Hacking Suggestion [IMPORTANT] Possible Nintendo server changes to block web applets from working

[Deleted-442439]

There have been several reports of users not being able to use the web applets without updating regardless of FW, DNS settings and several other factors, making it impossible to use the HBL and SwitchbruDNS.

This has now been investigated by devs over at the Reswitched discord and we know the following:

NeedsUpdateVulnerability is a function in the ns:vm service in the NS module.

It seems that in systems with the issue it is set to 1, while "normal" systems have the value 0.

When any of the web applets open they will check that value, if it is set to 1 a update will be needed, this update prompt can't be cleared by going into recovery mode making it impossible to launch the browser, and seems to be a issue on all FW.

We do not yet know how this value was changed, but as the DNS servers don't block all servers it is suspected that Nintendo have made a undocumented server to change this value. (this is speculation) regardless it would be smart to now completely disable internet (airplane mode) until the cause is found. (If you still plan to block updates).

What we do know: This issue is standard on all new Switches shipping on FW 4.1.0+ (see image 2)

Is it patcheble?

Yes, but right now Fusee does not have sdMMC support, so the only way now is to patch it through running Linux on the Switch and then applying a patch from there. Obviously that is not a easy solution, but until more is understood we have to wait.

 

[Taffy]

Will current non-affected users get affected by this? Or are we safe?

I mean, as long as we don't update

Also I'm posting this from my switch, which is actually my internet lifeline (long story)

Should I disconnect for a while?

 

[Stercate79]

hey, i'm one of the victims!

 

[Resaec]

regardless it would be smart to now completely disable internet (airplane mode) until the cause is found. (If you still plan to block updates).

Should I disconnect for a while?

No, update right now /s

 

[Leonidas87]

Will current non-affected users get affected by this? Or are we safe?

I mean, as long as we don't update

Also I'm posting this from my switch, which is actually my internet lifeline (long story)

Should I disconnect for a while?

I was not effected today and then as of about an hour ago I'm having this issue with no solution as of yet. Hoping we get something not as difficult as setting up Linux because I have not gotten Linux running.

 

[The3rdknuckles]

Well it’s a good thing I haven’t tried to run any HB in a while on my 3.0.0 switch. So no update for me to clear. I hope devs are able to help out those who aren’t as lucky or we get the soft mod CFW soon as everyone can enjoy HB again.

 

[Deleted-442439]

Will current non-affected users get affected by this? Or are we safe?

I mean, as long as we don't update

Also I'm posting this from my switch, which is actually my internet lifeline (long story)

Should I disconnect for a while?

You should disconnect, we don't know how this works, but it seems more and more users are having the issue, if you don't you will be forced to use a hardmod.

--------------------- MERGED ---------------------------

Well it’s a good thing I haven’t tried to run any HB in a while on my 3.0.0 switch. So no update for me to clear. I hope devs are able to help out those who aren’t as lucky or we get the soft mod CFW soon as everyone can enjoy HB again.

The problem is softmod CFW will be impossible without being able to use the browser, so everyone must turn of all wifi until we know more, even if u are on lower fw.

 

[Darklinkreturns]

hey, i'm one of the victims!

Same! We should start a club. Or a band.

 

[Leonidas87]

Same! We should start a club. Or a band.

What a lonely depressing bunch we will be in that band

 

[Rune]

The problem is softmod CFW will be impossible without being able to use the browser, so everyone must turn of all wifi until we know more, even if u are on lower fw.

So as things stand, is every OFW version on the same boat now?

And is the HBL unusable on all OFWs at this stage?

 

[subcon959]

Give up Nintendo, there's nothing you can do to stop hax. Forcing everyone to use a jig is hardly a win.

 

[Deleted-442439]

So as things stand, is every OFW version on the same boat now?

And is the HBL unusable on all OFWs at this stage?

Yes. If the value has been changed it will be, if not HBL will still work, but could be patched any second you are using the DNS... so stay offline.

 

[Rune]

I have to admit. As a owner of a 3.0 Switch, my jimmies are slightly rustled.

 

[Resaec]

So as things stand, is every OFW version on the same boat now?

And is the HBL unusable on all OFWs at this stage?

Yes. If the value has been changed it will be, if not HBL will still work, but could be patched any second you are using the DNS... so stay offline.

That is, if you use a DNS that blacklists... Using a whitelist DNS would solve this problem

 

[Deleted-442439]

That is, if you use a DNS that blacklists... Using a whitelist DNS would solve this problem

In theory, but as I said we don't know what is triggering it, and there are no whitelist DNS's live right now, so offline is the only option.

 

[aykay55]

I’m on 5.0.2, it works perfectly for me. Mind you I’ve set my secondary DNS to 1.0.0.1 so yeah.

 

[Resaec]

In theory, but as I said we don't know what is triggering it, and there are no whitelist DNS's live right now, so offline is the only option.

You are right... It might use an IP instead of a hostname and circumvent the DNS completely, too.
Offline is the best choice, second is an offline network for the switch only hosting HBL.

 

[Leonidas87]

I’m on 5.0.2, it works perfectly for me. Mind you I’ve set my secondary DNS to 1.0.0.1 so yeah.

You are updated so there would be no reason for you to be receiving an update message. Blocking you from using the dns

 

[Deleted member 191657]

If all of this is true, I would advise everyone to use PegaSwitch with an Access Point with no internet access.

For example if you own a Wi-Fi USB dongle you could forward it to a VMWare VM and create an access point from there and unlink the VM from your main connection

 

[Deleted-351540]

hey, i'm one of the victims!

Hey, me too!

I updated. But I was on 5.0.1 anyway, so...