Sidebar Sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

iPhone How easy to bypass 4 digit passcode on jailbroken Iphone 4S

fox777

fox777

macrumors regular
Original poster
Nov 11, 2008
127
0
USA
Hey guys. I lost jailbroken 4S. It had 4 digit passcode. I was wondering if whoever found it could possibly bypass code and gain access to phone? It was on 5.1.1

I know one can simply guess the passcode after so many tries but it wasn't just 0000, 1234 or that type of passcode. It was random digit. I wonder what are the chances they can bypass it considering iphone makes you wait certain amounts of time after entering passcode wrong several times.

I am really hoping that whoever got/bought my phone was simply lazy and just DFU and completely restored it
 
DFU restore is far easier and what most thief's are interested in. that way they either have a new phone or they can sell it to make a quick buck. you should also report the loss to your carrier, some can block it. hopefully you didn't pick a simple passcode.
 
On 5.1.1, There was a locked iphone and from the lock screen I just slid up, and went into phototaking mode. After taking a photo, I clicked on the photo in the bottom left hand corner and had full access to the albums includinging videos. I could also receive calls as well. It made me think the password lock was a joke, I'm hoping they fixed that on 6.0.

Although I didn't have full access to the phone I still would want to keep my photos/videos from people.
 
gd6 said:
On 5.1.1, There was a locked iphone and from the lock screen I just slid up, and went into phototaking mode. After taking a photo, I clicked on the photo in the bottom left hand corner and had full access to the albums includinging videos. I could also receive calls as well. It made me think the password lock was a joke, I'm hoping they fixed that on 6.0.

Although I didn't have full access to the phone I still would want to keep my photos/videos from people.
Click to expand...

Are you sure?
On my iPhone with 5.1.1 that is not the case at all. You can take a picture yes, but you are locked out from all previous pictures and videos.
 
gd6 said:
On 5.1.1, There was a locked iphone and from the lock screen I just slid up, and went into phototaking mode. After taking a photo, I clicked on the photo in the bottom left hand corner and had full access to the albums includinging videos. I could also receive calls as well. It made me think the password lock was a joke, I'm hoping they fixed that on 6.0.

Although I didn't have full access to the phone I still would want to keep my photos/videos from people.
Click to expand...

This isn't possible. iOS only allows the lockscreen camera interface to see the pictures and videos taken during that session. If the screen turns off again, the camera roll would be blank.
 
They cannot hack your phone.
The files are encrypted. And while on iPhone 4, iPad 1, and iPod touch 4G and earlier you could easily break the encryption (easy if you know how).

This is partially hardware encryption, so they need to run the pincode trough the hardware to get the true encryption key.

So they would need to boot into a stripped down OS (which can actually be smaller than the iOS kernel thats a fun fact), which would require a bootrom exploit.

Fun facts:
On an iPhone 4;
it takes under 30 minutes to crack a 4 digit numerical pin
it takes a day to crack a 4 digit alphanumerical pin
it takes a month to crack a 6 digit alphanumerical pin

Thats the timescales that i remember in my head.


EDIT:
Just thinking out loud here. Maybe if they dumped your NAND to a DMG file. Then they might restore your phone via DFU to a phone without a PIN to loggin. Then they might jailbreak it and install a tool to crack the PIN. Then set the PIN to 0000, and now unlock the phone with that pin and crack the encryption with this program. Then do it for every possible combination out of the thousand combinations, and try every combination on the DMG they saved.

This would take about 20, 24 hour days of labour to complete, if it works at all, I think your data is safe :)
Should have had a 6 digit alpha numerical PIN though, then it would take a few years to do it.
 
Last edited:
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back