vesh wrote:Oh I ment the hack of what the thread was originally about
Oh - in that case - no. All he was doing was gathering information. Prior to the development of the custom firmware, the main thing he'd done - from an end user perspective - was the photo I posted in this post:
viewtopic.php?f=13&t=7307#p37925The hack itself is quite complex. A very, very, very quick summary is that he used a program in Linux to flood the bus with a bunch of messages. Then, he applied a voltage to certain points on the motherboard, and "glitched" the system. Because of the heavy loading, the glitching allowed him to access memory on the other side of the hypervisor, and away he rolled.
To set this up yourself is not trivial at all. It requires custom external hardware to do the glitching, and modification of your PS3's motherboard to interface the hardware.
After that, he found out that, although the 7th SPE was physically locked out of the system with an encryption key, it didn't matter, since he could use his above the hypervisor privileges to make the locked out SPE encrypt and decrypt code for him. He has yet to decode one of the hardware keys in the Cell - but it doesn't matter, since he can get the SPE to "do his bidding".
This explanation is very, very simplified, but that's the main idea.
Cheers,
Paul