Microsoft Banning 360 Firmware Modders?

arcon5 writes "After several months of silence it was more or less accepted that Microsoft wasn't going to do anything about the firmware hacks that allow Xbox 360s to play backups. Rather surprising, considering the 'inventor' of the hack confirmed in March already that the mods are easily detectable, and the reports that piracy is running rampant in countries like China. It appears that Microsoft is finally taking action against them though, although they may be hitting the wrong persons." Best part of that article is the firmware chip encased in epoxy.

Banning 360 modders?

[FooAtWFU (699187)]

That's a lot of modders, but it's not really that big compared to their entire subscriber base. Wonder why they bothered.

Re:

[shmlco (594907)]

So where's the TPM module that validates the firmware???

What a gloriously stupid assumption...

[Quarters (18322)]

"After several months of silence it was more or less accepted that Microsoft wasn't going to do anything about the firmware hacks that allow Xbox 360s to play backups..."

How naive must someone be to think that silence on the part of a corporation equates to a tacit approval for people to circumvent a piece of hardware's embedded security system in order to run pirated copies of software?

Re:What a gloriously stupid assumption...

[morgan_greywolf (835522)]

How naive must someone be to think that silence on the part of a corporation equates to a tacit approval for people to circumvent a piece of hardware's embedded security system in order to run pirated copies of software?

Where in that sentence you quote does it say that they thought the silence was 'tacit approval'. There's a large difference between 'not going to do anything about it' and 'tacit approval'.

I might not do anything about someone's propensity to emit noxious gas from their butthole in my presence, but that doesn't mean that I have given my 'tacit approval' for them to rip huge farts while standing in the same room with me.

Re:

[kimvette (919543)]

Hint: not all copies are illegal.

Backups, for example. If you buy your kids an Xbox and pay $40-$80 per game, you do not want their grubby hands on the originals, you want to give them copies and keep the originals on the shelf out of harm's way.

Re:

[deathy_epl+ccs (896747)]

you want to give them copies and keep the originals on the shelf out of harm's way.

<sarcasm>But... but... but, the advertisements say copying that floppy is stealing! What kind of lesson are we teaching our kids if we show them how to steal a game?!?!?</sarcasm>

Re:

[tomstdenis (446163)]

Yeah except that copyright includes fairuse. Don't like it? Then PROPERLY LICENSE your software (e.g. have the purchaser sign an agreement when they buy a copy of the game...).

Re:

[dhalgren (34798)]

No.

Historically, archival copies were allowed and expected to be allowed. No medium is impervious to aging and wear. Some media can be damaged by using them.

Paying $5 (or 5 cents) for the right--and it is still a legal and moral* right to keep archival copies--is wrong. *IMHO, of course.

Torben

Re:

[Babbster (107076)]

I might not do anything about someone's propensity to emit noxious gas from their butthole in my presence, but that doesn't mean that I have given my 'tacit approval' for them to rip huge farts while standing in the same room with me.

Considering that "tacit" approval is something inferred rather than implied (the latter would mean words or actions indicating approval - like, perhaps, applause - which would remove the "tacit" part), the person farting could indeed infer your approval from your inaction in

Pointless?

[The_Pariah (991496)]

I thought there was already a chip out that allowed you to turn on/off the modded firmware on the dvd-rom.

Seems like the modders are always one step ahead.

Re:

[dspyder (563303)]

Not on the 360... yet... although I don't know the details of this particular hack. Even several of the physical on/off switch modchips were eventually able to be detected or thwarted by Microsoft code updates.

Re:Pointless?

[DDLKermit007 (911046)]

Uhh...no...physical switch chips can not be detected as long as they are off. I'm assuming your speaking of the original Xbox modchips here. Even software switch chips can't be detected on it as long as they are done right. The problem people ran into on the original Xbox was that they would initially sign onto Live with the stock HD, play for a while, put a chip in, switch the HD, and after a while MS began looking at HD serials. You were usually ok if you were never on Live before switching the HD, but many went on with a stock driver first, then switched their drive. I personally prefer the old Xbox since pirates could only play with legitimate games on Live and you could do a hellll of allot more with it than you can with the 360.

slashdotted

[by Anonymous Coward]

After several months of silence it was more or less accepted that Microsoft wasnt going to do anything about the firmware hacks that allow Xbox 360s to play backups. Rather surprising, considering the inventor of the hack confirmed in March already that the mods are easily detectable, and the reports that piracy is running rampant in countries like China. It appears that Microsoft is finally taking action against them though, although they may be hitting the wrong persons.

This thread on the official Xbox.co

Re:slashdotted

[dgatwood (11270)]

but that would be plain silly since MAC addresses are known not to be unique:

Uh... no. MAC addresses are supposed to be unique. Prototype hardware notwithstanding, you are prohibited from ever shipping Ethernet hardware in which the MAC address is not unique. Of course that doesn't mean you (as the user) can't change the MAC address in software so that it is no longer unique, but the address assigned to the hardware by the factory is, by definition, globally unique.

Re:

[MBCook (132727)]

Which is not to mention that even if the MAC address never hit the wire as part of the protocol, MS could easily pass it as part of the conversation that goes on when connecting to XBox Live (just like I assume they also pass the serial number, dashboard version, etc).

Re:

[Jon Luckey (7563)]

In fact MS has used the MAC address when forming Globally Unique IDs in the past.

At one point the easiest way for a program in Windows to get the MAC address of its main network connection was to get the systems GUID.

Not surprising that they might continue the practice in XBox and send a MAC addressed based GUID soplace else in the protocol other than the ethernet frame.

Re:

[Jester998 (156179)]

MACs are /supposed/ to be unique, yes. However...

I once saw a shipment of ~20 NIC cards which had 3 pairs of identical MACs (6 non-unique cards in the batch, with 2 cards sharing each of 3 MACs). THAT caused quite a bit of confusion when we couldn't figure out why the PCs they were installed in had extremely flaky network connections. :p

Freak manufacturing error? Maybe. We never did find out how it happened. But duplicate MACs are definitely possible in practice.

This was quite a few years ago, so I do

Re:

[dgatwood (11270)]

When you see that, you should report them to IANA. Either D-Link goofed or those cards were counterfeits. My guess would be the latter, but that's just a hunch.

Re:

[flithm (756019)]

Yes, they are supposed to be unique, but MAC addresses have a couple of inherent flaws. Mac-48, for example, is expected to run out of addresses by the year 2100.

Also, it's trivial to change the MAC address on a NIC via software spoofing, or in some cases to actually modify the card permanently (see MACChanger). I'm not sure if any of these techniques are possible with the 360, but I guarantee you if MS relies on the MAC, someone will find a way to produce a hardware address spoofer that you can just plug

Re:

[VertigoAce (257771)]

The Xbox 360 lets you set the MAC address to be whatever you want. This was quite useful when I was staying at a hotel that required you to login with a web browser before using your network connection. I logged in with my laptop and then used my laptop's MAC address on the 360.

Re:

[Tracy Reed (3563)]

The original poster was correct. It is true that MAC addresses are known not to be unique. They SHOULD be unique but they are not. I once received a dozen motherboards all with the same MAC. Intel server-class motherboards. Not prototypes or anything. The board had been in production for nearly a year. They were set up one at a time and deployed into a huge cluster in the datacenter and forgotten about. Tracking down the mac/ip collisions over the next year as machines with the same MAC addresses happened t

Re:

[ShawnDoc (572959)]

I work for a large company that makes networking equipment. I can state for a fact that MAC addresses are reused, not just by us, but by just about every networking vendor I know of.

Re:

[assassinator42 (844848)]

I believe they banned based on some "Hard Drive Key" on the original Xbox. It's quite possible that the Xbox 360 has something similar.

Re:

[Renraku (518261)]

No surprise from a company that marks half of its legitimate software installs as pirated.

No content

[by Anonymous Coward]

Whoever wrote this doesn't have a understanding of how this hack works. Their simplification doesn't accurately portray how this hack works.

From the article:
The fundamental problem with the firmware hack is that it's a so-called Man in the Middle attack on the system's security. Imagine a phone call between 2 English speaking people, and you've got control over the line in between. By cutting in at the right moments, you can make it appear to one of the participants that the other one is saying something to him, but it's actually you saying something else and making him believe that it's a valid response. That's a simplified explanation of how the hacked firmware works: it lies to the 360 kernel about what the disc is saying about its authenticity. Now imagine if both the speakers on that phone line suspected you were in the middle, and switched to speaking a slightly modified dialect. If you're still breaking in with the original dialect, it's easily detectable that you're trying to fool around. Back to the 360, since Microsoft still has absolute control over disc contents and the kernel code, they can simply change the dialect on both sides and thus detect firmware hacks. If they wish, they can take any action they want upon detection, ranging from the simple Xbox Live ban to even bricking your 360 or disabling it to run any newly released games.

Wrong. You are completely compromising the one end of the conversation. it doesn't hijack the communication at all. The dvd drive has been completely compromised and it can speak whatever dialect you make it speak.

The way of authenticating a disc is already set and can't be drastically changed without significant changes to the dvd drive and all currently pressed discs. Its like trying to change away from CSS after you already have a ton of DVD players sold. The hack has been upgraded alot since its initial release and is much more difficult to detect. In its latest form you can't even read out the dvd firmware using the chipset commands.

Re:No content

[Aladrin (926209)]

Or Spanish either, apparently.

it worked before

[eneville (745111)]

ms dont really care about pirates, because the consumer buys some part of their family of products. allow people to copy 70% of the system and you sell 30% to a much wider audience.

Re:

[antin (185674)]

I agree that they should not care about piracy (for the reasons you state) however they very much do care.

Look at the time, effort, and great annoyance they cause through their attempts at preventing windows and office piracy (just now a story was posted about only allowing one significant hardware change for vista).

Can someone repost the text of the entire article?

[popo (107611)]

My open source XBOX-360 Web Browser doesn't render Flash yet.

Re:

[justinlindh (1016121)]

You joke, but that's the reason that X360's aren't worth modding yet (in my opinion). You could easily run some simply great homebrew (such as XBMC) on the original modded Xbox, due to the hack allowing unsigned code to run. The code for this DVD firmware hack still requires signed code, so it's only good for piracy.

This sucks for the two of you who ACTUALLY WOULD use this to back a game up (understandable, they're pricey at $60 a pop). However, the mass majority of people interested in this hack are pirat

It's fishy

[Wind_Walker (83965)]

Here's the Original Xbox.com post [xbox.com] about it. It seems very fishy for a few reasons:

First, he's hiding his played games [xbox.com]. That's a very very rare thing to do, because it's just not necessary. Who cared what games you've played, unless you've modded something?

Second, he's got a Gamerscore of 77103. For those who don't have a 360, each game is given a budget of 1000 Gamerpoints which can be unlocked however the game publisher wants - usually it's points-per-level, or for unlocking things in the game. Xbox Live Arcade games get a budget of 200. Gamerankings.com gives me a total of 66 games released for the Xbox 360. That's 66,000 possible points if he finished anything and everything - and most of the games are nigh impossible for any mortal to get all 1000 points on.

Lastly, he's currently playing Cars online as I type. That game is not scheduled to be shipped until tomorrow the 31st, in-stores probably November 1st. If this were the only thing odd I'd just attribute it to a broken street date, but considering all the factors it sounds like he is using a not-quite-ethical way to play games in a way Microsoft didn't intend.

Re:

[dsanfte (443781)]

Ethical according to whose ethics?

Re:

[dsanfte (443781)]

Or to be more precise, not-quite-ethical according to whose ethics?

Yes, the preview button is my friend.

Hiding data isn't always a sign of something wrong

[fotbr (855184)]

Well, if gamerscore is greater than whats possible, I'd agree thats a pretty good clue that something isn't right. I won't argue that issue, and given the "Cars" bit when its not yet released in addition, I won't argue that the guy is probably modding.

But don't bash the guy because he decides not to share what games he owns. Some people don't feel that is any of anyone else's business. Your argument (Who cared what games you've played, unless you've modded something?)is much like the arguments about encr

Re:

[Aladrin (926209)]

The highest score was 84,000, not long ago, I believe. The 360 does not require region DRM. Quite a few games play on foreign consoles, and the people over the 66 game limit will have played games from other regions.

Re:

[Babbster (107076)]

While there are a few games that are not region-locked, the vast majority are. A much easier explanation would be that I don't believe Gamertags are "region locked," at least in the sense that they are restricted to 360 hardware from one region. So, if one has, for example, a 360 from Japan and plays Japanese import games using the same Gamertag as they use on their US console, their Gamerscore can go over that which is possible using only games from one region.

Re:

[kinglink (195330)]

Claiming to have two systems should be the first clue, claiming neither was modded is the second, A quick look at http://www.top360tag.com/ [top360tag.com] shows how someone COULD get over 80K points ( one trick is to play non american games, apparently Rance6 (the top tag holder) has played 106 games)

Honestly, it sounds like he's a liar and a cheater, and he was skirting close to the morality law (if not over it).

Good for Microsoft if they nailed him, and it sounds like they did. One good trick for Microsoft could be to

Re:

[cdrudge (68377)]

In a past life when I worked at Blockbuster Video we could routinely "rent" movies and video games before they were officially released. It encouraged the staff to be knowledgable on new releases in case we were asked. If indeed he was playing the game, and based on his very high gamescore, it may not be out of the possibility that he could work someplace where they get advanced access to a game.

Re:

[complete loony (663508)]

I think it would be more likely that he was an official beta tester, or an employee of microsoft's. So the whole thing could be a hoax.

"Backups" re-defined

[mrdaveb (239909)]

Reading the article cached at mirrordot [mirrordot.org]

Amusing that the article has the word "backup" with a handy little tooltip thing which pops up and defines backups as meaning "Pirated games downloaded from the internet or sold cheaply"

Keep them banned.

[cybrthng (22291)]

I like the 360 because network play isn't ruined. Keep it that way. Punkbuster MS way. (and yes, if you can pirate the games people can do other things to them for there own advantages..)

huh this is news? - kicking off cheaters? good

[gelfling (6534)]

Xbox live was offline October 17,18 and part of 19 to 'implement' just this. Kicking modders off. Honestly though most of the online community that's vocal about this likes it because it kicks off cheaters.

Now the problem is that they're banning IPs so if you have one modded and one unmodded box you are SOL for both of them,

DVD

[News for nerds (448130)]

As long as they stick to DVD there's no way to discourage Chinese pirates, DVD-R are readily available in China and they can import Japanese Xbox 360 for cheaper than the US version. Paying for XBL and playing online mean jack for them.

Where is the "license"?

[BobSutan (467781)]

Uh, its one thing to present a click through EULA that takes away your purchase and gives you a license, but how do they get away with what's effectively the same thing when you've paid for physical hardware??? Is there a shrink-wrap contract you have to agree to before opening the box?

Re:

[Overly Critical Guy (663429)]

Piracy in china is also known as "market share."

No, it's not. Market share is a measure of percentage of annual sales, not annual piracy.

Re:

[doodlebumm (915920)]

In many cases you are completely wrong. Market share is the percentage of people using a product. Even if they have no paid for it, the market share of users is extremely valuable. Otherwise Linux would have virtually no market share whatsoever. Nor would any other open source product, which is completely wrong.

And another point, dollars spent is a completely bogus way to look at market share as well. Ferrari and Lambourgini would have much larger market shares if dollars spent affected the market share

Re:

[MrAnnoyanceToYou (654053)]

They are. I regularly buy software recommended to me by someone who isn't a programmer who has pirated it. I recommend it to the next fellow if it's any good. Sometimes, when I say I like software, people listen to me. I don't know why, really. Maybe I sound smrkt.

Re:

[Overly Critical Guy (663429)]

I'm going to repeat a comment I made the other day: Just because you think piracy is "free advertising" doesn't mean software companies should give up all their intellectual property and copyrights.

Re:

[Tweekster (949766)]

Unfortunately for them, they dont get the choice in the matter.

Re:

[XMyth (266414)]

And its reasoning for this is that XBox Live support has a status code which says 'modded xbox'....so what? That doesn't indicate any action on Microsoft's part. It just means that their customer database has a status code for modded xboxes. Talk about jumping to conclusions.