Front-page
Updated
RIP CDNSP/FreeShop as Nintendo steps up security
In Switch Hax Weekly 2 we noted that firmware and game updates had moved from the atum to the dauth servers, meaning that your console needs to be authenticated to download them. This meant that banned users would have to get updates from elsewhere than their own console.
Now it seems Nintendo has stepped up their security even further, verifying that your console actually owns the games before they can be downloaded. Certs that attempt to request game downloads that belong to consoles that don't own them will be banned immediately. This seems to only affect PC downloads for now, with private certs on FreeShop still working for the moment.
Discussion thread here.
New information
6.0 seems to have introduced security similar to the 3DS: the servers know when a certificate is on the latest firmware and will immediately ban if it is found to be requesting anything other than system updates. The mechanism is unknown.
The certs that were banned instantly were not on 6.0.
Now it seems Nintendo has stepped up their security even further, verifying that your console actually owns the games before they can be downloaded. Certs that attempt to request game downloads that belong to consoles that don't own them will be banned immediately. This seems to only affect PC downloads for now, with private certs on FreeShop still working for the moment.
Liam#7089 via Switch Hacks Discord said:@everyone RIP all certs. Nintendo has finally implemented Dauth when downloading games, thus banning your cert the moment it detects your trying to get one you don't own. If you want games from this point on, you will have to use torrents made from CDNSP or ---. DO NOT test any certs from this point on, you'll have them insta-banned.
Evan#0001 via Switch Hacks Discord said:We are still not 100% sure it is dauth. From new information it is a might be a new token X-Nintendo-DenebEdgeToken More information soon.
Discussion thread here.
New information
So since the last thread was locked, a new development has been discovered. Turns out that the CDN server now only accepts requests for everything except system updates if you're on firmware 6.0 and the only way to be on firmware 6.0 without hacks is by going online and downloading the update. So until someone updates to firmware 6.0 officially and dumps their console's certificate, CDNSP is "dead".
6.0 seems to have introduced security similar to the 3DS: the servers know when a certificate is on the latest firmware and will immediately ban if it is found to be requesting anything other than system updates. The mechanism is unknown.
The certs that were banned instantly were not on 6.0.
Attachments
Last edited by Quantumcat,