Yesterday Sony released
PS4 Firmware 4.70, and today PlayStation 4 developer
qwertyoruiopz confirmed that Sony removed the primitive used to exploit his
bug with
bombob explaining this means Sony patched the way to access the bug, but the exploit is still present so those on OFW 4.55 continue to have an entry point.
That is great news for PlayStation 4 developers including @theorywrong who
tweeted reminding everyone it's ultimately
qwertyoruiopz's decision whether to release it or wait, but noted that if it was released PS4 Devs could begin work on jailbreak-related projects.
So how did Sony patch the primitive if the exploit has yet to be released? Both
qwertyoruiopz and
flat_z shed some light on this with a transcript from Twitter as follows:
- qwertyoruiop: lol great sony removed the primitive I used to exploit my bug
- qwertyoruiop: my bet? i accidentally let some crash logs go early on. sucks because it was a good exploit primitive, but it's cool since my bug is OK
- qwertyoruiop: I keep mine off the network now. Not initially however
- Kazoo Kid: they haven't a primitive is dead, but the exploit itself is ok
- Chara~Chan~~: Let the library expanding While we have bug we'll have more games in time. More late more better
- qwertyoruiop: that's the strate
- TheoryWrong: It is not for us to choose, but if I can give my opinion, many developer could start things with a jailbreak
- Newgunnerr: So will this mean a release from you?
- Thibobo: His bug is OK so probably Not
- Reminon: Lol why would he burn the whole exploit over a part of it being fixed?
And some words of wisdom from
flat_z on the preventing this from happening again:
- eh, so for future hacks, be sure you have blocked access to Sony servers
- at least these should be blocked: http://cfss.dunbar.scea.com, http://crepo.ww.dl.playstation.net, http://zeke.scea.com
- never try to sign to psn on ps4 with exploited kernel because on psn auth they use SAMU to hash kernel text/sysent/shellcore mem/syscore mem
- this data is sent during auth and sony may know that you have used kernel/userland patches
- if you want to go to PSN you should wipe error logs in /system_data (multiple text and json files), also wipe these partitions: da0x6*
- then do cold boot, don't run exploits if they do patches to hashed regions, then you can safely use PSN
- also Sony does a lot of telemetry stuff (a tons of system events are logged), they are also send them to servers, pay attention to that
- here is decrypted sl-config.xml.env that contain event log servers: you can see how much events do they logs...
- Z80: this .env files are known from cca 3.55? imho
- no idea what is new in 4.70 because i don't have code/dumps for that firmware, but each fw brings something new
Read more at
https://www.psxhax.com/threads/sony...d-sl-config-xml-env.2324/#5W0hdDjBMX7ocKfu.99