tenacious d sucks

Oh, I think you have a typo in your post. I'm pretty sure you meant to say, "Tenacious D kicks ass and I suck huge testicles."
There we go. All fixed.

Thats alright I'm sure you have really bad taste in music.

Don't worry, you haven't offended me. I've said it before, and I'll say it again, "What Guitar Hero needs is some grinding metal or at least Black Label Society! BLS for goodness sakes!"

People are morons with their theories about cracking open the X360 with this, they're going apesh@*# over something that is utterly mundane. Microsoft themselves distribute dashboard updates and the Xbox back-compatibility emulator in the form of disc images that can be burned and run on any X360, so how is this special? It *isn't*. It's still encrypted to hell and back. This isn't some special backdoor. It's just a demo.

Moogly: Care to explain how you know this for sure? I'm guessing you have no idea.

Hackers, modders, et al could look through the code on this disc and maybe discover something that could allow them to run non-demo games from dvd-r.

Or maybe they can't. I don't know. Neither do you.

It's funny you should mention that, TK - I work professionally in the game industry, specifically with the Xbox 360. Somehow I'm pretty sure that I know more than some random schmuck on the Internet. The very fact that you're talking about "examining code" shows that you know nothing, as if you had even the first clue about the way the console works you would know that all executables that run on the Xbox 360 are encrypted. There is no user-changeable code.

Game discs, demo discs, dashboard updates and the Xbox back-comp emulator are, furthermore, signed such that the console can detect any modifications to the executable, so not even trial-and-error experimentation will work. Game discs do not have signed data, hence the reason behind the original King Kong exploit working via a security hole in the way the X360 handled shader fragments, which has since been corrected. Demo discs, dashboard updates and the Xbox back-comp emulator also have signed data, so you can't even edit that.

The only known ways to run unsigned code on the Xbox 360 involve timing-specific exploits during the (few) times that it's running in Supervisor mode, so any hacking attempts via modifying demos will be met with failure. Period.

MooglyGuy:
You state that the code is encrypted, therefore it is unmodifiable. Actually, that's wrong. The reason it is unmodifiable is because it is signed. Encryption doesn't actually preclude you from putting other code on (although it may make it very difficult). The digital signature however, does prevent you from putting any code on. Even if you could look at the code on this disc (and others), you can't make your own payload that the console will run, because you cannot generate a digital signature that matches your code.

I didn't create this system, but I'm sure it works like this:
All code to be run is submitted to Microsoft.
MS looks at it and makes sure it isn't exposing any security holes (that the code won't run other, unsigned code, for example).
If they approve of the code, they then digitally sign it.
(Here the speculation begins)
For normal games, MS signs it with a certificate that will only let the code run if the code is resident on a copy protected disc.
For other things, like these demos, they can sign it with a different certificate that will let the code run from burned discs or probably even from memory cards and such.

MS would never sign a regular game with this certificate, because they don't want the games to work from copied discs. And there's no way to transmute one form of signature into another.

As MooglyGuy says, there's no way to modify the code and still have it run, unless you can figure out how to break the hash system used for the MAC. They probably use SHA-1 or SHA-256, and those are incredibly difficult to break right now.

I still think this system does represent a minor security issue. If you can find an exploit in this code that has been signed so that you can trick it into running unsigned code, then anyone can burn a copy of this disc to use as the "trigger" for the exploit and there's nothing MS can do to stop the replication of this disc. Whereas if people find an exploit in a regular game (like the one found in the Bond game used for soft-modding original Xboxes), MS can stop replication of that game and limit the exposure somewhat.

Of course it is. Guitar Hero 3 is 1) Cheaper than Rock Band. 2) Mainstream (when they talk about Guitar Hero on the news...it's pretty popular.) 3) an established franchise.
While Rock Band is new, unknown, and could be considered rather expensive.
I personally like Rock Band better, but GH3 will undoubtedly outsell Rock Band

Well they will now that I forwarded this article to Major Nelson!







J/K



No I'm not.





Yes I am.





No I'm not...

I am.


Really.


MUHAHHHAHAHAH!

They can ban me and my silver account all they want.

BWAHAHAHAHAHAHA!

It's not a matter of getting it to run... It's about knowing the key the executable was signed with.
You can rip your xbla games off of your 360s hard drive with xplorer360, burn them to a disk, and they'll run (in demo mode if you don't own the game), cause they're signed.

Unless a new hypervisor exploit is found in this game (like the one that was in king kong), I doubt that this will be any help to xbox hackers.

Pointer, please. I looked on Pirate Bay and don't see anything.

Sorry for not reading, thoroughly. The link is:

http://www.megaupload.com/?d=5OX44D2U

Holy freaking crap, it works. Just scroll to the demo section and there it is. =V

There are probably technicalities, considering you have to buy something (THPG/OXM) in order to play the demo for "free."

Really? I guess this doesn't really help then, since the homebrew community would just set their Media Type flag to allow burned media if it were that simple.

The real problem must have to do with signed code. :¬( I hate DRM bullshit. Looks like my Xbox 1 will remain my primary media center.

Yep, you're completely right. The executable for GH3 demo is still signed, but the CD-R/DVD-R flag is turned on.
Though, unfortunately, we also don't have access to the SDK for the 360. Linux is done by breaking out using the King Kong shader exploit.

Joystiq even wrote about it. Over a year ago.

http://www.joystiq.com/2006/09/20/xbox-live-arcade-games-on-a-cd-r-dvd-r/

Thats Activision being like "Don't buy Rock Band Guitars and use them with GH3, even though they'll work, and probably work better, too."