Desta forma, a pirataria tornar-se-ia impossível e consequentemente os utilizadores baixariam drasticamente (para a M$!), logo, uma porta aberta para o Software Livre.
Mas, dois dias (dois dias!) após o lançamento já alguém deu a volta ao DRM. Um simples cidadão, investigador na área de segurança e "desenvolvedor" do ReactOS foi o autor desta proeza, conseguindo dar a volta à "tal" segurança criada por um exército de especialistas (?).
Alex Ionescu - isto não se faz!
E de uma forma tão simples que nem dá para acreditar. Para os interessados basta seguir o link para o blog de Ionescu.
Porém, o que me chamou mais a atenção foi:
"The great thing about the code I’ve written is that it does NOT use test signing mode and it does NOT load an unsigned driver into the system. Therefore, to any A/V application running, the system seems totally safe — when in fact, it’s not. Now, because I’m still booting with a special flag, it’s possible for Microsoft to patch the PMP and have it report that this flag is set, thereby disabling premium content. However, beause I already have kernel-mode code running at this point, I can disable this flag in memory, and PMP will never know that it was enabled. Again, Microsoft could fight this by caching the value, or obfuscating it somewhere inside PMP’s kernel-mode code, but as long as it’s in kernel-mode, and I’ve got code in kernel-mode, I can patch it.
To continue this game, Microsoft could then use Patchguard on the obfuscated value…but that would only mean that I can simply disable Patchguard using the numerous methods that Skywing documented in his latest paper.
In the end, the only way that PMP is going to work is with a Hypervisor, and even that will probably fail."
Sem comentários!
Protect your freedom!
Sem comentários:
Enviar um comentário