Browser-Based Jailbreak For iPhone 4 Released 154
WrongSizeGlass writes "Apple Insider is reporting on a browser-based 'jailbreak' for iPhone 4. Hackers on Sunday released the first 'jailbreak' for the iPhone 4, a browser-based exploit that allows users to run unauthorized code. Unlike previous jailbreaks, which required users to run software on their Mac or PC and tether their iPhone to their computer, the latest hack is done entirely within the Safari browser. Users simply visit the URL to begin the process, which modifies the iOS mobile operating system found on the iPhone, iPod touch and iPad. Some users have reported that the modification results in broken MMS and FaceTime functionality. This jailbreak does not work on iPads running iOS 3.2.1. "
Apple Insider? Pah! (Score:5, Informative)
Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....
Re:Apple Insider? Pah! (Score:4, Informative)
http://lifehacker.com/5599406/disable-spotlight-searches-to-improve-iphone-3g-performance-on-ios-4 [lifehacker.com]
turn off the parts of spotlight you don't use
Re:Apple Insider? Pah! (Score:5, Informative)
just tried that on my ipod (which is basically iphone 3g hardware), and loading the ipod-app still takes noticable time, rather then being instantanious in 3.1.3
i really regret upgrading the ios 4, the only added function i can find is threaded email (of which apple's implementation SUCKS), and i got a serious performance drop
Re:Apple Insider? Pah! (Score:5, Interesting)
Re: (Score:3, Interesting)
hmm, i havent noticed serious input lag, just that safari doing loading wont respond at all to inputs, and apps like ipod-app hang for ~5 secs when you open them
i hope they fix it, if they dont however, i wont care all that much, in a few months my ancient symbian powered nokia will be replaced by a HTC android device, which will also make my ipod redundant
Re: (Score:2)
Re: (Score:2)
i figure apple is hoping to achieve a similar effect as in the windows-pc world, people keep installing updates and new stuff till their PC just slows down to the point of uselessness, they go out, and buy a new one.
I have to admit, if i were more of a mindless drone, i'd probably use my ipod's slothyness as an excuse to get an iphone 4 early (before my current contract is up), or to upgrade to a newer, more spacious ipod
As it is though, i'll not only kick my ipod to the curb when i can, but i'll get a high
Re: (Score:3, Insightful)
I do...
iAds.
Re: (Score:3, Insightful)
I don't know why Apple included it in the release.
Damned if you do, damned if you don't.
Re: (Score:3, Insightful)
Re: (Score:3, Informative)
I had 4.0 running on my 3G for a couple or three weeks. I got tired of apps not starting up, extreme sluggishness, etc., so I ended up downgrading to 3.1.3. I enabled native multitasking (my phone is jailbroken), but it seemed to be less capable than the multitasking provided b
Re: (Score:2)
Re: (Score:2)
Apple included it in the release because the fanboys carry on and on about how not every Android phone has 2.2 yet. Not doing so would blunt their biggest attack on Android. Besides this, wasn't the "Snappiness"* of the UI Apples only real selling point?
* Snappiness is an unquantifiable
Re: (Score:2)
Pretty much, my GFs iphone 3GS impressed me so much last year that i got an ipod touch as a sort of PDA, then 4.0 came along and killed the responsiveness to the point where i will kick it out as soon as i get a decent android phone
Re: (Score:2, Insightful)
I just tried it too. I noticed a definite improvement in performance across all apps. The music app still takes forever to launch but it's better than it was with spotlight enabled. I don't think I've ever used spotlight on my iPod so disabling was a small price to pay for a bit of extra performance and probably better battery life.
I agree with everything you've said but your post makes it sound like disabling spotlight doesn't help at all which might discourage people from trying this hack.
Re: (Score:2)
well, just played a bit more, and it looks like ipod-launchtime is down to ~1 second, still noticably slower then before the ios4 update (and in my opinion completely unacceptable for a device sold as a music player), but this does help.
Perhaps i'll try rebooting the thing as well..
Re: (Score:2)
Do so at your own risk, YMMV, etc...
Re: (Score:2)
I'm with you on that one. I downloaded the iOS 4 since it was free and suppose to have new features. Well it's sluggish and I've seen a lot more crashes - but worst of all, the battery seems to drain a lot faster than it ever did before.
If I could downgrade easily to iOS 3 I would.
Re: (Score:2)
Maybe this will help more:
http://lifehacker.com/5572003/how-to-downgrade-your-iphone-3g%5Bs%5D-from-ios-4-to-ios-313 [lifehacker.com]
Downgrade to 3.1.3
Re:Apple Insider? Pah! (Score:4, Informative)
Try doing a hard reset [cultofmac.com] to the 3G phone x2. My wife's phone was unusable after the iOS4 update. This did the trick. It's worth a try.
Re: (Score:2)
Try doing a hard reset to the 3G phone x2. My wife's phone was unusable after the iOS4 update. This did the trick. It's worth a try.
Count me in as somebody who had this work. It was still a little slower than 3.x, but it was usable again.
Re: (Score:3, Insightful)
Disable the damn search junk you dont use anyways. IT sped my wifes 3G up a lot.
If there was one thing I wish the jailbreaking community would od is submit a patch to remove the useless search on the iphone.
Re: (Score:2, Interesting)
Re: (Score:2)
Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....
Apple has already released a fix for this. It's called upgrading to an iPhone 4.
Re: (Score:2)
Now, just need a fix for iOS4 being slow and shit on the iPhone 3G....
There is a fix: upgrade the device. If you had done your research you would have known upfront the CPU in the 3g ( and 2g ) doesn't have the power needed. Only the 3Gs had the power of the existing devices.
Re: (Score:2, Insightful)
Does the jailbreak patch the exploit? (Score:5, Interesting)
If a website can run unauthorized code by just visiting a page, does the jailbreak "innoculate" against the exploit it uses?
Or would apple's fix for the bug also break the jailbreak? (they'll do that, I guess).
Re:Does the jailbreak patch the exploit? (Score:5, Interesting)
Re:Does the jailbreak patch the exploit? (Score:5, Insightful)
Your Reality Distortion Field is getting a bit weak. Time to head out to your local Apple store and buy something new and shiny to refresh the Field.
Then you will feel better.
Re: (Score:2)
somehow the publicity talks about how great it is that you can use it to regain control over the device that you own, rather than about how anyone else can do the same
Yeah... strange things happen when security is designed to keep users boxed in rather than to keep bad guys shut out.
Re: (Score:2)
Re: (Score:2)
There's only one reason to hack a Symbian phone - to add one's own root CA to the keystore for installing self signed apps (which are usually pirated).
Why are self-signed apps usually pirated? Who signs my app for me if I write one myself and want to test it? How do third-party app stores sign their apps?
The ability to install unapproved apps is the entire reason for jailbreaking, and from what you're saying, Symbian doesn't sound very different from iOS.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Not sure about multitasking, but tethering apps were indeed refused by Apple. To get tethering, you need to be able to install third-party apps, and for that you need to jailbreak.
Or pay for the SDK, get the source for the app, and install the app that way.
So the only way Symbian can be superior to the iPhone in this particular respect, is if anyone can get any app signed with a developer certificate, and others will be able to install that app on their phones without requiring the source or an SDK. (Althou
Re: (Score:2)
Re: (Score:2)
Thank you for saying this. It's always astounded me how people look at Jailbreaking as though it's a good thing that it's possible. What part of "0-day bug gives root access" (which is exactly what this is) sounds like a good thing? I've heard people tell me that they use Apple products because there are no exploits for them in the same 5 minutes that they tell me that they've jailbroken their phone, or at least considered it.
I'm glad, for the sake of people who have iPhones, that there exists a way to give
Security issue? (Score:5, Insightful)
Isnt this a very large gaping security issue? I would assume its much worse than the Android one where you had to trick the user into installing a kernel module manually.
Re: (Score:1)
Re:Security issue? (Score:4, Funny)
Re:Security issue? (Score:5, Informative)
Yes, but there has never been a time where Mobile Safari was free of remotely exploitable flaws. If you look at the history of the iPhone OS release notes, you will always find gaping holes that were closed in Safari, and many of them were uncovered by third parties. For example see the release notes of iOS 4.0 [apple.com] which contain nuggets like "Impact: Visiting a maliciously crafted website may lead to an unexpected application termination or arbitrary code execution" due to CVE-2009-2195 in WebKit.
Re: (Score:2)
CVE-2009-2195 is in fact what allowed the previous Spirit jailbreak.
Re: (Score:2)
In which case the current story is non-news (as usual around here).
IS news (Score:2)
Re: (Score:2, Insightful)
Ah Apple. You can have a secure browser with outrageous roaming charges or an insecure browser which anyone can run arbitrary root code and no roaming charges.
Re: (Score:2)
Many operators let you do a legitimate unlock these days, o2 in the uk for instance will unlock your iphone for free if you have it on contract while some other providers will charge you.
You can also buy factory unlocked iphones from apple now...
Having a legit unlock on my 3gs means i don't need to worry about baseband updates relocking the phone.
Re:Security issue? (Score:5, Insightful)
Indeed. "Custom versions of Android can be easily created" gets reported as "Android vulnerable to rootkits!", but "Huge security flaw in mobile safari" gets reported as "Unlock your iPhone 4!"
Re:Security issue? (Score:5, Insightful)
Re: (Score:2)
Nope, he's quite correct, I wonder which Slashdot you've been reading. The more popular Android became over the last year the more rabid the iFanboys have become, the tide hasn't turned against them. In fact they've pulled in the ranks and are getting mod
Re: (Score:2)
Yes, because the only way to have the ability to write to the root filesystem of your own desires is to find a vulnerability and exploit it first.
If you were able to do it on your own without their "permission" (which you'll never get), then you wouldn't have hackers (the good guys here) looking as hard. In fact, at the end of the day this is a win/win for apple. The only downside is that by smacking the unlockers down, situations like the 3.1.2 to 3.1.3 upgrade arise. A vulnerability has been found, but
Re: (Score:2)
All OS's have security flaws. How else do Android users "root" [androidandme.com] their phones ?
Rooting is a local sploit (Score:2)
jailbreakme.com is a remote exploit, and that's much, much, MUCH nastier.
Re: (Score:3, Insightful)
Good thing Android has never had a remote exploit huh ? (Oops [readwriteweb.com].)
At least Apple as very judicious about pushing out updates (and Apple users generally update very frequently) while some manufacturers send out handsets with old Android versions [wired.com] and don't care that much about providing their users with the latest and greatest.
Re: (Score:2)
All OS's have security flaws. How else do Android users "root" [androidandme.com] their phones ?
Well I unlocked my Nexus One with a documented command line switch that came with the Android SDK. I was then able to flash rooted roms with the stock firmware flasher.
It's a beautiful thing when you can do what you want with that which you own.
Re:Security issue? (Score:5, Informative)
Yes it is. Just staring at some hexdumps, it's not a hole in the browser, it is a hole in PDF Type1C font loading. Escalates to kernel space via an IOSurface allocation bug. A malicious PDF (think iBooks...) could do far nastier things than jailbreak for you.
CAPTCHA: "clothing" ... Wolf in sheep's, that is.
So in other words (Score:5, Insightful)
You have a remote rootkit running from simply visiting a website?
Wasn't it just yesterday or the day before we called rooting your android (which has to be tethered), erasing your old operating system, and installing a new "custom" one with a rootkit installed on it which allows remote activiation of root an attack vector (note that even a rooted Android device can't get outside the Dalvik VM)?
I'm certain, absolutely certain that there will be no abuses of this. There will not be any nefarious person have a "must have" app that is so good that the app store refused and all you have to do are these easy steps right here on this web page! No, never happen - users would *never* be stupid enough to run things from a website - this is a great feature!
Re:So in other words (Score:5, Insightful)
You have a remote rootkit running from simply visiting a website?
That was my first thought too. Apple have left a hole in iPhoneOS (IOS, no matter how you case it, will always be Cisco in my mind :) wide enough that you can get root on it simply by getting to a website? I haven't RTFA so maybe there is more to it than that but i'm a little worried. I wonder how long until I can upgrade to Android on the iPhone...
Re: (Score:2)
Forget about apple and android - it's the past (Score:2)
Most
Re: (Score:2)
The iPhone 4 is available carrier unlocked in most countries. They still don't give you root access.
Re: (Score:2)
I'm certain, absolutely certain that there will be no abuses of this. There will not be any nefarious person have a "must have" app that is so good that the app store refused and all you have to do are these easy steps right here on this web page! No, never happen - users would *never* be stupid enough to run things from a website - this is a great feature!
Yeah that could happen, it's unlikely though since users get their apps from the App Store. This isn't like Windows where users surf the web in search of apps.
Besides what's new, all OS's have these types of flaws including as you point out Android. Still Apple will probably need to fix this in the next release of iOS.
Re: (Score:2)
Yea, because people would *never* fall for something like this [SARCASTIC RANTING] Won't happen because Apple has an *app store*. [MORE SARCASTIC RANTING]
I didn't claim it's impossible but don't underestimate the strong mental association between getting apps and the App Store. Normal users are heavily conditioned to get apps at the App Store because 100% of their apps where downloaded that way. Especially people who aren't very comfortable with technology and would be most at risk tend not to stray outside of their comfort zone.
Aside from that point Apple also include to customary anti-phishing and anti malicious site protection in their mobile browser.
The difference here is the number of people who consider this a *good thing* that is occurring. I've said many a time that as we begin to realize these are general purpose computers more and more of this will happen and *no* device is immune from it, if you think that you are going to get away from it with either an iPhone, Android, or SuperPhoneOS.
I've
Re: (Score:2)
It is a hole in the library used to parse PDFs and load fonts apparently. If other platforms (linux desktop and android) use the same version of that library for PDFs, they too could be vulnerable to a remote exploit such as this.
Re: (Score:2)
Cant get outside of Dalvik? I have a nexus one, and i can get a root bash shell on it (legitimately, not via any exploiting/jailbreaking process), and from here i can run native binaries easily.
linux or android (Score:2)
This is a great step.
However, only if I can run linux or android on it, I might buy an iPad.
Yes, linux or andoid may not perform that well on this device (cpu and battery-wise), but the mere openness of these OSes is sufficient for me.
Re: (Score:2)
Android is Linux. In fact it's probably the best Linux distribution for touchscreen interfaces, only MeeGo is comparable (and very promising) but has a lot of catching up to do. After rooting Android you'll get a terminal with all the standard Linux console utils.
Running Gimp, OpenOffice, Firefox or any other desktop-oriented app on such a device is suicide.
Re: (Score:2)
In fact it's probably the best Linux distribution for touchscreen interfaces
No shit. That's what happens when someone with a little common sense realizes that using a legacy display manager on touchscreen devices may not work so well and ditches X. Morons think you can just hack debian onto a cell phone and add telephony and voila, you have a phone.
Note: Userland Jailbreak, Not Bootrom Jailbreak (Score:5, Informative)
Just as a heads up to anyone thinking of buying and/or jailbreaking an iPhone 4, keep in mind that this is a userland jailbreak (like Spirit) and not a bootrom jailbreak like 24Kpwn. This is significant because this jailbreak only works on iOS versions with the vulnerable component, which means that Apple can and surely will patch it out in 4.1. This is also why Apple is signing their firmware: once they do release 4.1 they'll stop signing 4.0.x and it will be impossible to jailbreak new iPhone 4/3GSes as those devices will ship with 4.1 and it will be impossible to downgrade. Existing owners should be sure to backup their SHSH blobs using Cydia or Tiny Umbrella [blogspot.com] so that you can downgrade or reinstall 4.0.x in the future, otherwise you will be trapped just like new iPhone owners. 3G owners are also encouraged to backup their SHSH blobs, as Apple is soft-signing iOS 4.x on those devices (even though the hardware can't enforce it).
Anyhow, while I'm excited to see an iPhone 4 jailbreak, I'm a bit worried about the fact that it's another userland jailbreak. No one has successfully exploited the Apple bootrom since iBoot-359.3.2 was released last year, which is troubling. It's not possible to replicate the complete jailbreakability of the iPhone/3G without a bootrom exploit, and as iOS can quickly be updated to stamp out new userland exploits there's a distinct risk of the hackers running out of practical ways to jailbreak the platform through such limited means. Unless someone does find a new bootrom exploit, the "golden age" of jailbreaking has probably already sailed, and in the long run this is a very bad thing. The (practically) unhackable computer marches in on all fronts...
Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (Score:5, Insightful)
That's troubling on a great deal of levels. Android seems to be going the same way...
Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (Score:5, Informative)
Re: (Score:3, Insightful)
Which manufacturers aren't doing it? The only phone that's rootable without finding some sort of vulnerability to exploit is still the Nexus One afaik ...
The fact that Moto is the only manufacturer that's succeeded in locking the bootloader down so far that nobody's been able to crack it doesn't mean that others haven't tried. What we need is a completely user accessible operating system, similar to the PC. Something like OpenMoko or the N900, but good :p
Unfortunately, most consumers prefer to be spoonfed
Re: (Score:2)
Motorola Droid != Android. This is the reason the OS is developed independent of the hardware.
HTC are still quite open, not sure about Samsung.
I like my Motorola Milestone, but because of Moto's locked down boot loader I'll be getting a HTC phone next. Probably the HTC Vision as it looks to have the same keyboard as the Dream.
Re: (Score:2)
You should read up on rooting current HTC phones. Moto => HTC is currently very much an "Out of the fire, back into the frying pan" kind of move, because HTC seems to be locking their handsets down prety strongly too. No encrypted bootloaders, but people losing root (permanently, as it seems) when upgrading to the latest official updates, and the Desire hasn't even been fully rooted yet (no read/write access to /system/).
I just made exactly the same switch (Moto Milestone => HTC Desire), and it seems
Re: (Score:2)
Umm... that's always been the case.
Fairly logical too. Of course the new version of the OS will re-write permissions and fix whatever hole was used to create root access. Which is why most people who want root access typically start using a community ROM. If you haven't figured this one out, you need to go back to the very basics of modding. Every modding guide since 1.1 has come with a warning saying "offici
Re: (Score:2)
"Case in point. Open/replaceable bootloader == no problems."
Then why are the latest Desires currently unrootable? Shouldn't their bootloaders allow anything to be loaded? An unencrypted bootloader is easier to crack/unlock, but difficult nonetheless, and it doesn't mean that you can just load anything you want on the phone.
"I haven't. My next phone will be a HTC Vision if it's decent enough and drops below A$600 (quite possible if the AUD-GBP rate doesn't change 1:0.57) due mainly to the hardware KB which l
Re:Note: Userland Jailbreak, Not Bootrom Jailbreak (Score:5, Informative)
Well yes and no. PDF was created by Adobe, but it's actually an ISO standard (ISO 32000 [slashdot.org]). Adobe does tend to extend it though...
Anyhow, it's not an Adobe plugin that's doing this. Apple writes their own PDF software, and indeed Mac OS X has had native PDF capabilities its whole life. This is a flaw in Apple's PDF handler - Adobe for once has nothing to do with this.
Re: (Score:2)
Recent talk by a security researcher at CanSecWest: Babysitting an army of monkeys: an analysis of fuzzing 4 products with 5 lines of Python - Charlie Miller, Independent Security Evaluators
The gist of it was that with a dead simple fuzz testing tool (a program that modifies valid files to produce invalid ones, then feeds the invalid files into parsers to try and break them) this guy found 60 different exploitable vulnerabilities in Apple's Preview app (their home-grown PDF reader). The same fuzzed files fo
Re: (Score:2)
Facetime/MMS fixed (Score:5, Informative)
The Facetime and MMS issues were due to a permissions problem, which has already been sorted out, per planetbeing's Twitter feed [twitter.com].
Re: (Score:2)
I think its wonderful how you can visit a website to fix a local filesystem permission issue ;).
Serious security hole (Score:5, Interesting)
Users simply visit the URL to begin the process, which modifies the iOS mobile operating system found on the iPhone, iPod touch and iPad.
This sounds like a huge security hole. If simply visiting a web page can modify the OS of the phone, then this can surely be used for more malicious purposes. Maybe the user has to make some more clicks but then how hard is it to social engineer a user into doing that, and the attacker can do anything they like. Such as installing back doors, keyloggers, whatever. This I think is more than just a jailbreak: this is a root exploit in the browser. Scary, to say the least.
The jailbreak itself may not work on other versions of iOS, but as it involves Safari I wouldn't be surprised if the root exploit itself works there as well. Binary patching of the running O/S (which is what I guess they are doing) of course works only against a specific version, minor revisions may break it, so no surprise it doesn't work for the iPad.
This is one I have to say I hope Apple plugs quickly. It just sounds too scary to me.
Re: (Score:2)
This is one I have to say I hope Apple plugs quickly. It just sounds too scary to me.
It's old hat. There was a vulnerability back in iPhoneOS 1.1.2 that allowed pretty much the same thing, in fact the domain name dates from that period, and the sky didn't fall down on our heads then either.
Re: (Score:2)
Re: (Score:2)
Re: (Score:2)
Now to come back to the actual question:
Does it REQUIRE any action by the user? Or is this just a technicality, and can the actual exploit be run without any further user intervention?
And just another note... (Score:3, Insightful)
If you're doing this and getting the purple background of death (just hangs and doesn't install) try this:
Method 1
-Click Home
-Double-click Home to bring up running apps
-Click and hold on Safari
-Close Safari, try again
Method 2
-Go to Settings->Safari
-Clear cache, history, cookies (some reported clearing History IN Safari to work)
-Try again
Method 3 (only thing that worked for me)
-Go to jailbreakme.modmyi.com instead of jailbreakme.com (just a mirror)
3GS 4.0.1
Re: (Score:2)
worked for me, thanks!
Re: (Score:2)
Just curious, which method and phone/os? I tried 1 and 2 over and over along with rebooting, restoring to backup, full restore etc but then #3 worked out of the blue.
Sometimes I believe Apple puts these back doors in (Score:5, Interesting)
To have the "cutting edge" people test out new features.
Re: (Score:2)
Using Occams razor and common sense. Apple doesn't put these in, they just don't test it's products properly.
Never attribute to competence that which is easily explained by stupidity.
This hole will be closed in short order. Apple cannot abide you having control over your own phone.
Security risk? (Score:2)
Re: (Score:2)
Seems that way to me, too.
But maybe it's a good thing in that Apple won't have a leg to stand on.
I don't care how strict the EULA is. No court is going to let them void thousands of warranties when all the action that was required was visiting a website or being redirected to one against the users will or knowledge.
Re: (Score:2)
Re: (Score:2)
Probably not. You have to manually initiate the process once the page loads.
Just because this website has the user initiate the exploit via a manual process, doesn't mean a nefarious website couldn't do it automatically.
Re: (Score:2)
Sure... or I could send you an email with a PDF in it (which is the attack vector that this remote exploit^W^Wjailbreak uses) and completley take over your phone. Read all your mail, monitor your calls and text messages, see all your websites and intercept all your passwords, follow your GPS location (even if you think you have the GPS turned off), make copies of all your photos, videos, and other files, purchase apps for you, and send all this wealth of info back to me and anybody who wants to pay me for i
Re: (Score:2)
Actually, I had to root my G1 to change the software. Now I'm running a 2x radio, DangerSPL, and CM6RC2.
But it had to be rooted, which is 7331 slang for jailbreaking. As do most all Android phones, except DEV phones, which are, wait, they had to be rooted too.
Now slick is to root the HD2 and run Android on it. Ultimate bugfix.
Re: (Score:2)
You really are 7331. Rooting is not the same as Jailbreaking.
First, rooting is done to unlock SU, Jailbreaking is to unlock user space (non SU on most *nix systems) as well as SU.
Secondly, Android permits application installation from any source, jailbreaking is required to allow application installation from any source other then Itunes.
Thirdly, Rooting is used to gain access to the driver level when API's for that function do not exis
Re: (Score:2)
Sure you can do what you want with your device legally. but you can also lose your warranty and have your contract canceled, with an early termination fee. Both parties have their rights. its NOT all about you.
Tho there is some fuzzyness on when you actually own the device, since its being subsidized via your service..
Re: (Score:2)
You can do what you want with your possessions, but you have no reason to expect that the objects are designed in a way to make it easy for you to do what you want. The phone is what it is. You can try to do something to it and fail because of the design of the phone. This is simply a property of the object, not a trampling of your rights. If you don't like it, get something else.
Re: (Score:2)
Steve is already readying his police cronies to kick down some doors to stop this. And don't think some hippie court ruling is going to stand in Steve's way! He'll say this is malicious hacking.
Then Steve'll go home and stomp on newborn kittens! Then he'll set an orphanage on fire!! After he's done pointing and laughing at that, he'll go down into the Apple Labs and roll up their cure for cancer and smoke it!!!