After jailbreaking, what are all the steps I must take to be as secure as possible?

Discussion in 'Jailbreaks and iOS Hacks' started by TheKingIV, Jan 6, 2010.

  1. TheKingIV macrumors member

    Joined:
    Apr 14, 2008
    #1
    Please add to what I already know:

    1. Install Open SSH and Mobile Terminal
    2. Change root password on the phone (isn't there another PW I have to change?)
    3. Is it safe to keep both Open SSH and Mobile Terminal? Or should I delete both after changing the root password?

    Anything else I need to do?
     
  2. thelatinist macrumors 603

    thelatinist

    Joined:
    Aug 15, 2009
    Location:
    Connecticut, USA
    #2
    Unless you have OpenSSH on your phone, there is no reason to change your default passwords. Nor is there any need to install OpenSSH on your phone just so you will have to change your passwords.

    If you do choose to install OpenSSH, then you will want to change the passwords for both the 'root' and 'mobileuser' accounts.
     
  3. TheKingIV thread starter macrumors member

    Joined:
    Apr 14, 2008
    #3
    So my iPhone is just as protected as unjailbroken iPhones as long as I don't have OpenSSH installed?
     
  4. Bl0ckHe1d macrumors 6502

    Bl0ckHe1d

    Joined:
    Nov 19, 2009
    Location:
    Caledonia
    #4

    Yup i would say so! However you can switch SSH off via SBSETTINGS when you are not using it, but note that SSH will switch itself back ON when rebooting the iphone!
     
  5. RandomKamikaze macrumors 6502a

    RandomKamikaze

    Joined:
    Jan 8, 2009
    Location:
    UK
    #5
    Correct. The same goes for Netatalk as well.

    If you want to be more protected than non-jailbroken phones, install the firewall available on Cydia
     
  6. dmmcintyre3 macrumors 68020

    Joined:
    Mar 4, 2007
    #6
    Not if you install a unapproved app that is a trojan.
     
  7. dhlizard macrumors G4

    dhlizard

    Joined:
    Mar 16, 2009
    Location:
    The Jailbreak Community
    #7
    Having OpenSSH installed and available in case of any issues can be a lifesaver (such as recent Cydia issue) and can save doing a restore and re-JB as those who didn't have OpenSSH installed found out.

    If you change both the passwords as recommended, your phone will be safe.

    Look, we all know that using the Internet is risky and we trust our virus apps to protect us, but we don't stop using the Internet.

    Same mindset here. Change the passwords and use the phone with ALL of it's abilities !
     
  8. thelatinist macrumors 603

    thelatinist

    Joined:
    Aug 15, 2009
    Location:
    Connecticut, USA
    #8
    iFile or MobileTerminal will work just as well without running a server daemon on your phone.
     
  9. mojoe24 macrumors regular

    Joined:
    Dec 1, 2009
    #9
    How do you change the password? I always just turn it off with SBSettings.
     
  10. thelatinist macrumors 603

    thelatinist

    Joined:
    Aug 15, 2009
    Location:
    Connecticut, USA
    #10
    Do the following in MobileTerminal (note that you will be changing two passwords; you must do all of the steps below to keep your iPhone safe):

    Type 'passwd'
    When prompted for a password, enter 'alpine'
    When prompted to enter your new password, do so.
    When prompted to re-enter your new password, do so.

    Type 'su root'
    When prompted for a password, enter 'alpine'
    Type 'passwd'
    When prompted for a password, enter 'alpine'
    When prompted to enter your new password, do so.
    When prompted to re-enter your new password, do so.
    Type 'exit'
     
  11. Bl0ckHe1d macrumors 6502

    Bl0ckHe1d

    Joined:
    Nov 19, 2009
    Location:
    Caledonia
    #11

    I have known that there was the "su root" password that was required to be changed but didn't know about the first one!! many thanks for that thelatinist :)
     
  12. thelatinist macrumors 603

    thelatinist

    Joined:
    Aug 15, 2009
    Location:
    Connecticut, USA
    #12
    No problem. Yes, you need to change the password not just for 'root' but also for the 'mobile.' The latter does not have superuser priviliges, but it has enough to be getting on with.
     
  13. otcpdx macrumors newbie

    otcpdx

    Joined:
    Jan 6, 2010
    Location:
    PDX
    #13
    I know this is obvious, but I'm amazed how often peope who know better *cough*backups*cough* neglect the obvious solutions. Put a PIN on your handset. All the software security in the world won't do much good if someone has physical access to your hardware.

    Just a friendly reminder...:rolleyes:
     
  14. foob macrumors 6502

    foob

    Joined:
    Feb 17, 2009
    #14
    But those require SpringBoard. If SpringBoard won't launch, ssh is your only hope. Not that I recommend it for everyone. Most people seem more comfortable restoring than fixing things via ssh.

    And always keep the screen wiped clean or they can look at your fingerprints and guess your PIN. It's still not perfect though.
     
  15. transam7816 macrumors regular

    Joined:
    Mar 7, 2008

Share This Page