Hacking your way to a PS3
[Via Digg]
Filed under: Gaming
[Via Digg]
[Via Digg]
Previous
myTouch 3G hands-on (with video!)
Olympus E-P1 hands-on, test shots, and mini-review
Wii MotionPlus impressions
HTC Hero hands-on
iPhone 3GS review
MacBook Pro (mid 2009) in-depth impressions
Amazon Kindle DX review
Palm Pre review
Engadget Podcast 153 - 07.03.2009: Independence Day edition
Breaking news Feed
- Sony Ericsson Rachael UI video leaks out, Kiki comes for the ride
- T-Mobile's myTouch 3G launch event: pre-orders now available
- Google announces Chrome OS, coming to netbooks second half of 2010
- LG teases next-generation Chocolate for August unveiling
- Sony Vaio W netbook now official in US, coming August for $499
- Palm Pre official on O2 and Movistar in Europe, launch "in time for holidays"
- Creative Zii and Zii EGG touchscreen players with HD cameras served up by FCC
- Sony announces VAIO W... netbook!
- Sony Ericsson "Rachael" Android XPERIA handset unveiled?
- Sprint matches Verizon's pace, launching BlackBerry Tour on July 12
Featured stories Feed
- HTC Hero vs. T-Mobile myTouch 3G... fight!
- Switched On: With Google, this is not your father's OS war
- myTouch 3G hands-on (with video!)
- T-Mobile's myTouch 3G launch event: pre-orders now available
- Verizon BlackBerry Tour 9630 review
- How would you change the Palm Pre?
- Ask Engadget: Best Bluetooth mouse out there?
- D-Link's Xtreme N DIR-685 storage router hands-on and impressions
- Olympus E-P1 hands-on, test shots, and mini-review
- Verizon BlackBerry Tour unboxing
- Video: TAT's augmented reality concept unveiled
- Apple dreaming of object identification, new messaging UI in iPhone OS patent
- Nokia makes 3720 official, its "most rugged mobile handset to date"
- SoundAMP hearing aid app for iPhone unleashed on our delicate ears
- Keepin' it real fake, part CCXXI: Apple's iPhone and iPod nano hook up, combine
- Verizon / Cablevision MSG HD channel squabble goes to the FCC
- MSNBC HD launches on DISH Network
- Sony's connected BRAVIA HDTVs score Netflix streaming, PS3 left in the cold
- TiVo and Best Buy alliance to yield co-branded DVR, TiVo software on Insignia and Dynex TVs
- LaCie ups the LaCinema Rugged ante with new HD version
Resources
Sections
WIN Network
- Autos
- Technology
- Lifestyle
- Gaming
- Entertainment
- Finance
- Sports
- Also on AOL
Reader Comments (Page 1 of 1)
Dave Pickett @ Nov 26th 2006 5:43PM
I'll have it done by tomorrow morning.
richard roundtree @ Nov 26th 2006 8:04PM
whats the first thing i need to do
Xavier @ Nov 26th 2006 5:45PM
h4x it to pr0n
Hexxeh @ Nov 26th 2006 6:00PM
I'll forward it to my site later. Can you get this PS3 to the UK?
Jess @ Nov 26th 2006 5:51PM
it should just be a matter of figuring out a loophole in fedora..
David @ Nov 26th 2006 5:59PM
That statement wins the "Easier said than done" award of the year.
Scabies @ Nov 26th 2006 5:56PM
"NO OTHER ALTERATION OF THIS PS3'S FILES IS PERMITTED."
Odd... is the index hosted from the PS3 itself? Suddenly the Always On design seems... undesirable
Hexxeh @ Nov 26th 2006 6:02PM
I'm connected to SSH as root. Who in gods name patched this server? o.o
Blake @ Nov 26th 2006 6:19PM
How did you do that, Hexxeh? SSH, thats 'secure shell', right?
Did you do that through a web browser?
Crazylink @ Nov 26th 2006 6:02PM
Someone put Goatse on it.
nick @ Nov 26th 2006 6:18PM
Great Challenge guys, thanks for the info... I'll try to inform some buddies in The Philippines if they know how to do this stuff... at least someone should have this in the Third world, not just build it..
(nicholas)
http://www.tingog.com
Hexxeh @ Nov 26th 2006 6:23PM
No I wrote a shell script that makes use of a recent pre-auth exploit. I don't really want a PS3 though. If I can hack it so easily, I don't want it to be a problem on my network.
The Downer @ Nov 26th 2006 6:36PM
What's that smell?
Hugh Jass @ Nov 27th 2006 12:07AM
You're saying you don't want the PS3 because Fedora is a security hazard...?
&& @ Nov 26th 2006 6:26PM
Mmm...Digg Effect = no loady.
Hexxeh @ Nov 26th 2006 6:35PM
Not loading because I just closed Apache. He's got it set to autorespawn though, so he obviously doesn't want me to disable access.
David Li @ Nov 26th 2006 7:31PM
Hmm, I noticed it's openssh 2.3 earlier today as well...
I probably should have look deeper for exploits for fixes mentioned in the 2.4 release notes :/
Anyways, congrats to you I guess.
weirdguy0101 @ Nov 26th 2006 6:39PM
I smell it too
David @ Nov 26th 2006 6:43PM
Well, if you don't wnat it but can hack it... I want it but can't hack it sooo.. let me know haha.
John G @ Nov 26th 2006 6:46PM
meh...
Ive got porn to look at and beer to drink
Chris McDowell @ Nov 26th 2006 6:50PM
yeah here too *sniff* *sniff*. I think it crashed. Probably got swamped with requests and either crashed it or timed out.
David Li @ Nov 26th 2006 7:36PM
I meant the server is 4.3 ... now I feel stupid for getting the major version number wrong.
TheWakeUpCall @ Nov 26th 2006 7:53PM
Aww someone's gonna take a PS3 of that poor innocent baby :( lol
kezeka @ Nov 26th 2006 7:57PM
I have no idea how to hack but i'll take it if someone gets it and doesnt want it....
Eli @ Nov 26th 2006 8:09PM
If you claim to have hacked in, but didn't want to actually win for some reason, then no, you haven't hacked in. You've just posted some comments claiming to have done so.
So, you know, go be lame somewhere else.
p70(y H^(k @ Nov 26th 2006 8:24PM
ha ha ha, the PS3 is located in Japan, opensource OS = easy hacks... FYI: hes useing a port generator that creates fake ports... only one out of thousands is the only open port. good luck.
David Li @ Nov 26th 2006 9:11PM
Oh, and btw, it has been dugg.
So, there are already idiots hammering away at this.
xlandaux @ Nov 26th 2006 9:33PM
cute kitten in the background!
it must be a clue!
jesse.bower @ Nov 26th 2006 10:37PM
The remote X Font Service for TrueType (xfstt) might be vulnerable to a buffer
overflow which may lead to code execution or a denial of service.
An attacker may use this flaw to gain root on this host
remotely or prevent X11 from working properly.
*** Note that Nessus did not actually check for the flaw
*** so this might be a false positive
Solution : Upgrade to the latest version of xfstt
Risk factor : High
CVE : CVE-2003-0581
BID : 8182
http://marc.theaimsgroup.com/?l=bugtraq&m=105829691405446&w=2
David Li @ Nov 26th 2006 11:13PM
@ jesse.bower
Um, that's over 3 years old. Plus he slapped a copy of Fedora Core 5 on the PS3. I don't think it's possible that's still an issue.
Come to think of it, nessus will be almost useless because all of the ports are open (PortSentry or something like that).
Josh Z @ Nov 26th 2006 10:56PM
that kid is WAY to big for a pacifier .. maybe the parents need to stop fooling around online and do some good ole ween action.
stoney @ Nov 27th 2006 8:50AM
It's a clever (600$) attempt to find someone to break through a form of security the author (or company) is testing for vulnerabilities and/or believes cannot be compromised. By hacking the ps3 (really, the os/packages), it's merely providing a wealth of research information for the little 600 cost. The ps3 crowd seems like a likely group to find such talent, and the prize is attractive.
Just my theory anyway...
Jason C @ Nov 27th 2006 6:34PM
Yeah, easier said than done. Notice that he runs a net hosting company and claims "Privacy Proection". He probably wants to test his new security system and I guarantee you no one is gonna crack it, I just gave it a whirl and it seems to have some pretty solid security. If anyone DOES land up cracking it then, we're in trouble because that means we have a pretty hard-core hacker thas pretty much capable of anything.
scott @ Nov 28th 2006 4:01AM
Dudes, the unit may have a 160GB HDD installed, but it's still a 20GB model (read box in photo); thus, no WiFi and no memory card reader. Super lame.
Hiro @ Dec 2nd 2006 9:24PM
But come'on...it's FREE...
How is that lame?
Jakeon @ Dec 26th 2006 11:10PM
"I hAxeD it! lol"
-....is what were gonna hear from twenty annoying posers with no life.
ha....not funny...
anyways this guy is in Japan!
Japaneese people are like super smart! The 'security tester' idea probably is it.
:(
Richard @ Jan 11th 2007 6:16PM
this thing still alive? can i just have this thing please? =D wanna see my picture?
http://img.photobucket.com/albums/v492/phogood4u/12-01-06/12-13-06/faceps3.jpg
Rebel2206 @ Apr 2nd 2007 11:41PM
i know im a bit late for this but i have some usefull info if you want to hack this ps3
--------------------------------------------------------------------------------
IP : 61.202.238.51 Neighborhood
Host : ?
Country : Japan
64.246.26.64 SOA ns12.zoneedit.com
- SOA soacontact.zoneedit.com
PING 61.202.238.51 (61.202.238.51) 56(84) bytes of data.
64 bytes from 61.202.238.51: icmp_seq=1 ttl=41 time=273 ms
64 bytes from 61.202.238.51: icmp_seq=2 ttl=40 time=287 ms
64 bytes from 61.202.238.51: icmp_seq=3 ttl=41 time=272 ms
3 packets transmitted, 3 received, 0% packet loss, time 2006ms
rtt min/avg/max/mdev = 272.779/277.688/287.070/6.663 ms