Lifehacker, Emphasis on the ‘Hack’

Though I cer­tainly hate tech crap as much as the next guy and I cer­tainly don’t want an inse­cure oper­at­ing sys­tem, I want there to be a jail­break­ing com­mu­nity so that I can jail­break my iPhone. And I will tell you why. My 2 year con­tract with AT&T is over; I got the orig­i­nal iPhone and didn’t upgrade. I just moved to another coun­try where there is no iPhone. How the fuck am I sup­posed to use my iPhone? Mind you, I paid the “sub­sidy” (it’s a loan really) with AT&T (even though since I have the orig­i­nal one I actu­ally paid the $400) and now I don’t have a con­tract with them, which means I should be able to use the phone I paid for any­where I want. But I can’t. Not only that, but like I said, I am in another coun­try now and there is no car­rier here that sup­ports the iPhone. So, what am I sup­posed to do other than jail­break it? What do you think about my sit­u­a­tion? (And please refrain from child­ish com­ments like “move to another coun­try”, “why did you move in the first place?”, “why did you buy an iPhone in the first place?”, or any other shit that does not relate directly with the situation).

So, like, jail­break devs are actu­ally white hats pro­vid­ing secu­rity con­sult­ing to Apple? Thanks, guys!

In Sweden your car­rier can unlock your iphone, my car­rier allows it after 12 month on the con­tract (even if its longer than than that).
So there is noth­ing inher­ent in the iphone that blocks the car­rier to unlock your phone, so bitch to AT&T for not doing it.

I’m pretty sure the exploit they were using was in the boot­loader. My under­stand­ing is that they were essen­tially able to fool it into think­ing it was run­ning signed code when it wasn’t. I think this kind of issue could really only ever be exploited with phys­i­cal access to the phone, in order to load a new OS on to it. So it is a secu­rity issue, but not on the level of some the older ones that exploited a hole in libtiff, and would remotely jail­brake the iPhone just by vis­it­ing a web page. That was a really, really, really nasty hole.

I’m not try­ing to say it’s not a prob­lem, and that Apple shouldn’t have fixed it. Just that I view a vul­ner­a­bil­ity that requires phys­i­cal access as being way less of an issue than one that can be done over the net­work. At the end of the day, any device that an attacker has phys­i­cal access should be con­sid­ered com­pro­mised. Even with the encryp­tion on the 3GS, from what I under­stand, it’s pretty triv­ial (for a cer­tain def­i­n­i­tion of “triv­ial”) to recover the key with phys­i­cal access, and read data directly off the inter­nal flash.

I look at this the same way for a desk­top. If Apple had to decide between two secu­rity bugs to fix, one that requires phys­i­cal access to the com­puter, but gets you a root account, and another that can be exploited over the net­work, but only gets access to the cur­rent user’s account. I think Apple should con­cen­trate on the remote exploit first.

To this I agree 100%. Whether it be Apple, AT&T or who­ever, that pol­icy needs to change. And if they aren’t will­ing to change the FCC needs to become involved. Once the car­rier has their pound of flesh the phone should be oper­a­ble on any (com­pat­i­ble) network.

I didn’t tell you how to or not respond on your fuck­ing web­site. I asked politely; there’s a dif­fer­ence. Second, I will tell any­one what­ever the fuck I want wher­ever the fuck I want. If you chose to pub­lish or not is up to you, of course. But my inten­tion was start a more tech­ni­cal dis­cus­sion rather than a child­ish name call­ing one. Third, I didn’t say Apple was under oblig­a­tion to do shit. Fourth, I would not com­plain if I moved to a place with CDMA cov­er­age only because I am not that stu­pid. I agree with the rest of your reply.

And the biggest prob­lem with those idiots’ argu­ment is that if Apple gave half a fuck about mak­ing life easy for the jail­break­ers, they could have just let the iPhone run unsigned code from the start. Apple obvi­ously doesn’t want you run­ning any­thing other than their approved soft­ware on the iPhone. If the kids at Lifehacker don’t like it, they can go play some­where else. I must have missed the part in the Bill of Rights where every­one was guar­an­teed an iPhone.

–Matt (Disqus doesn’t seem to be play­ing nice with me right now)

but I just wanna add, you are absolutely cor­rect, if there is a secu­rity vul­ner­a­bil­ity, they have an oblig­a­tion to patch it up and should. Also none of these users have the right to bitch about, they should of expected apple would patch it up.

btw, sorry if my grammer/spelling sucks, from one drunk to another

One pont most every com­ment on this kind of exploit misses is that this IS a threat if your “adver­sary” has phys­i­cal access to your phone for just a cou­ple min­utes. It could allow them to install all kinds of monitoring/spying software.

This is the kind of secu­rity ratio­nal­iza­tion they do at Microsoft and which brought us the botnet.

> The only thing that this exploit allowed was to jail­break your phone

Prognostication. I don’t know if that’s really enough to make the 99.9% of iPhone users and Apple and the 100 car­ri­ers who are not involved in jail­break­ing feel good about car­ry­ing this bug around in their phone for the con­ve­nience of tin­ker­ers.

> it’s really just an attempt to make jail­break­ers life more dif­fi­cult.

Now you are read­ing minds!

I’m a lit­tle dis­ap­pointed that the Internet Civility Squad hasn’t come ’round yet to chide me on my lan­guage. Come on mother – fuck­ers, I’m on a sched­ule here.

Oh come on. You’re com­par­ing apples to oranges. Not all “exploitable vul­ner­a­bil­i­ties in the oper­at­ing sys­tem” are equiv­a­lent.

The exploit that the iPhone Dev Team has been using requires phys­i­cal access to the device and requires delib­er­ate action by the user. Even if mal­were existed that took advan­tage of this vul­ner­a­bil­ity, it would still have to be run by the user on his own com­puter, and would require that the user fol­low sev­eral explicit man­ual steps like con­nect­ing his iPhone at the right time and restor­ing the iPhone from the mod­i­fied firmware bun­dle in iTunes.

This is a far cry from an exploit in that lets some­one halfway around the world take con­trol of your PC from with­out your even know­ing about it.

An iPhone mod­i­fied with the pwnage tool allows user to run what­ever appli­ca­tions he wants. THIS abil­ity could of course be exploited to, say, trick the user into installing mal­ware on his iPhone. But the user who runs the pwnage tool knows what he’s doing. And it’s not as if the only alter­na­tive to a gen­eral pur­pose hand­held com­put­ing device is one locked down by the man­u­fac­turer. Just imag­ine if you could run only Apple-approve apps on your Mac. Come now! There are other ways to make com­put­ing devices secure.

Time and time again, crack­ers have shown the abil­ity to find and exploit vul­ner­a­bil­i­ties in unfore­seen ways. It is vir­tu­ally impos­si­ble to pre­dict what they will lever­age and Apple must cover its ass by secur­ing vul­ner­a­bil­i­ties if it hopes to retain cus­tomers and pro­vide a rel­a­tively secure user expe­ri­ence. Appeasing a vocal minor­ity of hack­ers are sim­ply not worth the poten­tial risks.

Despite the nar­cis­sis­tic para­noia, Apple is not in busi­ness to thwart the enti­tle­tards. It does what is does because it believes those actions will result in profit by cre­at­ing value for its cus­tomers. The iPhone is not the Mac and to try to equate the two is absurd and call­ing their efforts to main­tain the secu­rity and reli­a­bil­ity of their prod­uct dra­con­ian is even more so.