![]() ![]() Neither the name of the University nor the names of its contributors may be used to endorse or promote products derived from this software without specific prior written permission.Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution.Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer.Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: Various parts of saffron use code from the following:Ĭopyright (c) 1991, 1993, 1994 The Regents of the University of California. I'm not just doing this to be flashy: there is considerable benefit to writing this kind of tool rather than one that requires a connected computer. ▻ Jailbreak apps and tweaks improve the mobile experience of millions of users, including many who were encourged to try it by the ease of use of web-based jailbreaks. Until Apple releases an update, jailbreaking will ironically be the best way to remain secure. #Jailbreaker iphone3g install▻ Along with the jailbreak, I am releasing a patch for the main vulnerability which anyone especially security conscious can install to render themselves immune due to the nature of iOS, this patch can only be installed on a jailbroken device. The only iPhone virus ever to attack the general public was a trivial one that affected jailbreakers who installed OpenSSH (not installed by default) but left it at the default password. Despite JailbreakMe 2.0 being open sourced after an updated version of iOS was released, which would have made it relatively easy to modify the code into an attack, I didn't hear about any such modification except a proof of concept that showed up much later. ▻ There's always a first time, but I think there's a good chance the security impact of these vulnerabilities will remain theoretical. Although releasing a jailbreak is certainly not the usual way to report a vulnerability, it still has the effect of making iOS more secure in the long run. Releasing an exploit demonstrates the flaw, making it easier for others to use it for malice, but they have long been present and exploitable. ▻ I did not create the vulnerabilities, only discover them. I am not sure myself what to think of this, but here are some facts: When I released JailbreakMe 2.0 last year, some media reports focused on the security implications of releasing an exploit for unpatched vulnerabilities. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |