News tagged ‘jailbreak’
A few days ago in an IRC channel the DevTeam and GeoHot discussed and summarized the state of the exploits found in the new baseband 05.12.01 in firmware 3.1.3. GeoHot explains that an exploit that had previously discovered and used in blacksn0w is still present in the new firmware released by Apple. It appears that both he and MuscleNerd are working on the same exploit, and if this were true, it would be a really good start to team up and release a new unlock tool.
Here is their discussion:
< visnet_ > What does geohot tweet mean?
< %geohot > its my bb exploit for safekeeping
< %Par4doX > geohot: did you turn that over to the dev team or are you doing something with it?
< %geohot > my days of turning things over are done
< %geohot > i hope its different from the one they have
< %geohot > but they prob already have it
< %geohot > its the one i orig wanted to release blacksn0w with
< %Par4doX > it’s still there in the new bb
< %geohot > yep, just checked
< %geohot > but then opted to use xemn since it was public
< Evan > Oo, it carries over from 05.11 to 05.12?
< %geohot > why wouldn’t it, apple doesn’t fix things proactivly
< @MuscleNerd > geohot we prob should figure out a way to know if we have same exploit double blind, otherwise we may release 2 different ones at same time
< %geohot > any suggestions?
< @MuscleNerd > not sure how to do that without making it easy to brute force tho
< %geohot > yea, i salted the hash
< @MuscleNerd > yeah
< @MuscleNerd > hmm maybe if we both hash the stack dump
< @Confucious > Can you two take this out of public sight?
< @MuscleNerd > the stack itself, not the header before it or the registers after it
< Her > muscle: any notice about the exploits are the same ?
< %geohot > we are working on it
< %geohot > cryptography, perfect for people who don’t trust each other
A new group of hackers claim they found a new exploit for the iPhone 3GS and iPod Touch with the new BootRom. This means that jailbreak for iPhone 3GS (late models) and iPod Touch 2G (MC) and iPod Touch 3G will be available.
We just found an amazing Exploit in the Boot-System of the 3GS with the new Bootrom! This Exploit works on ALL iPhone and iPod Touches!
The tool will be called Gull1hack. The operation is very simple and the code is sent when the device is in recovery mode, just like Blackra1n and Redsn0w do. This jailbreak tool has been neither confirmed by Geohot nor from the DevTeam. Many users think this is fake. We'll see.
Here's a video with Gull1hack in action:
Auto-lock setting can be an alternative method of saving the battery, but it is not convenient to lock and unlock the device while you are waiting for something. It also provides power save by backlight reduction if not to use the phone for a time predefined by the user.
As expected iH8sn0w released f0recast, the application that allows us to know a lot of useful information about all we can do with our iPhone.
Just connect the iPhone with the cable to see what is version of the baseband or iBoot. The utility will also give valuable information if we can perform a jailbreak (tethered or untethered). It will also tell if the Phone is unlockable and will give a suggestion what unlock software can be used.
You can download it directly from
MuscleNerd just posted interesting comment on Twitter, saying that the application is inaccurate regarding to the iPhone 3GS. There might be a new update soon. For all other devices the application works just fine.
iH8sn0w, through a new tweet, informs that his new utility f0recast will be released tonight.
There are many different iPhone and iPod Touch models and firmware versions for them. Each device has it's own bootrom, bootloader, iBoot and baseband versions that determine if user can perform jailbreak and unlock. So it is quite complicated for users to answer a simple question: "Is my device jailbreakable?". f0recast will solve this problem.
f0recast is a small Windows application that will able to give a straight answer if the iPhone or iPod touch is able to be jailbroken. Just connect your iPhone, launch the app and push a button.
f0recast is only an informational tool which determines if your device can or cannot be jailbreaked. It will NOT jailbreak your device.
Several users report that Apple started allowing iPod touch owners to upgrade to iPhone OS 3 for no charge.
The information initially comes from PocketGamer's Tracy Erickson:
Just as when asked to download and install the latest firmware on an iPhone, iTunes simply asks for confirmation - no signing in to pay for the software.
Sounds like free a good price for iPod touch 3.1.3 upgrade.
PS: Jailbreakers: think before updating - you might lose the ability to jailbreak your device if you upgrade the firmware.
Update: Several users confirmed the free update. However a number of users report that they are still asked to pay for the update.
It looks like Apple has started banning iPhone hackers from the iTunes App Store.
A few day ago Sherif Hashim, the iPhone developer and hacker, tweeted that he had found an exploit in the latest iPhone OS 3.1.3, which could enable the unlock on 05.12.01 baseband for iPhone 3GS and iPhone 3G. Yesterday he has been banned by Apple for the so called "security reasons". It seems that Apple is quite angry! Here is what Sherif gets when he tries to access App Store from his iPhone:
Sherif Hashim’s Tweets:
"Your Apple ID was banned for security reasons", that's what i get when i try to go to the app store, they must be really angry ))))
and guess what my apple ID was, "firstname.lastname@example.org", what a fool was me not to notice )), can't help laughing, they are babies ))
@sherif_hashim lol, they did that to my ih8sn0wyday[@t]googmail.com too. (right after I posted XEMN)…
For now Apple isn’t banning Jailbreakers - they’re banning people who actively work to find exploits in the iPhone software to create Jailbreaks for the rest of us.
GeoHot has always been a bit reluctant to release new versions for various minor firmware updates. His advice is in fact once again to keep firmware 3.1.2, because the latest one does not have anything interesting.
You can download the new version of sn0wbreeze
Fuzzyband is an application that can downgrade the baseband for iPhone 3G. Recently it has been updated to include the support for firmware 3.1.3 baseband 05.12.01. It works only with bootloader 05.08 (early iPhone 3G).
Why do users need to downgrade the baseband? The answer is simple: if they accidentally upgraded the new firmware and need to run unlock software (blacksn0w and ultrasn0w). Unlocked iPhones do not need Fuzzyband. iPhone 3GS users cannot downgrade baseband with Fuzzyband.
Fuzzyband is available for jailbreaked iPhones in Cydia (repository BigBoss, category "System" ).
Sherif Hashim has discovered an exploit which may allow unlock of the latest iPhone OS 3.1.3 baseband 05.12.01. Such unlock utilities for previous baseband versions were called blacksn0w, ultrasn0w и and yellowsn0w. MuscleNerd, the member of DevTeam, has already confirmed it is working. So the timing of the unlcok release is totally up to them right now.
Here is an official update from DevTeam:
"We’ve started to look at his crash but it’s a long road between any given crash and a fully working unlock, and we couldn’t put an ETA on it even if we wanted to. It’s not even guaranteed that an working unlock will come from this particular crash — it’s just too early to tell."
It is known, that iPad has a restrictive DRM shackles, which makes Apple the only available supplier of software for this device. So if you buy an iPad, you will have to download software only from the Apple’s AppStore. Yes, there is a big possibility of jailbreaking the gadget within the first 48 hours after its shipping since it’s based on the already jailbroken OS iPhone, but still this is not the best way of downloading applications for most of the people.
There are people, who disagree with a DRM-based strategy of software distribution. Some of them created an Anti-DRM group named Defective by Design. They told us they created an online petition that has been signed for 8,800 times since its inception 4 days ago. DbD has already sent off their first 5,000 signatures in the form of a giant postcard, which is in the photo above.
DbD’s operations manager John Sullivan says their main target is to get Apple to remove DRM and DRM enforcement from all its media and software. This is especially valuable for the iPad designed to be widely used by non-technical people who might not be aware of DRM.
- What Apple is doing with software is quite different. This is a scary step … as Apple move towards this model in the future,
In particular 72.3% are still using firmware 3.1.2, less than 1% - firmware 3.1.1 and 4.6% have previous versions yet. The reasons for this are probably from the fact that 3.1.3 is only a minor update. Another reason could be the uncertainty of the jailbreak.
The iPhone Dev-Team has released PwnageTool 3.1.5 for Mac OS X. It allows iPhone and iPod Touch users to safely upgrade to firmware 3.1.3. With PwnageTool you can preserve jailbreak and ultrasn0w unlock. But if you’re using the blacksn0w unlock with baseband 05.11.07 you will need to stay at firmware 3.1.2.
PwnageTool 3.1.5 creates a custom 3.1.3 IPSW for the following devices:
- iPhone 2G
- iPhone 3G
- iPhone 3GS with early bootrom
- iPod touch 1G
- iPod touch 2G with early bootrom
Warning! Don't try to use this tool if you have iPhone 3GS with firmware 3.1.3 - it just won't work. If you have iPod Touch 1G, iPhone 2G or factory unlocked iPhone 3G , try to use redsn0w - is would be much easier.
You can download PwnageTool 3.1.5. here.
H8sn0w has just released the new version of Sn0wbreeze 1.4. Sn0wbreeze is a jailbreak utility with functionality similar to PwnageTool. The new version supports firmware 3.1.3 jailbreak for the following devices:
Sn0wbreeze is a Windows application, so Mac users have to wait for the upcoming release of PwnageTool by the DevTeam. Alternatively, both Mac and Windows users can use Redsn0w to run jailbreak (no custom firmware though).
You can download the new version of sn0wbreeze
MuscleNerd continues to argue that we should not use sn0wbreeze. Especially users who have unlocked their iPhone with blacksn0w utility: