Forget Sony, what are the HK vendors of Jailbreak dongles going to do? –
While geohot and failoverflow wring their hands over "legal issues" and work hard to prevent the release of a true lv2 kernel patched firmware that properly enables backup managers, it is likely that the HK vendors of jailbreak dongles are waiting on the sidelines, furiously trying to figure out a way to keep the flow of cash going as customers dwindle.
There are some obvious and not-so-obvious ways they can monetize the discovery of the private keys:
- Create their own dongle-less firmware and sell it.
This is extremely risky... the obvious problems here are that Sony would stomp down, hard, on such a tactic and have legal justification about anywhere in the world. It also has the problem that, once released, anybody could use it.
- Create a patch for current firmware the re-enables the dongle exploit
This is probably the one they are working on, but frankly, this will only give the first vendor to accomplish this task a couple of weeks respite, at most... re-enabling the dongle operation and creating a new payload for the latest firmware means anybody can copy it. The other vendors will hop on this in a heartbeat.
- Create a custom firmware that is "feature-locked" to an ecnrypted key
Ah... this is what I would do in their shoes. If I were them, I'd pay a hacker or two a tidy sum to create the security Sony doesn't have - use a 2048-bit encryption key to verify your brand of jailbreak dongle is inserted when the PS3 boots up, and patch using the payload encrypted in the dongle. The first team that does this will set the pattern that other vendors will follow, and will hold open source solutions at bay. It's the ideal solution.
That last solution would be a stick in the eye of everybody in the scene, but the vendor who pulled it off could give a big hearty "THANK YOU" to geohot and marcan's failoverflow for not allowing dongle-less firmwares. The vendor going the last route would make LOADS of money, and likely charge a great deal of money for their dongles (probably $100+ easily) without the problems of competition.
How would it work, well as I said above, the vendor would have an update PUP like geohot's that runs on startup. It would send an encrypted challenge/response to see if their key was inserted. If true, it would then get the encrypted payload from the dongle, and perform the patches.
The patches wouldn't be unknown to people like geohot, but since he's sworn off giving them to the people, there's no fear they'd surface for other vendors or for anybody else to release a dongle-less FW that runs backup managers.
Thus, as a vendor, I could sell my wares though a Hong Kong transshipper to retailers with a new encrypted key, PC flashing software (encrypted flashing, of course) and an collection of update PUP for various firmwares, perhaps incorporating my dongle's logo on startup. Very slick, very professional, and VERY EASY for any newb to order and use. As long as they updated for the latest firmwares Sony releases, customers would be happy.
Oh, and the ease of this, combined with the fact it would work on the latest firmwares, would probably mean piracy would greatly increase.
Someone's earned a "Helps Piracy Trophy," a "Keeps HK Vendors in Business Trophy," and a "Screws Over the Scene Trophy" all just by sitting on the sidelines.
Is there an option I missed?
Working hard on UberCFW, incorporating NTFS, sub-free NetFlix and Blockbuster, PSN cheat system with built-in swearbot and MAC-spoofing, Adding MKV, RAM and BIK movie support, and Xbox360 emu*.
*not really. Get a life, newbs...
My YouTube channel: http://www.youtube.com/user/BenJeremy