Jailbreak iPhone, iPod Touch, iPad

As you may know, few days ago Apple had released a new version of iOS for all its mobile devices except first-generation iPhone and iPod touch, so owners of the latter are still not protected from a security flaw that allows hackers to obtain a remote control of their handsets. In fact, the latest compatible version for them is currently iOS 3.1.3.

But Saurik (who is known as a developer of Cydia) recently announced on the Dev-Team blog that he released a PDF patch that is compatible with any iOS version down to 2.x. It can be found in Cydia if you’ll search for “PDF Patch”. After installing it you can check if the patch is working properly with visiting jailbreakme.com page. After sliding the box to jailbreak you should only see the star background (and not a dialog box), which means you are no longer vulnerable.

In its blog Dev-Team also noted:

“Since the only reason for 4.0.2 was to fix the security holes, and since the upcoming Cydia package will fix them too (and then some!), everybody should sit tight on 4.0.1 (or lower) and install the Cydia package as soon as it’s out. Jailbreakers can have their cake and eat it too.”

Today Adobe has announced a new Photoshop application for the devices based on iOS while giving a new image to its previous limited functional application Photoshop.com Mobile for the Apple iPhone. Now it has got a new name Adobe Photoshop Express. Here you’ll find a great number of new features for the iPad sporting the larger screen space, support for the device and improved user interface (UI).

Does it have pros and cons?

Yes! There is no support for the Retina Display of the new iPhone 4. It is quite disappointing for many users.

Today Apple released patches for its iOS that address a security hole in Mobile Safari, which allowed users to jailbreak their iDevices. The PDF exploit they used also allowed hackers to gain remote control over the device with an iOS.

iOS 4.0.2 is available for:

• iPod touch 2G
• iPod touch 3G
• iPhone 3G
• iPhone 3GS
• iPhone 4.

Apple did NOT release the patch for the first generation iPhones.

iOS 3.2.2 is intended to use on the iPad and iPad 3G.

You can update your device via the links above or simply by connecting your device to iTunes and clicking Update. But note, if you want to continue using jailbreak you should not update your handset/tablet and don’t forget to backup your SHSH blobs.

Having problems activating your iPhone? Don’t have original SIM-card? Cannot get passed emergency unlock screen? We have a solution:

If you have iPhone 3G, just use redsn0w to jailbreak and hactivate. If you have iPhone 3GS or iPhone 4 follow these instructions:

If you are already Jailbroken:

So you have an iPhone with iOS 4.0, but don’t have the original SIM and stuck on the Emergency Call Screen:

1. Download ifunbox software (download link)
2. Run ifunbox software and sync with phone
3. Go to /private/var/root/Library/, delete original lockdown folder and put this lockdown folder after you extract it from the zip file
4. Restart phone

If you are not jailbroken

Sherif Hashim discovered that you can activate your iPhone 4, iPhone 3GS or even iPhone 3G without the original carrier SIM card. You need a “phonebook sim card” or 02 simcard. You can buy these type of sim at radioshack, bestbuy or other mobile electronics store (for example here).

Once you get passed the Emergency Call screen, connect to Wifi, jailbreak using JailbreakMe.com and unlock using ultrasn0w. Once that is complete you should be passed activation and unlocked (able to use any sim). If you get a different simcard error, do the following final step:

1. Download ifunbox software (download link)
2. Run ifunbox software and sync with phone
3. Go to /private/var/root/Library/, delete original lockdown folder and put this lockdown folder after you extract it from the zip file
4. Restart phone

If you have itunes invalid response problem:

1. Connect to wifi and ssh to your phone (via winscp, putty, terminal, etc).
2. Navigate to your lockdown folder (/private/var/root/Library/).
3. Delete pair_records folder
4. Reconnect the cable and see that your invalid response problem is gone.

If you bought your iPhone 4 on ebay you will need the official sim (at&t) or a universal sim, like ones you can grab at bestbuy for $10 this will get you passed Emergency Screen.

via jailbreakmatrix and gsmhosting

That was funny when people started jailbreaking iPhone’s inside Apple Stores. The fun ended because stores started banning jailbreakme.com from their WiFi networks. Well, it looks like it didn’t help.

One Apple fan published a video where he jailbreaks iPad by using his Nexus One’s mobile hotspot capabilities. Take a look at the video after the break:

There is a big a security hole in iPhone iOS. The device is insecure in a big and obvious way. You should be extremely careful of what sites you visit.

The FlateDecode vulnerability can be used when a PDF File is embedded within a Web page. Basically Safari tries to parse the PDF. And when it does it executes some code. Hackers can use this exploit to read and write iPhone data, get your contacts, sms, even delete something. So they can get all kinds to access your personal information stored on your iOS device.

Apple will fix it some day. Until then you need to take care of your iPhone security. There is a fix for that. It is available via Cydia for jailbroken devices. So you need to jailbreak in order to secure (funny isn’t it?).

Will Strafach has released the fix as a Cydia-based package called “PDF Loading Warner.” Simply download and install the package. Every time Mobile Safari attempts to download and parse a PDF you will get the following message:

Now you can control, where to accept PDF (as not all of them are made by hackers) and where to select cancel.

Good news from DevTeam. They just announced via twitter that unlock for firmwares 3.1.3 and 4.0 is ready:

RT @MuscleNerd: ultrasn0w tips: 1) Works for all basebands since 3.0 FW 2) Remember to disable 3G on T-Mobile USA

ultrasn0w 0.93 released! Cydia repo is repo666.ultrasn0w.com. Works with basebands 04.26.08 thru 05.13.04

This means, that all users with basebands 04.26.08, 05.11.07, 05.12.01 and 05.13.04 can use ultrasn0w 0.93.

There is no jailbreak for just released iOS4, so you need to wait a bit. Firmware 3.1.3 who need unlock can update ultrasn0w and use their iPhones with any carrier.

Apple recentrly released new version of iPhone OS 4. it is called iOS 4.0 GM. Here is an update from DevTeam about iOS 4 jailbreak:

For those who can legitimately activate to the iPhone3G 4.0GM seed, the “point to previous IPSW” redsn0w trick works and will jailbreak your 4.0GM. The “trick” is to point redsn0w at the 4.0beta4 IPSW instead of 4.0GM (do this after you’ve updated to 4.0GM and activated through the new iTunes 9.2 on your Mac). Since the carrier unlocks aren’t yet supported at 4.0, don’t do this if you use yellowsn0w/ultrasn0w/blacksn0w. Many JB apps are still pretty buggy in 4.0, so again this is mostly useful only for developers of those JB apps.

Note: If you’re experiencing MobileSafari crashes, double check that you’re running the version at the bottom of this page.

For those without legit iPhone3G 4.0GM seed access, please wait until the full public 4.0 release for updates to the jailbreak tools.

You can download redsn0w 0.9.5.b4 here.

iPad USB Camera Connection Kit is much more useful as it seems. Max Sha, an experienced user, was able to access external hard drive with this kit. All you need is a jailbroken iPad, an external drive, a split-USB cable to give the drive some power and a terminal of some sort (f.e. MacBook) to mount the external storage. While it is a little unwieldy, it shows that Terabytes of external storage for iPad is possible.

Here is a complete step-by-step guide from Max Sha:

For starters, you will need to do the following:

1. Have an external hard drive formatted to either HFS or FAT32. NOTE: All data will be erased!

2. Perform the Spirit Jailbreak.

3. In Cydia, install iFile ($4.00 for full version, but there is also a free trial) and OpenSSH (free)

4. As well, install the “Nano” terminal text edit from Cydia.

5. For this particular example Max used GoodReader app for iPad ($0.99).

Now you can begin the process of mounting your hard drive. You will need external power for the drive. If you have an external drive with power (one that has a USB port and an external power supply) you won’t need to worry about this. If you have external drive with just an USB cord you will need a split USB cord.

1. Open “Settings” on your iPad to find your IP address (make sure you’re on the same network as your iPad).

2. Open Terminal, on your Mac (/Applications/Utilities/Terminal.app). On Windows you can use Putty.

3. At the prompt, SSH into your iPad with the IP address you found in the “Settings” app (make sure OpenSSH is installed!), with the following:

ssh root@[iPad IP address]

For you first time users, the password for your root account will be “alpine”. NOTE: Please change your password ASAP. To do this, once you’ve logged in VIA Terminal, type the following into the command prompt:

passwd root

You will then be prompted for a new password. Please do the same for your “mobile” user as well, by doing the following:

passwd mobile

4. Now, type the following, in Terminal:

mkdir /Volumes
mkdir /Volumes/EXT
ln -s /Volumes/EXT /var/mobile/EXT
nano /var/stash/Applications.xxxxxx/iFile.app/Info.plist (“xxxxxx” is a series of numbers after “Applications”. If you type “/var/stash/Applications” and hit the “Tab” key, it will fill in the rest for you).

5. The nano text editor will now open. Please add the following lines below the first “<dict>”, in the document (this makes iFile look much better on the iPad):

<key>UIDeviceFamily</key>
<array>
<integer>1</integer>
<integer>2</integer>
</array>

6. Then hit “Ctrl+x”. Followed by “Y”, and then “Enter”. This will save the changes that you made.

7. Now, reboot your iPad. You will notice that your SSH connection will have closed, in Terminal. Re-open terminal, when the iPad reboots, and follow steps 1-3 (without reseting the passwords again).

8. Open iFile, and go into the settings. It is recommended to have the settings set as shown below. The most important is enabling “Application Names”. Hit “Done”. Close out of iFile by hitting the Home button. Restart iFile.

9. In iFile, navigate to “/Volumes/”. Then, select the “Edit” button, in the top right.

10. Check the circle next to the “EXT” folder you created in “Step 4″.

11. Click the “Box with an arrow”, in the bottom right. In the dialogue box that opens, select “Copy/Link”.

12. In iFile, Navigate to “var/mobile/Applications/”. You should now see the names of applications above the actual folder names. Navigate to the “GoodReader” folder, then the “Documents” folder.

13. Click the “Edit” button again. And then click the “Box with an arrow”, in the bottom right. Click the “Create Link” button. You should now see the “EXT” folder. Hit “Done” in the upper right.

14. Now, connect your iPad Camera Connection Kit.

15. Take your hard drive and plug the secondary port into a power supply (in this case, Macbook Pro). Then, plug the main USB port into the iPad. You may see a message similar to “Insufficient power to mount this drive” error message on the iPad. With an external power supply, it should be much more convenient. NOTE: You MUST plug in the external power supply first, or else the iPad will not mount the drive.

16. Now, lets go back to terminal. Type:

ls /dev

What you’re looking for here is the file “disk1s1″. If that does not show up, try steps 15-16 again. If you see “disk1s1″, proceed to step 17.

17. For a FAT32 formatted drive, type the following, into terminal:

mount -t msdos /dev/disk1s1 /Volumes/EXT

It will take a few seconds, and then return you to the command prompt. For an HFS drive, type the following:

mount -t HFS /dev/disk1s1 /Volumes/EXT

18. You are now good to go! You can now access the files in either iFile, or GoodReader. As an example of how to manipulate the files, watch the video below.

19. To unmount the drive, type the following, in Terminal:

umount /dev/disk1s1

20. That’s all!

Here is a video demonstration:

Many thanks to Max Sha!

Finally the jailbreak for iPad, iPhone and iPod Touch from the Dev Team is available for download. It’s free and untethered and it’s called “Spirit”. The jailbreak supports every iDevice with firmware version 3.1.2, 3.1.3 or 3.2.

If you have iPhone 3GS or an iPad you should backup your SHSH blobs before using the jailbreak. ECID SHSH or SHSH blob is a unique signature given to every Apple mobile device. When you decide to restore the firmware on your iPhone, iPod Touch or iPad, Apple servers checks this signature.

As you know, if a new firmware is released it becomes impossible to restore the older firmware from iTunes. But Cydia creator tuned up a new server and now it mimics Apple’s verification server and saves your older SHSH blobs so that you can restore back your device to the older firmware. Without having your SHSH blobs saved you may accidentally update new firmware and then you not only lose your jailbreak but also won’t be able to restore the older firmware to re-jailbreak your device.

This is also important because there is a big possibility that Apple will soon find out what exploit is used by the jailbreak and then it will be patched in the form of new firmware.

You can save your SHSH blob in three ways. Here is a guide to make it using AutoSHSH.

1. Download AutoSHSH. (Latest version is here).



2. Start AutoSHSH and plug in you iPhone/iPod Touch/iPad in recovery mode (only one device at a time). Recovery mode launches when you turn off your device and hold down the “Home” button when connecting the USB cable. Then you must see “Connect to iTunes” message and logo on your device.



3. In AutoSHSH click on “Grab my SHSH Blobs Automatically”. When the app will grab the signature you must choose whether you want to save it locally or not. Do not forget where you saved the signature. In the end of the procedure AutoSHSH will also upload it to saurik’s server.

If you have some problems with using AutoSHSH to save your blobs, write it in comments or try saurik’s method or Firmware Umbrella instead.

Now, when you saved you SHSH blobs, you can make the jailbreak. It is recommended for you to sync your device with iTunes beforehand. Then use the following guide:

1. Download “Spirit” (link for Windows, link for Mac OS X).
2. Plug in your device (it will be instantly recognized).
3. Hit the “Jailbreak” button.

That’s all!

Additionally here is a video tutorial for jailbreaking:

Please note that Spirit is not a carrier unlock so it won’t allow you to use unauthorized wireless carriers. The jailbreak is also “sort of beta”, so it may be buggy. DevTeam notifies that some apps in Cydia that are NOT designed for iPad may crash your system and require you to restore so be careful.