Can someone explain why this works ????

I used Pwnage 2.0 to gernerate a firmware image. I selected that my iphone was never pwnd and that I am not a legit at&t user.

After the image was created the pwnagetool exited with "unable to enter DFU mode"

Since I did not know how to enter dfu mode i started itunes 7.7 and did an option-restore with the pwnd firmware image.

This Worked !!! After the restore bootneuter came up automatically.

I am sure my phone was not pre-pwnd. However, it was only 1.1.4 ipsf unlocked and Jailbroken.

I did this on a second phone.

Why does this work ??? and can I basically always use this image ???

Summary: It Appears that it is possible to shift/option-restore 1.1.4 (or earlier ?) iphones to a customized pwnd firmware with Itunes 7.7 witout the need to have the phone pre-pwnd. This should be a relatively easy path for windows users who cannot use pwnagetool 2.0 yet, if the can get their hands on a customized firmware.
XianLi gave a possible explanation: Itunes 7.7 may put the iphone in DFU instead of the "normal" restore mode when doing a restore. The Dev team already stated that it is possible to install a custom firmware on an unpwnd phone using DFU mode.
speedy523 For the sake of science. Refreshed his phone to a stock 1.1.4 jailbroke with ziphone and confirmed this upgrade path
n350z Tried doing this with a freshly installed official 2.0 firmware and it worked
Calvin Reports that Pawnage 2.0 and winpwn modyfy a file called "x12220000_4_Recovery.ipsw" in your "iTunes\Device support" that puts the iphone in dfu mode when doing a shift/option restore. This means that the reported behaviour happens only after winpwn or Pwnage 2.0 is installed & run at least once. He uploaded some links that do this without the neccessity to install pwnage or winpawn:
For Windows: http://www.megaupload.com/de/?d=FYNAHT86
For Mac: http://belgium-iphone.com/plus/DFU%2...e.com.mpkg.zip

I have not tested these files, so use at your own risk.

Same here uing winpwn, open 1.1.4 then ipwner, after it done ur phone still in recovery mode right now open itune 7.7 then restore with shift key select custom image of 2.0 work fine. Done three phones no problem. save alot of time. just one time restore.

You've got the error message that it couldn't turn into DFU mode but in fact it did and your phone got pwned.
(if not that means it has been pwned before on 1.1.4)
You can't install a custom firmware without pwning your phone as ipsw are signed and iTunes will refuse to install them.

Restore it to original 2.0 and try to restore the custom image if you want to make sure. Obviously it won't work

I can understand that that would work for the first phone.... But why did it work for the second Phone ??? I am sure pwnagetool was never involved. I just restored a jailbroken iphone with the customized firmware image from pwnagetool.

Ok, let me repeat it again.

You can't restore a custom ipsw image on an iPhone or iTouch that hasn't been pwned.

If you don't trust me try this:

Restore your phone with an original ipsw from Apple and try to restore the custom one after.

Well XianLi. I think you are wrong.

My phone was pwned, but i restored it in DFU mode to Original 1.1.4 just to make sure I'd have a clean phone.
Then created a Custom 2.0 using PWNAGE 2.0.1 (selected tha my phone wasnt pwned) and restored it in DFU mode to 2.0. It worked flawlessly, and i didnt have to pwn my phone after the 1.1.4 restore. Just restoring it to pwned 2.0 did it.

The thing is,("thats what i think, not so sure") the new exploit found by Dev Team let us run anything without apple permission while in DFU mode
So thats why pwned 1.1.4fw doesnt work if you only try to restore it, but pwned2.0WORKS.
Besides that, there is a lot of people with iliberty jailbreaked 1.1.4 phones just downloading custom 2.0 and restoring with itunes, without pwning.

Abras

Windows users who are downloading the custom ipsw need to pwn their 1.1.4 phone once with WinPwn before being able to restore the custom ipsw.

The DevTeam doesn't have the Apple private key to be able to create/sign "legit" ipsw.

Well this may be not neccesary, because I had a 1.1.4 Jailbroken phone that has never been pwnd. And was never connected while pwnagetool has been running. I am not making this up !!!
Why would this work ???

"Update 5: If DFU restores are giving you trouble, another route to pwned 2.0 for 1G owners is to use our first pwnage at 1.1.4. Once you are pwned there, you can do a normal recovery-mode restore to your custom 2.0 ipsw. BTW the iPhone does *not* need to be pre-pwned to be able to DFU-restore into a pwned ipsw — it needs to be pre-pwned only for normal recovery-mode restores of custom ipsw’s."

This is from the dev team's blog. From what is stated, I think he means that if you have trouble getting the iPhone into DFU mode, then you use the old pwnage to pwn the iPhone so that you may use the recovery mode to restore the new 2.0. But, if you do not have any problem getting into DFU, you can proceed to restore the new custom 2.0 in DFU mode and it will be activated and unlocked (for 1st gen phones).

It would be good if someone can clarify this with any member of the dev team.

Yeah, XianLi is wrong on this one, I've been hearing about this everywhere and devteam has in on their blog. If you enter DFU, you can use a custom firmware without ever pwning.