Incognito

Draxzelex · Apr 6, 2019

blahblah said:
You are clearly non technical if you genuinely believe stuff like 'Your chances of being in a car crash are higher than Nintendo adding a new URL'. That's a garbage opinion and borderline unrelated to my actual argument - the real risk comes from 90DNS having an outage.

You are not sufficiently technical for me to argue with, so I'm going to ignore your replies going forward.

That makes no sense. You just made a statement on how the possibility of one is supposedly greater than the other with no evidence or proof even though I have provided real-life examples where the opposite was true.

ehnoah · Apr 6, 2019

Is Incocnito actually bulletproof and why we cant get banned? Cant they just ban our SN if they detect fishy stuff?

blahblah · Apr 6, 2019

ehnoah said:
Is Incocnito actually bulletproof and why we cant get banned? Cant they just ban our SN if they detect fishy stuff?

Depends on how you use it. If you setup an emuNAND, don't connect it to the Internet at first (delete wifi settings on OFW before creating the emuNAND) and run Incogntio and reboot, you can now do whatever you like in that emuNAND without risk of ban.

ehnoah · Apr 6, 2019

blahblah said:
Depends on how you use it. If you setup an emuNAND, don't connect it to the Internet at first (delete wifi settings on OFW before creating the emuNAND) and run Incogntio and reboot, you can now do whatever you like in that emuNAND without risk of ban.

What exactly does Incocnito? I mean if you Play a Backup or simlar. Cant they Just Ban the MAC if the prod. is empty?

blahblah · Apr 6, 2019

ehnoah said:
What exactly does Incocnito? I mean if you Play a Backup or simlar. Cant they Just Ban the MAC if the prod. is empty?

Please read my prior post, it answers your question: https://gbatemp.net/threads/incognito.531924/page-11#post-8582811

To quote the relevant section: "Incognito is different. Incognito doesn't ban the Switch, it removes the Switch's ability to authenticate with Nintendo entirely. The Switch can't send data to Nintendo because the Switch can't establish a connection to Nintendo. The Switch can't get far enough into the authentication flow to learn if it is banned or not."

ehnoah · Apr 7, 2019

blahblah said:
Please read my prior post, it answers your question: https://gbatemp.net/threads/incognito.531924/page-11#post-8582811

To quote the relevant section: "Incognito is different. Incognito doesn't ban the Switch, it removes the Switch's ability to authenticate with Nintendo entirely. The Switch can't send data to Nintendo because the Switch can't establish a connection to Nintendo. The Switch can't get far enough into the authentication flow to learn if it is banned or not."

So basically even with a legit Game you could not Connect, so basicly you Run bought Games on real FW while you do all shady stuff Offline or with the LAN Tool on Emunand.

linuxares · Apr 7, 2019

if 90DNS have an outage, the DNS system won't work at all. So I don't really see the point you bring up about it @blahblah
But yes, both have their strong suits and weaknesses.

blahblah · Apr 7, 2019

ehnoah said:
So basically even with a legit Game you could not Connect, so basicly you Run bought Games on real FW while you do all shady stuff Offline or with the LAN Tool on Emunand.

Correct.

--------------------- MERGED ---------------------------

linuxares said:
if 90DNS have an outage, the DNS system won't work at all. So I don't really see the point you bring up about it @blahblah
But yes, both have their strong suits and weaknesses.

It's possible for 90DNS to have a different type of outage, not just a 'service is down, can't connect' one. It's possible for them to have a failure where they are still replying to DNS requests but are not blocking Nintendo request.

linuxares · Apr 7, 2019

blahblah said:
Correct.

--------------------- MERGED ---------------------------

It's possible for 90DNS to have a different type of outage, not just a 'service is down, can't connect' one. It's possible for them to have a failure where they are still replying to DNS requests but are not blocking Nintendo request.

I don't know what kind of server @AveSatanas run, but it's very unlikely that would happen on a Linux DNS server.

blahblah · Apr 7, 2019

linuxares said:
I don't know what kind of server @AveSatanas run, but it's very unlikely that would happen on a Linux DNS server.

The point is that it is a possible thing to occur, while Incognito removes third party failures from the equation.

linuxares · Apr 7, 2019

blahblah said:
The point is that it is a possible thing to occur, while Incognito removes third party failures from the failure.

However Incognito won't be able to work on Atmosphere no longer.

By default, BIS partitions other than BOOT0 are now read-only, and CAL0 is neither readable nor writable.
- Adding a bis_write flag for a title will allow it to write to BIS.
- Adding a cal_read flag for a title will allow it to read CAL0.
An automatic backup is now made of CAL0 on boot.
- fs.mitm maintains a file handle to this backup, so userland software cannot read it.
To facilitate this, fs.mitm now mitms all sessions for non-system modules; content overriding has been made separate from service interception.

So this application isn't viable for Atmosphere users no longer.

blahblah · Apr 7, 2019

linuxares said:
However Incognito won't be able to work on Atmosphere no longer.

By default, BIS partitions other than BOOT0 are now read-only, and CAL0 is neither readable nor writable.

Adding a bis_write flag for a title will allow it to write to BIS.

Adding a cal_read flag for a title will allow it to read CAL0.

An automatic backup is now made of CAL0 on boot.

fs.mitm maintains a file handle to this backup, so userland software cannot read it.

To facilitate this, fs.mitm now mitms all sessions for non-system modules; content overriding has been made separate from service interception.

So this application isn't viable for Atmosphere users no longer.

The changes you are talking about were made before Incognito was released. Just using a different CFW once to run Incognito works fine. Regardless, this kind of application (and, by extension, 90DNS) is not useful for Atmosphere users for the simple reason that it is intended for emuNAND style solutions. If you are mixing piracy (done offline) with legit play (done online) with the same NAND, you're going to get banned regardless.

Myron49485 · Apr 7, 2019

Thanks for the replies.

Draxzelex said:
Incognito does not help evade bans. It delays bans. It operates the same way as 90DNS by "temporarily banning" the console. The real purpose of features like this, Stealth Mode, and 90DNS is just a way to use FTP or other wireless functions without worrying about a ban but the problem is if your NAND isn't clean when you use this tool, you're merely delaying the inevitable. Once you restore your certificate, you risk a ban.

As for your other question, I believe it only removes the certificate but the OP can clarify if Incognito wipes out any more information.

If I restore the cert together with a clean backup (taken right after going offline, and before applying Incognito), then all subsequent data that is sent using CFW and Incognito might have a chance of being spoofed in the eyes of Nintendo, since the data does't contain the cert which cannot be spoofed.

Though one might say that the chance of the combination of data actually matching their records (MAC, Serial, ID, etc.) is incredibly low and likely not spoofed, resulting in a ban anyways. An ideal Incognito would be one that not only deletes the cert but also spoofs/ removes all other personal data. If Nintendo decides to counter this then it will become a cat and mouse game that never ends.

blahblah said:
90DNS and Incognito could not be more different. 90DNS attempts to block Nintendo urls/ips/etc. It's an approach prone to failure. One change from Nintendo, one address that was not blocked but should have been and you have a ban. Accidentally drop your Switch into a dock that has an ethernet adapter attached and a ban will arrive. 90DNS has an issue on their end, you get banned.

Incognito is different. Incognito doesn't ban the Switch, it removes the Switch's ability to authenticate with Nintendo entirely. The Switch can't send data to Nintendo because the Switch can't establish a connection to Nintendo. The Switch can't get far enough into the authentication flow to learn if it is banned or not.

It's a useful tool. Makes a good combo with emuNAND. Once you run Incognito, you don't have to worry about connecting to a different WiFi network by mistake/attaching a USB ethernet adapter/etc. Incognito remains until uninstalled.

Of course, like you said, one does need a clean image to setup emuNAND, once that functionality arrives in mainstream CFWs. No real avoiding that, other than reconstructing a NAND from scratch, which can be done....but is a lot of work.

Incognito is not a tool that allows you to have pirate stuff and legit stuff on one eMMC without getting banned.

I agree that an issue on their end can or change from Nintnedo can result in a ban. However I don't think server down times are an issue as the DNS setting is still in the Switch, hence no internet connection. Also, anyone using 90DNS must remember to apply the settings for wired connections, though it's not mentioned.

As for the Switch authenticating with Nintendo in order to send data, I don't know the inner workings of Nintendo, so I would just assume that Nintendo will log everything that is available to them. Even if it doesn't work this way now, it could change in the future, similar to how the telemetry domains that 90DNS blocks could be changed in a moment's notice.

Edit - already mentioned

blahblah · Apr 8, 2019

Myron49485 said:
Thanks for the replies.

As for the Switch authenticating with Nintendo in order to send data, I don't know the inner workings of Nintendo, so I would just assume that Nintendo will log everything that is available to them. Even if it doesn't work this way now, it could change in the future, similar to how the telemetry domains that 90DNS blocks could be changed in a moment's notice.

Edit - already mentioned

Such a change would defeat several different security systems that Nintendo built for the Switch. Such a change would - more importantly - require a system update. Unlike playing around with 90DNS, which they can do whenever they want.

Burorī · Apr 8, 2019

I tried restoring my prodinfo.bin and now my switch is stuck on the "Nintendo Switch" logo. Please tell me there is a way to fix this

Andalitez · Apr 8, 2019

GameCarton said:
I tried restoring my prodinfo.bin and now my switch is stuck on the "Nintendo Switch" logo. Please tell me there is a way to fix this

Restore prodinfo from previous nand backup

Burorī · Apr 8, 2019

Andalitez said:
Restore prodinfo from previous nand backup

I only have my original Prodinfo

Burorī · Apr 8, 2019

Andalitez said:
Restore prodinfo from previous nand backup

I did but it doesn't help

--------------------- MERGED ---------------------------

Oh nvm

SynnyG_R · Apr 10, 2019

Hi there !

First of all thanks for this awesome tools, look promising ! However before making the jump I wanted to ask several questions to be sure of everything:
- If I've well understood it allow you to connect your console to your network in order to use network based homebrew or to use ftp right ?
- Does the built in restore feature work ? I'm not planning to undo the changes, just wanted to know in case of
- Also is there any tutorials on how to restore the PRODINFO.bin file manually with HacDiskMount (which I just heard about) ? I've seen several message about people restoring it this way and I wanted to know

Thanks in advance and have a nice day

blahblah · Apr 10, 2019

SynnyG_R said:
Hi there !

First of all thanks for this awesome tools, look promising ! However before making the jump I wanted to ask several questions to be sure of everything:
- If I've well understood it allow you to connect your console to your network in order to use network based homebrew or to use ftp right ?
- Does the built in restore feature work ? I'm not planning to undo the changes, just wanted to know in case of
- Also is there any tutorials on how to restore the PRODINFO.bin file manually with HacDiskMount (which I just heard about) ? I've seen several message about people restoring it this way and I wanted to know

Thanks in advance and have a nice day

1. Yes.

2. Yes. To install or restore, use either SXOS (licensed or not licensed) or ReiNX.

3. If you need a tutorial, you probably shouldn't play around with HacDiskMount.

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

The inadequate, autocratic beast!

Well-Known Member

The inadequate, autocratic beast!

Well-Known Member

The inadequate, autocratic beast!

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

Well-Known Member

New Member

Well-Known Member

Similar threads

Popular threads in this forum