Thread: PRS-T2 Hacking the T2
View Single Post
Old 10-08-2012, 06:40 PM   #52
jotas
Connoisseur
jotas has a complete set of Star Wars action figures.jotas has a complete set of Star Wars action figures.jotas has a complete set of Star Wars action figures.jotas has a complete set of Star Wars action figures.jotas has a complete set of Star Wars action figures.
 
jotas's Avatar
 
Posts: 73
Karma: 414
Join Date: Jul 2009
Location: virtual
Device: who knows?
Quote:
Originally Posted by porkupan View Post
The updates were not signed until the PRS-G1 and PRS-T1/RU were introduced. In the PRS-T1/US and PRS-T1/JP the updates were unsigned. We managed to find an exploit in the MSC API program on the reader (switcher), which allowed us (for the Russian T1) to overwrite the Recovery Rootfs and Diags Rootfs with the ones that accepted packages signed by my key as well. Also allowed to accept unsigned images for SD boot. However, Sony has closed the hole in switcher in the T2 (amazing that they found the exact problem in their logic, which leads me to believe that they used a code analyzer tool of some sort, or stole my code that has not been published). So, a new exploit is now needed.
Hello,

And about the new T2 feature for wireless firmware updates? Put a sniffer here, as well as try to debug how to download, install and reboot process is done.

(?)

REgards.
jotas is offline   Reply With Quote