Page 1 of 2 12 LastLast
Results 1 to 10 of 15
Discuss Bypass passcode user lock without DFU restore... HOW? at the General - Hackint0sh.org; I've seen the video's, I know it can be done... How exactly does someone take ...
  1. #1
    Senior Professional Array

    Join Date
    Oct 2007
    Location
    USA
    Posts
    153
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    17

    Default Bypass passcode user lock without DFU restore... HOW?

    I've seen the video's, I know it can be done... How exactly does someone take a iphone (FW3.1) with a passcode user lock, and remove the lock without doing a dfu restore?

    ANYONE?



  2. #2
    Board Hero Array

    Join Date
    Nov 2007
    Location
    Mustang Ridge, Texas, United States
    Posts
    1,169
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    65

    Default

    umm your asking about something kinda gray you kno?

    the last way i knew of is to ssh into the phone and delete the springboard plist that has the switch saying the passlock is on, another way would be with a custom ramdisk that runs a script that deletes that same file and then reboot the phone
    Get the latest info for NoAccSplash Here
    Currently it should work on iOS 4.x - 6.x
    If you'd like to help extend its functionality, the source is also available.

  3. #3
    Newbie Array

    Join Date
    Nov 2009
    Posts
    1
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    i am sow for old one only. 2.1

  4. #4
    Newbie Array

    Join Date
    Feb 2010
    Posts
    2
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default Help

    I have the same problem my iphone 3gs is broken with Blackra1n. My 5 year old started typing around while I was letting her watch fandango clips to keep her busy. She set an unknown passcode. how do i get the software for a ram and how do i use it. I am code illiterate running blackra1n is about as savvy as I get any advice. I do not want to restore and have an unbreakable phone.

  5. #5
    Board Hero Array

    Join Date
    Nov 2007
    Location
    Mustang Ridge, Texas, United States
    Posts
    1,169
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    65

    Default

    do you use openssh?
    Get the latest info for NoAccSplash Here
    Currently it should work on iOS 4.x - 6.x
    If you'd like to help extend its functionality, the source is also available.


  6. #6
    Board Hero Array

    Join Date
    Dec 2007
    Posts
    1,044
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    74

    Default

    Quote Originally Posted by Zarathustra View Post
    I have the same problem my iphone 3gs is broken with Blackra1n. My 5 year old started typing around while I was letting her watch fandango clips to keep her busy. She set an unknown passcode. how do i get the software for a ram and how do i use it. I am code illiterate running blackra1n is about as savvy as I get any advice. I do not want to restore and have an unbreakable phone.
    I wonder if this still works: http://www.hackint0sh.org/f127/55969-2.htm#post388373
    (i.e. using iPhoneBrowser to delete /var/mobile/Library/Preferences/com.apple.springboard.plist and /var/Keychains/keychain-2.db and then turning the phone off and on again). Not sure though, this was during the 2.x firmware and pre-3GS era.
    iPhone 3GS / 3.1.2 JB (PwnageTool) / 04.26.08 carrier-locked, Carrier Logo Fixer / Cydia / 1000 posts on Hackint0sh

    Installing Cydia programs on a phone that has no internet connection: read this.

    Editing binary .plist, .strings, .nib and .xib files:
    * on your computer: Windows tool / conversion website.
    * on your iPhone: convert those files in a terminal with plutil (installed with Erica Utilities) or edit them with iFile (Cydia links).

  7. #7
    Board Hero Array

    Join Date
    Nov 2007
    Location
    Mustang Ridge, Texas, United States
    Posts
    1,169
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    65

    Default

    i can confirm that deleting /var/mobile/Library/Preferences/com.apple.springboard.plist and /Library/Keychains/keychain-2.db will remove the passcode from a 3gs iphone running 3.1.2


    Now your only problem is getting access to delete it
    Get the latest info for NoAccSplash Here
    Currently it should work on iOS 4.x - 6.x
    If you'd like to help extend its functionality, the source is also available.

  8. #8
    Super Moderator Array Olethros's Avatar

    Join Date
    Sep 2007
    Location
    Norway
    Posts
    8,360
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    439

    Default

    Quote Originally Posted by truehybridx View Post
    i can confirm that deleting /var/mobile/Library/Preferences/com.apple.springboard.plist and /Library/Keychains/keychain-2.db will remove the passcode from a 3gs iphone running 3.1.2

    Now your only problem is getting access to delete it
    You only need to delete the keychain file and kill SpringBoard after the respring it will have no lock

    If you want to get extra smart, you can just remove the only the device password with this sql (you need to be able to edit the Keychain-2.db file with a sqlite tool)

    Code:
    delete from genp where acct = "DeviceLockPassword";
    Please read the stickies & search forum before posting!
    How to report an iTunes restore/update fail in a useful manner
    -

    iPad 3G 64GB (4.3.3, Redsn0w) oldest SHSH 3.2.2
    iPhone 4 32GB (4.2.1, Redsn0w JB-monte) oldest SHSH 4.1
    iPhone 3GS 32GB (4.3.3; Pwnagetool) factory unlocked oldest SHSH 3.1
    iPhone 8GB (3.1.3; Pwnagetool) AT&T Locked - Unlocked with bootneuter

    -
    Did we solve your problem? Got a dollar or two spare ? Donate!

  9. #9
    Board Hero Array

    Join Date
    Dec 2007
    Posts
    1,044
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    74

    Default

    Quote Originally Posted by truehybridx View Post
    Now your only problem is getting access to delete it
    As far as I know, the latest version of iPhoneBrowser can delete that file from a jailbroken iPhone. It doesn't depend on OpenSSH, it uses the built-in afcd process. So Zarathustra should be OK (if by "broken with Blackra1n" he means "jailbroken with Blackra1n").
    iPhone 3GS / 3.1.2 JB (PwnageTool) / 04.26.08 carrier-locked, Carrier Logo Fixer / Cydia / 1000 posts on Hackint0sh

    Installing Cydia programs on a phone that has no internet connection: read this.

    Editing binary .plist, .strings, .nib and .xib files:
    * on your computer: Windows tool / conversion website.
    * on your iPhone: convert those files in a terminal with plutil (installed with Erica Utilities) or edit them with iFile (Cydia links).

  10. #10
    Super Moderator Array Olethros's Avatar

    Join Date
    Sep 2007
    Location
    Norway
    Posts
    8,360
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    439

    Default

    Quote Originally Posted by Jim Danner
    As far as I know, the latest version of iPhoneBrowser can delete that file from a jailbroken iPhone. It doesn't depend on OpenSSH, it uses the built-in afcd process. So Zarathustra should be OK (if by "broken with Blackra1n" he means "jailbroken with Blackra1n").
    No this is one of the many negative aspects of blackra1n

    Every other jailbreak opens up read/write access to the entire iPhone file system via afcd.

    Geohot left this out of blackra1n and his answer when musclenerd quizzed him on this was that users could install afc2add from cydia to get this feature.

    The problem is end users don't know they should do this step and when it comes to the point when they need afcd read/write access it is usually too late to install it!
    Please read the stickies & search forum before posting!
    How to report an iTunes restore/update fail in a useful manner
    -

    iPad 3G 64GB (4.3.3, Redsn0w) oldest SHSH 3.2.2
    iPhone 4 32GB (4.2.1, Redsn0w JB-monte) oldest SHSH 4.1
    iPhone 3GS 32GB (4.3.3; Pwnagetool) factory unlocked oldest SHSH 3.1
    iPhone 8GB (3.1.3; Pwnagetool) AT&T Locked - Unlocked with bootneuter

    -
    Did we solve your problem? Got a dollar or two spare ? Donate!


 

 
Page 1 of 2 12 LastLast

Similar Threads

  1. 4.3.3 passcode bypass anyone?
    By keshaxe in forum iOS 4.x (iPhone OS 4.x)
    Replies: 1
    Last Post: 06-30-2011, 12:26 PM
  2. Bypass passcode lock in 2.1 firmware?
    By PhoneInside in forum Free Toolchain Software (Cydia App's)
    Replies: 2
    Last Post: 10-14-2008, 12:35 AM
  3. [Guide] How to bypass iPhone's Passcode
    By TatesMan in forum General
    Replies: 2
    Last Post: 08-29-2008, 03:09 AM
  4. Bypass Passcode
    By JSN1 in forum General
    Replies: 9
    Last Post: 10-29-2007, 07:34 AM
  5. passcode lock/System lock
    By crunch81 in forum General
    Replies: 2
    Last Post: 10-22-2007, 10:56 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 04:11 PM.
twitter, follow us!