Notes from inside your Wii

HackMii header image 2


March 26th, 2009 by marcan · 84 Comments

As you may already know, we moderate the comments on this blog. It should go without saying, given other related sites such as Wiibrew, its forums, or the #wiidev EFNet IRC channel, but there are rules here.

Comments containing any of the following will be deleted:

  • Any questions regarding warez launchers, or implications that you use said software.
  • Any questions regarding pirated VC or WiiWare titles, or implications that you use those. This includes any mention of WADs unless you specify which legal WADs you’re talking about.
  • Flamebait regarding piracy and how we suck because we don’t condone or endorse it.
  • Flamebait about such topics as “homebrew is illegal”. We don’t need yet another pointless discussion on the legality of homebrew in various places and its comparison with warez or warez tools.
  • Comments in other languages. Pido perdón a los lectores hispanoparlantes; este blog está en inglés.
  • “Backups”. It’s a wildcard for piracy. Sorry if you have legit backups of games; this isn’t the place to discuss them due the piracy discussion that all too often hides under the “but it’s just backups” excuse.
  • Comments that are just plain wrong and likely to mislead, horribly bad or dangerous advice, and which contradict the very post that they are on (debate or properly identified contradiction is okay; I’m talking about answering a newbie question with a bad answer or the opposite of what the post says without properly explaining yourself)

If your comment is otherwise valid or insightful, but violates one of the above rules, it gets deleted. Too bad. Sorry, I can’t go editing comments to remove the bad bits, and some people would see that as even worse than removing them outright. Get rid of the objectionable parts and post it again – we don’t ban commenters (unless they spam).

I’m also not stupid. If I can draw a line from your comment to “I’m almost certainly pirating”, I probably will. If you’re pirating, you should probably avoid commenting here. If you need help with anything to further your pirating, you really should not post a comment about it, because there’s a good chance I’ll notice what your intentions are, even if it’s not explicit. And if you honestly are not doing anything questionable but you think it might be interpreted as such, make sure you provide an explanation. Stupid implausible exuses from pirates need not apply.

In addition, random blog entries aren’t the place for off-topic messages directed personally to me or bushing. I’ve got an e-mail address. I do read comments that contain personal messages and may act upon them, but I won’t approve them (they clutter the already long comment lists), and I won’t reply to them. If you have a message that you need to get to me personally, use e-mail. If you have a general inquiry and/or need help on something off-topic, go to the Wiibrew Forums or the #wiihelp IRC channel on EFNet.

Finally, I’ve been known to get cranky at times and delete comments that just plain bore me or annoy me. Like asking something already answered in the blog post. Or talking about off-topic and unsupported/dangerous stuff that we don’t particularly care about or consider a good idea. Like those silly system menu skins or mods, or random custom channels that you really could do without. It depends on my mood and how silly the comment is.

If your comment mysteriously didn’t appear, think twice about what you said. If you don’t see anything wrong, we may have made a mistake, or maybe your comment got caught in the automated Akismet spam filter. Just try posting the comment again, or maybe change it up a bit if you think the spam filter might have been the issue.

If you feel this is censorship, go voice your problems, concerns, or opinions elsewhere. The Internet is pretty large; I’m sure you’ll find a place where you can post your issues.

As a reminder, proper spelling, grammar, and punctuation goes a long way towards getting better answers from other people. It also tips the balance your way if I’m unsure whether to delete your comment or not. This goes particularly for English natives who just feel like being lazy or doing it on purpose. I understand that non-natives might not know English that well; just do your best, and try to explain yourself in detail if you think that people might have trouble understanding you.

I’m leaving comments open for this entry – this is your chance to talk about this, because you won’t get to do it on other posts. The rest of the rules still apply here, so no warez or flamewars about homebrew or piracy.

Tags: Wii

84 responses so far ↓

  • 1 icefire // Mar 26, 2009 at 7:41 pm

    Was that a direct reference to me/my website, marcan?

  • 2 marcan // Mar 26, 2009 at 8:30 pm

    No, you aren’t nearly important enough to warrant that much of my time.

  • 3 Cygoku // Mar 26, 2009 at 8:45 pm

    Icefire, you are important. Why would he answer you that instead of just deleting your post? 😉


  • 4 marcan // Mar 26, 2009 at 9:06 pm

    He’s annoying enough that I’m willing to spend a line or two explaining his lack of further importance.

  • 5 noir // Mar 26, 2009 at 9:14 pm

    I’m impressed with how quickly everyone managed to prove the need for moderating here. I’m referring to both the original posts and the replies.

  • 6 icefire // Mar 26, 2009 at 10:51 pm

    Well, then you are referring to SoftMii, as you might care about that more because they distribute your software (still)…even I took it down when I realized (you told me, actually), that it was yours.

    And, I personally like having a FTPii channel, and some other people must agree with me, as I have almost 1000 users on my forum…maybe channels aren’t the end of the world ;).

  • 7 marcan // Mar 26, 2009 at 11:13 pm

    I’m not sure why you’re so obsessed that I’m referring to you or SoftMii or any of that. As I said, you’re not that important. I’m not aware of any hidden references in the post.

    Channels aren’t the end of the world, but going through any sort of process just to get random channels for specific apps (downgrading, patching IOSes, whatever) is incredibly stupid.

    Oh hey, next time you claim I never contribute technical information to Wiibrew, try actually looking through them. See if you can figure out who wrote/updated/cleaned up most of the Starlet documentation.

  • 8 icefire // Mar 26, 2009 at 11:16 pm

    I am referring to this sentence: “Like those silly system menu skins or mods, or random custom channels that you really could do without.”

    What other people are making “silly system menu skins or mods” besides SoftMii and me?

  • 9 w11h4x0r // Mar 27, 2009 at 12:02 am

    if this is the place for off-topic comments, I have one:
    will it be possible to use bootmii and its entirely handmade ios to load an ios from the nand?
    also, will there be an option/ or an alternate version of bootmii that will run under a nintendo ios?

  • 10 http://maikelsteneker.blogspot.com/ // Mar 27, 2009 at 2:38 am

    I don’t zee why hou need to argue.

    Of I’m not mistaken, the most important goal of Team Twiizers is making homebrew work on any Wii while changing as few things as possible. No downgrading, no unneeded changes to the NAND and no backup loading or installing WADs.

    SoftMii tries to completely hack the Wii menu. They like to use the ultimate version for homebrew (3.2) and adding features like backup loading and completely changing the look of the menu.

    I can see that your goals are different and that you can’t work together, but is it so hard to see that you both have a group of users and that you can just live together and use each other’s knowledge?

    That’s just my point of view. If Team Twiizers didn’t want this to happen they should have made a homebrew channel with their software and software they approve of only.

  • 11 djdynamite123 // Mar 27, 2009 at 3:00 am

    Marcan and his best friend Icefire, having a barny, tsss, it is true, people just are not reading the rules, they have a problem, and come to ask just so they can fix their crap with warez.

  • 12 marcan // Mar 27, 2009 at 7:51 am

    Hey there GBATemp. You should stop pretending to be lawyers.

    Fact 1: Law varies widely around the world
    Fact 2: EULAs and contracts very often have unenforceable clauses
    Fact 3: Copyright is about distribution (copying) and generally has nothing to do with modifying stuff that you already own. The latter, if regulated at all, is not universal like copyright (mostly) is.
    Fact 4: Nintendo is lying on their website if they think what they put there applies to even a large part of the world.
    Fact 5: You don’t get to decide what’s illegal. A judge does.
    Fact 6: Nintendo’s network service EULA is about your use of their network services, not the Wii as a whole.
    Fact 7: Companies very often liberally shoot out bullshit legality claims if it’s in their best interest, even if there is no legal backing to them.

    You can argue all you want about the morality of homebrew as the root of piracy, but stop making uninformed claims that homebrew is illegal (where? I take it you studied the laws of all countries to arrive at that statement?).

    I would also like to remind everyone that open source DVD players (and similar) are illegal in the US thanks to the DMCA, and no one particularly gives a crap. I also don’t particularly give a crap if homebrew happens to violate the DMCA. I’m pretty damn sure that it’s legal in sane countries (e.g. where I live). If you disagree, better point out which particular Spanish law it is I’m breaking. I’ll wait.

  • 13 marcan // Mar 27, 2009 at 7:53 am

    BootMii can launch IOSes from NAND via the original boot2, to support launching games or legacy homebrew using IOS.

  • 14 Trenton_net // Mar 27, 2009 at 9:43 am

    Question: With new functionality such as Shop channel updates, large SD card support for purchased content, etc… Nintendo seems to be adding more reasons to entice users to upgrade their systems to a more secure environment (as well as add more value to existing users).

    Is there any work being put forward to see if new functionality can be somehow retained so that users who do not want to limit their freedom of choice with later updates can enjoy the same benefits as “closed” users do? Or is this just a sacrifice/informed decision people need to make ahead of time?

  • 15 JakeyBoy // Mar 27, 2009 at 9:53 am

    I assume by piracy you mean illegal distribution, not bad hack stuff like Sonic Jam 6 and the such.

    What actually does ‘backup’ mean anyway? Is it just copying a game onto another disk with no intention of distribution?

  • 16 pokeman7452 // Mar 27, 2009 at 10:08 am

    Oh, hey, Wiibrew has forums! I check up on Wiibrew weekly, but never noticed that link. Looks like I have a lot of reading to do…

  • 17 Cygoku // Mar 27, 2009 at 10:12 am

    Marcan, why wasn’t HBC updated against the use of homebrew software clearly intended at piracy?

    Wouldn’t this showed Nintendo your true desire and interest at stopping piracy? Maybe it is just the concept that it is not your job to do that.

    I have the feeling that your knowledge could easily outdone work of pseudohackers such as WG and WK.

    Sorry to have brought the P word twice in this entry.


  • 18 funkamatic // Mar 27, 2009 at 10:15 am

    Marcan: right now there is some sort of bricking problem with booting GeckoOS to channels other than the disc channel. Could BootMii fix this?

  • 19 sgwiiboy // Mar 27, 2009 at 10:25 am

    You are really confident you have not broken any laws?

    Confident enough to, for example, make your full name and address known to Nintendo?

  • 20 AR15 // Mar 27, 2009 at 10:40 am

    Marcan what is your major (if you have one)? Because your answers sounds pretty logical, and smart…

    Also do you plan to update HBC? If I remember correctly, you (and Twizzers as well) aren’t willing to do it anymore; as well as the hacks to install it… in this case do you think Nintendo left some doors for another hack?

  • 21 marcan // Mar 27, 2009 at 10:45 am

    By piracy (which, by the way, is a pretty stupid term, but it’s been popularized too much for me to just ignore it) I mean downloading games and playing them without paying.

    A ‘backup’ would be using a copy of a game that you own. It’s legal and I don’t object to true backups – heck, I use a copy of Zelda myself because I scratched up my original during the early Twilight Hack days when I was using it all the time. Unfortunately, there is no technical means of properly differentiating between backups and just plain copies (there’s no way for the console to know that you actually own the original), and there’s no way around that unless manufacturers start tying game sales to game consoles (think “activation”, but that comes with a whole host of problems of its own). This means that, in practice, “backups” have become a search-and-replace term for the discussion of piracy on-line. If you can use backups, you can use illegal copies, so there are tons of forums where piracy discussion is not allowed but everyone pirates and just replaces that word with “backup”. We don’t want to fall into that trap, so we’re forbidding discussion of backups altogether.

    Most of the problem would be solved if manufacturers would replace broken discs at cost – I wouldn’t mind paying a couple euros for a new Zelda disc (sans case/manual/everything else which I already have). I think Nintendo might already have something like this going on, but I’m not sure of how much they charge.

    Blocking piracy software is a slippery slope. There’s no trivial way of differentiating between warez apps and regular homebrew from HBC’s perspective. In fact, there is essentially no technical difference between HBC itself and a pirated VC title. The details are somewhat involved, but the main premise is that if you can run code, and you can extract the plaintext code and data of pirated games, you can run those too. Of course, this doesn’t take into account the difficulty of accomplishing that. Our objective is therefore to strike a balance between enabling homebrew with as many features as possible, and doing as little work as possible for the warez users. This is, for example, why we’re focusing on new Starlet functionality without IOS (e.g. USB2 on BootMii) instead of stuff like the IOS module toolkit and the new IOS USB2 module. The latter are interesting from a technical, hacking, and homebrew perspective, but it’s also doing work for the pirates which depend on IOS. The developers behind piracy tools tend not to be nearly as good at true reverse engineering and writing “new” stuff as the homebrew developers. The first DVD warez launcher had little new code, and it was just a combination of existing tools (IOS module toolkit and example, existing GameCube DI code, and existing PPC-side game launching code). The first VC/WiiWare installers came out after I added ES functionality to libogc (I regret doing that now). I’ll admit that WiiGator’s warez launcher surprised me – he does actually seem to know what he’s doing on the IOS side, at least moreso than Waninkoko.

    And yes, it’s also that blocking piracy is just not our job. Using a single security system for several purposes is bad security design. We try to break “just enough” of the security to enable homebrew without piracy, but Nintendo really should have made the gap wider than it is now. PS3 Linux proves that homebrew without piracy is possible (although they restrict 3D access, but I suspect that’s to restrict unlicensed developers more than piracy). Even having some sort of way of getting homebrew on the Wii with full peripoheral access except for the NAND (and no IOS, which games require) would go a long way towards enabling homebrew without piracy on the Wii. We can’t do that; Nintendo has to (unfortunately, it doesn’t look very plausible given the current hardware design).

    I don’t know what the exact issue is. In any case, BootMii will let you recover from pretty much any normal brick, as long as you’ve installed it and made a NAND backup before.

  • 22 Link // Mar 27, 2009 at 10:45 am

    Although I am not marcan..

    @Cygoku: HBC cannot do this.. if HBC would detect these applications for example via checksum, people would update them and they slip – you could do more complicated checks but still – do you want marcan and bushing to start signing applications just so that they can make sure they reviewed every application or what? And as HBC shuts down after launching an application it simply can’t control it.. again there’s that legal/illegal thing.. while copies are illegal in most countries (including mine) in some a copy of a game you made yourself might be okay.. and thus a launcher for it would also be okay.. still.. as marcan said, law changes from country to country..

    And well making a way to launch only non-IOS based homebrew which would disqualify for piracy loaders would also disqualify for the use of Gecko OS – something I’d be particularly unhappy about as Gecko OS is for me an import loader and allows for debugging my games using a USB Gecko, something I really love doing. And so far I do not know of any law here (Germany) where starting an original game you have using a custom loader would be illegal.

    That’s like declaring wine (Windows emulator) illegal because it launches Windows application in a Linux environment and not a Linux one.

  • 23 sgwiiboy // Mar 27, 2009 at 10:55 am

    @ Marcan your post at 10:45 was one of the best I have read in ages, anywhere. Which begs the question, why did you not put a lot of that in the Hi Nintendo article yesterday?

  • 24 marcan // Mar 27, 2009 at 10:57 am

    Nice troll, but I’ll bite. Anyone with mediocre internet detective skills can trivially get my full name – I’ve posted it publicly tons of times, and I’m not afraid to say that my name is Héctor Martín Cantero.

    As for my home address, it’s been on my domain’s WHOIS records for a long time, until I recently threw some WhoisGuard subscription on it. Either way, some of my other free subscriptions are about to expire and I’m not sure I’ll feel like ponying up the cash to extend them, so if you care that much, whois some of my domains every now and then. Or just buy a SaveMii and look at the return address.

    My education has been pretty random lately. Looks like it’s going to be Computer Science. I would have preferred to do Computer Engineering, but that doesn’t really exist in Spain.

    It’s looking like HBC (in its current form, functionality-wise) is going to become an application launched from SD by BootMii, and instead, we’ll have a BootMii launcher channel for those who can’t or don’t want to install BootMii as boot2. You should expect to be able to continue to use HBC in some form in the future, although we’re not looking at adding features at the moment.

    @sgwiiboy again:
    Because I was tired and didn’t feel like writing all that up, I guess.

  • 25 sgwiiboy // Mar 27, 2009 at 11:16 am

    @marcan forgive me but I wasn’t interested in you enough to go searching you out LOL! Fair play to you for sticking your head out to be shot at though. I apologise for making assumptions that were not true.

  • 26 Knocks // Mar 27, 2009 at 12:06 pm

    I’m pretty sure violating license terms is a breach of contract even in a completely lawless country like Spain… You do have contracts over there, no?

    As to GBAtemp, it may be filled with clueless newbies, but no one likes to be insulted. If they want to mess with their NAND or create custom health warnings (which I believe is a fucking waste), it’s their business.

    I personally love the convenience of having dedicated channels for the stuff I use frequently. Homebrew Channel is not the pinnacle of interface design, and Nintendo’s menu is slow enough to have to go through yet another middleman app.

  • 27 Cygoku // Mar 27, 2009 at 12:16 pm

    @Marcan & Link : I was more thinking that HBC could have abilities such as to check if a boot.dol can read, sign (or fakesigning) wad packages or any copy-2-nand piece of code.

    There shouldn’t be so many gazillion piece of code that pseudohacker uses to do that, and therefore kind-of-easy to detect.

    Keep up the good work,


  • 28 cactusjack901 // Mar 27, 2009 at 12:17 pm


    May I also point out that when the tweezer attack was first performed, they thought they found a way to play “backup” games, and they tried to contact Nintendo to work with them to fix this security hole, much like what happened with the Xbox, and Nintendo then tracked down Marcan and Bushing

    (this is, of course, if I remember the story correctly, which I very well might not)

  • 29 marcan // Mar 27, 2009 at 1:58 pm

    Last I checked I didn’t click through any EULA when I bought my Wii, nor did I sign anything. The WiiConnect24 policy does not apply because it’s optional, only applies to network service, and is unrelated to an EULA relating to the use of the software on my Wii. Large parts of many EULAs are unenforceable or legally void, thorughout the world, and that has nothing to do with lawlessness. And yes, we have laws here. What we don’t have, thankfully, are too many stupid laws that relate to new technology and which are created by clueless lawmakers appointed by media cartels. You know, like the DMCA in the US.

    That’s like an antivirus. They only work in response to threats, and heuristics are unreliable. It’s also a huge amount of work and can always be worked around. In fact, mathematically speaking, it’s a problem that has been proven to be impossible (see the Halting Problem).

    Close. It was actually with the discovery of the drive’s DVD mode. Instead of talking like civilized individuals, Nintendo first ignored bushing, then played internet detective on him and tracked his work phone down to try to call him (bushing specifically said he wanted to talk via e-mail).

    Seems like ignoring/annoying us got them softmods and DI bus modchips. Those could have been prevented or mitigated if they had bothered to actually show interest and not attempted to shoot the messenger.

  • 30 me.yahoo.com/a/aTJ2Nr8Nz… // Mar 27, 2009 at 2:36 pm

    Ok before i start i just wanted to let you know that actually read up on your chats on twighlight Hack talks you’ve had, your blog and have made an attempt not to be completely ignorant.

    From your site i’ve learned the hack is from a buffer overflow. From my understanding this is basically when a game crashes because of the exchange of too much information. From their you make an exploit. You said that finding the buffer overflow wasn’t the problem but creating an exploit from a crash was very difficult.

    So i thought what if he could make a crash that would be easy to make an exploit from. I was also thinking of something universal that basically every wii user has.

    My answer was the mii’s. As you probably know Transfering mii’s from the wii to pc or pc to wii is relatively easy. So you could create this “buffer overflow” from a hacked mii file and have it transfered to the wii. When the mii is added to the channel the wii “crashes” and you have made the crash easy to make an exploit to so there isnt a problem there.

    Im not sure if the wii allows the transfer of mii’s through SD cards but we could always use bluetooth and have the mii put directly on the wii remote using glovepie. The only problem is the wii remote may not be able to hold enough information to create this buffer overflow. Also im not even sure if the buffer overflow can occur without a Cd. If it did need a Cd maybe we can use a game that uses miis (wii sports, Mario Kart) .

    If you delete this comment because it is stupid i would appreciate if you responded with why it wouldn’t work at least.

  • 31 sgwiiboy // Mar 27, 2009 at 2:58 pm

    @ marcan.

    I remember reading an email from bushing to Nintendo about the DVD mode and the potential for “backups” because of it.

    Just purely out of curiousity, why did bushing decide to make that email public? Was it because, as you said, Nintendo played internet detective on him?

    I am not criticising anyone here but you must have known that by bushing making his email public, you would be giving the likes of Waninkoko and Wiigator a starting point for backup launchers?

  • 32 marcan // Mar 27, 2009 at 3:11 pm

    @nameless yahoo OpenID:
    Miis aren’t exploitable. You don’t create buffer overflows, you exploit them. The bug in the code needs to exist beforehand.

    What we did was release DVDX for homebrew use. At the time, it didn’t seem likely that Waninkoko & co would be able to abuse it to launch warez (and in fact, they weren’t). It was only after the release of the IOS toolkit that they had all the pieces that they needed to glue together.

    We wanted to talk to Nintendo to give them a chance to react before disclosure, and more generally to see what we could come up with. We’ve obviously never had any interesting discussions with them, but it has worked before with other console vendors (e.g. Microsoft), so we figured it might be an interesting and positive experience for both. Apparently we were wrong. There was nothing left for us to do but release DVDX for the benefit of homebrew.

    AFAIK there were no details in the e-mail listed. If anything, it was libdi/DVDX that gave people an idea for warez launchers, but as I said, at the time we correctly considered it beyond the reach of the interested individuals, given existing tools.

  • 33 sgwiiboy // Mar 27, 2009 at 4:13 pm

    Indulge me marcan as my interest is piqued now. What exactly were you hoping for from Nintendo after warning them about the possibility of backups? Did you want something personally from them or just the enjoyment of finding a problem and helping fix it? Not a loaded question, just interested.

    Also is English your second language?

  • 34 me.yahoo.com/a/aTJ2Nr8Nz… // Mar 27, 2009 at 4:13 pm

    So the only way to create a buffer overflow. Is to create a game on the wii and run it? Which i am assuming is not possible.

    How were you able to find the bug in the actual Cd.
    How did you even get to the code?
    Can a buffer overflow only occur in games or on CDs

  • 35 marcan // Mar 27, 2009 at 4:21 pm

    bushing would be more qualified to answer, as he was involved the most during the process. I’ll see if I can bring him around. Essentially, though, I guess we wanted to see what their reaction would be, and I guess offer something to entice them to converse with us. It’s also a way of proving to them that our interest is not piracy, and hopefully make them realize the difference between homebrew and piracy (which they don’t seem to grasp or care about lately).

    Yes, English is my second language.

    @nameless yahoo OpenID:
    Yes, the only way to “create” a buffer overflow is to run code on the wii, which is not possible for us normally. A buffer overflow is a bug. You can’t exploit a bug that’s not there. I’m saying that the Mii data format and the code to read them don’t appear to have any exploitable bugs.

    Buffer overflows can occur anywhere. You can either guess and feed bad data to a program to see if you can make it crash, or read code and see if you can find the bugs themselves. We do a bit of both. Read up on the twiizer attack if you want to know how the key to decrypt game code was found.

  • 36 sgwiiboy // Mar 27, 2009 at 4:37 pm

    @ marcan,

    So basically all you wanted was dialogue between yourselves and Nintendo in order to prove that you (and specifically genuine homebrew) were no threat to them or their business.

    Thanks for being so candid about it all.

  • 37 bushing // Mar 27, 2009 at 4:54 pm

    @sgwiiboy: Here, at this point it’s probably just best for me to share the last “real” email I sent them. After I posted the message here trying to get ahold of them, I got an email back from an executive at Nintendo saying “We received your e-mail and will reply further shortly.”. A week later, they still had not emailed me, so I sent them this:

    I am still looking forward to hearing from you (or from one of your engineers); in the mean time, maybe I should be more explicit about my motivation in bringing this bug to your attention. I am not looking for any sort of compensation (a job, free games, etc), nor am I trying to make any sort of quid-pro-quo “deal”. I’m not even looking for any information beyond a confirmation that I have clearly explained this technical issue in a way that is useful.

    We love the Wii as a platform and work hard to avoid contributing to the piracy problem, so it seems that the ethical thing to do is to inform you when we have found something that would only be harmful to our favorite console. Also, I understand that you have a finite amount of engineering resources available for security issues. I believe that if we can show you some of the bugs that we consider to be dangerous, you will agree that they would be a much better use of those resources than fixing what are essentially disposable save-game exploits.

    So, at best we will be able to share some info with you that will help you prioritize your bug-fixing in a way that lessens its impact on us; at worst, we’ve merely told you about a bug that we hope to see fixed sooner rather than later, and everything else will continue as before.

  • 38 HyperHacker // Mar 27, 2009 at 7:32 pm

    I honestly think your emails will not get much attention. They have to make it from the lowly intern at NOA who probably only speaks English, all the way up the chain to the developers at NOJ who probably only speak Japanese. They most likely can’t do much besides forward it to their superiors, who do the same, in a giant game of telephone. Eventually, someone (who maybe doesn’t speak English very well) sees this message and thinks it’s a load of nonsense. The odds of actually getting your message to the people who understand the problem are probably very slim.

    @34: A buffer overflow is a programming mistake. The programmer reserves some memory (a buffer) for a piece of information, but fails to ensure that they don’t try to put more into that buffer than it can hold. The buffer fills up and the remaining information gets written over whatever is next to it in memory. Since we can control to an extent what the information is, we can overwrite some variables and/or code. Since we usually don’t actually know what is where in memory, it takes a lot of trial and error, or a lot of debugging, to figure out what part of our input ends up overwriting some variable that does us some good, and what we need to change it to to get the game to treat the buffer itself as code. Then we can put any code we want into the buffer, and have an exploit.

    Wikipedia has some good visual examples of how this works.

  • 39 Inferior_Design // Mar 27, 2009 at 8:23 pm

    Based on earlier posts, I guess it’s too late for HBC suggestions. And I really wanted a way to arrange my apps by name or function (utility, game, etc.)
    Although it disappoints me to hear that HBC won’t be updated again, the thing that hurts me the most is hearing that BootMii is going to run “as boot2 on all Wiis with boot1v1, and as a channel on all Wiis period”.
    I wasn’t entirely sure how you guys would do it, I had this romanticized idea that BootMii would start on powerup and ask the user to run the Wii in Nintendo mode or Twiizer mode. Could it still run like that, with the channel available to change settings?

  • 40 bushing // Mar 27, 2009 at 10:50 pm

    @HyperHacker: No, really, I was writing back and forth with one of NOA’s executives. They noticed. :)

  • 41 jjsullivan // Mar 27, 2009 at 11:35 pm

    @Trenton_net // Mar 27, 2009 at 9:43 am:

    You bring up a good point Trenton, and I have no idea why nobody has picked up on your post yet(espicially for where it is at that point in time.).

    You see, the only possible way of accomplishing what you have stated is by using a custom firmware kernal. Which the only thing that has been accomplished there is custom eyecandy toys and other unessary nonsense. The only serious features that could be added is kernal addons, as done with the custom psp firmwares by dark-alex.

    Here’s how the structure works on those firmwares.

    psp apps for the 1.50 firmware kernal are placed in the ms0:/PSP/GAME150 which give you options for what apps are launched with whatever kernal, and so on. Such as GAME280,and GAME3.XX.

    So basically, there are multiple kernal versions in one firmware which allows you the latest features with homebrew exploits as well.

    Now if we had such a thing on the wii, we could have all the latest features for the wii firmware also with homebrew. (and also have the first serious implementation of custom firmware on the wii. Instead of your boot screen saying “LOL YOUR A MOTHER F***ER” for laughs.)

  • 42 http://maikelsteneker.blogspot.com/ // Mar 28, 2009 at 2:54 am

    @ Inferior_Design: take a look at preloader. Without boot2 it’s still possible to let the Wii run code before the system menu is loaded, but I don’t think that’s what Team Twiizers is going to do with BootMii. The most important reason is probably because it’s quite risky.

  • 43 sgwiiboy // Mar 28, 2009 at 2:55 am

    Again thanks to you both for being so candid about all this.

    Really then, what you were hoping was that by being prepared to expose and help solve the DVD mode issue, Nintendo would see that you really were anti-pirating and that they would then focus their attention away from Homebrew.

    Speaking from experience, you were probably a little naive. I mean that as compliment to your intentions for Homebrew and not an insult to you personally.

    I worked for one of the biggest game companies for nearly 10 years after completing my degree and let me tell you, if Nintendo are anything like my former employers, then they certainly do not share your ideals about the Wii. It’s all about the money, nothing else. I could name so many games that I coded on that were released despite numerous known glitches or without adequate beta testing. It was always more important to get a game out and on the shelves than actually making sure it was ready for general release.

    Clearly Nintendo have made a hash of reducing piracy in the latest update, they have gone the quick easy fix and not a viable long-term solution. They obviously feel that by sorting out your exploit that it will prevent more people installing backup launchers, forgetting of course how many have them already. By being honest with Nintendo you have actually drawn interest from them to shut you down, which seems a bit unfair. You have been exploited by piracy in the same way they have.

  • 44 me.yahoo.com/a/aTJ2Nr8Nz… // Mar 28, 2009 at 6:11 am

    Ok well since i know that buffer overflow causes twighlight hack.

    now the question is what does the twighlight hack do?

    And what happens right after the buffer flow is exploited why would an error in a game effect an entire system.

    in fact what ever code you wrote in their shouldn’t it have only occured in the game and have no effect the wii.

  • 45 me.yahoo.com/a/aTJ2Nr8Nz… // Mar 28, 2009 at 6:16 am

    0 yeah also i forgot to ask.

    Why dont we use virtual console games? I mean im sure the programmers made bad mistakes or left some vulnerabilities they didnt think they’d worry about. in fact Meganman 9 allows you to turn on some bugs that were in the game.

  • 46 godrik // Mar 28, 2009 at 11:07 am

    ASAIU, the wii NAND is not protected from games. Any games can write in the NAND (it is needed to implement game save). In the NAND there are the channels. So basically the twilight hack once it has gained full access write a “save” to the NAND which is the homebrew channel.

    In fact, the twilight hack allows you to run ANY code, but it is commonly used to run the HBC installer.

    Game in the virtual console probably run certainly in an emulator. finding a bug in a VC game can lead you to full access to the emulator, but not to the wii. You would need to find a bug in the emulator as well.

  • 47 spoone // Mar 28, 2009 at 12:01 pm

    hey, i am curious.
    what was it that you discussed with microsoft ?

  • 48 cactusjack901 // Mar 28, 2009 at 1:38 pm


    The Twilight Hack is based on a buffer overflow, caused by Epona’s name being too long, and that’s why it triggers no matter where you go, when you talk to the guy, he says Epona’s name, when you go backwards, Epona’s name gets mentioned, you can’t go beyond the spring, but in the spring is Ilia and she says Epona’s name, etc.

    When this overflow occurs, code is injected into the site in memory where the buffer is, and it takes some guessing, along with trial and error, but with some luck, you will overwrite some of the variables in memory, where the buffer was, when the buffer tries to fix itself (generally speaking, it won’t, it’ll try like hell, but it won’t fix itself, so the game or program locks up).

    These variables get overwritten by your code, and when your code gets seen by the system, it gets run, and that’s why it affects the whole system, the code you inject first terminates the game that is playing (kind of like going back to the wii menu, but not entirely), and then loads another piece of code, to load a homebrew program, or in the case of a Hello World program, terminates the game that is playing, then loads the homebrew program (I guess you can consider the exploit a homebrew program, I mean, I would).

    In the case of the Twilight Hack, the game’s buffer overflows when Epona’s name is too long, and we inject a loader into memory, which then loads a boot.dol and…well.. that’s all there is to it, and this is my understanding of the Twilight Hack

    To answer your second question, a virtual console game can’t be used, because the only way the average end-user can modify in-game memory, would be to use a modified save file, the Virtual Console is really just a fancy emulator, so there’s not much to work with, and I don’t think there’s any real way to get the VC games to cause a buffer overflow, unless it’s a glitch that was already in the rom it is playing, and the VC save files, are also just a fancy save state, so unless there’s a bug in the emulator itself that will cause a buffer overflow via a savestate, it won’t happen. The only two ways that come to my mind on the virtual console issue, is that if we use an injected rom into a virtual console WAD, but that right there is illegal, since the virtual console WAD the rom would be injected to is copyrighted code, and even less than that, the WAD would have to be installed somehow, so that option is right out. The other is if a glitch is found in the save state loading of the emulators, and then a hacked save file can be made, and from there, maybe a generator could be made, that generates a modified save file for the system the emulator is for (for example, if Mario 64 is found to have an error in the save-state loading, that means the n64 emulator Nintendo uses has an error, so in theory, all N64 VC games should have that error, so a generator for any N64 VC game could be made), however, it is highly doubtful that there is an error to trigger a buffer overflow. So doubtful, that I would say searching for one would be nothing but wasted time.

    If you want to know about Wiiware games, this is more reasonable, since most Wiiware is written by somewhat inexperienced third party software developers, however, I, personally, don’t believe this is the avenue to take.

    As far as your Mega Man 9 comment goes… it makes no sense, unless you mean “bugs” like the flickering when you get hit, which is an option that was put there purposely, to make the game play more like the NES iterations of the Mega Man games, like Mega Man 2.

    I hope this answered your questions, and everybody else, please feel free to correct any errors I made

  • 49 Bladeforce // Mar 28, 2009 at 3:06 pm

    One must ask the question about why all of this had to be done publicly? Why couldnt you just have found the exploit and talked to nintendo about without the publicity. All this “we love nintendo but” gibberish wont mean jack to nintendo. YOU HAVE DONE THE DAMAGE PUBLICLY. Did you just want the fame? I personally dont use homebrew at all because I wanted to use the Wii as Nintendo wanted it to be used. It’s all cool by me if you dont like the Wii the way it is don’t bloody buy one!

  • 50 Cygoku // Mar 28, 2009 at 3:24 pm

    Could the exploit that dvdx34 is using be incorated to cios_usb2 so it can be properly install under firmware 3.4 ??


  • 51 TheSteve // Mar 28, 2009 at 3:34 pm

    Out of curiosity, the idea of doing reverse engineering fascinates me, and its something I have an interest in pursuing. My problem is I don’t know where to start. I have a background in software engineering, with a most of my side electives being in computer security, the jobs just weren’t available for work in that field when I was looking.

    If I were interested in doing Wii reverse engineering, where would you recommend I start?

  • 52 Muzer // Mar 28, 2009 at 3:48 pm

    I think it’s because if you do that, only the emulated system would be effective. This means if you do it on say, a SNES game, you’d be able to run SNES homebrew, but not much else :p

  • 53 Don Giovanni // Mar 28, 2009 at 11:41 pm

    Virtual console games can be updated/patched easily.
    The reason why the Twillight hack was great is that it was in a retail pressed disc. Once the disc is sold on the market the bug in the game can’t be patched (only in new discs). Millions of copies with the bug had already been sold.

  • 54 esposch // Mar 29, 2009 at 3:10 am

    Would it be fair to say that you regret hacking the Wii and are ashamed at what “Homebrew” has now become?

    On the flip side, Nintendo ould have stopped this whole thing from ever happening by releasing an an offical method to run homebrew (from the NAND?) or stopped Waninkoko when they had the chance (Around the time when WAD manager came out). The only word which can be used to sum up his latest project is disgusting.


  • 55 bushing // Mar 29, 2009 at 4:26 am

    @Bladeforce: I tried to contact Nintendo privately for several weeks. They never responded until I posted the message to them, publicly. When they DID respond, they replied to the first email I sent them, proving that they had just been ignoring me and hoping I would go away.

    @sgwiiboy: Part of it was naivety, sure. That being said, I only half-expected to hear back from them. Segher once said (on tmbinc’s blog) that he would have told Nintendo about the fakesigning bug, if he had known how to do so. I wouldn’t have done that, but this was a bug that we really didn’t care about (in the sense that it wouldn’t cramp our style if they fixed it), and so I figured that it would be an interesting experiment. Put another way, “we’ll try our hardest to make contact with them, and if they aren’t receptive, then they can go fuck themselves”.

  • 56 Shonty // Mar 29, 2009 at 10:52 am

    you would generaly write after at length about this special correspondence with Nintendo and you.
    …Will you?

  • 57 emmo // Mar 29, 2009 at 11:05 am


    I hope Twiizer Team will find a new way to hack the Wii. Because I just want my wii to read DVD (video), CD (music) and to serve as a Wiitop (like Eeetop) with a nice linux.
    But are there some way to hack wii by opera or using some built from scratch HBC on SD card with the new ystem menu 4.0 fonction ?

    Because I was offered a wii yesterday but it had been updated before. Yes I will use it with games, but if it can does the other things i listed it will be nice.

  • 58 Shonty // Mar 29, 2009 at 11:48 am


    The Nintendo Wii is not compatible with “CD”

  • 59 Distant Thunder // Mar 29, 2009 at 3:46 pm

    >> Hi there, new on the blog , in coding and at least in english ! Really interested on marcan & Bushing work, just wanted to present myself after having followed this blog so long… (off topic i know, but wasn’t able to find the right place for that so…)

  • 60 Bladeforce // Mar 29, 2009 at 5:42 pm

    @Bushing when all is said and done there are plenty of ways to get nintendos attention to such activities rather than publicly. If you are so pro Nintendo why the hell release anything that could harm them? Surely it doesnt take a genius to know it would be abused just the same way the Wii has been abused. It’s just so full of contradictions and hence why after browsing through all these petty arguments and rants that “homebrew” has brought up (usb loader etc) you shouldnt be surprised by it at all.
    I personally hope you (or friends) do find another hack and live with fantastic egos as previously.

  • 61 Distant Thunder // Mar 30, 2009 at 11:04 am


    hmm, i fully understand what sayin but… do you think by example that some tools like Wireshark (previously Ethereal) should stop to be released just because there’s a “risk” that some people would use it to hack private networks ? Or simply would Linus Torval license the core of LinuX and declare he would stop any further work on his OS pretending that it might be used to hack Windows-based systems ? HBC enables its users ti use some cool stuff like reading DVDs, transforming their consol into a media center and fully make profit of their purchase, none of the developpers may be blamed for the illegal use some fake are doing with it… Eventhough they added the task lister, Nintendo shouldn’t had released the WII, since this is an evidence that children will spend their time in playing while they should be learning their lessons…

  • 62 bytor // Mar 30, 2009 at 3:12 pm

    Firstly, I thought I’d convey my thanks to marcan and bushing for sorting out the Homebrew Channel. Quake on the Wii can’t be beaten imo, and puts the majority of FPS games released nowadays to shame (as does Duke Nukem 3D, I’m still keeping my fingers crossed that someone with greater programming skills than myself – haven’t coded anything for years lol – will start work on one if it isn’t being worked on already!)

    Secondly I thought this statement “Time and time again, Waninkoko’s apps have just been thin wrappers around existing code or tools written by others.” was a bit odd if you don’t mind me saying so, given that this is the entire point of Object Oriented Programming. :o/

    Not too sure how this malarkey has been developed but are you upset that he’s used the existing code/tools or just that (and I don’t know whether he has or not) he hasn’t given you or others credit of any sort for the code/tools he’s used..?

    Go easy on me, it’s my first post…so apologies if I’ve upset anyone by bringing it up…I just couldn’t bung a comment in on the 6 hours thingummybob where the question was more relevant.. ;o)

    I’m also looking forward to any news of BootMii…might be worth getting a few bricked Wiis on Ebay in preparation lol ;oP

    Keep up the good work anyway chaps ;oD

  • 63 Musturd // Mar 30, 2009 at 5:26 pm

    Marcan, reading your rant really opened my eyes. I (along with most others) have thought of Waninkoko as some sort of god, always creating the “best” software (from what I hear).

    I don’t really participate in the WiiBrew community (I have homebrew channel installed, but I don’t use my wii much (I love ScummVM though)), but I like knowing whenever homebrew breakthroughs occur for any consoles.

    I have lost all respect for Waninkoko, and now respect you. You are an honest homebrew coder, one who does not condone piracy, and you did what took the “famous” Waninkoko 22 days in 6 hours.

    I plan on studying computer engineering in college, and I just want to ask you, how you learned how to reverse engineer things on your own. I’m really interested, but not sure where to start. Really the only things I know are C, a bit of assembly, and basic software reversing (interested in it, but haven’t really done anything with it).
    Please help me get started.
    I bow down to your awesomeness Marcan.

  • 64 rajnika // Mar 30, 2009 at 10:10 pm

    Why comments are “off” on the 6 hours drama ticket ?

  • 65 rt1982 // Mar 31, 2009 at 4:19 am

    Wow you guys are great.
    I love homebrew the only thing is I got a wii last thursday and updated it through nintendo thinking I would get 3.4 i was realy ticked off when i saw 4.0 and coulden’t load TW hack I tried “backing up” the homebrew off one of my other wii’s with 3.2 no avail after reading this forum you made it clear to me why it woulden’t work with the tickets thing so looks like im stuck with a wii with 3.2 witch can play dvd’s and a wii with 4.0 witch can’t play dvd’s. I have to ask will i need a new exploit to use boot mii or will i be ok?

    Is thier no way of tricking the wii into updateing the firmware of my pc rather than nintendo’s server’s or takeing the chip off the board and reflashing the firmware some how? Mabe that is a stupid question.

    Also some times when i play house of the dead 2&3 some times house of the dead 2 will crash hmm. I was looking on the net at wii games that crash and found one with Nfl 07 that froze don’t know if this is any help to you like but thought i would just tell you.

    I will be looking for game’s with bugs in them as I use to allways look for bugs in games on the pc.
    I think your usb loader is great I would love to know how to do that sort of stuff.

    R.I.P TW Hack

    Boot Mii Bring it on

    Big Respect to Marcan and Bushing.
    Your work is amazing and i realy didn’t know the level of involvment you had on the scene untill reading this forum i have been fooled by wanikoko and thought it was him who made homebrew.

  • 66 me.yahoo.com/a/aTJ2Nr8Nz… // Mar 31, 2009 at 5:56 pm

    @ Cactusjack901
    Thanks man for the explanation it really helped.

    @ everyone
    OK what i have been trying to find out recently is that in this new awesome update what prevents Virtual Console files from being put on another wii and more importantly what is preventing it from being put on the computer. From their maybe it is possible to see how the wii differentiates an “illegal” rom with a “virtual console Rom. I don’t think its impossible to edit the code from Rom games. Then MAYBE we can create a buffer overflow and blablabla. I have seen GBA Pokemon Roms that have been edited and have the characters say dirty words and stuff.

    Also you said that there could be buffer overflow in wiiware games. I’m not sure if this is a buffer overflow in fact im pretty sure its not but in “Lost Winds”( very good game) at the last boss level sometimes i would go through a wall able wouldn’t be able to come out. This happened more than once on frequent occasions. I’m not sure if its possible to take advantage of this.

  • 67 me.yahoo.com/a/aTJ2Nr8Nz… // Mar 31, 2009 at 6:00 pm

    *looks back at comment*

    Sorry for horrible grammar

  • 68 cactusjack901 // Mar 31, 2009 at 8:41 pm

    @ yahoo guy…again

    The Virtual Console files can not be put on another wii because of DRM, that’s really all there is to it. The Wii writes tickets to it’s NAND, which gives you authorization to play said Virtual Console games, and Wiiware games.

    Look man, I don’t wanna sound like an asshole or anything, and I know you’re just trying to help, but you’re in way over your head and really don’t know what you’re talking about, so I would suggest that you either don’t bother trying to help or anything, OR, you take some computer classes, and learn how things work, before trying your hand at any of this. I mean, an example of your lack of understanding comes in this quote of yours
    “I’m not sure if this is a buffer overflow in fact im pretty sure its not but in “Lost Winds”( very good game) at the last boss level sometimes i would go through a wall able wouldn’t be able to come out. This happened more than once on frequent occasions. I’m not sure if its possible to take advantage of this.”.

    You’re right, in saying it’s not a buffer overflow, it’s just a glitch, no more, no less, it’s a bug in the game, a buffer overflow is usually signified by a lock-up, and even then, you can’t tell right away if it’s caused by a buffer overflow without a little bit of debugging.

    Good job on trying to help, I really do commend you on that effort, but sometimes, you just have to leave some things alone, I mean, I’ve been trying my hand at this for a few years now (PSP hacking), and I realized, that it’s not as simple as it sounds… in fact, it’s A LOT more complicated.

    Final comment on this (and sorry about kinda rambling on here, I’m a wee bit tired), in my opinion, don’t stop trying to help like one of my two suggestions said, take the computer classes, learn how things actually work, that’s where computers get interesting, when you get into how they work. Knowing HTML isn’t as fun as knowing how HTML works, same thing applies to everything with computers, so try your hand at it in a computer class, and keep trying to learn.

  • 69 lanjoe9 // Apr 2, 2009 at 8:18 am

    A small OT comment to your Spanish article about your 6 hour ‘Darth Vader’ trip.
    Your typo about the “_cagador_ de warez” at the end seems highly appropriate :)

  • 70 John // Apr 3, 2009 at 12:12 am

    I wanted to point something out.

    Nintendo has not purged the Homebrew channel yet hmm i wonder why, they have the technology, the people, the computers why wouldnt they?
    well its because the updates that they were using weren’t ment to kill the Homebrew channel it was ment to observe how you would fix it, now there waiting until Bootmii is released so they can reverse Bootmii so that everybody who gets it (which will likely be every Homebrew user) wont be able to use Homebrew on the Wii anymore, think about it, Nintendo hasn’t done shit to stop it the homebrew.
    And they are legally allowed to stop all Homebrew at anytime they want as written in there many emails to me.

    Lol Nintendo isn’t as dumb as you think. that’s all i have to say.


  • 71 HyperHacker // Apr 3, 2009 at 1:04 pm

    Basically you’ll never find a buffer overflow by just playing the game. You’d find one by modifying some data (save file or network packets) going into it and seeing if the game crashes when you do.

    Once you’ve injected your code into the game you can take right over, typically removing the game code from memory and just running your own. So you essentially replace the game program with your own program without the system realizing it.

    There are supposed to be checks to prevent games from modifying files that don’t belong to them (i.e. installing channels) just in case someone finds an exploit, but those checks don’t work properly. It’s possible to fool the system into letting you do whatever you want.

    VC/Wiiware games aren’t good candidates for exploits because they can be fixed. Discs can’t be. As for copying from one system to another, it can’t be done normally because the game is encrypted with that console’s keys, which means only that console can read it. If you have the keys then you could bypass that, but you’d need another exploit to get them, and then there’d be no point looking for one in a VC game.

    The best way to learn about this is to learn C. (I dunno what the person above thinks HTML has to do with it.) Take some programming courses or even just read up on how software works.

    “Why comments are “off” on the 6 hours drama ticket ?”
    I agree. I mean I can see the logic, not wanting to get spammed with “zOMG WHERE CAN I GET IT”, but I don’t see the point in disabling comments entirely. I would have expected two or three big “THIS WILL NEVER BE RELEASED” screens in the video (but instead, something about Juicy Fruit? O_o) and at the beginning and end of the article. That would probably stop 95% of the idiots asking. The remaining 5% will just ask somewhere else. Meanwhile people who have something worthwhile to say can’t.

  • 72 Sephiroth // Apr 5, 2009 at 6:52 am

    @ John:

    you’re wrong because nintendo actually stopped the homebrewchannel from working properly with the october 23. update (3.3v2). with this update nintendo tried to prevent invalid channels from being installed or used (INCLUDING the homebrewchannel).

    with this move nintendo proved that they are trying to get rid of homebrew entirely, not to mention the 4 attempts to stop the twilight hack from working…let’s see if there will be the “rise of the dead nr. 2″ for the twilight hack; if not rest in peace, you served us well!

    btw. good luck on bootmii and other exploits for 4.0 @ team twiizers 😉

  • 73 caitsith2 // Apr 7, 2009 at 12:07 am

    @Sephiroth: If nintendo really wanted to stop homebrew entirely, they would have also looked for and deleted the homebrew channel off of your system. They have not done that so far. The only thing they seem to be doing is stopping its installation, not stopping it from running if it is already installed one way or another.

  • 74 Sephiroth // Apr 7, 2009 at 10:03 am


    but that doesn’t make much sense either…why would nintendo stop the installation of the homebrewchannel but won’t mind people using an already installed one??? and as i said before, with the 23 october update nintendo actually managed to delete illegal wad’s AND the homebrewchannel…so after beta9 came out, they changed there mind and stop bothering about the homebrewchannel??

    i don’t know but nintendos reactions to the homebrew scene on the wii doesn’t make much sense to me -.-

  • 75 cactusjack901 // Apr 7, 2009 at 3:47 pm


    Sorry if I miscommunicated my thought, I wasn’t stating that HTML had anything to do with hacking the wii, I brought it up as I think HTML is a good starting point for any wannabe programmer, and I was also using it as an example that simply knowing HTML isn’t as fun as knowing how/why it works. HTML in my previous comment, is meant in a way that it can be substituted with C, C+, Perl, D, Delphi. Anything, get what I mean?

  • 76 db420 // Apr 7, 2009 at 8:25 pm

    I just did a downgrade from 4.0e to 3.2e using regionfree, this is after a brick of my wii. Have you guys done this yet if not i would like to tell you guys what I did. I would post it here but I dont want any one to brick there wii like I did.

  • 77 ieatchocolate // Apr 12, 2009 at 9:01 am

    Pointless talking to marcan, db420. He’s left the scene.

    Sad to see you go, Marcan. After the help you did with the Twilight Hack and everything, people just start disrespecting you… Don’t you think leaving the scene is a little far, though?

    I’ve got an idea for a comeback mod if you’re interested marcan. I have no technical knowledge, just an idea. Not sure if it could be counted as warez or not… If you’re interested, email me. I’m sure you’ll be able to find it out…

  • 78 Pickle1212 // Apr 15, 2009 at 3:02 pm

    How did you manage to unbrick your 4.0 wii?
    I just bricked mine and haven’t found a way to unbrick it.

  • 79 Kashkas // Apr 19, 2009 at 1:30 am

    anyword about bootmii being installed in an already bricked wii (directly hacked into de boot1 in the flash)

  • 80 Chief // Apr 21, 2009 at 12:19 pm

    Just wondering: I (stupidly) upgraded my Wii to 4.0 BEFORE installing HBC (yes I know it was stupid). Anyways, how well will BootMii work on 4.0?

  • 81 HyperHacker // Apr 22, 2009 at 11:44 pm

    So why no comments on the Updates article?

  • 82 keybounce // Jun 8, 2009 at 12:17 am

    Here is a question on a backup tool (I do NOT mean piracy).

    I know that Wii’s have console specific codes. If a backup copy of a program was made by tagging it with the console specific code, then the backup copy would not run directly on any Wii, and would only be loadable by the backup recovery tool on the one specific Wii it was made on.

    Would such a tool be considered a “good thing”?
    1. It solves most of the needs/desires of people who want legitimate backups as protection from dead CD’s — it gives a way to create a backup to run your programs if your CD dies.
    2. It prevents piracy — the data files created are worthless on other Wii’s.
    3. It doesn’t solve 100% of the concerns — if my Wii dies, then my backups are of no use to me on the new console. It requires that the backup restoration/launching tool be installed (and not interfere with the game). But it’s a good step.

    I noticed that you yourself indicated that you use a backup copy of Zelda. So I know that you are not against backups per se; I’m hoping that tying the backup copy to the specific console will be considered acceptable as a compromise, and be considered for creation as a standard tool.

  • 83 bushing // Jun 11, 2009 at 11:27 pm

    It’s just not technically feasible.

  • 84 ezurus // Jun 16, 2009 at 3:03 pm

    I’m late in on this discussion, but I want to add my $.02.

    I think it is silly to actively work to take control of the Wii and also want to not have other people take control of it for nepharious purposes. It’s like wanted to have no speed limits, then getting mad when people speed. Oh well, keep up the good work 😉

You must log in to post a comment.