CrusardGameamos escribió:ElGuaperas escribió:Entonced ya no hay peligro de actualizar, aunque sea más complicado, hay opción vía software en 5.X entiendo
Segun Kate
si estas en 1.0.0 vendela, que te sacaras pasta
si estas en 2.X o 4.1.0 sera mas facil via software
si te interesa el online actualiza a 5.X> aunque sera mas dificil
yo me quedaria en una version baja hasta que demuestren como funciona todo.
![[toctoc]](/images/smilies/nuevos2/rompiendo.gif "machacando")
patttch escribió:CrusardGameamos escribió:ElGuaperas escribió:Entonced ya no hay peligro de actualizar, aunque sea más complicado, hay opción vía software en 5.X entiendo
Segun Kate
si estas en 1.0.0 vendela, que te sacaras pasta
si estas en 2.X o 4.1.0 sera mas facil via software
si te interesa el online actualiza a 5.X> aunque sera mas dificil
yo me quedaria en una version baja hasta que demuestren como funciona todo.
Inclusive la 4.1.0? (Es que estoy en esa jeje)
PD: Gracias a todos por mantenernos informados
) y dijeron que lo mas seguro es que si, pero que si abusamos lo mas seguro es que nintendo tome cartas en el asunto.
CrusardGameamos escribió:A ver, complicado de explicar.
He preguntado si, es posible actualizar los juegos mediante alguna aplicacion como *Una eShop alternativa* de 3DS, y me han dicho que si, que es posible, pero que si te banean que probablemente revoquen tu certificado.
Luego SciresM y Motezzazer empezaron a discutir (Mientras un random pregunto por el chat que quien viene de EOL
Vamos, que sera posible descargar contenido de los servidores de nintendo como pasaba en 3DS y WiiU, aunque con cuidado, ya que no podrian revocar el certificado para conectarnos al CDN.
Le pregunte por si nos banean y no podemos actualizar juegos, si podremos actualizar el juego via algun homebrew o alguna aplicacion como el DevMenu.
CrusardGameamos escribió:A ver, complicado de explicar.
He preguntado si, es posible actualizar los juegos mediante alguna aplicacion como *Una eShop alternativa* de 3DS, y me han dicho que si, que es posible, pero que si te banean que probablemente revoquen tu certificado.
Luego SciresM y Motezzazer empezaron a discutir (Mientras un random pregunto por el chat que quien viene de EOL
Vamos, que sera posible descargar contenido de los servidores de nintendo como pasaba en 3DS y WiiU, aunque con cuidado, ya que no podrian revocar el certificado para conectarnos al CDN.
Le pregunte por si nos banean y no podemos actualizar juegos, si podremos actualizar el juego via algun homebrew o alguna aplicacion como el DevMenu.
jozix12 escribió:CrusardGameamos escribió:jozix12 escribió:Yo la tengo en 1.0.0 se supone que será igual de simple que en versiones más altas no?
O mas facil aun.
Toca esperar a que suelten prenda.
Lo decía por eso que decía Kate de venderla. Que ya no creo que valgan mucho más que las demás en una versión superior...
![[beer]](/images/smilies/nuevos2/brindando.gif "brindis")
. Raugo escribió:@jozix12 Ten en cuenta que en 1.0 vas a necesitar el puyo puyo japones para hacer algo en esa version por software.
Saludos
Satancillo escribió:@jozix12 Aquí al menos olvídate de venderla mas cara
leoco escribió:Publicación de Ktemkin en : https://gbatemp.net/threads/fusee-gelee ... st-7915201Hi, all-- sorry it's taken me so long to reply to some of this. I'll admit, I've been kind of put off by some of of the hostility in the community here, but I do want to answer questions and share knowledge where I can.
I can definitely respond to some of the things posted here. First, the non-technical:
Yes, I'm a member of ReSwitched. I joined in mid-January and have wound up in one of the leadership roles, there. I like the team and really value everything they do for the community.
I can definitely empathize with those frustrated by exclusivity. I really don't like anything that impedes sharing of knowledge, and I value teaching others where I can above pretty much everything else I do. Where I can avoid being secretive, I really try to. There are reasons RS members might not give out all the information they can: the major case is when it hurts our chances of getting access to the inside of future software versions.
I do try my best to avoid having any ego about this kind of stuff. I'm not sure I always succeed, but I do try. I don't think I tweet about things I've done out of ego or for attention-- it's more that I've done something that I'm happy about and want to share about it. I don't go out of my way to create these kinds of threads; I just talk about things I think are cool on Twitter and sometimes people get overexcited. That's literally my personal twitter; and I haven't intended it to be a communication channel for a "public-facing" person. I just tweet about stuff I like or care about there.
I don't really like it when hype develops over ambiguous solutions, either. We've announced when we have hacks for various versions 1) because we think they're cool and sometimes like to post things we're happy about to our twitters, and 2) to help people make decisions about which software versions they could feel are guaranteed to get CFW/homebrew. I didn't release the FAQ to build hype, either. I specifically released it to help quell some inaccurate rumors about what we have and to try and help people know that there are alternatives to proprietary modchips, so they can decide how to spend their money.
I keep seeing the repeated comment that people don't think it'd be dangerous to disclose "just a little more" in a particular area. It's possible I'm being overcautious, but I'm trying to walk a tight line between sharing what I know and revealing information that can point out exactly where to look for the vulnerability. I said I'd try to keep this vulnerability from reaching the public for long enough for vendors to communicate with their downstream customers, and I don't want to betray that promise.
Part of the reason why "responsible" disclosure of this vulnerability was an easy choice is that NVIDIA has already designed a new revision of the SoC used in the switch (the T214/Mariko); and I have strong technical reason to believe that its bootloader will _not_ vulnerable to Fusée Gelée, and that Nintendo will be releasing a Switch revision based on the new console "soon". Accordingly, I didn't see much advantage in hiding it, and I did see a potential danger in releasing it to the public without disclosing first.
In response to suggestion that the danger regarding the vulnerability is overstated: people _always_ categorically misestimate the danger associated with these vulnerabilities; and sometimes it's hard to tell in which direction. I can say that the vulnerability affects the Tegra family, and not just the Tegra X1; and I less think this is likely to be used to crash cars than to violate people's privacy-- I don't like the possibility that someone could easily install a tracking rootkit on the affected devices. I honestly don't know if it's likely, but given the previous point I think it'a worth a short delay so I don't have to worry about that. I'm not a super-moral savior or anything; I just don't want to lose sleep wondering if I've hurt anyone.
The "lower is better" mantra has been a result of us having more options at our disposal in lower firmwares; and not wanting to declare a firmware 'safe' until we know we have a full working exploit chain on that firmware. I haven't participated much in the "stay on 3.0.0" style suggestions, as I honestly believe there are trade-offs to these things, and for a lot of people playing the most recent games is the thing that makes the system worth it. My view is that I want to get you as much information as I can and let you make those decisions-- and I promise you'll have all the information I can give you before too much of the (Northern Hemisphere) summer goes by.
As an addendum to the point above, if you really want to upgrade, I think that's up to you and sometimes an entirely valid decision. You're not going to lose out on CFW if you have a current-revision Switch; and honestly sometimes it's worth risking some inconveniences to have access to online play and the latest games. I know sometimes people take a really "upgrading is a sin" mentality, but I definitely can see cases where it's entirely valid. I think some of us really just don't want anyone to feel like they've missed out on something due to an upgrade.
The name "Fusée Gelée" is a reference to the fact that it's a coldboot launcher meant to launch payloads "over the Horizon"-- with Horizon being the name of the Switch's OS. I called it Rocket for a little while, but Rocket was taken by the Rocket Launcher for 3DS; this is the downside of Nintendo keeping the same OS name: the puns get stale. If you'd prefer to call it "coldboothax", you're welcome to it. =P
And the technical:
No, you're not going to need to disassemble your switch every time you want to boot it. I consider the 'inconvenient' process something I'd be willing to do on the main Switch the spouse and I use for games; and I definitely don't have the patience to take out all those tiny screws every time I want to boot.
I don't want to comment on tethered-vs-untethered, if just because I don't want to narrow down where the vulnerability could be. It also tends to be the case that every time I ask what exactly people consider a 'tethered' vulnerability, an argument breaks out. I don't care about the hype; feel free assume the worst case for purposes of deciding how excited you'll be. The one exception I'll say to this is that you can consider any solution involving a modchip to be fully standalone.
The vulnerability is entirely deterministic: there's no "trying repeatedly until it works". The bootrom doesn't have fancy things like ASLR... or like a working MMU.
The main benefit of being on 4.1.0 is that we have more exploit chains than f-g that work for it. We can simulate a coldboot on up to 4.1 without actually having a coldboot vulnerability; we haven't spent time being able to do that on 5.x yet. I've mentioned that f-g isn't a "holy grail" exploit-- it's not something where you can press one easy button and then have your Switch boot into untrusted code forever-- but that it's still possible that we'll find one that you can accomplish using Pegaswitch on one of the firmwares we still have access to.
You won't notice a difference between >3.0.0 and latest in terms of convenience at time of release. The exploit that enables us to have that level of access without f-g on those versions is one that SciresM/motezazer/I came up with, and we've agreed to hold off on releasing it yet in the hopes that it gives us more options on the coming hardware revisions.
Lectura bastante interesante, un saludo
• Parece ser que (me imagino que será Déjà vu, trustzonehack) van a dejar oculto un punto
de entrada válido para 3.0.1> de momento por si funcionará en la nuevas revisiones.
• No va a ser necesario abrir la consola, solo en el caso que quieras arrancar juegos
(esto me supongo que es para mantenerte al día de los Updates requeridos).
• De momento, hasta 4.1.0 se puede realizar un arranque en frío, "simulado" en ese caso.
![[+risas]](/images/smilies/nuevos/risa_ani3.gif "más risas")
![[burla2]](/images/smilies/nuevos/burla_ani1.gif "burla2")
@gwallace Yo he puesto lo que más o menos he entendido... Puedo estar equivocado, por supuesto. Raugo escribió:En la parte del final dice que pueden simular un coldboot hasta 4.1 por lo que no veo tan claro de que se tenga coldboot sin abrirla.
Saludos
The main benefit of being on 4.1.0 is that we have more exploit chains than f-g that work for it. We can simulate a coldboot on up to 4.1 without actually having a coldboot vulnerability; we haven't spent time being able to do that on 5.x yet. I've mentioned that f-g isn't a "holy grail" exploit-- it's not something where you can press one easy button and then have your Switch boot into untrusted code forever-- but that it's still possible that we'll find one that you can accomplish using Pegaswitch on one of the firmwares we still have access to.
![[carcajad]](/images/smilies/nuevos/risa_ani2.gif "carcajada")
davidDVD escribió:En esta última semana se han estado contradiciendo bastante (el FAQ tenia varias)... Nos dijeron que no subieramos más alto de 4.1.0 y ahora saltan con que no será posible por softmod para ese Firmware, al menos no a corto-medio plazo.
Me "duele" más que nada porque tenía una 2.X y la devolví (cuando salió SciresM diciendo que saldría Fusée Gelée junto con el CFW) para quedarme ya solamente con la 4.1.0 la cual tiene mis saves, y ahora, otra vez a pillar una 2.X LOL (que conste que hago esto porque me gustaría evitar a ser posible el quitar los tornillos) aún así, vaya cachondeo/confusión nos traen
CrusardGameamos escribió:Una pregunta, donde ha dicho eso, estoy buscando en el discord y no estoy encontrando ninguna coincidencia con lo que has puesto.
User GBAtemp: While I get the point, it's made a bit mute by the fact that you and SciresM claimed the software exploit will work on 4.1.0. See that's the issue. Either it works on 3.0.0+ or it doesn't. If it does, then by now I think it would be helpful to tell people to update to their FW of choice (below XYZ). If it requires running the exploit potentially X times until it works, just say that. If it requires some game, then saying "requires some game for now" is fine too, no?
Kate: I've already said that while pure-software stuff is doable on 4.1.0; it'll be a wait. As far as I'm remembering, the only part of the chain that could require multiple tries to work is PegaSwitch, which is our browser-based entry point, and I haven't even tried the browser entry point that'll eventually be public to see how reliable it is. SciresM did the work to get our non-coldboot exploit working on 4.1.0; not me.
User GBAtemp: I'm still not entirely sure, for example, why when it's stated that everyone on current hardware will get coldboot cfw this summer (without needing to open the console or buy a particular game) that there's still reluctance to green light updating to latest firmware. The inconvenience point seems to be non-issue the more that gets revealed.
Kate: I don't think I've said anything about opening the console or not. See above for my views on updating?
Kate: [...] 4.1.0 isn't going to see a pure software solution that the public can use at the time that f-g is released. [...]
