Homebrew nds-constrain't - Taking advantage of a flaw in the Nintendo DS(i) SSL library

Ericthegreat · Nov 7, 2018

tech3475 said:
I'm not familiar with those hacks, never cared for spotpass.

The reason why MAC address filtering is not recommended as a security measure is because they can be sniffed and spoofed.

I wasn't talking WEP vs MAC but, again, in general and in the context of open wifi.

Time to get tendonitis with MKDS.

KazoWAR · Nov 7, 2018

PRAGMA said:
Right but it doesnt need any devices to set a DNS? Am I missing something? The other methods only require you to set a DNS Too

You can set a DNS, and try to connect to a custom server, but the game will refuse it since its uses SSL. you need to patch the game to remove SSL. This tricks the game into accepting the SSL connection even though its not official server.

barronwaffles · Nov 7, 2018

PRAGMA said:
Right but it doesnt need any devices to set a DNS? Am I missing something? The other methods only require you to set a DNS Too

The previous methods also required either a cheat device or flash cart, this exploit removed that requirement.

PRAGMA said:
No game supports WPA. I do believe there are mobile hotspot applications that allow you to make a WEP connection (same with PC versions)

DSi titles and the few DSi-enhanced DS games support WPA.

As for the rest of the post - the majority of 'guest' networks are isolated, protecting the rest of your network from intrusion.
If you're capable of configuring the network further then rate limiting and reducing the radio power level to something suitable is advisable.

zerofalcon · Nov 7, 2018

Nice! Already tried mkds with a 3dsxl and a fat nds using friend code registration. Working as instructed.

LightyKD · Nov 7, 2018

Hell yeah! The year I decide to get 3DS consoles we get a hackless return of DS online gaming!

MrLucariox · Nov 7, 2018

Nice work! I can play Pokemon Platinum online now

Kwyjor · Nov 7, 2018

I suppose this means the old Pokemon GTS (the one that could give you any arbitrary Pokemon just by connecting) will be up and running again too.

A silly question, but someone's bound to ask: are we next going to see a DSi eshop that will allow installation of software to an unmodified DSi? Or would that be too nuts?

PRAGMA · Nov 7, 2018

Well god damn, it worked (Using an Emulator):
https://streamable.com/5w0zh
(Theres me connecting - it takes a good 2 minutes, i timed it)

Not kicking me out of Mystery Gift!

The server owner should make us all a free mystery gift (not anything too powerful, maybe the Shaymin ticket for D/P/Pt since we never officially got it yet we were meant to, would be AMAZING)

WAIT WHAT THE FUCK!

https://streamable.com/8bwd8

Took again about a minute, but it WORKED!!!!
HOLY DARN

!!!!!!!!!
https://streamable.com/h2ngu

TUTORIAL:
https://gbatemp.net/threads/how-to-...cation-original-hardware-and-emulator.522676/

seseiSeki · Nov 7, 2018

I recently discovered Final Fantasy Crystal Chronicles - Echoes of Time. I can't wait to play it with my friends.
One question though. Does this work on the Wii too? I think Final Fantasy Crystal Chronicles - Echoes of Time is probably the only game that supports cross play between Wii and DS.

Plstic · Nov 7, 2018

he last time I tried crystal chronicles it had terrible desync.

duwen · Nov 7, 2018

Beyond awesome!
...literally a game changer!

My deep admiration and respect to everyone involved in the years of research and work that led to this.

Zense · Nov 7, 2018

seseiSeki said:
I recently discovered Final Fantasy Crystal Chronicles - Echoes of Time. I can't wait to play it with my friends.
One question though. Does this work on the Wii too? I think Final Fantasy Crystal Chronicles - Echoes of Time is probably the only game that supports cross play between Wii and DS.

I actually finished that whole game through the alt-wfc servers on DS without any problems. Did it 2-player though. Don't know if any more players would lead to problems.

NoNAND · Nov 7, 2018

Sweet!
I posted about this on a gaming group om facebook
Lets hope that they will try to use this

Cyan · Nov 7, 2018

Are the Wii, WiiU and Switch vulnerable too ?
are their CA flag to allow intermediate cert set to true or false ?

How dangerous it can be for people using a DNS to filter nintendo's url if the server can chain-crypt (and therefore decrypt, right?) the transmitted SSL data? the DNS server acts as MITM?

Noctosphere · Nov 7, 2018

ok, so... what would happen if I use a rom hack on these server?
Something like Sacred Gold

Brigand · Nov 7, 2018

Well I know what I'm doing on the weekend!

Noctosphere said:
ok, so... what would happen if I use a rom hack on these server?
Something like Sacred Gold

Honestly, it would probably work. I'll try it when I get the chance

Noctosphere · Nov 7, 2018

Brigand said:
Well I know what I'm doing on the weekend!

Honestly, it would probably work. I'll try it when I get the chance

dont get banned

Minox · Nov 7, 2018

So this works with any DS game? Bomberman DS or Clubhouse Games anyone?

Larsenv · Nov 7, 2018

Cyan said:
Are the Wii, WiiU and Switch vulnerable too ?
are their CA flag to allow intermediate cert set to true or false ?

How dangerous it can be for people using a DNS to filter nintendo's url if the server can chain-crypt (and therefore decrypt, right?) the transmitted SSL data? the DNS server acts as MITM?

No, they are not vulnerable. Nor is 3DS.

The Real Jdbye · Nov 7, 2018

smf said:
Some modern routers fix some of the wep exploits, so it goes back to being really slow to hack.

If your router supports guest mode then it's pretty safe to use wep and manually change your key regularly.

You may be able to come up with firewall rules so that even if someone does hack your key, then all they could use it for is playing ds games.

I would just suggest to isolate the guest network from the rest of the network, and to turn it off whenever it's not in use. Obviously use MAC address filtering as well. A lot of routers won't even let you set WEP these days though leaving the only option an open network. Not that it makes a whole lot of difference if all you're using it for is WFC. Anyone that wants to get in will get in either way, it'll just take them longer if it's WEP. Changing MAC address is a 2 second job and can be done on most devices, even smartphones.

Larsenv said:
No, they are not vulnerable. Nor is 3DS.

Also, please try our DNS if you want, it works pretty well: 164.132.44.106

What's different about WFC on the Wii that makes it not vulnerable? Just different SSL code on the Wii side?

MarKSlasH · Nov 7, 2018

seseiSeki said:
I recently discovered Final Fantasy Crystal Chronicles - Echoes of Time. I can't wait to play it with my friends.
One question though. Does this work on the Wii too? I think Final Fantasy Crystal Chronicles - Echoes of Time is probably the only game that supports cross play between Wii and DS.

It is actually possible to play between DS and Wii version of the game over Wiimmfi.

Homebrew nds-constrain't - Taking advantage of a flaw in the Nintendo DS(i) SSL library

Not New Member

Well-Known Member

Well-Known Member

Well-Known Member

Future CEO of OUYA Inc.

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Guru Meditation Error

Old Man Toad

Well-Known Member

Give me back my legions!

GBATemp's lurking knight

Nova's Guardian

Well-Known Member

Nova's Guardian

Thanks for the fish

Dr. Wii, Ph.D

*is birb*

Active Member

Similar threads

Popular threads in this forum

is birb