iPhone hack reveals passwords in six minutes

Discussion in 'iPad Hacking' started by r3g3x, Feb 10, 2011.

  1. r3g3x

    r3g3x iPF Novice

    Joined:
    Jun 16, 2010
    Messages:
    17
    Thanks Received:
    0
    Trophy Points:
    0
    Location:
    USA
    Ratings:
    +0 / 0
  2. f4780y

    f4780y Super Moderator Staff Member

    Joined:
    Sep 11, 2010
    Messages:
    7,106
    Thanks Received:
    636
    Trophy Points:
    113
    Location:
    Troon, Scotland
    Ratings:
    +636 / 0
    And the moral of the story boys and girls. ALWAYS change your SSH password from "alpine" to something more secure! :D

    UPDATE - SEE POST BELOW. MY SUGGESTION ABOVE IS NO PROTECTION AGAINST THIS EXPLOIT (but is still good practice!)
     
    Last edited: Feb 13, 2011
  3. y2kgtp

    y2kgtp iPad Enthusiast

    Joined:
    Jun 15, 2010
    Messages:
    433
    Thanks Received:
    3
    Trophy Points:
    0
    Ratings:
    +3 / 0
    One thing to note...these devices were not jail broken yet. The person who obtains the i device does the jailbreak to gain access.
     
  4. f4780y

    f4780y Super Moderator Staff Member

    Joined:
    Sep 11, 2010
    Messages:
    7,106
    Thanks Received:
    636
    Trophy Points:
    113
    Location:
    Troon, Scotland
    Ratings:
    +636 / 0
    Yes indeed. Well reminded. Does being jail broken and secured provide any additional protection to re-jail breaking with redsn0w and installing a package at boot time I wonder? I'm off to experiment...
     
    Last edited: Feb 12, 2011
  5. Demandarin

    Demandarin iPad Addict

    Joined:
    Jul 26, 2010
    Messages:
    1,251
    Thanks Received:
    22
    Trophy Points:
    0
    Location:
    Va
    Ratings:
    +22 / 0
    What do u mean? Is ssh something automatically installed when u jailbreak? If so, how do i go about changing the password?
     
  6. f4780y

    f4780y Super Moderator Staff Member

    Joined:
    Sep 11, 2010
    Messages:
    7,106
    Thanks Received:
    636
    Trophy Points:
    113
    Location:
    Troon, Scotland
    Ratings:
    +636 / 0
    No, it is something that most power users choose to install after the jailbreak, usually via OpenSSH.

    Here is a good article about the password issue and how to change it How to Secure your Jailbroken iPhone from SSH Hack | Redmond Pie

    However, in relation to this story, the protection I suggested is wrong (but still good general practice). There is no protection from this exploit by changing the password. Redsn0w can be used to install a new bundle with whatever settings the user wants and therefore the only protection against this attack (as was clearly stated in the original article!) is to remotely wipe your iPad using mobileme, or another such service, as soon as you lose it...

    This is one of the downsides of having a hardware bootrom exploit (limera1n) which cannot be patched. :)
     
    Last edited: Feb 13, 2011
  7. schwazche

    schwazche iPF Novice

    Joined:
    Feb 9, 2011
    Messages:
    40
    Thanks Received:
    2
    Trophy Points:
    8
    Location:
    Tulsa, Oklahoma
    Ratings:
    +2 / 0

Share This Page

Search tags for this page

hack iphone 4 passcode

,
hack iphone 4 password
,

hack iphone 4s password

,

hacking iphone 4 password

,

how to hack an iphone 4 passcode

,
how to hack into iphone 5s passcode
,
how to huck passkey of ipone 4s
,

iphone 4 hacks passcode in 6 mins

,

iphone 4s password hack

,
passcode hack