10/11/2007, 12:40am, EDT
Thursday, October 11th
Hackers "jailbreak" Apple's iPhone 1.1.1 (download)
Over the last few days hackers have begun publicizing ways into and around Apple's newest iPhone v1.1.1 firmware update that disabled many third-party hacks. iPhone firmware v1.1.1, which Apple warned may damage (i.e., "brick") unlocked iPhones, also disabled many third-party applications and hackers,w ho have been feverishly working to find a way into updated iPhones to install third-party applications, have finally released details of "jail-breaking" an iPhone running v1.1.1 firmware -- a process that is still fairly complicated compared to the initial "one-click" methods.
On Wednesday, three different methods for hacking into the iPhone 1.1.1 filesystem are circulating on the Web, including one -- still in beta -- that takes advantage of a TIFF exploit security bug found in the embedded Safari browser; however, the most promising method to appears to be a publicly method of downgrading the firmware to v1.02, applying some modifications to the file system and then upgrading the firmware back to v1.1.1, thereby allowing users to run an application like AppTapp to install third-party applications.
Developed by the The iPhone Dev Team, the "jailbreak" procedure, described in a public download, is not designed for unlocked phones (those that have been modified to use non-AT&T networks) and requires use of several iPhone tools developed by third-parties.
- Downgrading to 1.0.2 (if necessary)
- Preparing the iPhone for a jailbroken update
- Performing a software update, leaving you with a jail-broken v1.1.1
- Forcing v1.1.1 to mount read-write so you can access it
- Installing SSH and BSD world
- Activating with a Non-ATT SIM
- Patching SpringBoard to allow third-party applications
- Clean-up
Life with Toc2rta, a blog maintained by iPhone hacker Naicin, describes his (beta) "jail-break" process using the TIFF exploit by navigating to a certain site on the Web (URL requires modification; proceed at your own risk) to gain read/write access as root to the file system. While still in the testing phase, it requires use of the IPHUC file tool and some knowledge of how to put/get files, according to the blog post. Already confirmed by others, Niacin promises a full tutorial and a full breakdown of how the tiff works, but provides few details. However, Apple could simply (and likely will) patch the TIFF security flaw in the next update to easily disable this method.
Finally, another posting that appeared on Wednesday morning provides a detailed step-by-step tutorial for "jail-breaking" that seems substantially similar to iPhone Dev Team's method. Reports indicate that it is based on an leaked early version of their work: "This method is not refined yet. Read the entire guide over. If anything is confusing or unclear, don't do it. This guide is not meant for novice users. An easier solution will come soon from the dev team."
Filed under: Apple
, 
, 5
, 
, 
, 
, 
, 
, 
Top
subscribe to comments
for this article
They found a hack for the iPod Touch as well. Windows and PPC support is on the way (Intels got it first)
1. Many carriers offer similar or better voice plans than the AT&T iPhone plans, and some offer similar data plans, so there aren't going to be huge cost differences in using an unlocked iPhone. You lose access to Visual Voicemail, as it's an AT&T-network only feature.
2. Syncing the iPhone doesn't check any of the file system. If your phone is working, with any hacks applied, it will sync just fine. If it's previously been affected by the 1.1.1 update, there are instructions out there to revert to 1.0.2. There are even new methods to fix unlocked iPhones.
3. It is currently a little difficult to jailbreak an iPhone for 1.1.1. But the method has been out there for 1 day! Installer.app makes jailbreaking a 1.0.x iPhone as easy as holding 2 buttons for 15 seconds.
Various reader polls at Engadget, TUAW, and elsewhere put the 3rd-party using community at 25-50% of iPhone users. The actual number is likely a bit lower due to selection bias of who is reading iPhone-related websites, but that is still a large portion of the user base.
4. As far as jailbreaking and installing 3rd-party apps is concerned, there is NO RISK of "bricking" your iPhone, being unable to sync your iPhone, or incurring extra charges. Technically, you've violated the EULA and that's it.
5. If something goes wrong, simply restore to the base OS (either 1.0.2 or 1.1.1). If that doesn't fix it, take your factory-fresh iPhone to an Apple Store.
The iPhone is a great product out of the box, and an AMAZING one with 3rd-party apps. Please don't spread FUD where it isn't needed.
Prior to 1.1.1, ANYONE could jailbreak an iPhone without any technical knowledge. Even now, it isn't that difficult - and it's pretty darn easy to recover if something goes wrong.