Apple's jailbreak bug fix neutralized by tethering process
by Steve Ragan - Jul 18 2011, 09:40Surprise! Wait, who honestly didn’t see this one coming? Last week, Apple addressed vulnerabilities within their iOS software, which were being used by a website to jailbreak Apple devices. Just a few days later, as expected, someone has jailbroken the latest iOS version.
This latest jailbreak process comes with a few strings attached. First, unlike the previous jailbreak method, iPad 2 owners cannot use the latest trick to unlock their devices. Second, the original jailbreaking method exploited a flaw with how iOS rendered PDF files, the newest method leverages tethering. What this means to the open-device enthusiast within, is that you will need to boot into a jailbroken state on the device each time it loses power.
“We have tested and can 100% confirm that they are working. Keep in mind that the jailbreak is tethered for now, in other words, if your device loses power or restarts then you would have to boot it into the jailbroken state again. No matter how annoying it may sound, but it’s better than having no jailbreak at all,” explains the notes in the tethering instructions on RedmondPie.com
The original jailbreak process required that owners of iPhone 3GS, iPhone 4 (AT&T), iPhone 4 (Verizon Wireless), iPhone Touch, iPad, or iPad 2 systems, visit a website to unlock their devices. That’s it. The website exploited flaws in iOS v. 4.3.3, which Apple patched by releasing iOS 4.3.4 (and 4.2.9 for Verizon Wireless customers). There were over a million devices jailbroken by JailBreakMe.com according to one of the people behind the site.
Now, aside from those on an iPad 2, the jailbreaking process is, once again, alive and well for anyone who wants it. In addition to the RedmondPie.com instructions and custom PwnageTool bundles, redsn0w was updated for Mac and Windows in order to support tethered jailbreak for iOS 4.3.4.
“The vast majority of people will want to stay back at 4.3.3 because that’s where the untethered jailbreak is! There are no new features in 4.3.4 — only fixes for jailbreak exploits,” an update note on the redsn0w blog post explains.
Most of the forum and blog comments within the jailbreaking community are urging people off the latest iOS version in order to support an easier jailbreaking process. However, some security experts are urging caution.
“…every jailbreak relies on you exploiting a software vulnerability to escape from Apple's artificial strictures. That means you have to trust the creators of the jailbreak not to abuse the exploit you're choosing to run against your device,” commented Sophos’ Paul Ducklin.
“The flipside, of course, is that those who don't jailbreak their phones are trusting Apple not to leave the sort of exploitable hole that would permit crooks to break into the internals of their device…Apple hasn't been terribly trustworthy on that score. Despite a solid commercial reason for keeping its devices secure - namely, that an unjailbroken device can only shop at the Apple AppStore - few of Apple's operating system versions stay safe for very long.”
So the question, Ducklin added, becomes one of who can be trusted more - Apple or the creators of jailbreaking tools?
Most of those who opt to jailbreak their device do so for more access and freedom. After all, they own the device. However, many companies, Apple included, are against the process. They stress the security risks, legal issues, and financial impact related to their loss of control, as reasons why jailbreaking is wrong.
However, in 2010, The Library of Congress approved a DMCA exemption for jailbreaking mobile devices, including the iPhone. So the process is legal, but there is a risk involved, so security is a concern.
“…a common mistake for jailbreakers is to install OpenSSH but forget to change the passwords for root and mobile; this lets anyone log into your device over the Internet,” JailBreakMe.com’s FAQ explains.
This is a serious issue, and has led to problems before.
“Some jailbreakers don't take on the additional responsibility which goes with the increased power over their device. That's how the now-infamous iPhone viruses Ikee and Duh were able to spread,” Ducklin commented.
Apple has not commented on the tethering process that circumvents the latest iOS patches.
Jailbreaking isn’t for everyone, so make sure you are fully aware of what you are doing before you attempt it. Sometimes, the lack of control over a device’s settings can actually save you grief in the long run.
Comment on this Story