Hacking Discussion TSEC is broken

[Deleted User]

I hope SX gets stuck in 6.2 forever.

Any idea what else she's holding on the fw 6.2.0? Since the FW decryption keys for 7.0.x are not public and the vuln doesn't work in SMMU, TX would have to find a way to get the keys itself. This could take a long time.
I've also heard that sept is not so easy to fork

 

[DPyro]

Absolutely nothing for a long ass time yet.

Someone else could find the same exploit and decide to release.

 

[aos10]

Any idea what else she's holding on the fw 6.2.0? Since the FW decryption keys for 7.0.x are not public and the vuln doesn't work in SMMU, TX would have to find a way to get the keys itself. This could take a long time.
I've also heard that sept is not so easy to fork

Because atmosphere team made something with it, if TX tried to copy it, the atmosphere logo will appear when launching sxos, and it will looks weird for them, i think that's the reason.

 

[Lacius]

Any idea what else she's holding on the fw 6.2.0? Since the FW decryption keys for 7.0.x are not public and the vuln doesn't work in SMMU, TX would have to find a way to get the keys itself. This could take a long time.
I've also heard that sept is not so easy to fork

Because atmosphere team made something with it, if TX tried to copy it, the atmosphere logo will appear when launching sxos, and it will looks weird for them, i think that's the reason.

The only public way to boot CFW on 7.0.x is with sept. While sept is open source, it won't work unless it's encrypted with private TSEC keys so that TSEC can decrypt sept itself. TX has two choices:

1. Somehow find a way to get the TSEC keys themselves, which might take a long time (if ever), since all methods of doing so are private.
2. Use the version of sept that has already been encrypted and released, which includes the Atmosphere logo.

 

[_hexkyz_]

What does this mean for us?

It means that CFW will be assured via Atmosphere's Sept payload regardless of any new updates to the TSEC payload.

 

[Picalo]

Is it safe to say that even the patch console now have a chance (if released)?

 

[Snomannen_kalle]

The TSEC is in the patched units too, so this applies to the patched units as well. However, you still need a way to enter RCM so you can push a payload -- a way to do this exist, but it is not accessible to the public yet

 

[8BitWonder]

The TSEC is in the patched units too, so this applies to the patched units as well. However, you still need a way to enter RCM so you can push a payload -- a way to do this exist, but it is not accessible to the public yet

You can enter RCM on ipatched units the same as you would on unpatched units.
The problem is that current payloads can't be pushed unless another exploit similar to fusee-gelee is found.

 

[Snomannen_kalle]

You can enter RCM on ipatched units the same as you would on unpatched units.
The problem is that current payloads can't be pushed unless another exploit similar to fusee-gelee is found.

You are right, my bad!

 

[ZachyCatGames]

and never released aside from Sept obfuscated delivery

Sept doesn't and never will use any exploits

--------------------- MERGED ---------------------------

The problem is that current payloads can't be pushed unless another exploit similar to fusee-gelee is found.

Or you somehow get a signed payload

Someone else could find the same exploit and decide to release.

That would be terrible for the scene

 

[smf]

The only public way to boot CFW on 7.0.x is with sept. While sept is open source, it won't work unless it's encrypted with private TSEC keys so that TSEC can decrypt sept itself. TX has two choices:

1. Somehow find a way to get the TSEC keys themselves, which might take a long time (if ever), since all methods of doing so are private.
2. Use the version of sept that has already been encrypted and released, which includes the Atmosphere logo.

If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting. Like f0f got taken to court when they released the keys for the ps3, even though they didn't do anything piracy related with it.

 

[ZachyCatGames]

If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting.

No... that would make no sense

But then again this is Nintendo, so I suppose anything's possible...

 

[Lacius]

If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting. Like f0f got taken to court when they released the keys for the ps3, even though they didn't do anything piracy related with it.

Those are different issues entirely.

 

[V-Temp]

If Nintendo ever take action against TX then it will be interesting if they include SciresM, due to TX using atmosphere & fusee gelee code for exploiting. Like f0f got taken to court when they released the keys for the ps3, even though they didn't do anything piracy related with it.

lol

Sept doesn't and never will use any exploits

Never said it did, its a delivery vehicle. I think you may have misinterpreted my meaning as "it is delivering an exploit" which it isn't. I simply meant that it is a method of obfuscating the need to ever release an exploit by using sept as delivery for all laymen usage.

 

[Picalo]

So I guess now it's just a waiting game to see
If the TSEC hack is implemented or released
Or kep from the public

Since it applies to more than the switch, what are the chances that Mike and his team would release something?

Is it a good time to buy a patch switch if I am unable to locate an unpatched switch ????

 

[ZachyCatGames]

So I guess now it's just a waiting game to see
If the TSEC hack is implemented or released
Or kep from the public

Since it applies to more than the switch, what are the chances that Mike and his team would release something?

Is it a good time to buy a patch switch if I am unable to locate an unpatched switch ????

They won't release it, there's literally no reason for them to do so

 

[Azmort]

Just one word: Genius.

 

[Lacius]

So I guess now it's just a waiting game to see
If the TSEC hack is implemented or released
Or kep from the public

Since it applies to more than the switch, what are the chances that Mike and his team would release something?

Is it a good time to buy a patch switch if I am unable to locate an unpatched switch ????

You do not want to buy a patched Switch. Buy an unpatched system. The fact that the TSEC is broken does nothing to help patched Switch systems in particular.

 

[Treeko]

They won't release this exploit voluntarily, and if Nintendo decides to use TSEC again in a new firmware update then they will be forced to use this new exploit aswell probably implement it in sept, pretty much unpatched switches are future proof now, Nintendo can no longer delay day 1 cracks for new firmware's anymore.

Which kinda makes me believe we'll be seeing some kind of AP implementation in games like the ds era sooner or later.

 

[Picalo]

How can I buy an unpatched switch without seen the serial number?

All my local stores have the patch #