PSN Hackers’ Chat-logs?

The Jamel wrote: »

<user2> &serviceid=IV0001-NPXS01001_00&loginid=MYMAIL&password=
MYPASS&first=true&consoleid=MYID

<user12> I have complete logs for the auth stuff

<user2> did u already change the "first" param?

<user2> i wonder what it does

<user12> first=true is only there if you had not previously loggged
into psn

<user2> ah ok

<user12> its missing if you were previously logged in but you need a
new ticet

<user12> ticket

<user14> hi

<user14> please not connect

<user14> to external dns ip

<user14> with your ps3

<user14> your passwords and email and other data is revealed on the
external side that terrorist jones psn user is ?

<user12> yeah i know. i got his credit card and saw his last statement. how much ? porn does one human need. theres only 24 hrs in the day! which you need for each service id that you need one for,
meaning if you sync trophies you get 1 ticket, when you play a game you
get a 2nd ticket, when you watch netflix you get a 3rd

<user14> spam people can use this info

<user12> most likely if they are mapping that host

<user12> if its just the firmware check then no, because there is nothing
private sent in that http (cleartext) request

<user12> so it depends on what hosts they are looking at

<user14> to start a spamming attack

<user2> hm didnt check that ticket stuff yet

<user2> as when i used a ticket

<user2> for a test POST

<user2> i worked with 1 only

<user2> and always worked

<user2> prolly many to identify the service

<user12> the ticket is sent to say a game, netflix, etc. anythibng that
uses psn. That way you do not send credentials to anyone but sony

<user2> if its like u say then this is another vuln lol

<user2> cuz as i tested if always first ticket works

<user2> you could hijack a session

<user2> the ticket and session i used didnt timeout

<user2> and if it always creates a new ticket as u say

<user2> there would be many sessions

<user12> I also haave yet to monitor how long the tickets are valid for,
I know that the ps3 does not reuse them between apps but that could just
be the way its coded (they might be valid even though a normal ps3 will
never reuse)

<user2> for one user open

<user12> it may invalidate old ones on issuance of a new, I never looked

<user12> I just know that I saw it getting one at app launch

<user2> hm wierd with the tickets

<user2> i know the ticket is build outta few params

<user2> the serial

<user2> the userid

<user2> issueddare

<user2> service id

<user2> online id

<user2> many many :P

<user12> I also know that the server that does the x-i-5 tickets is a
bit more tight about the ciphers than any other system in sonyland

<user12> if sony is watching this channel they should know that running
an older version of apache on a redhat server with known vulnerabilities
is not wise, especially when that server freely reports its version and its
the auth server

<user2> its not old version, they just didnt update the banner

<user12> I consider apache 2.2.15 old

<user2> which server

<user12> it also has known vulnerabilities

<user12> auth.np.ac.playstation.net

<user2> ya the displayed version u see via banner is not the real version

<user12> unless they updated it in the last couple weeks

<user12> I doubt that since its not trivial to change that

<user12> its a bit more invasive than just setting it to ? like they
do on their other servers

<user11> you know, watching this conversation makes me think about whether
it was a good idea after all to buy a couple of games from psn using a visa
card

<user2> its just backported security patches

<user11> i did remove all my info after downloading the games though

<user12> that is just psn not the store

<user12> they are running linux 2.6.9-2.6.24 on that box too

<user12> that too is old

<user2> lol @ buying on store

<user11> yes, but their general attitude towards security just seems...ugh

<user2> sony wont misuse the info i bet xD

<user2> but just prevent using cfw's of unknown ppl

<user2> even better from ALL ppl

<user2> make ur own lol

<user12> so I doubt that they are spoofing the network stack on that
box as well

<user12> my guess is that it really is undermaintained "it works why
change anything"

<user2> could be

<user12> sony really should update that stuff to something more current

<user2> ya

<user2> but imagine

<user2> psn == 45 environments

<user2> and for example

<user2> every env has 50 subdomains

<user2> to external machines

<user2> its rly rly huge

<user2> who wants to do this xD

<user2> ppl r lazy

<user2> wont change