Georgia Tech Researchers Jailbreak iOS 7.1.2 136
mikejuk writes The constant war to jailbreak and patch iOS has taken another step in favor of the jailbreakers. Georgia Tech researchers have found a way to jailbreak the current version of iOS. What the Georgia Tech team has discovered is a way to break in by a multi-step attack. After analysing the patches put in place to stop previous attacks, the team worked out a sequence that would jailbreak any modern iPhone. The team stresses the importance of patching all of the threats, and not just closing one vulnerability and assuming that it renders others unusable as an attack method. It is claimed that the hack works with any iOS 7.1.2 using device including the iPhone 5s.
It is worth noting that the The Device Freedom Prize for an open source jailbreak of iOS7 is still unclaimed and stands at just over $30,000. The details are to be revealed at the forthcoming Black Hat USA (August 6 & 7 Las Vegas) in a session titled Exploiting Unpatched iOS Vulnerabilities for Fun and Profit:
It is worth noting that the The Device Freedom Prize for an open source jailbreak of iOS7 is still unclaimed and stands at just over $30,000. The details are to be revealed at the forthcoming Black Hat USA (August 6 & 7 Las Vegas) in a session titled Exploiting Unpatched iOS Vulnerabilities for Fun and Profit:
Re: (Score:1)
Re: (Score:2)
Why would an app refuse to run on a jailboken phone - unless it was made by Apple or your carrier specifically to try to incentivize you to stay on their leash.
Re: (Score:2)
I know the DirecTV app won't run. I've ran across a game as well.
Re: Why? (Score:3)
Re: (Score:1)
If they want to own the phone then they shouldn't sell it to us!
Re: Why? (Score:5, Interesting)
Many of them evaluate the file system and determine the device is jailbroken. tsProtector fixes this by denying apps (you choose) file access. Makes apps that get cranky over jail breaking stfu and get back to work.
Re: (Score:2)
for vast majority of people jailbreak, in fact, constitutes loss of control.
Re: (Score:2)
presence of ads does no more to user's control of the device than tv ads do with regard to control of the television set.
what you're talking about is circumventing app owners' revenue source.
whether you choose to think of that as shoplifting or "fighting the power" is your personal choice but at least don't confuse it with control.
don't like ads? vote with your feet, buy ad-free apps. that _is_ control, btw.
Re: (Score:1)
Why do you need root access? What are you trying to install that isn't already there?
Re:Why? (Score:5, Informative)
First and foremost: firewall [yllier.net] and SSHd, then: nginx, python, perl, java, haskell, adblocker,
Re: (Score:2)
It's not your computer, it's your cell phone.
An iPad comes with has the same restrictions as an iPhone. Or is the iPad not "your computer" either?
Re: (Score:3)
Don't ever try to use it as a portable ARM development board with multi-touch.
Re: (Score:2)
Speak for yourself, please!
It might be a phone for you, for me, it's my portable, pocket-computer.
Please do elaborate on what cap you're talking about, but if I want to saturate LTE (which I'm not using, btw), I'll saturate LTE from my own pocket (no pun intended); with or without a jailbreak.
Re: (Score:2)
If you saturate your cable modem, only your family notices. If you saturate LTE by disabling a cap, then your whole community notices!
Likewise if you mow the lawn at 3 AM or drive on the sidewalk. Solution: don't
Solution recognizing that some people are assholes: put the cap in the modem part, allow root for the main CPUs OS. If someone abuses the network anyway, lock them out and if necessary, fine them.
Re: (Score:1)
That's exactly how the LTE system works these day... those who use too much are billed or throttled depending on what provider and rate card they subscribe to.
Re: (Score:2)
So what's the problem then?
Re: Why? (Score:1)
You think a cell phone isn't a computer? Well, you're wrong. The latest flagship phones from any of the major vendors have as much power as a supercomputer did 20 years ago. If an early 90s Cray was a computer so is your iPhone.
I jailbreak for control, as others mentioned: Firewalls, ad blockers, tweaks, full-fledged BASH prompt, etc.
I also do it to find out what Apple is going to add to iOS in ~2 years. With every new major version most of the big features have available in Cydia for at least a year. Apple
Re: (Score:2)
It's not your computer, it's your cell phone.
You are a moron
MOD PARENT DOWN! (Score:1)
Moderators... why does this guy currently have a 2 and I have a 0 for Troll in this thread?
Re: (Score:2)
In fact, I'm still
Re: (Score:2)
You obviously have no idea how mobile internet connection works, don't you?
Re: (Score:1)
I have plenty of idea how a mobile connection works... I explained GSM to people who were arguing over TDMA and CDMA in at Syracuse University....
There's a big difference between anything wireless and wired connections. Wired will always be faster to transmit data, wireless will always be faster to deploy.
Think of how many TV channels you get over broadcast, compared to how many you can get over cable. Think of why DirecTV has to do more compression work (and degrade when weather is in the way) compared to
Re: (Score:2)
But how's that on-topic? What "rooting a phone" has in common with "disabling LTE cap"? (whatever you mean by that)
There is no "secret cap switch" that allows one to get ultra-speed while downgrading the connection to everyone else in neighborhood. The connection is managed by the modem with its own, closed and cryptographically signed firmware, which uses (or at least tries to use) 3GPP standards. It's completely unrelated to any "jailbreaking" or "rooting" that was discussed here.
Actually, when mangling w
There's no app for that (Score:2)
Why do you need root access? What are you trying to install that isn't already there?
I have compiled a list of such apps [pineight.com]. For example, MozStumbler [slashdot.org] could never be ported to iOS because Apple refuses to make available any public API for enumerating nearby SSIDs.
Re: (Score:1)
Re: (Score:3)
Are you being an uneducated tool and trying to say that Android is perfect.... because anyone that has any clue knows better.
There is a reason I am running Cyanogenmod 11 DAILIES on my HTC ONE M8 and not the "perfect" android that HTC bastardized.
Android is broken as hell, not by Google's design, but by their fault for letting carriers and handset makers BREAK android.
Re: (Score:2)
Do you also "root" your car? I mean it has lots of computer controllers that you should have access to since you won the thing, right?
Re: (Score:1)
For me, sending messages and making calls with a google voice number. It's not good at all with the official app, and it works great if you're jailbroken and you buy the required jailbreak apps to do it.
Re: (Score:2)
Re: (Score:2)
Because playing NES games on a touch screen would be so awesome ... NOT.
The original point stands, nothing you'd actually want remains.
I understand the 'because its my phone and I should have the fucking ability to do with it what I want' aspect, and its a valid one, but once you get past that theres no real reason to jailbreak.
Re: (Score:2)
Re: (Score:2)
Get a JXD S5110B already (Score:2)
Re: (Score:1)
There hasn't been a legal NES game emulator yet.. Patents have lapsed, but nobody's done it without stealing code.
Re: (Score:1)
Re: (Score:2)
Re: (Score:2)
Re: Why? (Score:4, Informative)
I have an ipad. Full file system access is my number one reason for jail breaking. I can access any file on the device, share folders on a samba server, access any file on the sdcard reader.
Now I can actually upload nef files from.my Nikon camera.
Re: (Score:1)
- Apps to enable the f'ing hotspot that the greedy as hell service provider won't allow you to turn on. (without paying them some idiotic fee to allow me to use my already capped data however I d*** well please.)
- Full filesystem access
- Add bluetooth capabilities Apple doesn't think anyone needs
- WiFi scanning apps
(I could go on...)
Re: (Score:1)
(I could go on...)
Please do so... we need this list!
Re: (Score:2)
Re: (Score:1)
Who's doing porn as an app in the jailbreak store? It's a website with video these days.
Re: (Score:2)
Who's doing porn as an app in the jailbreak store? It's a website with video these days.
idk I bet there could be some cool pr0n games or maybe an adult chat app. The sky's the limit!
Re: (Score:1)
There doesn't need to be a communications tool just for porn-only, any general use tool can support porn.
Porn games? How does that work?
A different service provider (Score:2)
Re: (Score:1)
Right, because Verizon doesn't do this, or AT&T, or Sprint, or T-mobile. Bottom line, every major cellular operator in the US does this.
Verizon was spanked litely for this. Yet they still do it. However, they aren't allowed to stop you from loading apps to enable it anyway. Except on an Apple device, where the provider lock cannot be broken on a stock device.
T-Mobile plans already include tethering (Score:2)
Re: (Score:2)
i'm not paying extra to use the data I paid for how I want. AT&T wants me to. Jailbreak.
Re: (Score:2)
also I have no real choice in my selection of provider.
Re: (Score:1)
Are you on somebody else's bill? There's not very much area that doesn't have all four license holders to operate....
Re: (Score:3, Insightful)
Re: (Score:2)
If you customized your phone and made it worse, clearly the issue is that you suck at customizing. This time, try rooting the phone, removing the bloat, voice search, and excessive app permissions, and then don't add any other crap back.
Re: (Score:1)
Re: (Score:2)
Yo. Just don't install the apps that need too many permissions. Then you don't gotta root your phone, and you won't fuck up your battery life.
Sorry that you explicitly said "give me control" and proceeded to trash it.
Just don't install the apps (Score:2)
Yo. Just don't install the apps that need too many permissions.
That's like saying "Just don't install the apps". Most apps not on F-Droid need a buttload of permissions just to run. And if it's a game, it almost certainly isn't on F-Droid.
Re: (Score:1)
BS. You had to root it to get CM loaded. You could've stopped with rooting the stock firmware and used any of the HUNDREDS of apps and tweaks to disable the vendor bloat and security. (are we talking Samsung and KNOX perhaps. There are entire corners of the internet devoted to that shit.)
Re: (Score:1)
Xposed (Score:2)
Re: (Score:2)
If CM screws your battery life, then adjust the performance settings to get it back. I easily got back my 2 day battery life on the M8 by simply going into the settings and restoring them to being over the top conservative.
Re: (Score:2)
Re: (Score:1)
Re: (Score:1)
By "customizing" he means "loaded CM on it" (or someother AOSP based build) that doesn't know how to be efficient.
Re: (Score:2)
Re: (Score:2)
Because Apple.
Why buy a product that you're going to jailbreak? (Score:3, Interesting)
When are people going to stop buying products that they feel the need to jailbreak instead of buying unlocked or open alternatives? Keep rewarding the bad behaviour that you don't like, and you'll just get more of the same, except locked down even better.
Re: (Score:1)
at least Iphone is now unlocked (Score:2, Informative)
at least Iphone is now unlocked
not like the past where it was ATT only and roaming was $20 a MEG!!!
Re: (Score:2)
That's cheap. That's $1/50K or so, or 2 cents a K.
In a LOT of places, roaming data is charged 5 cents a K if you're on a plan, 20 cents if you're not. If you ever wonder why people can run up $20K bills, well, that's why.
Anyhow, 7.1.2 jailbreak, I don't trust it. It's buy a Chinese firm wanting to sell pirated apps on iOS, and who knows what sorts of malware are on it (or if you can delete their virus-laden app store).
It is one of the bigge
Re: (Score:3)
"Why?"
Because I'd rather have an iPhone than any other phone and an iPad than any other tablet. If they have to be jailed, then so be it. On the other hand, once I get my device, it's just that much better when it's jailbroken. I'm not rewarding bad behavior. Apple made their choice of how they wanted the platform to be, and most people are perfectly fine with that choice. My personal protest to the contrary wouldn't change one thing.
Re:Why buy a product that you're going to jailbrea (Score:4, Interesting)
As soon as my employer decides to offer a choice other than "windows or IOS", I'll take it.
Until then, jailbreaking remains the only option.
Re:Why buy a product that you're going to jailbrea (Score:4, Interesting)
Because the open alternatives well, suck. I've tried Android, and while ICS and JB are nice, they're also way too busy and don't work the way I want them to. Yes, I'm a geek, I love all the billion options it gives me to control it, but damn, I just want to use my phone as a phone. I don't want or care about themes, dynamic backgrounds, wallpapers, etc.
Plus, I like the way iOS works. Android's got it's own UI, and I find I dislike it (it's gotten a lot better now, but the back button always throws me for a loop because I'm used to seeing back at the top left, while the back button is always at the bottom).
Then there's whole Google thing. Sorry, Google's business plan involves gathering as much user information as possible.
Finally - while iTunes sucks, there's a bunch of utility it provides, like backups. I can download IPA files on iTunes and install them on my iOS devices - even if the app gets banned or whatever, as long as I have a local copy, I can install it. Apple hasn't blocked any apps from running, nor have they force-removed apps. And iTunes backups DO work. Backing up on Android? Well, you have Ti Backup and other apps, but nothing by default. Hell, even iCloud backups work. Android backups for me just mean all my apps get reinstalled, but I lose all my data. Thanks, Google.
Then there's the whole penis^H^H^H^H^Hscreen size thing. I find this enlarging screen size trend disappointing - I want a decent screen, decent CPU, decent RAM, and that entails buying flagships which are growing faster than the American waistline. I mean sure, 441dpi is a bit too much for me (I don't use the phone to my nose), so the 325-ish DPI of the "retina" display is perfectly adequate. Plus, I want real RGB, not pentile crap, and proper color calibration (AMOLED is impressive, but the colors generally oversaturate and are inaccurate). Android is rapidly moving away from being useful to me as an alternative.
Sure if I wanted open I could use Linux, but Linux desktops are just plain old fugly to me. I develop on Linux, using Windows as a front end (X server for the odd X app, but otherwise a bunch of SSH windows and samba serving files for Gvim for Windows).
Again, it's all personal preferences, and I know lots of people don't work that way.
As for jailbreaking, well, the only must-have app I have on iOS is iP Firewall. It lets me control apps use of network - so I block ad servers and the like. (Yes, Android has the same functionality if you root).
Estimates have around 10% of iOS users jailbreak, and unfortunately, it seems the largest use of jailbreaks are... installing pirated apps.
Re:Why buy a product that you're going to jailbrea (Score:4, Insightful)
Because they dont exist.
All android phones are locked you have to root them to unlock them, and it's pretty much a similar amount of work. And now you have the Bullshit of S-ON and S-OFF on most android phones that requires you to use exploits to set Security off.
Even buying a 100% unlocked version of the phone.... S-ON is set and you STILL have to exploit it to unlock it.
So please tell me what phone can I buy that I already have root, and there is no security at all on the phone to stop me from installing whatever I want or whatever OS I want. Because they just do not exist outside of developer edition short run.
Re: (Score:1)
S-ON/OFF is just an HTC thing.
You do not have to exploit any Android phone to get root, because you do not have to exploit any Android phone to install another ROM on it. Just install a ROM that has root access and you will have root access - no exploits.
You just have to unlock the bootloader with adb, which is not an exploit, but rather a feature. Then, load the new ROM with adb, which again is not an exploit.
You can also load a new Radio without an exploit, as I did with my Nexus 4 phone. I loaded a hybri
Re: (Score:2)
Then why does a Friends LG phone have the SAME THING just under a different brand name?
Extremely Useful (Score:2)
In Other News, Exploit gives unlimited Lives in Doom.
Re: Extremely Useful (Score:2)
Agreed. GA failed lesson one in jailbreak release 101: wait until the next major release comes out before you give away the exploit.
Re: (Score:2)
Agreed. GA failed lesson one in jailbreak release 101: wait until the next major release comes out before you give away the exploit.
Actually, they figured out Advanced Jailbreak Releasing 301: advertise the hell out of the version that has been jailbroken, but give Apple no clue as to how to fix it. Allow as many as people as possible to download and install 7.1.2 in preparation for jailbreaking.
Apple's pattern of responding to jailbreaks is very predictable: the day after someone announces the jailbreak, Apple will spring into action, releasing a patched version, and immediately preventing anyone from downloading or installing the n
Re: Extremely Useful (Score:1)
here.
Re: Extremely Useful (Score:1)
http://techarrival.com/downloa... [techarrival.com]
why? isn't 7.1.2 already jail broken... (Score:3, Informative)
Congrats on jailbreaking an os which is already jail broken?
Re: (Score:3)
Yup, the Pangu team jailbroke 7.1.2 several weeks ago (I'm typing this on a jailbroken iPad Mini, actually).
Re: (Score:2)
The news isn't about the availability of a JB; it's about the presentation at Black Hat [blackhat.com]. The JB wasn't "just now" discovered or created. Further, in the presentation, the Georgia Tech (GT) team claimed that Pangu stole their methodology (and added malware, FWIW). It's unclear whether the GT researchers will release an implementation of their methodology at all.
Why jailbreak? (Score:3)
A browser that supports userscript extensions (greasemonkey). Bookmarklet just aren't good enough.
Calling APK (Score:2)
Has Verizon gotten wise to MyWi? (Score:2)
Anyone notice that MyWi data rates are practically unusable now while Apple's regular mail and Safari apps have no trouble at all? Is it possible that Verizon can tell when you're trying to use your data plan through MyWi?
Why bother? (Score:2, Informative)
You can buy an unlocked iPhone directly from Apple these days.
Perfect Scam (Score:1)
All the disadvantages of renting and all the disadvantges of owning are yours when you purchase a walled-garden iOS device!
Remember in 1984 when Apple had that superbowl-commercial against 'big brother'?
Yeah well that was a promotion for THEIR freedom, not yours or mine.
Re: (Score:1)
Any source on that? I'm using their JB and haven't found any reason why not to so far, but I'm always glad to read someone's analysis/complaints.