PS Vita: content Manager and security concerns

wololo

We are constantly looking for guest bloggers at wololo.net. If you like to write, and have a strong interest in the console hacking scene, contact me either with a comment here, or in a PM on /talk!

You may also like...

106 Responses

  1. Wulfe

    Spoken like a true fanboy ^

    Very well said Wololo, I to am not a major promoter of piracy and do engage in ethical hacking. Sony has lost there rights to claim innocence after all they have put us through over the years. You have every right to question anything and everything they do.

    • KID 0/Alpha/*BANNED*

      I am not a fanboy (I think I said this before) but I am sick of ‘you’ (all) complaining about Sony as if they are one being and the entire company is to blame. There are people incharge of different ‘things’, like game development, money, distrubition etc. So who is it you really hate or think has lost their right to ‘claim innocense’. Sony is just group of people (Literally) who follow orders from people in higher seats, these people have lives like you and I, and are just doing thier Job.

      • R.A.V.S.O

        so doing their job is placing rootkits? under who’s command?

        lets be honest… its ok to have sony worry about piracy, thats good, but what its doing right now… its pretty much overdoing it and covering their @$$es with X alibi
        these “measures” they’re taking to avoid piracy have a side effect… it sacrifices user-friendliness and could possibly make a gameplay session a small feat of logins to do before the actual play session.

        even worse the such “measures” do indeed open the posibility of espionage and TBH this IS $ONY we are talking about,

        not so innocent as they look do they? so if eventually one of the many employees is scouring over your personal info… its only still a job? being an employee over a questionable activity doesnt make him/her any better than the CEO in charge of this

        • Fruitloop

          Which customer service did you phone? The machine isn’t even released in Europe or North America so I doubt they would answer your questions.

          This article is nonsense. You are such a liar.

  2. crazytomer3

    hi, just wondering, you know how the content manager wont let u put evrything on ur psvita like hacked files or other stuff. What if u upload those hacked files on megaupload, mediafire or any thing that u can upload stuff to and go on ur psvita browser go to the download link and download it from there then it would get downloaded to ur psvita.( i dont have a psvita so i cant trie it but u should trie it.

    And nice work for HBL on psvita, the first hack except hello world but that doesnt really count.

    Can u reply to this, i wanna see an answer.

    • Guardian

      I think, though I am not sure that the Vita will be limited for saving data from megaupload probably because it will only give you the basic folders to choose. Video, Music, Picture, Common. I don’t think it is going to give to give you anymore than that, but that is what I think though not confirmed since I don’t have a Vita either.

  3. Peter

    My God… I don’t even care about homebrew and hacking at this point, I just want to be able to back my damn SAVES up. An Internet connection for saves? Really?

    Save backup is becoming a “feature” in current-gen hardware. I can’t think of anything more sad than that.

  4. KID 0/Alpha/*BANNED*

    Why can’t you all be happy with what SONY has provided for?

    • g00fy

      Quite easy question…
      We pay for a product, that we own after buying. It’s not a monthly license fee or something else. No, it’s our own product.

      BUT: Sony blocks us owners from using this product with all possible features. Also it seems that the are able to find out, what exactly we do with the Vita…

      —————-

      For example:

      Someday you might buy a car. This car is now your own! So you think you can do with it whatever you want. But what if the manufacturer of it disables some features. Perhaps he disables to start the engine, when you don’t call a special phone number first. But what if you are in an area with no network?

      Also they would be able to collect all the infos how you drive, where you have been, which person was in your car, and so on.

      —————-

      Just a small mind game… 😉

      • KID 0/Alpha/*BANNED*

        It is not mind game. The thing that the car and the Vita’ both come with different user agreements so it all depends on you, the owner.

    • Guardian

      And weeee have a fanboy question here!

  5. Wulfe

    Because its SONY’s job to provide the consumers with something we can be happy with. We are obviously not heppy. You seem to forget one thing, consumers pay those “employees” and without us they wont have a job anyways. When SONY can provide something that isn’t overpriced spyware and rootkits then maybe we will be a little less taxing.

    • KID 0/Alpha/*BANNED*

      You speak of “we” as if every user thinks what you think. Do you know what hard/soft ware’ they have in that device and the value of its production. Untill you do, you can’t call it over-priced because one: “over-priced” is just an idea made by a person who has “standards” and “limits” and two: you are speaking only for yourself and less than 10% of Vitas’ users who want more from the device.

      • Asmith906

        When the psn went down I lost all access to my psp and ps1 games on my psp go because in oreder to copy games to it it had to be activated but with no psn available this was impossible. Ironically the only way I could play my legally purchased games on a legally purchased system was to use illegal means. Are you telling me that it is okay for sony to cut you off from your games whenever it feels like it. What’s the point of linking it with a system if you always have to be online to do a simple task as copying a ps1 mini to your console. In the future if anything happens to your internet or sony we the customers will be sc*** over. This coming from a guy who had planned to buy all my purchases digitally now I think it might be smarter to buy them all from the store.

        • KID 0/Alpha/*BANNED*

          I too was affected when the PSN went down but I always dowloaded my games via torrents. I saw no point in buying something when I could get for free (This is also the reason why I registered with the PSN, the free comics and demos’). In the end it wasn’t Sony’s fault but the (Black hat) hackers, so I think it was easier just to blame Sony rather than the anonymous culprits/culprit.

          • Wulfe

            You talk about standards then admit to piracy. nope you are not being double sided at all. You talk so much about hurting the employee’s of SONY yet you don’t see a point in buying a game that developers pored there hard work into just so you can steal it. Nope you arn’t a fan boy at all, just a big fat hypocrite.

          • Guardian

            What kind of person your are. Do you work for Sony? Is that it? I mean you worry about people trying to screw Sony up, but you don’t care about the developers who actually make the games? People like you is killing our industry, go back to your seat Sony employee.

          • StupidCodes

            I agree with Wulfe

      • R.A.V.S.O

        it is BECAUSE it CAN do MORE than what so far has been advertised about it, the problem is CM will most likely limit those things up.

        also making any hi-tech device nowadays doesn’t really cost THAT much… but upon sales price gets increased for actual profit.
        (how employees get $$$ which is acceptable)

        the issue is… we could call it overpriced, if such device came horribly limited to what Sony wants you to do with it… which TBH is pretty dumb as it IS your device not theirs…
        the Vita in terms of hardware is promising… but the software (and possibly spyware) makes it a waste of money
        and Im sure people don’t really wanna pay a company just for a spyware infested hardware

      • Guardian

        10% still makes it a we. So he is right when he said we.

  6. Reine

    LOL why not capture all your packet sent to sony’s server..

  7. Cercata

    I loved this entry, specially the ranting part at the end:

    CriminalRecord(‘Wololo’)-> Empty
    CriminalRecord(‘Sony’) -> Buffer is not big enought !!!!!

  8. Lihis

    Maybe that forced firmware updates via Content manager is for that when someone find exploit (using exploit need files moved trought content manager to Vita?) Sony can patch it and exploit comes worthless because files can’t moved to Vita until it have latest firmware..

  9. santos

    Ohhh sony, the fail that keeps on giving. So the content manager is here to stay. Ummm not going to use it. In time hopefully there will be work arounds. I would have asked customer service person.. How do you know, no personal information is being gathered?

    • wololo

      They probably don’t know, but I take that as an official Sony answer. If we end up finding that some personal information is indeed sent, that will be a good reason to write yet another ranting article 😛

  10. Jean Arc

    If you weren’t all ***, you would have noticed that VITA / CMA uses the MTP protocol, A STANDARD PROTOCOL TO EXCHANGE DATA WITH STORAGE DEVICES.

    But no, Wololo prefers to put out *** paranoid unfounded speculation rather than do any real work.

    • wololo

      Did you actually read the article, or did you just decide you would say I’m retarted on every single one of my posts? Maybe you wrote the Content Manager and are not happy that customers realize it sucks big time?

      I’m doing my work and blogging progressively about it. If you have useful information to share, share it, but don’t pretend you know stuff just by giving the name of a technology.
      I spent 30 minutes on the phone with Sony’s customer service, and they knew less than me on what type of information is being sent from that internet connection. So if I’m *** and not doing any real work, what are Sony doing?

      Using the MTP protocol to transfer the files is completely unrelated to the fact that the tool connects to the internet, so what’s your point? Also if it was using a full implementation of MTP, the device would be accessible through the windows explorer, which is not the case,so at the very least it’s a heavily modified interpretation of the protocol. So apparently you too talk a lot but you don’t know much either :)

  11. jlo138

    I still can’t access my psn account. Keeps redirecting me to another page to change my password which is always “under maintenance”. I have all my games on an external hdd with the licenses. If any of you can do that I suggest you do. Cause now I didn’t lose anything and I don’t need to redownload or connect to psn for MY games.

    @wololo, I make my wife do those types of phone calls for me too. I found that people are waaay nicer to a female voice. Lol.

    • wololo

      Haha, for me it was more that I suck big time at Japanese, and would have a hard time figuring out what to say, and what the replies mean. I’ve been living in this country for a while, but I still am incredibly clueless with keigo (the uber-polite language in Japan)

  12. PT

    I think it is possible in the future to make your own little server and put a PSVita custom firmware there.. and then connect somehow the server to the content manager with edited code? Maybe possible?

  13. Lawfer

    Dude you are making a lot of commotion for a TOY you HAPPILY buyed from sony. You already know that company doesn’t give a damn about customers rights. Then why the heck you buyed it in first place. Oh, wait, we already know why: you buyed it to run your HBL thing and inflate your ego and your fame over the internet.

    You have a wife and a son, GROW UP. You could (should) have spended all that money buying something useful for your little kid rater than buying a useless toy for yourself just to be everyday ranting and especulating to raise hate agains a company triying to look like a hero of the consumer rights. We already know you hate them stop repeating yourself. You are becoming really boring.

    I hope one day you get over all that hate and dedicate your life to something really important.

    We already know about the behavior of sony that’s why we decided not buying their products… like you.

    • wololo

      You’ve made your point clear several days ago in another of my posts, but again, point taken.

      I think the reasons behind me buying a Vita or blogging about it should be of no concern to you, but if you really want to know, yes, clearly my goal was not to play vita games, but to investigate the machine’s security. As far as my ego is concerned, it’s doing fine with or without a Vita, thanks.

      Your comments about my family are out of place, I’d appreciate if we could discuss without you attacking my private life, thanks in advance. Programming/Hacking/blogging is my hobby. Some fathers do sports, I rant. You don’t see people entirely quitting their hobby just because they have a family.

      Your posts don’t need to get personal to be constructive, actually I’d say the opposite is true.

    • Peter

      No one who says “buyed” has the right to tell anyone to “grow up.”

  14. MrByte

    Seems wololo you taking all the credits on HBL, you was only little piece on much bigger team.
    You act like Math. You only wanna get visitors to get paid with ads.
    Everyone, please use AdBlocker

    • Guardian

      Do you really know what you are talking about? Read the other posts. Wololo has always give credit. Don’t talk without arguments, that makes you an idiot.

    • wololo

      Dude, there’s one thing I’m not, it’s a credit stealer.

      HBL is a collective work and I’m not denying that. this specific port however, is entirely my work. Sure, it’s just one config file and a few changes here and there, but I don’t feel I have to mention m0skit0 and JJS every time I work on HBL. HBL itself will take care of that when it displays on people’s consoles.

      You should also note that most of the code that allows HBL to be portable today was made by me. If it wasn’t for my work, HBL would take weeks to be ported to a new exploit. Now it only takes a few days. I reap what I sow. Look in particular for revision 100 of HBL: http://code.google.com/p/valentine-hbl/source/detail?r=100

      Finally, I’m not a “little piece of a much bigger team”. Lots of people contributed to HBL, but I wrote more than 30% of the code currently used in HBL. I therefore pretend I’m a big piece of a bigger team.

  15. Killua

    How can I do the buffer overflow method to crash a game, if the game doesn’t has a “name input” ?
    What should I modify?
    Please answer! Thanks

    • wololo

      Be creative. You can also try to input random *** in the savedata. Sometimes that works too (that’s what happened for the Lumine exploit)

  16. DXFan619

    I wouldn’t say homebrews delve into piracy themselves, but emulators in a way do. Just because the game is very old doesn’t mean it’s free.

  17. Mysis

    could you try to log inet transfer from the contentmanager/vita to the internet with wireshark or something?

    tho i’ve got a hook-dll working to log inet-api’s within cma…i dont have a vita to test :-)

    in theory you could redirect the urls or block them later on…it would be neat to have some log file of the connections taken via cma…

    if you like to talk, maybe #vitadev

    greetz mysis

  18. silw

    I give some news (look like i work 24/7 on it) i don’t really sleep during the night.

    Anyway here is the second video of PS Vita browser (how you can transfer files)
    http://www.youtube.com/watch?v=daBtR8qePV4

    And here some play script with PS Vita browser (small hello world) http://img141.imageshack.us/img141/4147/dsc00203d.jpg

    and again, i’m not working with Wololo, someone told me that they put my video on ps3news with the new of Wololo, i don’t understand why, anyway it’s ok, it’s here for help not to be against somebody 😉 but it would be better if you don’t put some stuff together like that.

    Wololo if i disturb you in your blog with all my informations, please let me know, you can delete my post if you want 😉

    • KID 0/Alpha/*BANNED*

      Why can’t you just register and make a thread for all your ‘alleged’ discoveries and information you have?

      • wololo

        Silw, kid 0 makes a good point, the /talk forums would probably be a better place for an open discussion about your ongoing work

  19. K3ViNPwNz-

    I’m Hungry!;D

  20. KID 0/Alpha/*BANNED*

    Ahahahaha. People really think I am working for Sony; Non-sense. I’m just showing you another side of the story and I am no hypocrite; did I say I care about Sony?did I say I care about piracy? So get your facts straight before making *** assumptions. You guys are blinded by the information you recieve everyday and think your in the ‘war’ against Sony? This is a battle that has already been won and I’m just the dude who sits back and watches you dumbasses think you know whats really going on.

    • R.A.V.S.O

      wow you just truly missed the point didn’t you?

      Ranting about what a terrible thing it is devs like wololo are doing when you just admitted you’re into piracy
      (I saw no point in buying something when I could get for free… taken from an earlier comment of yours)

      THAT is what makes you a hypocrite… people like you and many other pirates who later came here on a blind rant of what X thing can do to your so precious console

      heck if you even took your time to read the article you might have noticed how HBL itself does not open doors to piracy.

      homebrews are not piracy themselves (emulators still do not count) rather extra goodies devs code.

      putting that aside to answer both your questions…

      1. Did I say I care about Sony?

      most of your previous ranting was pretty much defending them, employee wise…. hope you can defend them the same when one of them might get to your data.

      2. Did I say I care about piracy?

      Indirectly.. yes

      “I saw no point in buying something when I could get for free”

      you can keep on ranting if you please…. but don’t expect people to take you seriously if you keep on self-contradicting yourself…

      btw… before I get flamed back (and possibly I will) take in mind… I DO NOT support piracy… rather homebrews XD
      Piracy =/= Homebrews…

      no need for further insults… now grow up and have a nice day.

      • KID 0/Alpha/*BANNED*

        None of your a so-called evidence proves what you are trying to. I never said HBL could be used for piracy and to open doors into ‘it'; this is what I mean, *** assumption from so-called ‘indirect’ evidence. And clearly you missed the point where I am just showing the other side of the ‘story’ that seems to be taboo around here. Last thing, I never said that what wololo and the ‘other devs’ were doing was bad so get your facts straight then try to ‘rant’ with me. Maybe you should read my posts better.

        • xcanox

          I’ve been watching you troll for a while now, and I thought you were pretty entertaining…
          But then you said you were “telling the other side of the story” i.e “giving Sony’s point of view” and I must say, you seem to me like a newfag who can’t keep a consistant story.

          If you were giving Sony’s point of view, wouldn’t it make sense to NOT make public that you support piracy? Sony is against piracy(obviously) yet you try to peddle pro-Sony *** while you already admitted to piracy?

          0/10 FAIL TROLL IS FAIL GTFO

          • KID 0/Alpha/*BANNED*

            Idiot. If you read my posts properly you would understand things’ a little better. I don’t care about Sony and I don’t care about piracy. I’m just telling you guys what don’t want to hear. I am not troll, have I provided any statements that don’t come with decent explanations for dumbasses Iike you? One more thing dumb dumb, I never stated or said anything about ‘Sony’s point of views’ but I did say ‘The other side of the story’ (Different meanings). So your idiocrasy = 10/10, so GTFO you idiot

          • R.A.V.S.O

            Your supposed “other side of the story” is rather irrelevant so far…. and your self contradictions help no one…

            I’ve always read other previous posts before jumping to conclusions… and after reading yours all I can is a rather confused non-coherent argument with lots and lots of swears….

          • xcanox

            LOL I SAID GTFO NOOB ^

          • xcanox

            Aww you posted and ruined the point of the ^lol.

          • KID 0/Alpha/*BANNED*

            @R.A.V.S.O, Sorry for swearing, I think I was caught up in making my points’ clear to everyone rather thinking about common coutersy and respect. (This doesn’t change what I think) @xcanox, I am not a troll and I don’t post here for your amusement or ‘entertainment’. Your not worth explaing to so I won’t explain anything else to you.

          • Guardian

            @ KID 0/Alpha/*BANNED* Yeah you don’t post for entertaining or amusement. You post because you simply don’t have anything better to do but to defend Sony and your so called other side of the story.

          • KID 0/Alpha/*BANNED*

            True.