Security Concerns When Consoles Go Online? 211
VonGuard writes "I've written an article for Security Focus about the security concerns that having an Xbox or Playstation 2 on your network might raise. The article, entitled Welcome to the Jungle was an interesting experience to write. I really think that Sony will end up having some trouble from their stance on third party security design, while Microsoft might end up smelling like roses. Too bad MS shipped the Nimda virus with their Korean version of .Net Visual Studio."
oh shit (Score:2, Troll)
deleted games (Score:4, Insightful)
Yeah right, try shrugging it off when somebody deletes your Phantasy Star Online characters after 50 hours of gameplay (this actually happened to many many people playing Sega's first online RPG).
Re:deleted games (Score:2)
Yeah right, try shrugging it off when somebody deletes your Phantasy Star Online characters after 50 hours of gameplay
50 hours? In EverQuest it's not uncommon to invest that much time into the acquisition of a single weapon or piece of armor. EQ is one game in which hacks that deleted characters might drive less-than-perfectly-stable players to homicide.
Luckily, EQ has a pretty good (not perfect, but pretty good) track record at keeping everything straight in people's accounts, but the point is that cheating and hacks can really have a significant impact on players.
Of course, those players should really get lives, but that's a separate issue ;-)
Re:deleted games (Score:2)
PSO should really be looked at by anyone doing an online console game. And basically what you'll see is that without server side saving, and having the client be nothing more than a dumb terminal, you will see problems. It all comes down to the oft-said "Never trust your client".
Yep, Verant learned this lesson with EQ as well, in a more subtle way. Although EQ stores all character data on the server, they still trusted the client more than they should have: while playing, the server sends more information to the client than it should display to the user. This has advantages in that the client side can keep an up-to-date copy of the part of the world the character is in, which often cuts down on network lag.
However, it only sort of cuts down on lag, because it only works if the mobs/players continue on the same heading and velocity. So motion doesn't suffer from lag, but changes do, which is really just as bad.
Even worse, it meanse that another client application can also watch the data stream and can show the player all of the data that the official client is hiding. Tools like ShowEQ and SINS show the player a real-time view of the entire contents of the zone, including invisible mobs and all sorts of details that aren't supposed to be seen.
The moral is: if you don't want people to muck with something, keep it out of their hands. Keeping everything on the server side and using the client only as a display engine eliminates all sorts of opportunities for hacks, cheats, mods, etc.
Re:deleted games (Score:2)
Dude,
Your character may be virtual, but the time and effort you invest in the game are real.
Re:deleted games (Score:2)
Well, it could be a quest to find your long lost father. Or avenge him.
Just because it's entertainment doesn't mean I should put up with a shoddy product. If we start down that path we'll end up with people putting up with a shoddy operating system jusy because it's not mission critical.
what are they going to do? (Score:1)
Sigh... give it a break... (Score:1, Redundant)
Re:Sigh... give it a break... (Score:2)
I'll stop bringing it up when I get less than a 200 Nimda attempts a day on my server, OK?
Now for the coup de grace. Apache finally gets an exploit. Assuming unpatched on 32-bit Linux or BSD, he will get more trouble from the Nimda attempts than from Apache attempts. (Windows and 64-bit UNIX do need to be patched.)
Microsoft Bashing (Score:4, Insightful)
Re:Microsoft Bashing (Score:1)
Re:Microsoft Bashing (Score:2, Insightful)
As someone who has tested the PS2 network adapter, theres basically 2 things that go wrong.
1. Denial of service attack.
It's really easy to overflow a buffer cause the PS2's sound chip is doubling as the network chip.
2.transfering personal information over the net unencrypted, and as each game has to basically have its own security / servers, its gonna be a race to find out who the most clueless game makers are!
I for one will have my PS2 with network adapter safely behind a good firewall.
Re:Microsoft Bashing (Score:2)
They didn't say WHICH military (Score:2)
Re:They didn't say WHICH military (Score:2, Funny)
> military standards of say, Tuvalu or Somalia.
Or the Kiss Army.
Re:Microsoft Bashing (Score:2, Funny)
Shut up, Ballmer.
Good article & Microsoft Bashing Revisited (Score:2)
[donning flamesuit] /. - sometimes it's deserved and sometimes it's not. Mostly the former.
Yeah, there's a lot of Microsoft bashing on
MS touts it security while its insecurity stands frozen in the stark daylight. It's kind of like trying to be all suave and debonair with your fly unzipped. It's funny.
Now I'm all for using the right tool for the right job. It just turns out that Linux is cheaper, breezier, and more stable most of the time. For LAN parties, it's Windows 2000 hands-down. For console gaming, I like the XBox - mostly for its hacking potential. But I plan to get a Playstation 2 as well.
Re:Good article & Microsoft Bashing Revisited (Score:2, Funny)
So, as I switch cars in the parkinglot, the bestman points out that my fly is undone and has been the whole time
doh
Cant play rite now... (Score:1)
omg, they dont even run a proper os to bounce packets inside the local net.
Even if using the linux in psx2 its linux and you need to secure it as any other box.
Re:Cant play rite now... (Score:2)
No, you don't. You might want to patch or disable some of the buggy programs that are distributed with it, but Linux itself (the ekrnel) is fairly secure. Probably more so than any other OS kernel (well, apart from some things like Solaris maybe), due to the amount of people and experience put into it.
Is that really neccesary? (Score:4, Insightful)
Come on. This really looks childish. That's an irrelevant story. Just let the facts speak for themselves or you lose credibility.
Re:Is that really neccesary? (Score:1)
Re:Is that really neccesary? (Score:1)
>Too bad MS shipped the Nimda virus with their
>Korean version of
Come on. This really looks childish. That's an irrelevant story. Just let the facts speak for themselves or you lose credibility.
I agree with you about that being childish, but its worth noting that italicized text in the stories on the front page are all from the submitter. Editor comments -always- appear as non-italicized text. Its definitely silly that the poster stuck that in there, but I do have a level of respect for Slashdot not messing with submission commentary. IMHO its best that they leave it verbatim.
Re:Is that really neccesary? (Score:1)
See, the title "editor" implies that the person wearing that title actually edits. They're under no contractual obligation to provide the submitter's full post. Had the submitter pulled something equally as stupid, like putting profanity in his submission, I'm sure the so-called "editors" would've sanitized that (it doesn't look professional to have profanity on your front page). On high-volume submissions, they could just take their pick of the hundreds of similar submissions. This isn't one of those. This is an author pimping out his article. It's very unlikely there would be multiple submissions for this, so the editors have three choices:
Go whine all you want about "freedom of speech" (you're guaranteed to be able to say what you want, but you're not necessarily guaranteed an audience), but if the editors are going to call themselves editors, then they need to learn how to edit. To leave such an obvious troll in the submission smacks of amateurism. The Slashdot eds have been doing this long enough that they should know better.
Re:Is that really neccesary? (Score:2)
Re:Is that really neccesary? (Score:2)
And yet, I'm sure they'd love it if I (and others) would subscribe to their new for-pay model. They can't stay unprofitable forever. Eventually, VA Software will really find themselves in a bind and will have to offload or kill their unprofitable branches, which I would expect would include Slashdot. Thus, it's in Slashdot's best interests to get their frequent visitors to pay money. However, aside from the few fanatics and zealots, I doubt you're going to see a large number of people paying money to Slashdot if they don't significantly enhance the value of their site. Yes, I know, the value of Slashdot is not the stories, but the user-submitted comments. I agree with that, to an extent, but I also believe that the stories are what drive the comments. With the current status quo of subtle (and blatant!) trolls, repeat stories, late stories, chronic database problems (the about-once-daily "can't login" problems), and atrocious spelling and grammar, the site rates as little more than an amateur news clearinghouse (albeit it with a large following). I think the clearinghouse model is a good one, as that way I don't have to traipse all over the net to find the stories that would interest me. However, I damned well won't be paying a dime until the quality issues are resolved (while at the same time not feeling bad about blocking their ads, either). If they increase the quality somewhat (say, Taco takes a remedial English writing course, or the editors finally get in sync and stop duplicating stories), I'll happily unblock ads on Slashdot. If they don't get their acts together and act like true professionals (includes editing user submissions for spelling, grammar, and unnecessary inflammatory comments), they'll never see a subscription fee out of me.
And yes, I realize I can simply not read Slashdot. That's a perfectly valid option, and if it gets much worse I'll probably do just that. Right now, I still think the site has potential, and can be saved if the guys get their arses in gear and do their jobs.
Re:Is that really neccesary? (Score:2)
Re:Is that really neccesary? (Score:2)
So basically, love it or leave it? I'm sorry, but I believe in a third option -- constructive criticism. And that's exactly what I gave. Too bad the editors will likely never see it. As I said, I feel there's definitely something worth saving in Slashdot, and you can't honestly believe that the changes I suggested wouldn't be better than what you currently get. I'm fine with Slashdot editorializing, and I know there are obvious biases. However, there is a time and place for those. There was absolutely no reason for the underhanded dig in this story. If Slashdot wants to run an editorial (user-submitted or otherwise) about what's wrong with Microsoft (or the RIAA/MPAA, or the government, or whatever), great. That's an editorial. It's supposed to have bias. This was presented as a news item ("Hey, look! Neat article. Oh, and since the article does cast Microsoft in a somewhat favorable light, here's a completely unrelated dig to fulfill the status quo,"). As such, it is the Slashdot editors' editorial duty to lose the troll and present the news.
Dissenting viewpoints are what can turn an only decent community into a truly great one. If everybody here always agreed (and those who don't just go ahead and leave), then you've lost the most interesting part of Slashdot. The Linux zealots rant and rave about how a monoculture in the OS market will cause major problems. How is this not the same, then? You're advocating that those who don't always agree with Slashdot's editorial policy should just go away. You're in favor of creating a monoculture here, and that will be the death of Slashdot.
You're right. If Slashdot fails, too bad. However, it won't be because of people like me who filter the ads. Instead, it will be a slow rot from within. It's already evident with the increasing number of trolls and flamebait. It's evident in the greater number of blatant trolls that have been accepted as user submissions. It's obvious in the fact that even the editors can't keep in sync with each other. Dare I say it, but it's even obvious in the fact that CmdrTaco doesn't even have enough self respect to spell check and grammar check the writings he does for a living. Were he just another AC or random poster, then who cares? But he's not. He's the head honcho, and a prominent editor. It's pretty revealing about his character that he doesn't even bother to do such a simple thing before submitting an article (oh no, that's going to make the article 10 minutes late! oh, wait, it's already three days late, big deal ...).
Relevance (Score:4, Interesting)
Yea. It looks childish. But that doesn't mean the event has no relevance here. Let's look at this a bit deeper.
Data integrity is often one of the goals of an organization's infosec posture. This is more than simply ensuring the data is not improperly accessed and is available. It is also ensuring the data has not been altered without authorization.
In this case, Microsoft's data being offered to its customer had its integrity violated. Malicious code made its way in to an external distribution; not obscure code but a well known virus. Now, Microsoft is not the only one to suffer the embarrassment of distributing a virus. But it does highlight a breakdown in Microsoft's internal infosec practices. And that comes at a very inopportune time for Microsoft.
So the question would then be - how does this apply to the security of the XBox? Microsoft has a long history of troubles not only with security, but an almost arrogantly blatant disregard for security practices and concepts. This has eventually backfired on Microsoft and they have been faced with a growing PR issue. The answer to this situation has been Trusted Computing - a bottom-up change in Microsoft where everyone has been trained in infosec concepts and practices. If Trusted Computing pans out, Microsoft's security woes are behind them.
The cynical in the infosec / IT industry have already noted that they've heard this song before. Microsoft's PR and Marketing departments constantly promise security - especially after incidents that focus on MS products. Furthermore, experienced infosec workers know that addressing infosec issues often requires a complete change in methodology and outlook. And this translates in to changing Corporate culture. Microsoft may be nimble, but this change may be too demanding for even Microsoft to accomplish.
The relevance of Nimda appearing on a Microsoft software release is the question of whether this incident was a simple embarrassment or an indication of a continued lack of understanding for infosec issues within the Microsoft culture. And that certainly has a bearing on the question of Microsoft's concepts of information security and the XBox.
Re:Is that really neccesary? (Score:2)
Come on. This really looks childish. That's an irrelevant story. Just let the facts speak for themselves or you lose credibility.
Ok. Facts.
Security is a perimeter type thingee. Everything is relevant, particularly any odd anecdotal accounts of lapses.
Credibility. Slashdot tries to make the headlines "interesting". Should I see what's up or go back to work? I've seen no indications that Slashdot has ever attempted to be "fair, balanced, unbiased". What is ironic is that Slashdot has become the best source of unbiased information for supporting Microsoft software.
Microsoft is big and arrogant. The only effective antidote is public ridicule.
An interesting article (Score:3, Insightful)
but is this really going to be a major issue ? in reality how much time will these boxen spend on line when not playing games ?
have MS written in code to the os to identify what is and is not and X Box for example? and what about servers - can they be run ?
Thought provoking.
Xbox Closed network? Here's one that is open: (Score:2, Interesting)
There's an Xbox mod. How long before kiddies start buying mod kits that have holes (as if there aren't holes not yet found.) Another poster asked how often consoles will be online while not playing games... why couldn't a trojan take up bandwidth while a game was being played? And with broadband, they'll likely be left on. No, the internet is a dangerous place and you don't have to be named Gibson (www.grc.com) to be paranoid.
Re:Xbox Closed network? Here's one that is open: (Score:2)
And the broadband applies to the states but what about other countries ? in Australia at the price of broadband i cant see many people getting it just for their X Boxen.
Re:An interesting article (Score:1)
Re:An interesting article (Score:2)
I can understand the if its there challenge but seriously what sort of fun? wheres the fun in hacking into someones console ?
Re:An interesting article (Score:2)
Re:An interesting article (Score:2)
yes i understand that but why ? what is the point of hacking to 'own' someones system? they havent got bank account data etc on it so why ?
Re:An interesting article (Score:2)
It's the same mindset, and it'll hit consoles sooner or later.
Re:An interesting article (Score:2)
"They" is not "you". "Your" misdeeds are traceable back to "them" not to "you".
That's one of the key points of Code Red. The victims advertise.
Re:An interesting article (Score:3, Interesting)
Except they already have.
For example xbconnect [xbconnect.com] (Gamespy have another one), and there's even a Linux version somewhere.
Basically people have produced a tunneling application that fakes the local LAN facility for multiplayer games and pushes it over the net. Nothing nasty happening yet (well, expect getting my ass kicked in Halo by 9 year old kids, but that's depressing, not nasty)
Re:An interesting article (Score:2)
It's a non-story. (And a poor writeup.) Give me my 10 minutes back.
It's time to worry... (Score:1, Funny)
im glad (Score:1)
for those that don't read the article (Score:4, Funny)
"Xbox Live has military grade security to ensure no cheaters, no hackers, and no viruses."
Now I try not to MS bash but come on this just seemed funny to me that is all
Military grade (Score:2)
Still, I hope they live up to their claims for the sake of the net. After all, they've come a long way since they couldn't get "ping" right (eg. the ping of death attack which could bring a server down with one command).
Re:Military grade (Score:1)
Not to start some religious type mathematical discussion here, but dividing by nothing is NOT the same as dividing by zero. Nothing is not the same as zero.
Re:Military grade (Score:2)
Just to be a little picky: Water resistance in the ocean stops NT on a warship, after NT kills the engines.
Re:Military grade (Score:2)
Re:Military grade (Score:2)
Re:Military grade (Score:2)
Re:for those that don't read the article (Score:2)
Yes, but no security at all is military grade. (Score:1)
Re:for those that don't read the article (Score:2)
Whose military? The Three Stooges come to mind, somehow.
Re:for those that don't read the article (Score:2)
X-Box already cracked! (Score:3, Informative)
X-Box was already cracked. It didn't get much press covereage... Eweek did a story, here's the reg's:
http://www.theregister.co.uk/content/3/25568.ht
Re:X-Box already cracked! (Score:3, Insightful)
X-Box was already cracked. It didn't get much press covereage... Eweek did a story, here's the reg's:
Well, x-box's have been online for quite some time now, many people who own one have been using gamespy software to play Halo online for a fair bit in fact.
and as for x-box's having been cracked, the cracking you refer to is no more than the same mod-chips that allow the console to run unsigned code that dreamcasts, PS1's, and PS2-s have been running for quite a while.
the simple fact is that, MS's controlled servers may be more secure than public servers sony will promote, in fact i would expect it to be.
you can knock em all you like, but the model they are promoting might just be better than Sony's, why not wait till they are actually functioning, and have a bit of substance behind your complaints before you dismiss them offhandedly?
'Military grade' security (Score:1)
Now only if they could apply this theory to their OS strategy...
Re:'Military grade' security (Score:1)
Good article - Tinkering should be supported (Score:3)
People are going to hack their consoles. Hell, the first thing I did with my TiVo was to take it apart. Don't think I'm not tinkering with my xbox, it's potential as a cheap Apache webserver or slave in a rendering farm begs experimentation.
It's good that Sony is supportive of the curious developer. It means their platform will spread wider. At $199 apiece, there's no reason not to mod consoles.
I don't doubt a lot of consoles are going to be 0wn3d. Whether it's Microsoft first or Sony will depend on the hobbiest - or on a corporate uh-oh. After all, Microsoft did ship Nimda to Korea with Visual Studio .Net. I'm not crazy about Microsoft's decision to close their gaming
community, but I'm not surprised either.
Blizzard does the same thing (and are villified for it). But I'm less troubled by Blizzard's motives than by Microsoft's.
The word is "persistence", people! (Score:1)
While it may or may not be hard to hack the console in the first place, it should be pretty difficult to keep the box hacked. It's like if you re-installed your PC everytime you want to run a new program.
The window of opportunity for exploiting the machine for DDoS attacks, as stepping stone etc only exists for as long as the gamers current gaming session. With enough boxes out there, that could still add up, of course.
The cheating/disrupting games angle is much more benign - this is something the gamers will notice, and thus force the game companies/console manufacturers to fix, or they risk losing their sales, and as we all know, wallet beats paper, rock AND scissors.
No, the word is "password" (Score:3, Insightful)
Even worse when MS truly implements passport as a "single sign-on" service.. then I'll be able to become you wherever there is passport. Perhaps I'll log in and place a few bids on ebay for you.. you did want a gamecube and PS2 didn't you? Well guess what lucky bidder, you just paid $800 for them!
So this what happens to the network... (Score:1)
ms bashing (Score:1)
Well (Score:1)
Developers Rule (Score:2)
The same methodology for the PS2 will work. "Why Fix it if it ain't broke". If a PS2 Developer House wants their game to flourish online they know they will have to do their best to curb cheating and most certainly avoid security holes in their games at all costs.
I fail to see how having Microsoft hold all the cards for the security of the XBox is a good thing. That's how it is with their OS and well... look at it.
Power to the Third parties!
MS's "Disney Land" approach (Score:5, Interesting)
No Cheating
No Viruses
And no Cheating
Cheating in online games has reached such epidemic porportions on the PC that many have given up on it completely. Others just slug it out and learn to deal with it.
Microsoft wants to offer 3rd party mods and the like to its customers. Since they get a cut of every game sold for the Xbox, it makes sense for them to freely distribute mods that increase the value of the games and the console. But they want to check to make sure the mods aren't buggy, virus infected peices of shit that are going to screw up a few million Xboxes.
They want to take all the mods, pour over them, check them for cheats and viruses then let you d/l them. All the while monitor for cheats in use.
If they can do it, more power to them.
If not, the Xbox is in trouble.
I give them 50/50 odds.
I'm sure a lot of people are like "OMG, Microsoft, evil, evil evil! They can't do anything right!"
Well, they are evil (so are Nintendo and Sony in their own ways) and they do screw up more than they succeed. But they do have divisions which score a win on a regular basis.
The Macintosh Business Division was created when it became clear that teaching some Windows guys the Mac's APIs and sitting them down to port Word or something was a complete disaster. A small team of people who Knew What They Were Doing sat down and without interference from the rest of the company, were allowed to do their own thing.
The result? The versions of Office, IE, Outlook and other Microsoft apps are lightyears ahead of their Windows counterparts. They pick up the latest APIs and exploit them before anyone else. Their products tend to be stable, well-thought out and actually useable.
How has the community reacted? The MBU averages 1 Billion+ dollars in revenue every year.
Could the X-Box division do the same thing? Yes
Is it too early to tell? Yes
Does it look promising? Yes
They've already made a number of good decisions with the Xbox. Excluding the bizzarely unreliable store models, they are stable and reliable machines that can be left on for ages. The hard drive didn't bring patches for games, but only free expansion discs, personal game soundtracks and the end of memory card hell. The money I've saved in memory cards has nearly paid for games I own.
The breakaway cables have saved me about half a dozen destroyed Xboxes.
The DVD kit saved me when an out of warranty DVD player turned to crap.
The Xbox has some issues, but it doesn't have the "too many hands in the pie" problem that Windows and the PC versions of IE, Outlook and Office do that lead to bloat, instability and security problems.
They can make it work. It's their call wether they do or not
More recent discussion of this issue (Score:3, Informative)
-Matt Pritchard
Actually, I should have said... (Score:2)
However, if you hack the console, cheating is a automatically a problem by definition.
It's interesting that the definiton of online cheating has expanded to included a myraid of things a person can do disrupt the game, host systems, or even the network connections of other players. All that seems to matter is hurting another player in some way.
Console systems will be vulnerable to the standard problems (buffer overflows, poor design, etc), but just how much can you loose? On the Xbox, it will be necessary to save executable code to the hard-drive to make a hack persistant, and I'm not sure that a game currently running is even allowed any access to those paritions. On the PS2, what if the hard drive isn't even present? Just reboot and reset.
On the flip side - it's a royal pain to patch a console game. You have to issue new disks.
-Matt Pritchard
Re:More recent discussion of this issue (Score:3, Informative)
Lack of software updates (Score:2, Interesting)
So... (Score:5, Insightful)
Now, wait a second. These are two completely unrelated parts of the company. If the Xbox team does something well, they deserve praise, and if the
Re:So... (Score:2)
I have seen a lot of hypocrisy floating around on this issue. People measure the PS2 on its merits, regardless of what Sony does otherwise, and the measure the Xbox by what Microsoft does otherwise, regardless of the Xbox's merits. They say the Xbox sucks because Windows sucks. They compare the PS2's merits to what they assume the Xbox has, based on how unstable Windows is. They write off anything the Xbox does as useless, on account of all the horsepower it has under the hood. The last time I checked, that was a good thing.
Cutting them off would not be liberating them, it would be stopping the flow of infinite funds. I don't think they want that.
Military grade security... (Score:2, Interesting)
It reminds me of the wonderul unit of measurment we have come to know as the 'Library of Congress' that renders such wonderfully discriptive stories such as:
HEADLINE - 1000000GB Ethernet spec being reviewed!
Transfers 4324231124 LoC's per / second!
Or maybe the use of number of songs an MP3 player can hold....(instead of MB of storage)
Just makes me want to find out exactally what this 'military grade security'. Just remember, they didn't bother specifying which military. If their idea of militrary involves a bunch of monkeys, then it might not be so good...
Yes, I know its off topic but I couldn't help myslef...
Nightmare... (Score:2)
Love the final quote (Score:1)
"it's just a game"
Well if it's just a fucking game then why bother fucking cheating you worthless shit eater. People like you make me despair for humanity.
Did I mention that online cheating really annoys me?
pointless ms bashing (Score:1)
its a little bit of "say what they wan't to hear", well hey, this is slashdot
*hmm. i better go watch "henry fool" again, the donut people
Much confusion on the part of the author... (Score:1)
The first is a true danger and should convince people to only attach these consoles to the net by way of a well configured firewall. The second can be summed up by saying "whoop-de-frickin-doo."
Some people seem to be missing the point (Score:3, Insightful)
But the real problem is that eventually these consoles will also serve functions other than just gaming. Both Micros~1 and Sony want your living room for more than games, they want to provide other services such as movie/music downloads, general web surfing and online commerce.
That means that the HDD (standard in Xbox, optional in PS2) will contain potentially valuable information, such as content you've downloaded, or maybe your CC number you used to buy the extra content in the first place. So if hackers could get at that data, they're potentially ripping you off.
While this problem exists on PC too, consoles are an easier target because each one has exactly the same OS (non-upgradeable/non-patchable). If game Foo comes out with some vulnerability that allows hackers to access the contents of the HDD, then the game developer won't be able to send out a patch for Foo...
Yeah, I'd be worried.
So what if... (Score:1)
The only security you need for your consoles is physical security so that it doesn't get stolen while you're not playing with it (and most definitely it won't be online during this time).
Microsoft is the worst at allowing cheating... (Score:2, Interesting)
Self marketing? (Score:1, Interesting)
But, of course, this does not question the interest of the article.
Two issues (Score:2)
The other issue is that somebody might figure out how to crack these boxes from afar (and, because they're all identical, once you've got one you've got them all). Now, people don't keep commercially-sensitive data on them, so the worst that can happen from the owner's POV is that the box is rendered unusable and they have to take it back to the store. However, they'd make a really good place to run DDoS's from.
The best way to make this harder, IMHO, would be to require people using these boxes to use special broadband connections that have been firewalled upstream to let only let normal traffic in and out - nobody should be trying to establish connections with these consoles, and the only things they should be trying to connect to are the game servers. Anything else should be firewalled off. The firewall would presumably be carefully monitored.
One wonders also whether game code runs "as root" on the XBox. Obviously such code should have direct access to the video hardware, but whether it has unfettered access to the file system is another question. Surely it's possible given the restricted functionality available and given an unmodified XBox, that only code signed by Microsoft can alter certain key files? (In other words, avoid "local root exploits" in services runnable by game code). That way, even if a game has a buffer overflow or the like in its network code, nothing too serious can be compromised and the problem presumably goes away on power-cycle when the whole game is reloaded fresh from DVD.
Worse than "root" (Score:2)
Think of ring 0 as the hardware version of root priveledges. Infact, the software protections that enforce the system security policy would not be possible without all of the user's code running outside ring 0.
New programs (Score:1, Funny)
BSOD for the Xbox
Nimda for the Xbox
iloveyou for the Xbox
linux for the Xbox
Goatse.cx for the Xbox
Security aside... (Score:2)
Can anyone remember when in Internet history this many nodes have gone on-line in such a short period of time?
I don't know what sort of bandwidth these games will require, but what if any effect will there be when potentially hundreds of thousands of consoles start accessing the 'net within a period of a few days, on top of the normal growth?
something I don't get (semi-OT) (Score:2)
"I don't always cheat. I'm pretty good playing straight," he insists. "Cheating makes me a god."
Ok, if you are "pretty good" playing straight, why cheat? Seriously. It's a game. People cheat all the time, but I for the life of me don't understand the need to have an edge like this.
IMO, part of the fun is seeing how you truly match up against people and watching yourself progressively get better. This I feel like God crap is worthless. Besides, doesn't he get tired of it?
I know there will be plenty of people saying it's just human nature to do this, but really, is it? The vast vast majority of people are not like this, so what causes people (in Counter Strike and other online games I mean) to do this. Notoriety? Fame? (It's a fucking game!) Fortune? I don't think so.
I guess my final take on this is yes, he may indeed think he is a God, but all he is doing is cheapening himself in the eyes of people like me. And I believe there are a lot of us out there. Do unto others as you would have them do unto you.
X-box safer? (Score:1)
Bad, bad box, bad! (Score:4, Informative)
In fact, this looks very much like the Unix-Windows security arena. Unix has been traditionally open. All the protocols are open, and, especially, the implementations never assume that they know who or what is on the other side. This, in fact, is one of the critical aspects of security. Never trust the remote. Ever. Always assume that things can be spoofed, always assume that all and every piece of data you receive has NOT been validated by the remote. This is the Unix way of doing things. This, in fact, is the right way of doing things.
Alternatively, you can start "trusting" the untrustable. You can build a single platform network and assume that all data sent from the remote is "good data". This is naive, and leads to disaster.
Remember the "ping of death" vulnerability that existed on Windows machines: why did it exist? The simple answer is that it was there because the ICMP stack was badly coded. Right. But that's only half of the story. In fact, it was there because of Microsoft's way of thinking. Microsoft always assumes that things are under full control. The ping of death vuln existed because the Windows version of "ping" did not allow for larger-than-a-given-number packets to be sent. And the Microsoft way of thinking is "if the client can not send it, the server can neglect checking for it". That way of thinking has lead to many of the security flaws in Microsoft products.
The truth is, things are not always under full control. The XBox can be hacked locally, changed into allowing modifications to be performed on the "Microsoft trusted" software components. Other kinds of machines can be connected to the network and made to pretend to be XBoxes, while still allowing full control by the owner on what gets sent and to where.
In short, by choosing to create an "XBox-only network", Microsoft has taken the step that will make its network fundamentally insecure. If you still can't see why, think of it in the Disneyland way Microsoft suggests. What they are in fact saying is that "since the Disneysoft is secure, you can trust everyone there". The things you normally tell kids to do, like "never take candy from strangers", are no longer in effect inside the Disneysoft. Inside Disneysoft, you can take candy from anyone. What is the rationale behind this?
That "bad people" can't go inside? Wrong.
That "bad people", once inside, can't give you candy because "giving candy" is not an option? Wrong - if you own the box, everything is an option.
That if "bad people" do this, they will be expelled? Sure. They can expell all they want. That won't prevent them from coming back, and it certainly won't prevent your kid from being dead.
A last thought: People go around saying "what can happen? someone steals your save game? so what?".
Well, on one side, the XBox is being touted as a future "computing/internet/browsing platform". That means all kinds of sesitive information is going to get stored in its hard disk. And while having your save game stolen can be little more than a nuisance, having your personal data, personal files and credit card information stolen can be a bit more serious than that.
On the other side, the XBox has a network adapter. And guess where it is going to sit? Right on your home network. Together with your PC. Together with your other local devices. Probably inside your firewall? Great target for a hacker to attack and, from there, jump on to your private network. Sure, you can always firewall it, put it on a DMZ. Sure... Microsoft does not have a good security record.
Re:Bad, bad box, bad! (Score:2)
Finally, like you mentioned, a fricken game console should NOT be on a public network. I hope that Sony and Microsoft educate their online users about the need for a good firewall.
Re:Bad, bad box, bad! (Score:2)
I'm sorry if I seemed to imply that an XBox network is "fundamentally less secure because it is one system".
The thing that will make the XBox less secure is if Microsoft assumes that it will only ever interact with other XBoxes, and forgets to test for vulnerabilities that involve
a) Systems that are not XBoxes
b) Modified XBox hardware
c) XBoxes running modified software
All of these will, no doubt, be found "in the wild" inside Microsoft's XBox-only-no-modded-consoles-allowed Disneysoft.net . We will then see if Microsoft designed and tested the XBox to interact (and endure interaction) with anything other than itself.
Secure? No, just obscure... (Score:2, Informative)
Same old crapola (Score:2)
Closing their service to outsiders increases the security of their system overall and "prevents hackers from scaling beyond one machine," the company claims. "Xbox Live has military grade security to ensure no cheaters, no hackers, and no viruses."
So they couldn't make their OS with mititary grade security, but their game console is good to go? Yeah, right.
Security Through Obscurity !!!! not again (Score:2)
'Cos for sure no one has ever made a clone of battle.net or Everquest
Warranty void if you're rooted or get a virus (Score:3, Informative)
Not that you'd ever get one with the military grade security, but it's reassuring that Microsoft has no responsibility to do anything...
Re:Warranty void if you're rooted or get a virus (Score:2)
Re:Warranty void if you're rooted or get a virus (Score:2)
But it's an analogy that is just as silly as the ford one - it all comes down to what the customer expectations are for the product and how they jive with what Microsoft is willing to provide.
Microsoft requires users to dial into their servers -- not servers owned by the game's publisher. This is a big sticking point with some of the software companies because it violates the "don't let anyone get between you and your customers" rule of business. Since it's microsoft-certified software, microsoft hardware, and a microsoft network, you'd think you were in a safe area. But, microsoft can't control everything (even its own employees), so there could be problems. This disclaimer (at the risk of making another silly analogy) is like McDonalds saying "we're not responsible if we spit in your food and you get sick".
click here if the snow white link expired [ebay.com]
Closed global broadband network (Score:2)
Bwahahahaahahahahahahahahahaha!
BWAHAHAHAHAHAH
Re:why linux should be on everything (Score:1)
root@toaster# toast --config ~/.toastrc --bread "whole wheat"
Linux should be on everything.
Re:why linux should be on everything (Score:1)
excuse me? (Score:2)
"for a situation where a new kernel has something you need but dont have... you dont ever need to recompile your kernl if everything works ok..."
That sounds exactly like an update to me. You had no need to update windows if 3.11 had everything you needed.