Linux on 360?

Discussion in 'Xbox 360 - Games & Content' started by Fudge, Nov 1, 2010.

Nov 1, 2010

Linux on 360? by Fudge at 11:38 PM (869 Views / 0 Likes) 9 replies

  1. Fudge
    OP

    Banned Fudge Remember that death is not the end, but only a tra

    Joined:
    Aug 26, 2009
    Messages:
    2,655
    Location:
    New York
    Country:
    United States
    In this article (http://en.wikipedia.org/wiki/Xbox_360_System_Software), it states that firmware 2.0.4552.0 fixed a Privilege escalation vulnerability in the Hypervisor that allowed non-signed code (such as Linux) to run on the Xbox 360, with direct hardware access. Was this really ever possible?
     
  2. JonthanD

    Member JonthanD GBAtemp Regular

    Joined:
    Jul 9, 2010
    Messages:
    279
    Location:
    Sitting
    Country:
    United States
  3. Fudge
    OP

    Banned Fudge Remember that death is not the end, but only a tra

    Joined:
    Aug 26, 2009
    Messages:
    2,655
    Location:
    New York
    Country:
    United States
    What I should have asked was what was the exploit before the JTAG hack?
     
  4. tk_saturn

    Member tk_saturn GBAtemp Psycho!

    Joined:
    Jan 26, 2010
    Messages:
    3,327
    Country:
    United Kingdom
    The King Kong Shader Hack I believe, there's plenty of technical pages on it.
     
  5. FAST6191

    Reporter FAST6191 Techromancer

    pip
    Joined:
    Nov 21, 2005
    Messages:
    21,746
    Country:
    United Kingdom
    Technically the JTAG/SMC hack and the shader memory thing are one and the same in terms of the vulnerability they exploit just activated in a different way (in this case as tk_saturn says the king kong shader hack).
    If you want a nice technical writeup then
    http://www.eurasia.nu/wiki/index.php/Free60JtagHack (scroll down to how does this all work)

    The main notable thing that happened between it was the timing attack.
     
  6. Fudge
    OP

    Banned Fudge Remember that death is not the end, but only a tra

    Joined:
    Aug 26, 2009
    Messages:
    2,655
    Location:
    New York
    Country:
    United States
    Thanks for the info on the shader exploit. Why did it never become as big as the JTAG/SMC hack? Oh yeah, what exactly did the timing attack do? Didn't it allow you to downgrade the dashboard kernel?
     
  7. FAST6191

    Reporter FAST6191 Techromancer

    pip
    Joined:
    Nov 21, 2005
    Messages:
    21,746
    Country:
    United Kingdom
    Mainly because it was cumbersome (the JTAG hack boots into hacked mode more or less instantly with basic extras while the shader hack took older hardware (even at the time), extra hardware and a minute or two (as well as some fiddling with buttons) to get to. I suppose above all though there were no rebooters so you were stuck playing old games.

    JTAG would have probably been even bigger though had it hit before MS closed the hole (although there was warning) and had the hack (plus rebooter) been around for all versions sooner (I recall several threads along the lines of "I am updating, I do not care about such things" only to be banned in a few weeks time).

    Timing was a downgrade thing (no efuses were blown this time around so you could download) but most used it to get their CPU keys with which to unban themselves and do fun things like region changing (or coupling with dual nand mods to have both big regions or Japanese if necessary)..
     
  8. Fudge
    OP

    Banned Fudge Remember that death is not the end, but only a tra

    Joined:
    Aug 26, 2009
    Messages:
    2,655
    Location:
    New York
    Country:
    United States
    The timing attack allowed region changing? When was it patched?
     
  9. FAST6191

    Reporter FAST6191 Techromancer

    pip
    Joined:
    Nov 21, 2005
    Messages:
    21,746
    Country:
    United Kingdom
    I am unsure when it was patched but as it mainly revolved downgrading to earlier kernels (since blocked by efuses). Basically if you can JTAG hack it you can use the timing attack but why would you as it takes more effort and does less than JTAG. More
    http://beta.ivancover.com/wiki/index.php/X...0_Timing_Attack

    The region change thing is more a function of having the keyvault/CPU keys and thus being able to decrypt the NAND (there are a few people with keyvaults in newer consoles that did such a thing when they thought the JTAG hack would not amount to much). Indeed it would probably see you face the banhammer but as far as I am aware if you have the CPU key you can change region on any 360 at any version (I am not sure about some of the new region protection as seen in Quantum theory).
     
  10. Fudge
    OP

    Banned Fudge Remember that death is not the end, but only a tra

    Joined:
    Aug 26, 2009
    Messages:
    2,655
    Location:
    New York
    Country:
    United States
    Thanks for answering my questions. Do you know anything about the new AP25 anti-piracy? I heard it was even in some older games. Is this true?
     

Share This Page