Results 1 to 2 of 2
Discuss Activation Hacking Server at the General - Hackint0sh.org; It was mentioned on the wiki that it might be possible to replace the .pem ...
  1. #1
    Rookie Array

    Join Date
    Jul 2007
    Posts
    10
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default Activation Hacking Server

    It was mentioned on the wiki that it might be possible to replace the .pem for activation, and do a self-signed activation.

    Towards that end, I put together a script that generates a token and signature from my own certificate authority.

    http://iphone.t28.net/
    CA Pem at http://iphone.t28.net/ca-cert.pem

    It's SHA1/RSA 1024 bit, and has the same organization/cn/etc as the original certificate. It's self-signed, as opposed to chained to the root - I don't want to replace the whole root if not needed.

    If the pem isn't checked for chaining (or a hash of the file), it's theoritically possible to simply replace /System/Library/Lockdown/iPhoneActivation.pem with my pem, plug in the appropriate information, and directly activate the phone.

    Unfortunately, I don't have a way to modify the files on the phone to test it myself.



  2. #2
    Rookie Array

    Join Date
    Jul 2007
    Posts
    10
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    Comparision of the certs:
    Apple Cert:
    Code:
    Certificate:
        Data:
            Version: 3 (0x2)
            Serial Number: 2 (0x2)
            Signature Algorithm: sha1WithRSAEncryption
            Issuer: C=US, O=Apple Inc., OU=Apple Certification Authority, CN=Apple iPhone Certification Authority
            Validity
                Not Before: Apr 16 22:55:02 2007 GMT
                Not After : Apr 16 22:55:02 2014 GMT
            Subject: C=US, O=Apple Inc., OU=Apple iPhone, CN=Apple iPhone Activation
            Subject Public Key Info:
                Public Key Algorithm: rsaEncryption
                RSA Public Key: (1024 bit)
                    Modulus (1024 bit):
                        00:c5:01:7c:d1:22:60:2b:9a:88:87:7d:b4:b6:a0:
                        f7:2a:01:f6:c4:bf:47:75:8e:4e:c6:6e:75:fb:fb:
                        86:14:97:22:1f:a6:bc:c1:55:d9:66:cf:62:47:62:
                        fd:7e:d3:82:33:26:d2:fb:70:bf:7b:50:8e:df:93:
                        48:b4:38:c6:34:6a:5f:1a:f8:93:d0:6b:85:20:eb:
                        5d:53:6e:a1:2d:fa:78:c0:98:09:20:7b:71:d7:58:
                        30:5d:01:70:fd:32:19:02:ed:3f:fd:a3:be:f3:39:
                        0d:68:96:2e:1c:51:dc:e5:9d:85:9f:ce:65:b4:3d:
                        db:8e:c6:eb:de:01:e6:18:e3
                    Exponent: 65537 (0x10001)
            X509v3 extensions:
                X509v3 Key Usage: critical
                    Digital Signature
                X509v3 Basic Constraints: critical
                    CA:FALSE
                X509v3 Subject Key Identifier: 
                    A1:A0:D2:FE:B7:B4:73:FE:9B:14:6A:AF:CD:3D:73:4F:1F:EF:D6:94
                X509v3 Authority Key Identifier: 
                    keyid:E7:34:2A:2E:22:DE:39:60:6B:B4:94:CE:77:83:61:2F:31:A0:7C:35
    
                X509v3 CRL Distribution Points: 
                    URI:http://www.apple.com/appleca/iphone.crl
    
        Signature Algorithm: sha1WithRSAEncryption
    Mine:
    Code:
    Certificate:
        Data:
            Version: 3 (0x2)
            Serial Number:
                8c:1e:9c:f5:31:86:4e:60
            Signature Algorithm: sha1WithRSAEncryption
            Issuer: C=US, O=Apple, Inc., OU=Apple iPhone, CN=Apple iPhone Activation
            Validity
                Not Before: Jul  7 06:56:12 2007 GMT
                Not After : Jul  5 06:56:12 2012 GMT
            Subject: C=US, O=Apple, Inc., OU=Apple iPhone, CN=Apple iPhone Activation
            Subject Public Key Info:
                Public Key Algorithm: rsaEncryption
                RSA Public Key: (1024 bit)
                    Modulus (1024 bit):
                        00:bc:ad:6d:59:c3:7a:7e:3e:cc:fb:17:2a:9e:2d:
                        67:71:2c:39:23:fe:28:bc:49:0c:39:b6:ed:ba:8c:
                        c8:c8:21:6a:b2:5e:02:cf:b7:e1:b2:8c:c7:95:e5:
                        31:27:ec:7f:b0:05:25:95:eb:ea:31:5b:ef:dc:ee:
                        94:51:ae:e6:0c:4b:28:21:e7:e2:94:7f:e2:96:f8:
                        52:bd:08:a8:65:b6:ea:73:52:82:a6:bf:3c:53:38:
                        e6:6a:f1:06:03:18:29:78:4a:93:42:7c:fb:1c:be:
                        05:3a:66:99:72:1b:3a:dc:58:50:e7:db:cf:0d:9a:
                        30:9c:0f:8f:35:27:a1:2f:af
                    Exponent: 65537 (0x10001)
            X509v3 extensions:
                X509v3 Subject Key Identifier: 
                    B3:CD:15:69:4D:9B:44:98:FD:CF:8F:55:9B:82:05:03:44:B4:37:65
                X509v3 Authority Key Identifier: 
                    keyid:B3:CD:15:69:4D:9B:44:98:FD:CF:8F:55:9B:82:05:03:44:B4:37:65
                    DirName:/C=US/O=Apple, Inc./OU=Apple iPhone/CN=Apple iPhone Activation
                    serial:8C:1E:9C:F5:31:86:4E:60
    
                X509v3 Basic Constraints: critical
                    CA:FALSE
                X509v3 Key Usage: 
                    Digital Signature
        Signature Algorithm: sha1WithRSAEncryption

 

 

Similar Threads

  1. iPhone activation server
    By DayvG in forum iOS 4.x (iPhone OS 4.x)
    Replies: 6
    Last Post: 06-18-2010, 02:57 PM
  2. Phone Activation Server
    By cosmoLV in forum Tools
    Replies: 5
    Last Post: 01-23-2008, 05:25 AM
  3. Java version of DVD Jon's Phone Activation Server
    By The Operator in forum General
    Replies: 25
    Last Post: 01-15-2008, 12:27 PM
  4. Replies: 13
    Last Post: 08-22-2007, 12:15 AM
  5. phone activation server error
    By cjakobp in forum General
    Replies: 3
    Last Post: 07-17-2007, 02:22 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 04:55 PM.
twitter, follow us!