Chronic Dev says, "Get the USB dump now" to iPhone 3GS users.

[Schmid7y]

From Chronic Dev:

Quote:

Do it now
June 26th, 2009
If you have a 3G[s], get the ECID+ibss30 sig file from PurpleRa1n now. Seriously, do it _as soon_ as you possibly can.

Link: Here.
Instructions: Here.

PurpleRa1n:

Instructions:

Quote:

usbdump huh? how?
THURSDAY, JUNE 25, 2009
Apple has added a new layer of security to the iPhone 3GS. I mentioned it several posts earlier; it's the ECID field. When iTunes starts the restore process, they contact Apple servers to generate signatures just for your device. It's important you get these signatures for your phone before a new version of the software comes out. I had previously suggested doing this by dumping usb while the iPhone restores. But this is complicated.

Fortunately, the good folks at purplera1n are here for you, the end user who wants a jailbreak. Follow these instructions to generate a unique certificate for your phones iBSS. And don't delay, Apple may change their minds. To clarify, this is instead of a usb dump. Do this, and you are good!

1. Put your phone into recovery mode and connect it to your computer.
2. Using usbview on Windows(enable Config Descriptors), System Profiler on Mac, or lsusb on Linux, read your phones ECID. It's the 16 digit hex number after "ECID:"
3. Go to purplera1n, type it, and hit enter
4. Save the generated file for a purplera1nyday...

[SumDaii]

OMG...

WAit, i don't have an iphone, lol... but good luck 3GS users.

[d00m42]

I was considering upgrading from a 3G to a 3GS, but I am not quite decided yet. If I do upgrade soon though, I'll be sure to do this!

[jfb392]

I'm not sure if this will be needed in the long run, since the teams seem to be thinking the worst of Apple.
I mean, it's entirely possible they'd disallow downgrades, but I think it'd cause a big stir.
Plus, new iBoot exploits could be found, removing the need to downgrade, but that means burning an exploit for nearly every firmware revision.
There may not even be a usable bug in minor revisions, so this is not really feasible (the situation is comparable to the X-Gold situation; no usable bugs were in 2.30.03 (2.2.1), but there were new bugs exposed in 4.26.08 (3.0)).

Of course, that shouldn't stop you from doing this if you can, since you never know what Apple will do.
This code is using Apple's servers, which the code has no control of.
It simply sends data to it and handles the reply it gets, so the ball is really in Apple's court here.

[Bigcavs]

pretty sure there doing it with the 3g model too my friend took his phone in today to gett a new one because of rattling they replaced it but was told not to restore it before he comes next time from a jailbreak ..... i told him that he was probably just trying to force him to lie but what the shit apple?

[Abcmsaj]

How do you do this for Mac? It's not in the instructions?

My Bad, skipped that bit

[dast1g]

why do we have to do this?

[Abcmsaj]

Quote:

Originally Posted by dast1g

why do we have to do this?

Avoid a USBDump in the future. I've done it.

It's much easier here:
http://www.hackint0sh.org/forum/f203/76672.htm

[jfb392]

Quote:

Originally Posted by Bigcavs

pretty sure there doing it with the 3g model too my friend took his phone in today to gett a new one because of rattling they replaced it but was told not to restore it before he comes next time from a jailbreak ..... i told him that he was probably just trying to force him to lie but what the shit apple?

That has nothing to do with ECID.
Your friend restored from backup and had jailbroken data put back onto his phone, so Apple knew.

Plus, they wouldn't bother doing this with the 3G.
It's using a vulnerable processor that is no longer used anymore.

Quote:

Originally Posted by dast1g

why do we have to do this?

Apple can possibly arbitrarily control our ability to downgrade.
If you have a certificate, you'll be able to decrypt an image that will be seen as valid by your phone.
This is important, since an exploit may lie only in the 3.0 7A341 firmware, so having access to an image that can be run by your phone that contains the exploit is important.

[Bigcavs]

Quote:

Originally Posted by jfb392

That has nothing to do with ECID.
Your friend restored from backup and had jailbroken data put back onto his phone, so Apple knew.

Plus, they wouldn't bother doing this with the 3G.
It's using a vulnerable processor that is no longer used anymore.

Apple can possibly arbitrarily control our ability to downgrade.
If you have a certificate, you'll be able to decrypt an image that will be seen as valid by your phone.
This is important, since an exploit may lie only in the 3.0 7A341 firmware, so having access to an image that can be run by your phone that contains the exploit is important.

thanks bra