The Banhammer May Be Coming

**The Central Scrutinizer** · 10-15-2010,12:49 PM

Folks, Sniffynose pointed me to this. Since many of us are updating our games online now, you should ALL read this and pay attention I guess my morning post earlier was confusing people to think we were all actually updating firmware.

On boot the system contacts the server and uploads the play list etc. this list alone is enough to get anyone that goes online banned as it shows the bootmanger etc. has been running. Here is the list and what they do, I port sniffed this a while ago before I went online with a retail unit >.> because I am not stupid hehe.

All these need to be blocked, web access will still work, updates will still work, but psn and any system messages/ads/communication will be blocked completely. For other areas someone would have to sniff the addresses again to compare. North American Servers are listed.

fus01.ps3.update.playstation.net > Update Server (sys updates)
mercury.dl.playstation.net > What's new ads
nsx.np.dl.playstation.net > playstation store preview
nsx-e.np.dl.playstation.net > ads
(main file exchange connections)
us.np.stun.playstation.net > on boot initiates connection
ena.net.playstation.net > SSLv3 connection after above connection
dus01.ps3.update.playstation.net > secondary update attempt (could force updates)
auth.np.ac.playstation.net > SSLv3 authentication server
(destination servers)
service.playstation.net (has multiple IPs if only the ip address is blocked)
(Error Reporting)
creepo.ww.hl.playstation.net (uploads crash reports etc.)

Almost all connections cannot just be port blocked, the port will continue to increment until it connects, you have to block the entire domains. Also a big point is that ALL computers on your network need to have these blocked not just the PS3's MAC because if you are running a proxy for example to get patches, the computer you proxy to will just allow the connections right out to the open unless all local IPs are blocked from these sites as well.

**chesh** · 10-15-2010,12:52 PM

Just so you're aware, Mathieus was talking about something similar and about how he didn't think Sony would ever be able to drop the ban hammer for using the BM or pirated games. The reason is, he feels that they never put the security in place to watch out for such. He stated that he could make a program with the game title of (and I'm not making this up) "F**** YOU SONY YOU SUCK!" and he could play it all day long for years and they'd never notice. Now, this is all from Mathieus and all speculation, but so far, he hasn't been that far off on much things.

**Xeauron** · 10-15-2010,01:03 PM

Noted...

Is there any recommended software for the purposes of blocking these?

Thanks for the heads up as well.

**RiPPERD** · 10-15-2010,01:07 PM

Originally Posted by Xeauron

Noted...

Is there any recommended software for the purposes of blocking these?

Thanks for the heads up as well.

block them thru ya router dude

**remainnameless** · 10-15-2010,01:11 PM

Originally Posted by Xeauron

Noted...

Is there any recommended software for the purposes of blocking these?

Thanks for the heads up as well.

I believe he is stating that a simple port block would not be enough, so you can't just port block or port forward anything through your router and expect it to work.

There would probably have to be a way to spoof the files that are being uploaded (pushlist, registry?, etc.)

I don't see this being as easy as most people would think.

**Xeauron** · 10-15-2010,01:13 PM

Originally Posted by RiPPERD

block them thru ya router dude

I'm running an older gen router, so it doesn't seem to have the facility to block domain names. Only ports...

I know, I need to upgrade. I just don't have the cheddar to splash out at the moment...

Never mind, I'll figure something out. Cheers...

Originally Posted by remainnameless

I believe he is stating that a simple port block would not be enough, so you can't just port block or port forward anything through your router and expect it to work.

There would probably have to be a way to spoof the files that are being uploaded (pushlist, registry?, etc.)

I don't see this being as easy as most people would think.

Exactly, I wasn't sure whether new routers had this kind of facility built in.

I assume this would have to be done via software, routing the PS3 through a computer on the network.

**talmagal** · 10-15-2010,01:14 PM

so whos updating from 3.41 and the pushlist files with what games you are playing are easy to find and hex edit the bad ones out of

**Thatdude888** · 10-15-2010,01:33 PM

so um this only happens on boot ? why not jus tleave your internet unpluged when booting ?

**angelfly** · 10-15-2010,01:37 PM

I don't really see the point in going through the trouble of blocking them. It's not as if we're going on PSN where getting getting banned matters. We're all on 3.41 so it doesn't matter if we get banned or not.

**Mr.GoodFrag** · 10-15-2010,01:42 PM

Originally Posted by DJLO

...
On boot the system contacts the server and uploads the play list etc.

I have trouble believing this, but I put nothing past Sony. Are you saying that every time the console boots it sends this information, even on 3.41???

If so, we are probably all going to get banned.

User Tag List

Thread: The Banhammer May Be Coming

Tweet

LinkBack

Thread Tools

Display