Jailbreak hole in iOS 4.1 will be hard to close
Just hours after Apple released iOS 4.1 to great fanfare, hardware hackers found a way to jailbreak devices that run the new operating system. More surprising still, there doesn't appear to be anything Steve Jobs can do to stop them in the near future. The exploit in the boot ROM of iOS devices was first announced by iPhone Dev- …
Oh dear it looks like it took 5 mins not 4 how inconvienient
Are you sure you're not secret fanbois? You've managed to write 3 articles on 4.1 so far today.
They could have all been rolled into one very easily, non of them were especially long!
If you really aren't fanbois just remember there is no such thing as bad publicity.
Come on, go find something else to write about...
hia real name, unlock some people we know.
I remember seeing something that Jailbreaking was now meant to be legal on iPhones, with the whole "it's your property, so you can do what you want with it" theory.
Apple know that the teams working to break the phones, so them trying to stop them is King Midas trying to stop the tide...
Surely King Midas would just touch the sea, and it would turn to gold -- presumably solid -- thus stopping the tide.
Or are you thinking of King Knut?
It is in the United States – and what you’re referring to is a change to the Digital Millennium Copyright Act. Every three years, the US Copyright Office looks at the Act to consider changes.
There were six main changes that legalised activities that you could be prosecuted for, two of which were:
“ Computer programs that enable wireless telephone handsets to execute software applications, where circumvention is accomplished for the sole purpose of enabling interoperability of such applications, when they have been lawfully obtained, with computer programs on the telephone handset.”
“Computer programs, in the form of firmware or software, that enable used wireless telephone handsets to connect to a wireless telecommunications network, when circumvention is initiated by the owner of the copy of the computer program solely in order to connect to a wireless telecommunications network and access to the network is authorized by the operator of the network.”
So this means it’s legal to jailbreak any phone to use (legally obtained) apps that you wouldn’t be able to normally access (e.g. non-App Store ones for the iPhone) or in order to use a different phone network.
I would also say there were some rather major changes to the DMCA, such as it’s now legal to break DVD encryption in order to obtain short clips for the purposes of education or criticism.
Going back to jailbreaking, I don’t think there’s any hard evidence that Apple is actively trying to stop this. It would be a waste of time as you say, but Apple has never taken action against the Hackintosh community or those that build these machines for personal use. The only people they have pursued for this type of thing in recent years were Psystar, a company that indulged in dodgy practices, including charging for open-source software produced by the Hackintosh community after they slapped on a GUI (which looked suspiciously like another freely available GUI). My own feelings is that Apple takes a similar line with jailbreaking.
One thing I think worth remembering that although in the States, it’s legal to jailbreak this doesn’t mean that there are no bad consequences – although this hasn’t been challenged legally, jailbreaking will invalidate your iPhone warranty. However, it’s very difficult to brick your iPhone by jailbreaking and even if you do, you can restore it to it’s pre-jailbroken state by using… iTunes. I'm pretty sure (but happy to be corrected if wrong) that this didn't used to be the case.
"I remember seeing something that Jailbreaking was now meant to be legal on iPhones, with the whole "it's your property, so you can do what you want with it" theory."
It's legal, yes, but Apple isn't obliged to make it easy for you. What would be nicer was if locked down kit were *il*legal, but that's in dreamy dream land.
In Canukistan here, I can go into any cellular store buy any phone (on a contract or not) and request that they unlock it for me. They're required by law to do so. Love it.
If by Canukistan you mean Canada, feel free to request your shiny new phone be unlocked but be prepared to get laughed out of the store. There is no law requiring phone unlocking.
There is a private member's bill before the House of Commons that proposes forcing carriers to unlock a phone at the END of a contract. However, said MP is a member of the NDP which holds a whopping 36 of 308 seats in our House of Commons. The bill will go nowhere.
Facts, who needs them?
Jailbreaking and unlocking are not the same thing. Unlocking refers to allowing use with any carrier, whereas jailbreaking means allowing the use of any software. Though at least at one time, jailbreaking was the only means of unlocking an iPhone, so in practice you may be correct.
I know it's impossible to talk about Apple without hysteria from one side or the other, but Apple/Steve Jobs have/has no interest in killing jailbreaking completely.
Making life just tricky enough for jailbreakers - and with just enough acceptance that what they are doing is off-piste - means that Apple isn't held accountable for problems with their phones as a result, and yet keeps a large number of paying customers within the Apple fold.
>>I know it's impossible to talk about Apple without hysteria from one side or the other, but >>Apple/Steve Jobs have/has no interest in killing jailbreaking completely.
Do you know Jobs and asked him?
And you know because you asked The Sacred J himself? Either that or you're some sort of mind reader. Oh wait, you ARE a mind reader and that makes you The Sacred J. How nice of you to grace the little people with your presence. Or is that omnipresence? Whatever ...
"I know it's impossible to talk about Apple without hysteria from one side or the other,"
It might be if you tried using facts instead of supposition and bullshit, have you considered that ?
" but Apple/Steve Jobs have/has no interest in killing jailbreaking completely."
In your completely uninformed opinion, which you just made up and has absolutely zero basis in any kind of fact tat you can point to.
"Making life just tricky enough for jailbreakers - and with just enough acceptance that what they are doing is off-piste - means that Apple isn't held accountable for problems with their phones as a result,"
As a result of what ? Apple isn't responsible for your phone if you jailbreak it, because you just voided your warranty. You fuck with it, you own any problems you have with it. Same ad any piece of consumer electronics.
" and yet keeps a large number of paying customers within the Apple fold."
How large ? You mention a number, what is the number and where did you get it from ?
If you're going to post such a declarative statement, you must surely have facts to back it up, where are they ?
"And cue the hysteria"
If you think people being asked for facts is "hysteria', perhaps the Internet is not best suited to your clearly delicate disposition.
I Think Apple actually WANTS "jailbreak" on their iOS. They get free publicity and the number of users that actually JB are relatively few. So, why spend money trying to stop them? I think Apple's current approach is the best business model they have, at least for the moment.
I've noticed a number of replies along the lines of "so you spoke to Steve Jobs personally then?".
For these people, can I please make it clear that, as everyone else already realises, there is a tacit "In my opinion..." in front of all of these comments. So no, it doesn't matter if Jobs said it - the post is someone's comment or opinion.
Can't believe I actually have to write this...
Locking down an embedded device properly is hard but not impossible - take a look at ADI's LockBox technology for the BlackFin.
Maybe they aren't really trying to get it unbreakable?
Make it hard enough to prevent 90% of the customers from churning, but leave a big enough hole so the other 10% buy and jailbreak the iPhone instead of going elsewhere.
I suspect that plenty of useful iPhone apps are written by propeller heads who would have refused a buy one if it was unbreakable.
If this was not intentional I really feel sorry for the guy who wrote the bootrom.
An assignment like that can only ever end badly. If someone finds a hole you are toast, but even if it does not happen quickly you never know that it won't eventually. And the longer it takes to be broken the more prestigious it becomes and as a result you have an army of hackers attacking a few K of code written by a handful of developers working to a deadline they did not set.
The cost to make it 100% unbreakable is likely on the order of tens of times more costly to make it say, unbreakable for 99.99% of the population. But then what does that matter? Apple fanatics will pay whatever the cost simply because they will pay whatever the cost. Imagine what they could charge if The Sacred J actually spit on each one. Or maybe even ... well...wont go there.
Oh the marketing potential! Record the various J sounds and have them available as ring tones and so forth. You know, coughs, hacks, spitting up a plug, farting. Just boggles the mind and to think they could probably surpass Microsoft in sales. Oh wait. they already did that for a nanosecond. They'd need to capture the sound of J having sex maybe. But then who cares about fap, fap, fap .... ?
What's the betting that the iPhone DevTeam have known about this exploit for some time know -- keeping their powder dry until Apple release the 4.1 update. By the sounds of it, they're satisfied that Apple won't be able to close the exploit in 4.2, so where happy to make use of it now.
I wonder how many more exploits they have up their sleeves?
These hackers are doing good work and producing many a battering ram code to get into that walled garden.
But do many of the fanboys actually want to leave that walled garden?
I think it’s fair to say that if someone looked at various iPhone threads (not just about jailbreaking itself), they would see that there is a fair bit of interest and a rather a lot iPhones have been jailbroken.
It’s difficult to get an exact number, but a figure of 8-10% iPhones sold and then being jailbroken is usually punted.
That number could be 98% and i'll bet Apple still won't open the iphone up so people don't have to jailbreak in the first place
What would be the incentive for so many people jailbreaking their phones?
Most people I know who have jailbreaked have done so out of principle, or they want to add functionality (such as Open SSH) or a combination of both. The added functionality isn’t what I would consider to be a definite must for the average user, but is useful for specific usage.
Jailbreaking iPhones is incredibly easy, doesn't destroy hardware, but if someone asked me if it was worth doing, I would say have a look at information and make up their own mind - because I can't see of one reason that would make it an automatic no-brainer.
you do realise that there are a multitude of SSH apps available in the app store, don't you ?
Paying for openssh just because you are forced to only play in Apples' garden is the reason people laugh at Appletards.
Fascinating. *yawn* I jailbroke my iPod for kicks. It was even more unstable, and the famed Cydia looked like it was written by someone in their bedroom, and crashed like it, too. And judging by the number of ads (hilariously including ones showing Windows 95-style alert boxes) I think it's easy to see what the idea behind these generous hackers really is - grabbing some revenue of their own.
Don't know what the jailbreaking fuss is about.
What?? You mean those hackers are keen on an environment where they don't have to pass 30% of the takings direct to Apple? And they're keen on using the hardware to its full potential and not just whatever API/functionality/name that Apple approve of? They don't want to take the risk that their work can be deemed suddenly unacceptable due to a new name Apple come up with or functionality they change their mind about with no notice at all?
The dirty, thieving, unreasonable barstewards...
I on the other hand, have just jailbroken mine, largely because I know what will happen if I put 4.x on a 3G - it will become unusable, regardless of Apple's promises to make it better in the future. So why not leave it on 3.x? Because the vulnerabilities (like the PDF exploit) don't get patched if you stick to 3.x. It's 4.x and crap performance, or 3.x and vulnerabilities. I took hidden option C and I'm happy with it. The (paid for, happy to do it) SBCategories app is a much sleeker solution than the Apple folders too.
Erm, you have actually seen performance tests of 4.1 on a 3G?
http://lifehacker.com/5628991/
Yes I have seen the performance tests - of 4.1 vs 4.0. It's better than 4.0, but that's not difficult - it's like preferring a hammer to the thumb than a hammer to the scrotum.
To wit, from the same article: "we're still not sure it's a big enough improvement that 3G owners will want to ditch iOS 3"
They've run the wrong test - it's 4.1 vs 3.x that most 3G owners would care about. And for the poor sods who didn't realise you can downgrade (because it's not exactly easy), it doesn't really make up for 3 months of piss-poor performance.
the piss-poor performance on my 3G.
Even with 4.01.
One who did just went /settings/general/home-button/spotlight-search and then unticked everything.
Back to normal: In an untick
May I be the first to christen.... The Godel Phone?!
I'll be more than happy to stop jailbreaking it.
Three articles on iOS4.1 and clearly you've read them all despite not being an Apple owner or fan, genius logic there. Wonder why they write so many? Might be because so many Apple @AC The reason El Reg posts so many Apple articles is that haters like yourself keep reading and posting on them!! Take a look at any Blackberry or Rim article and you'll see its in the main people who are actually interested in reading about them rather than sad trolls like yourself who post comments on them.
Anyways.. most folk I know that have jailbroken their phones have done it just because they can, not because its really of any great benefit.
@Annihilator.. how dare Apple charge money for hosting, distribution, testing, advertising etc.. shocking huh? The cheek of them.
The people I know who jail-break iOS and Andriod do so simply because then they can pirate software; although they're happy to pay three quid for a cup-of-coffee twice a day they don't want to pay even 79p for Apps.
sharpest programming skills for iOS?
Obviously, not you.
P.S. When will the antenna be fixed, properly? How's the white version coming?
glad I ditched my iPhone for a Galaxy S. lol, iTards :-)
Make sure you don't download those malware applications on the Android app store. There ARE advantages to the "walled garden"...
Is that the same app store that allowed a tethering app in disguised as a flashlight app?
Wonder what other Apple-approved apps are hiding stuff?
Samsung do their usual stuff and don't bother to offer an update to the Android OS.
You're going to have to try very much harder than that, sunshine.
..that trying to lock of the hax0rs doesnt work. through the 16bit gaming era countless companies spent way too much time, money and effort on copy protection systems. all of them got done in by random euro junkies. of course, the Mac was around in that era...but so seperated from that world that I guess they [Apple] didnt learn anything.
quit trying to keep it 'secure' and spent time/effort on the things users want...and deal with the issues that make users to want to jail-break the device in the first place!
I've ditched the iPhone platform and now run Android - Samsung Galaxy S right now
"of course, the Mac was around in that era...but so seperated from that world that I guess they [Apple] didnt learn anything"
Mac Playmate - mid-late 80s game for the Mac and one of the most pirated games of its era on any platform. But that's pr0n for ya ;)
http://encyclopedia2.thefreedictionary.com/Mac+Playmate
Yeah, that is /absolutely/ what I want in a phone, an OS whose developers don't care about security.
Yes because after all DRM that controls your customer is necessary to secure a computer environment for the users own "good". Apple is getting like Sony in that they only consider software/hardware defects an emergency if they allow the user to do something cool that doesn't make the shareholders even richer. If it exposes the user to more danger or hassle who cares as long as they can't run free homebrew apps on THEIR hardware. Note to Sony requiring me (or no online gaming) to download 200 meg system patches for my PS3 every few days just to defeat the usb dongle people and to punt your own 3D TVs is really starting to get old (have you fixed the leap year bug yet, no oh great).
Sure you can fiddle with your phone, "jailbreak" it so you can do whatever you want. Or you could stop being a fashion nugget and buy a droid or winmo phone. Hell, even winmo 6.0 was open.
There's probably a couple of reasons that Jobs + Apple are motivated to block jailbreaking.
1- The AT&T contract probably requires it, as they are the ones with the most to lose. A jailbroken phone can run homebrew apps and features that they don't get a piece of. And features they might not want you to have, such as tethering or unmetered phone calls, or downloading media from unapproved sources, whatever, need to be blocked.
2 - Apple doesn't want potentially buggy iPhones out there, as it reflects badly on them even if wasn't their fault. The whole reason that Apple products are more stable than, say Microsoft's, is Apple has complete control over the hardware, and significant control over the software. Hack-apps that were to catch on but either are buggy themselves, or aggravate bugs in iOS, can make Apple look bad-- and of course, to Steve Jobs, image is everything, just like with any other narcissist.
The only question is, can they do it, can they really lock out jailbreaking? The answer is probably yes, eventually, though it could easily require a hardware upgrade or two before they get there.
3 - Attempt to protect developers of Paid Apps from freetards pirates.
Sign up, sign up for The Register's weekly mobile & wireless newsletter - click here
