Go Back   MacRumors Forums > iPhone, iPod and iPad > iPhone

Reply
 
Thread Tools Search this Thread Display Modes
Old Jan 10, 2008, 06:43 AM   #1
Twisted T
macrumors member
 
Join Date: Apr 2004
Is it safe to Jailbreak the iPhone?

Hi,

Can anyone tell me if Jailbreaking an iPhone will leave it vulnerable to external attacks?

I've not read into much, but from what information I have come across, it seems that it could be possible for another iPhone user or computer user to steal personal information from your iPhone via WiFi.

In addition, is the Jailbreaking software safe in itself? Could this software possibly 'phone home' personal data from your iPhone?

If anybody has any tips on the best security practises for Jailbroken iPhones, it would be greatly appreciated if you could share them.

Thanks in advance,

TT
Twisted T is offline   0 Reply With Quote
Old Jan 10, 2008, 10:57 AM   #2
Jayhawk85
macrumors member
 
Join Date: Oct 2007
Location: Jackson, Mississippi
It's safe as long as...

You backup your personal info first. As long as you don't unlock your phone for use with another carrier, and are careful and follow instructions, you'll be fine. And if you do have any problems and have to take the phone back to the Apple store, just restore the phone in iTunes first so everything looks legit. They won't look in the filesystem for mods. I've been using a jailbroken phone since the initial jailbreak and am now on 1.1.2 jailbroken. Good luck!
__________________
waiting for a MBP update so i can have a faster computer than my girlfriend

Jayhawk85 is offline   0 Reply With Quote
Old Jan 10, 2008, 12:45 PM   #3
Twisted T
Thread Starter
macrumors member
 
Join Date: Apr 2004
Thanks for the advice Jayhawk.

I was just slightly worried about intruders being able to hack into my email, calendar or address book.

I haven't bought my iPhone yet, I'm going to wait and see what Steve says about future firmware revisions at Macworld. He may even tempt me to enter into a new phone contract, thus bypassing Jailbreaking altogether.

Cheers,

Twisted T
Twisted T is offline   0 Reply With Quote
Old Jan 10, 2008, 01:09 PM   #4
Stadsport
macrumors regular
 
Join Date: Nov 2006
Quote:
Originally Posted by Twisted T View Post
Thanks for the advice Jayhawk.

I was just slightly worried about intruders being able to hack into my email, calendar or address book.

I haven't bought my iPhone yet, I'm going to wait and see what Steve says about future firmware revisions at Macworld. He may even tempt me to enter into a new phone contract, thus bypassing Jailbreaking altogether.

Cheers,

Twisted T
I think you're misunderstanding what "Jailbreaking" is.
Jailbreaking is when you open up the iPhone's filesystem, making it possible to write to it, so you can install third party software. In the context above, you're thinking of unlocking, which would let you use it on another GSM provider.
Stadsport is offline   0 Reply With Quote
Old Jan 10, 2008, 01:23 PM   #5
peeaanuut
Banned
 
Join Date: Sep 2007
Location: Southern California
Send a message via AIM to peeaanuut
Wirelessly posted (Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420.1 (KHTML, like Gecko) Version/3.0 Mobile/3B48b Safari/419.3)

just be aware that jailbreaking the phone puts a hole in the security of the phone. However so far it seems mostly harmless.
peeaanuut is offline   0 Reply With Quote
Old Jan 10, 2008, 03:07 PM   #6
Twisted T
Thread Starter
macrumors member
 
Join Date: Apr 2004
Quote:
Originally Posted by Stadsport View Post
I think you're misunderstanding what "Jailbreaking" is.
Jailbreaking is when you open up the iPhone's filesystem, making it possible to write to it, so you can install third party software. In the context above, you're thinking of unlocking, which would let you use it on another GSM provider.
I was considering using a UK 02 iPhone with an 02 pay & go or pay monthly sim card. Therefore I wouldn't need to unlock the phone. However, I would need to 'fake activate' it and I believe the simplest way to 'fake activate' this iPhone involves using Conceited Software's Jailbreak method.

I'm not really interested in installing unauthorised apps at the moment, I just want to have an iPhone without the ridiculous 18 month contract. Then again, Steve may still persuade me to sign up on the 15th. Who knows!

Thanks,

Twisted
Twisted T is offline   0 Reply With Quote
Old Jan 10, 2008, 03:58 PM   #7
igglepuff
macrumors regular
 
Join Date: Sep 2007
Quote:
Originally Posted by peeaanuut View Post
Wirelessly posted (Mozilla/5.0 (iPhone; U; CPU like Mac OS X; en) AppleWebKit/420.1 (KHTML, like Gecko) Version/3.0 Mobile/3B48b Safari/419.3)

just be aware that jailbreaking the phone puts a hole in the security of the phone. However so far it seems mostly harmless.
the ironic part is there's already a hole w/ the phones security, hence, being able to jailbreak it
igglepuff is offline   0 Reply With Quote
Old Jan 10, 2008, 04:10 PM   #8
Telp
macrumors 68040
 
Telp's Avatar
 
Join Date: Feb 2007
Send a message via AIM to Telp
Quote:
Originally Posted by peeaanuut View Post
[SIZE=1] mostly harmless.
Just be careful of what you download and you should be fine.
__________________
Innovation distinguishes between a leader and a follower. -Steve Jobs
Telp is offline   0 Reply With Quote
Old Jan 10, 2008, 04:23 PM   #9
ajl917
macrumors 6502
 
Join Date: Oct 2007
Yeah jailbreaking is perfectly safe as long as you backup your stuff, just sync with iTunes, know what you are installing, and know how to fix any problems if they happen...
__________________
32GB Black iPhone 4
16GB Black iPhone 3G
8GB 1st Gen iPhone
ajl917 is offline   0 Reply With Quote
Old Jan 10, 2008, 04:54 PM   #10
SFC Archer
macrumors 68000
 
SFC Archer's Avatar
 
Join Date: Nov 2007
Location: Troy, MT
Guys...The OP is talking about "UNLOCKING" the Sim...NOT jailbreaking to install third party apps. I would recommend guidance pertaining to that request. I won't do either so can not advise.

Good Luck
__________________
Alienware M17X R4 (I'M A PC!)
8gb Classic: iDay; 16gb 3: SOLD $336 used 2 years; 32gb 3GS: 1 July 09 (Now Sons); 32 gb iPhone 4: 29 June 10 (Now Daughters); 32gb iPhone 5: 4 Dec 12
SFC Archer is offline   0 Reply With Quote
Old Jan 10, 2008, 05:09 PM   #11
ben5959
macrumors regular
 
Join Date: Aug 2007
Sure go ahead, jail break-it, unlock it, hack the hell out of it. Its completely safe, aside from the 11-year trojan making pre-teens out there.

seriously though, with the new news about the Trojan, id think twice, people have said it all along that the phone was vulnerable, now all thats been confirmed. Either proceede with EXTREME CAUTION. IM going to restore my jailbroken phone back to factory.
ben5959 is offline   0 Reply With Quote
Old Jan 23, 2009, 01:22 AM   #12
banditpr
macrumors newbie
 
Join Date: Jan 2009
One question about jailbraking....

Once you jailbreak the iphone, are you allowed to continue using iTunes to install other applications, or even update iPhone software when available without problems, or do you need to forget about iTunes and other Apple legal stuff?

Thanks.
banditpr is offline   0 Reply With Quote
Old Jan 23, 2009, 01:25 AM   #13
angemon89
macrumors 68000
 
angemon89's Avatar
 
Join Date: Feb 2008
Location: The place where Apple designs stuff
Quote:
Originally Posted by banditpr View Post
Once you jailbreak the iphone, are you allowed to continue using iTunes to install other applications, or even update iPhone software when available without problems, or do you need to forget about iTunes and other Apple legal stuff?

Thanks.
You can still sync Apps and music on your iPhone/iPod even after you jailbreak. You get the best of both worlds.

The only real reason I have jailbroken my iPhone in the past was for PDAnet and I kept all my other legal stuff in tact.
__________________
Assembled in China (mostly)
angemon89 is offline   0 Reply With Quote
Old Jan 23, 2009, 12:45 PM   #14
davyreins
macrumors 6502
 
Join Date: Jul 2008
Location: Ann Arbor
Make sure you don't have 10.5.6 on your computer. JB doesn't work with this update
__________________
15" Macbook Pro, 160GB Black iPod classic , White iPhone 3G
davyreins is offline   0 Reply With Quote
Old Jan 23, 2009, 07:41 PM   #15
ppc750fx
macrumors 65816
 
Join Date: Aug 2008
Altering the function of a device does not inherently make it more vulnerable.

Yes, if you install and run OpenSSH all the time (even when you're connected to publicly-accessible networks) and don't change your account passwords -- yes, in that case you are vulnerable.

Just jailbreaking, however, doesn't make your device any easier to compromise.
__________________
Host:/ #rm -rf /var/forum/trolls
If only it were that easy...

Last edited by Doctor Q; Jan 26, 2009 at 10:46 AM. Reason: removed quote
ppc750fx is offline   0 Reply With Quote
Old Jan 23, 2009, 11:24 PM   #16
notintheleast
macrumors 6502
 
Join Date: Oct 2008
Location: NC
Quote:
Originally Posted by MikePA View Post
This quote proves you can become a macrumors demi-god without knowing anything about the iPhone and jailbreaking. Apparently, the number of devices listed in someones ego-signature is inversly proportional to knowledge.
Ha. Agreed. I'd love to know some of these added security risks, as if the phone is risk free when its not JB anyway....

Nice sig BTW MikePA.
notintheleast is offline   0 Reply With Quote
Old Jan 24, 2009, 12:00 AM   #17
notintheleast
macrumors 6502
 
Join Date: Oct 2008
Location: NC
I just wonder what kind of sensitive data people would store on a cellphone. What is there to worry about someone getting into anyway (if thats even the case)?

Last edited by Doctor Q; Jan 26, 2009 at 10:47 AM. Reason: removed quote
notintheleast is offline   0 Reply With Quote
Old Jan 24, 2009, 01:15 AM   #18
ppc750fx
macrumors 65816
 
Join Date: Aug 2008
All iPhones use the same username/password combos for both the superuser and normal user accounts. The passwords for these accounts ('root' and 'mobile', respectively) are well known.

On most systems this would be considered a security risk. However, since there is no way to actually log in to a stock iPhone remotely, this isn't a problem.

Enter jailbreaking. Jailbreaking will not, on its own, allow remote logins. It will, however, enable you to install an SSH server (such as OpenSSH). When the ssh daemon is running, your iPhone can accept remote logins. If you don't change the default passwords for the two accounts, anyone who knows those passwords (i.e. anyone with access to, say, Google) and can connect to the SSH daemon can log in to your iPhone. This is most decidedly a security risk. If you change the passwords, you're fine.

Jailbreaking in and of itself does not introduce any additional security holes. None. It will allow you to install software that, if misconfigured or malicious in nature, can lead to your device being compromised -- but that is true of *any* device that allows you to install third party software without heavy sandboxing.
__________________
Host:/ #rm -rf /var/forum/trolls
If only it were that easy...

Last edited by Doctor Q; Jan 26, 2009 at 10:47 AM. Reason: removed quote
ppc750fx is offline   0 Reply With Quote
Old Jan 24, 2009, 07:26 AM   #19
OrangeDog
macrumors 6502
 
Join Date: Oct 2008
I think a lot of people don't know what they're getting themselves into when they JB their iPhone.

Last edited by Doctor Q; Jan 26, 2009 at 10:48 AM. Reason: removed quote
OrangeDog is offline   0 Reply With Quote
Old Jan 24, 2009, 08:22 AM   #20
Tallest Skil
Banned
 
Join Date: Aug 2006
Location: 1 Geostationary Tower Plaza
The end-user can just not be an idiot and not install the stuff that DOES open it up to security flaws.

Last edited by Doctor Q; Jan 26, 2009 at 10:49 AM. Reason: removed quotes of removed posts
Tallest Skil is offline   0 Reply With Quote
Old Jan 24, 2009, 10:55 AM   #21
notintheleast
macrumors 6502
 
Join Date: Oct 2008
Location: NC
What happened here? Oh well, I still want to know what kind of sensitive data people are storing on a cellphone that they are worried about. Keeping important information on something as easy to lose as a cellphone seems like the biggest security issue here.
notintheleast is offline   0 Reply With Quote
Old Jan 24, 2009, 11:18 AM   #22
MikePA
Banned
 
Join Date: Aug 2008
Quote:
Originally Posted by notintheleast View Post
Oh well, I still want to know what kind of sensitive data people are storing on a cellphone that they are worried about. Keeping important information on something as easy to lose as a cellphone seems like the biggest security issue here.
There are some security steps you can take on an iPhone while there are more you can take on a phone, like a BlackBerry, that was designed and has options for the enterprise. These steps mitigate the risk of losing a phone.

The BES (BlackBerry Enterprise Sever) allows lots of centrally managed options that the user can not override. On a BB, the login password can be require as can the complexity of the password. It can be set up to encrypt the device and automatically wipe the device if the wrong password is entered more than 10 times. BES can also limit what attachments can be sent to the phone.

The iPhone is not an enterprise device.
MikePA is offline   0 Reply With Quote
Old Jan 24, 2009, 11:47 AM   #23
CrzyCanuck72
macrumors 6502a
 
Join Date: Jun 2003
Quote:
Originally Posted by MikePA View Post
It can be set up to encrypt the device and automatically wipe the device if the wrong password is entered more than 10 times.
iPhones have this setting
__________________
mid-2010 13.3" MacBook Pro: 2.4GHz, 4GB RAM, 500GB HD
CrzyCanuck72 is offline   0 Reply With Quote
Old Jan 24, 2009, 11:56 AM   #24
MikePA
Banned
 
Join Date: Aug 2008
Quote:
Originally Posted by CrzyCanuck72 View Post
iPhones have this setting
Can it be set from the server and set so the end user can not change the setting?
MikePA is offline   0 Reply With Quote
Old Jan 24, 2009, 12:03 PM   #25
Tallest Skil
Banned
 
Join Date: Aug 2006
Location: 1 Geostationary Tower Plaza
Quote:
Originally Posted by MikePA View Post
Can it be set from the server and set so the end user can not change the setting?
If the end-user is locked out, then they can't change the setting...
Tallest Skil is offline   0 Reply With Quote

Reply
MacRumors Forums > iPhone, iPod and iPad > iPhone

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
thread Thread Starter Forum Replies Last Post
iPhone: Jailbreak iPhone 5c restarting in safe mode. thepyro395 Jailbreaks and iOS Hacks 7 Jan 21, 2014 07:35 PM
General: Does the jailbreak 6.1.3 is safe ? coco67 Jailbreaks and iOS Hacks 14 Jan 12, 2014 05:45 PM
iPhone: is it safe to jailbreak now? Globug Jailbreaks and iOS Hacks 13 Dec 28, 2013 04:57 PM

Forum Jump

All times are GMT -5. The time now is 01:12 PM.

Mac Rumors | Mac | iPhone | iPhone Game Reviews | iPhone Apps

Mobile Version | Fixed | Fluid | Fluid HD
Copyright 2002-2013, MacRumors.com, LLC