Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

[Merged] Jailbreaked iPhone SSH Exploit And Countermeasures

jav6454

jav6454

macrumors Core
Original poster
Nov 14, 2007
22,303
6,263
1 Geostationary Tower Plaza
Anyone with jailbroken iPhones must read this: Click Me

Change your root password NOW

Edit - Via Ars Click Me

Edit 2 - The Hacker speaks: Click Me
According to him does are instructions to remove his work and to change your password. Proceed with caution if you are new to that.
 
jessica. said:
Did I miss the part where it said something about MMS? That is what a text looks like when it comes in, you know?
Click to expand...

Ive never seen an SMS / MMs with that bottom layer of text. Plus, what contact is that coming from? Surely he doesnt have a contact under the name "Important Warning."

Plus, when going to the link it says "IT HAS BEEN REPORTED THAT THE KEYWORD WAS USED FOR SPAM, PHISHING, AND/OR ABUSE. AND IT WAS THEREFORE DEACTIVATED.

WE APOLOGIZE FOR THE INCONVENIENCE.'
 
Hey

Stop picking on him (Outmost) that's the way they say it in the uk. :p Old news sorry if you do a search you'll find some threads on it.
 
The hacker didn't expose a security vulnerability. He simply exploited one that's been around since the iPhone was first jailbroken. You deserve to get hacked if you do not change your root password. This is nothing new.
 
Get the ssh toggle for SBSettings, change the passwords, or uninstall ssh. Changing the password is the simplest as you won't need a toggle taking up space.
 
dukebound85 said:
no, its old news that youre setting yourself up for trouble if you dont change your password when you jailbreak

its been known about since when you could jailbreak all of 2 or so years ago lol
Click to expand...

I don't mean the root thingy, that's old, but the hack is new. So this is a warning. It already happen and proof of concept is there.

You know what to do.

Edit - Hacker responds, see post #1
 
thanks..i think more people should be informed about this..its kind of scary lol
 
BossPrefs, turn off SSH. Also change your root password. Never keep default passwords. :)
 
And hey everyone, this "vulnerability" is simply how ssh works. Go to the first screen in http://cydia.saurik.com/. Scroll down to the OpenSSH how-to and read it. It's not a complete guide to ssh but it's worth a read and it's been right there off the front page of Cydia at least since I got my phone in Feb.
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back