Posted by George Hotz on under hardware hack, iphe, bootloader, old hardware, baseband, caa, sha, nck, peoe, checks, beta | 
I haven't been working too much with the iPhone lately, but I did take a final look at the new bootloader on the way back from Canada. I also looked over the NCK numbers again.
As far as work with the NCK goes, I don't think we will get anywhere. I do believe the numbers are generated from the IMEI/Serial, but it is done well enough that without Apple's generator we won't be able to do it. Also bruteforce is totally impractical.
I also made a mistake with the hardware hack I posted. The 1.1.2 secpack will NEVER validate on the new bootloader. The new bootloader actually does two checks and the SHA needs to be repeated twice. You will see it when you decrypt the new secpack. The A16 hack will work to validate the 1.1.3 secpack on 1.1.3 though.
So it's VERY important that you do not upgrade your baseband. I am 100% sure the old hardware hack will work when the 1.1.3 secpack is used with iEraser. I also think that the -0x400 hack still exists in the new bootloader, so software unlocks are hopefully coming with the release of the new secpack. I've heard rumors of people who have 1.1.3 in beta. The whole community awaits this secpack. Please get it out there as soon as possible.
Tagi: hardware hack, iphe, bootloader, old hardware, baseband, caa, sha, nck, peoe, checks, beta
Posted by noreply@blogger.com (Zibri) on under iphe, google, beta |
Click on the picture to enlarge
Well this was found inside the latest beta.
If that's not enough for you to understand,
I'll clarify it:
There is a new iPhone coming *very soon*.
chip in it's baseband.
Google can maybe help you to get more details. Stay tuned :)
Namaste,
Zibri
Tagi: iphe, google, beta
Posted by on under iphe, beta |
Hi all Swirly Users, Now that Apple released their updated
iPhone, still...
Tagi: iphe, beta
Posted by George Hotz on under gizmodo, phes, recovery mode, iphone, possiblity, iboot, endpoint, dev team, 3g, bricks, date time, hack, protocol, fear, beta, truth |
So I read
this on gizmodo. Here's the truth...
Post beta 4, the ramdisk hack stopped working. Sorry Zibri, guess you'll have to steal another exploit. They also changed the recovery mode USB protocol to use the control endpoint to send commands.
The possiblity of unlocking, which is very distinct from jailbreaking, is based entirely on the baseband bootloader. Apple doesn't appear to upgrade the bootloader on phones in the field, probably for fear of bricks. So any old iPhones out there today, regardless of version, can be unlocked.
The iPhone 3G uses a different bootloader, which I believe there aren't any known exploits in yet. So no unlock.
There is a known exploit in iBoot, on both the old and 3G iPhones. The "the specific date/time is not firm yet" pwnage tool will leverage it to jailbreak all 2.0 software iPhones, 3G and otherwise. Dev team, that date better be soon or I might just have to release
yiPhone. The iBoot exploit is yours, use it. You wouldn't want a repeat of ZiPhone now...
Tagi: gizmodo, phes, recovery mode, iphone, possiblity, iboot, endpoint, dev team, 3g, bricks, date time, hack, protocol, fear, beta, truth
