You Would Think Sony Knew Better Than To Install A Rootkit In The PS3 [Updated]
from the haven't-we-done-this-before? dept
As you probably remember, a few years back there was a huge mess when Sony Music (at the time, Sony BMG) was caught installing a rootkit via the DRM it used on CDs. That created a huge legal headache for Sony, with the company eventually agreeing to replace all those CDs. You would think that Sony, as a whole, would now be a lot more careful about such things. Yet, as TorrentFreak points out, an analysis of the new PS3 firmware suggests that there's a rootkit in there, which will allow Sony to control the PS3 device that you thought (incorrectly) that you bought. It's almost as if Sony is telling people to stop buying PS3s. Update: A lot of folks are claiming this isn't really a rootkit, and that the story has been blown out of proportion. Reading through the details suggest this is absolutely a possibility.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Reader Comments
Subscribe: RSS
View by: Time | Thread
[ link to this | view in thread ]
[ link to this | view in thread ]
[ link to this | view in thread ]
Re:
This goes way beyond that concept. If you own the hardware then you you are free to delete any of their s/w and replace it with your own. This allows them to delete your software and data.
Until you make the effort to understand that distinction your comments will continue to be irrelevant.
[ link to this | view in thread ]
Re: Re:
[ link to this | view in thread ]
Re:
Does not sound like they ask.
[ link to this | view in thread ]
Nice spin Mike. You labeled them guilty with no evidence whatsoever. Do you work for DHS?
[ link to this | view in thread ]
Back Door
The term people are looking for is "back door", which can be applied to makers of something giving themselves greater access to the thing than users are aware of or wish to permit.
[ link to this | view in thread ]
Re: Re:
What is being called a "rootkit" probably isn't anything like that, but it's a great buzzword that gets TD a few more views and a few most posts from the freetard children.
[ link to this | view in thread ]
Re:
Sony is essentially pissing away future customers, in order to get more money now. See how that's working for the bankers.
[ link to this | view in thread ]
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: Re: Re:
[ link to this | view in thread ]
Re: Back Door
[ link to this | view in thread ]
Re: Back Door
[ link to this | view in thread ]
Re: Re: Re:
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: Re: Re: Re:
well, there goes any relevance the concept of IP ever had :D
[ link to this | view in thread ]
Re: Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re:
[ link to this | view in thread ]
I will never forget!
I always remind others too!
sony owes me large.
[ link to this | view in thread ]
Not exactly a "rootkit"
What this code update appears to do (based on clicking a couple links and *reading*) is add the ability for PSN to execute some code on the PS3 at login time using this new fucntionality.
I seems the idea is: if the code fails to run, an invalid response is returned to the server, and PSN fails the connection.
In theory, something like that would prevent CFW circumvention of the new firmware while still allowing access to PSN, and Sony can change their payload regularly to prevent CFW from mimic'ing the response.
This would also give them the ability to brick or blacklist hacked consoles in the future (which I would think anyone hacking their machine and trying to connect to PSN would expect to happen...)
If you don't use PSN, I don't see the problem.
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re:
NY CLS Penal § 156.10 Computer trespass
A person is guilty of computer trespass when he or she knowingly uses [fig 1] , causes to be used, or accesses a computer [fig 2] , computer service, or computer network without authorization and:
1. he or she does so with an intent to commit or attempt to commit or further the commission of any felony; or
2. he or she thereby knowingly gains access to computer material.
[ link to this | view in thread ]
Re: Back Door
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re:
[ link to this | view in thread ]
forget the word 'suggest'?
did you miss the word 'suggests'? Mike wasn't at all making the accusation that there is, in fact, a root kit in the firmware.
[ link to this | view in thread ]
[ link to this | view in thread ]
Updated the post
[ link to this | view in thread ]
Re: Re:
So how do we fight back? Simple, stop buying PS3; you could even go so far as to boycott Sony altogether. I'm not calling for a Sony boycott (I own many of their products), but if PS3 is potentially compromised, don't use it. Simple.
[ link to this | view in thread ]
Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: Back Door
http://www.google.com/search?hl=en&rlz=1G1GGLQ_ENUS338&defl=en&q=define:Rootkit&am p;sa=X&ei=9jxLTbffFZDCsAOm-MDiCg&ved=0CBwQkAE
[ link to this | view in thread ]
If it looks like a duck, and walks like a duck, and quacks like a duck...
[ link to this | view in thread ]
Re: Re: Re:
What do you think about car diagnostics, can automakers make you go to only authorized mechanics now and make you pay a premium for doing it?
Do you like that?
[ link to this | view in thread ]
Re: Re: Re:
The license gives you the right to run their code on your hardware.
It doesn't give them the right to run other code on your hardware when you don't want them to.
Code that runs when the owner of the hardware doesn't want it to has a name - it is called malware and it is not legal.
[ link to this | view in thread ]
Rumours began flying on the interwebs earlier this week that the official 3.56 firmware upgrade for Sony's consoles gave the consumer electronics giant the ability to execute code on the PS3 as soon as a user goes online.
Sony can use the technology to verify system files or to look for home-brewed games, it was suggested. More sinister still, it was warned, the code can be updated without further firmware updates.
The more excitable elements of the gamer community as well as tech blogs and gaming sites cried foul over the move, with many describing it as the introduction of hidden "rootkit-style" functionality.
But Chris Boyd, a security researcher at GFI Security who has studied the security of online games for several years, points out the development is not new since Sony wrote the ability for it to do remote updates into its terms and conditions since at least 2006.
"It's been known for a while that a networked PS3 will contact Sony servers at start up (whether it has an active PlayStation network account on it or not), which performs various tasks related to error logs, updates and other activities," Boyd (aka Paperghost) told El Reg.
Anyone using a PS3 agrees in the terms of service to allow their console to perform these tasks.
Mark Russinovich found a rootkit in Sony CDs back in 2005, provoking a huge privacy outcry. This has led some enthusiasts and bloggers to suggest that history is repeating itself with the PS3 firmware upgrade.
The PS3 firmware upgrade is nothing like as malign, argues Boyd, who has spoken on X-Box and online gaming security at several security conferences. "Comparing a last ditch attempt at blocking hacks and custom firmware to the truly dreadful CD rootkit is mind boggling."
Sony bundled ill-conceived copy-protection on its music CDs that meant a rootkit was installed if they were played on Windows PCs. This created a vulnerability on affected machines later latched onto by malware writers. Sony withdrew the technology following an outcry.
Comparing this to the PS3 firmware update misunderstands what has actually been done or the practical risks of the move, according to Boyd.
"This is only really a concern if you're interested in modding - otherwise I'm not convinced there's a 'threat' as such," Boyd told El Reg. "I'm still waiting for someone to explain how this 'PS3 rootkit' could be used to run unsigned malicious code on a non-jailbroken box," he added.
Sony recently earned the enmity of the gamer and security communities by suing hackers who figured out a way to run unsigned code on PlayStation 3 consoles without the use of a dongle. The blogiverse has been inclined to ascribe the worst possible motives to anything Sony has done with a console since, regardless of whether it's actually new or how what it's doing sits against other potential threats.
Boyd, who has been vocal in criticising the lawsuits against the PS3 hackers such as geohot, nonetheless argues that gamers need to get a grip. "People will happily download homebrew from Basement Bob which could steal logins/credit card details, but code from the console maker is evil?"
[ link to this | view in thread ]
Rumours began flying on the interwebs earlier this week that the official 3.56 firmware upgrade for Sony's consoles gave the consumer electronics giant the ability to execute code on the PS3 as soon as a user goes online.
Sony can use the technology to verify system files or to look for home-brewed games, it was suggested. More sinister still, it was warned, the code can be updated without further firmware updates.
The more excitable elements of the gamer community as well as tech blogs and gaming sites cried foul over the move, with many describing it as the introduction of hidden "rootkit-style" functionality.
But Chris Boyd, a security researcher at GFI Security who has studied the security of online games for several years, points out the development is not new since Sony wrote the ability for it to do remote updates into its terms and conditions since at least 2006.
"It's been known for a while that a networked PS3 will contact Sony servers at start up (whether it has an active PlayStation network account on it or not), which performs various tasks related to error logs, updates and other activities," Boyd (aka Paperghost) told El Reg.
Anyone using a PS3 agrees in the terms of service to allow their console to perform these tasks.
Mark Russinovich found a rootkit in Sony CDs back in 2005, provoking a huge privacy outcry. This has led some enthusiasts and bloggers to suggest that history is repeating itself with the PS3 firmware upgrade.
The PS3 firmware upgrade is nothing like as malign, argues Boyd, who has spoken on X-Box and online gaming security at several security conferences. "Comparing a last ditch attempt at blocking hacks and custom firmware to the truly dreadful CD rootkit is mind boggling."
Sony bundled ill-conceived copy-protection on its music CDs that meant a rootkit was installed if they were played on Windows PCs. This created a vulnerability on affected machines later latched onto by malware writers. Sony withdrew the technology following an outcry.
Comparing this to the PS3 firmware update misunderstands what has actually been done or the practical risks of the move, according to Boyd.
"This is only really a concern if you're interested in modding - otherwise I'm not convinced there's a 'threat' as such," Boyd told El Reg. "I'm still waiting for someone to explain how this 'PS3 rootkit' could be used to run unsigned malicious code on a non-jailbroken box," he added.
Sony recently earned the enmity of the gamer and security communities by suing hackers who figured out a way to run unsigned code on PlayStation 3 consoles without the use of a dongle. The blogiverse has been inclined to ascribe the worst possible motives to anything Sony has done with a console since, regardless of whether it's actually new or how what it's doing sits against other potential threats.
Boyd, who has been vocal in criticising the lawsuits against the PS3 hackers such as geohot, nonetheless argues that gamers need to get a grip. "People will happily download homebrew from Basement Bob which could steal logins/credit card details, but code from the console maker is evil?"
[ link to this | view in thread ]
Re:
OBD-II
You don't own the software remember?
[ link to this | view in thread ]
Re: Not exactly a "rootkit"
Seems like we have the Masnick Effect going on again!
[ link to this | view in thread ]
Re: Updated the post
The argument that it isn't a rootkit basically boils down to saying it isn't because Sony buried permission for themselves to do this in their terms and conditions. In all other ways it's a rootkit.
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: Re: Re:
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: Re: Not exactly a "rootkit"
[ link to this | view in thread ]
Sensationalist headlines are more important than journalistic integrity these days I guess.
[ link to this | view in thread ]
[ link to this | view in thread ]
Re: Back Door
[ link to this | view in thread ]
Re:
Yeah, you can't have just anyone writing games for your system or modifying existing games. Look at what a disaster that's been for computers. Oh wait...
[ link to this | view in thread ]
Did anyone actually read the source?
I'm all for hacking and modding, but you have to understand there are consequences to doing so with a console like this. I modded my original xbox so I could install emulators on it and copy my games to the hard drive for faster loading. I never got online with it so it didn't matter to me. Now, I don't see a need to mod my PS3 since the benefit to me outweighs the consequence. I don't like that Sony is able to execute this code each time I connect, but if all it's doing is making sure I don't have a modded console I'm fine with it. The first time I notice stuff missing from my system (including files stored on the drive), THAT's when I'll have a problem with it.
[ link to this | view in thread ]
Re: Re: Re:
You are forgetting that if EULA's come into conflict with other law, they are null and void.
[ link to this | view in thread ]
Re: Re: Updated the post
[ link to this | view in thread ]
Re: Did anyone actually read the source?
Not when they could be using custom firmware to do anything from backup up their legally bought games to enabling running from the hard drive without a disc in the drive to running homebrew software to various other things.
[ link to this | view in thread ]
Re: Re:
As such, the NY CLS Penal § 156.10 Computer trespass is void in this case.
Then again, I do not know the value of silence in USA, but I know in France, this would mean agreeing to that line.
[ link to this | view in thread ]
Re: Re: Re: Re:
Can we file computer trespass charges against someone who accesses our system without our knowledge if the EULA was not in plain sight, and not readable on the package, if they upgrade our system?
This goes back to SONY and the removal of the secondary OS option.
[ link to this | view in thread ]
Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Did anyone actually read the source?
Instead, they do the wise thing: if you mod your console, if you are running odd programming, or if the version of the software doesn't match the real file size and requirements, then you are turfed. End of discussion. You can use your console as you want, you just can't use it on the PSN. You opted out.
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re: Not exactly a "rootkit"
Also the remote execution of code that suggests they are looking what is on the machine, which in the case of the PS3 has also the ability to store photos, audio, videos of ANYTHING the user creates or has rights to would in all likely come under scrutiny of high privacy laws, quiet enjoyment, and unauthorised access statutes (criminal and civil) especially in the EU.
The EULA has no legal basis what so ever since you can not sign away your statutory rights in any contract, especially one that is highly unilateral.
Sony have the ability to deny anyone access to their online network (PSN) for any legal reason since it is classified as their property space, though they do not have the right to deny anyone the use of their system in any other way that that user sees fit.
[ link to this | view in thread ]
Re:
its like you have just come out from whatever cave you have been living in for the past 30 years to come to this revelation.
there have been hit songs written about this fact that are old enough to be on the classic rock stations...
[ link to this | view in thread ]
Basically what they seem to say is there is no (known) security vulnerability such that people other than Sony can take over your machine, and Sony taking over your machine is "fine" since Sony forced everyone to agree to giving Sony control over their machine in their Terms of whatever agreement. I still don't get how anyone takes those "agreements" that are done under duress after money changed hands and without any form of understanding or consent seriously. I sure as hell don't. So my baby cousin pushed the X button on the stupid controller while some moronic demands were up there. Big whoop.
[ link to this | view in thread ]
Re: Re: Did anyone actually read the source?
as someone that enjoys the multiplayer aspect of some games its pretty frustrating when you empty an entire clip into someone, get 8 to 10 registered hits and they just saunter up to you and knife you while you are stuck reloading. and this happens with all the current checks in place.
im all for the idea that you own the hardware you bought, but im also all for the idea that if you mod it, you are willingly withdrawing yourself from online multi-player via official servers.
and while i have a huge problem with sony, microsoft and nintendo going all legal on those who have modded their hardware, i have no issue at all with any of them banning consoles. especially since its in the TOS that modded equipment is not allowed to connect.
[ link to this | view in thread ]
Re: Re: Re: Did anyone actually read the source?
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Re: Not exactly a "rootkit"
[ link to this | view in thread ]
Re: Re: Re: Re: Did anyone actually read the source?
If you want to use your PS3 with other operating systems, you cannot play online (because you must be upgraded). You have a choice.
Sony is obliged to address security concerns, otherwise you would be reading on TD how Sony allowed hackers to take over your PS3.
[ link to this | view in thread ]
Re: Re: Re: Re: Not exactly a "rootkit"
Mike also shoots brain-signals from his orbiting death station, so cinch that aluminum foil down Tight on your head and bedtime, ok?
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Did anyone actually read the source?
[ link to this | view in thread ]
Re: Re: Re: Re: Not exactly a "rootkit"
Every single bit of Wikipedia is supposed to be referenced from externally verifiable published material.
You can't put in things you think are true.
You can't put in the results of your own unpublished research, even if it is true.
You can't put in opinions or personal attacks against living persons -- even if you really, really hate them, and even if they really, really are bad guys.
And no, a link to a pseudonymous comment in a blog does not constitute a reputable source.
[ link to this | view in thread ]
Re: Re:
For a bit older example, Try the Spanish American War.
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Did anyone actually read the source?
People might be able to use their own property as they see fit = giant security hole
[ link to this | view in thread ]
Re:
[ link to this | view in thread ]
Falsehoods
[ link to this | view in thread ]
STOP BUYING SONY PRODUCTS OR THEY WILL NEVER GO AWAY AND GET THE HELL OUT OF MY PURCHASED PRODUCTS.
ROOTKITS ON AUDIO CDS
ROOTKITS ON DRM - SECUROM
THIS COMPANY IS SHADY, ANYONE DOING BIZ WITH THEM DESERVERS WHAT THEY GET SINCE IT HAS BEEN KNOWN SINCE 85 THAT THEY HAVE NO RESPECT FOR THEIR CUSTOMERS.
BOYCOTT SONY!
BOYCOTT SONY!
BOYCOTT SONY!
BOYCOTT SONY!
[ link to this | view in thread ]
Re: Falsehoods
And Just for your consideration...WHY are you renting a PS3?
Since, according to their logic, you don't own it.
You are just responsible for the repair costs it might need.
But if you want to play PS3 games, you must rent it from them, on a longterm basis.
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re: Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Did anyone actually read the source?
[ link to this | view in thread ]
Re: Re:
[ link to this | view in thread ]
Re: Re: Re: Re: Re: Re:
If I am remembering correctly, anyone can walk in front of a grand jury and file as a private citizen. If the DA or prosecutor fails to follow through there is always the lawyers disciplinary board or committee.
[ link to this | view in thread ]
Re: Re: Re:
> grant authorization...."
Just because I grant authorization at some point doesn't mean I can never revoke it.
[ link to this | view in thread ]
Re: Re: Re:
This is something I find fascinating with the Pro-IP crowd.
They want Intellectual Property to be considered property when they own it, but want it to be considered something else when they sell it to an end user.
When I buy real property, say a car, I am free to modify it, tear it apart to see how they built it, or whatever.
When I purchase Intellectual property, then all of a sudden there all these restrictions placed on me about what I can or cannot do.
It's like saying "We want Intellectual Property to be considered property ONLY when it benefits us."
[ link to this | view in thread ]
Re: Re: Re: Re:
[ link to this | view in thread ]