashboard, which talks about how the softvare on the Xbox is protected by copyright law. Since I have no intention of pirating the Xbox dashboard, I think I'm legal.
Plus, once I own something, it's mine. As I've said before, I could rip off the top of my Xbox, put all my night soil in there, and grow flowers from the rich loam. Microsoft can't say anything to me about the use of it, because I own it.
--
Internet Explorer (n): Another bug -- that is, a feature that can't be turned off -- in Windows.
I know this is a little bit unscientific, and rather illusory but...
Xbox is small, nitty and costs only $200. It possesses a 3D chip, a not so bad 733MHz processor, ethernet connection and an hard drive. Frankly it is not so bad for a cheap cluster... Sincerly, I have seen a few clusters for which the cluster units were a little worse than XBox...
Maybe the chance for M$ to reach Top 500? Imagine, an horde of penguins helping up Redmond to reach the heights of computer industry...
If you mean by "bad name" that they stand for the right of people that BUY a product to use it without fear of being hounded by an lawbreaking organisation such as Microsoft, or that they aim to defend the written law of fair use from being destroyed by bribes and corruption at the highest levels of the judicial system then I'm all for being called "Mudd".
Perhaps the OSS and free software community should consider a different approach to establishing their self-image and promoting their cause.
Perhaps you should consider your position as a marketing droid's wet dream. Perhaps you should consider your role as an instrument of corporate interferance in everyday life. Perhaps you should consider smelling the coffee.
It would appear that you have lost sight of what (not just) Microsoft are trying do here: they are trying to say "You paid us fair and square for our machine but we still own it and, in fact, we now own a little bit of you because we can tell you what (not) to do with our little box of tricks."
As a great man once said "Fuck that".
TWW
"Encyclopedia" is to "Wikipedia" what "Library" is to "Some people at a bus stop"
The fact that we're being called "consumers" instead of "customers" sadly illustrates the cynical attitude of many corporate types. "Shut up and buy our stuff, you nose-picking, beer-guzzling sheep!"
To paraphrase someone else, most people, according to them, "are a bunch of pathetic hamsters who only know to press the pellet bar and chitter excitedly to one another about the size of the pellet they received."
I'm a customer, Mr. Gates, and as far as I'm concerned, entropy will claim the universe before I pay one red cent for another of your products.
My feelings for MS are widely know, but for once I'm not trying to troll.
Given the facts, how is this news?
In my eyes, it isn't.
What WOULD be news would be "secure xbox cracked after exhaustive 6 month effort by 3 teams of 1200 people".
Agreed?
-- Note: If you don't agree with me, don't bother replying. I won't read it.
This new revision had the security key changed. Microsoft had to scrap a lot of the older parts to make this change. The change had only been implemented in the plant that supplies Australia and it's already cracked. That's why it's news.
It is in the latest issue. It says 'reverse engineering under siege,' It doesn't attempt to predict who will win the legal matters, but explains what the threat is and how it will cause extreme harm to the tech industry if reverse engineering is taken away. Most slashdotters probably know most of that, but it is an interesting read.
"Never, never suspect the dreams within the dreams of dreaming children." ~The Amazon Quartet
Comment removed based on user account deletion
Subtitle: Cracked in 60 seconds.