Results 1 to 4 of 4
Discuss Need help with iOS 4.1 ramdisk at the iOS 4.x (iPhone OS 4.x) - Hackint0sh.org; Hi all, Wall of text incoming: I've got a few questions regarding the installation of ...
  1. #1
    Newbie Array

    Join Date
    Jan 2011
    Posts
    1
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default Need help with iOS 4.1 ramdisk

    Hi all,

    Wall of text incoming:

    I've got a few questions regarding the installation of a new hand-built ramdisk for data retrieval from my phone.

    I'm trying something like the Zdziarski method, where I create a working filesystem, overwrite the existing kernel and then extract using dd or some other imaging program. I'm familiar with *nix/BSD systems, so the concept is fairly straightforward to me, but the hardware is not.

    Phone was jailbroken for unlocking purposes, so I don't have SSH or any interpreter onboard, just cydia. The problem is that the phone is stuck in a recovery loop. Previous to this, I've tried setting the env var auto-boot true, and it attempts to boot then fails and returns to recovery mode. I'm figuring some kind of kernel panic, hence why I want to try the ramdisk.

    I can't mount or seem to access the phone's fs at all due to the recovery mode, and I've tried a lot, including iRecovery to get it to boot just once to get the stuff off.

    ----

    Anyways, using a custom ipsw from pwnagetool, I've mounted the restore ramdisk, and all the info at this point on the web regarding the ram disk is either incomplete or way dated.

    All I need is the kernel, I don't need a payload per se, and I sure as hell don't want to run the restore daemons built in, as it would nuke my data.
    I've noticed that the Zdziarski method calls on editing a property list, and this doesn't exist in the 4.x bundle as best I can tell. instead, everything is called from rc.boot, which Apple turned into a binary instead of script.

    Does anyone know if I can just get rid of rc.boot, and *hopefully* just overwrite the existing install, leaving the old run control files in place?

    Also, once I've got a finished disk, I suppose it has to be reencrypted using the same keys?



  2. #2
    Super Moderator Array Olethros's Avatar

    Join Date
    Sep 2007
    Location
    Norway
    Posts
    8,360
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    439

    Default

    Quote Originally Posted by Maorin View Post
    Does anyone know if I can just get rid of rc.boot, and *hopefully* just overwrite the existing install, leaving the old run control files in place?

    Also, once I've got a finished disk, I suppose it has to be reencrypted using the same keys?
    Yes you need to re-rencrypt using the same keys.

    I think you should take a look at msft.guy's ramdisk posts. His techniques are more up to date.

    Zdziarski has developed newer/better techniques but deliberately limits the publishing of his latest techniques to law enforcement officials (for forensic/criminal investigations).
    Please read the stickies & search forum before posting!
    How to report an iTunes restore/update fail in a useful manner
    -

    iPad 3G 64GB (4.3.3, Redsn0w) oldest SHSH 3.2.2
    iPhone 4 32GB (4.2.1, Redsn0w JB-monte) oldest SHSH 4.1
    iPhone 3GS 32GB (4.3.3; Pwnagetool) factory unlocked oldest SHSH 3.1
    iPhone 8GB (3.1.3; Pwnagetool) AT&T Locked - Unlocked with bootneuter

    -
    Did we solve your problem? Got a dollar or two spare ? Donate!

  3. #3
    Newbie Array

    Join Date
    Jan 2011
    Posts
    2
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    0

    Default

    A bad cydia update bricked my iPhone 3g fw 4.2.1 bb 6.15. Ive been sitting in front of this screen for the past 12 hours straight trying to figure out if I can recover my contacts using the ramdisk method.. I have the SHSH files and pretty decent understanding of terminal. Is it possible to recover my files?

    Thanks!

  4. #4
    Super Moderator Array Olethros's Avatar

    Join Date
    Sep 2007
    Location
    Norway
    Posts
    8,360
    Post Thanks / Like
    Downloads
    0
    Uploads
    0
    Rep Power
    439

    Default

    Quote Originally Posted by kiup View Post
    A bad cydia update bricked my iPhone 3g fw 4.2.1 bb 6.15. Ive been sitting in front of this screen for the past 12 hours straight trying to figure out if I can recover my contacts using the ramdisk method.. I have the SHSH files and pretty decent understanding of terminal. Is it possible to recover my files?

    Thanks!

    It's definitely possible using the new limera1n exploit.
    Please read the stickies & search forum before posting!
    How to report an iTunes restore/update fail in a useful manner
    -

    iPad 3G 64GB (4.3.3, Redsn0w) oldest SHSH 3.2.2
    iPhone 4 32GB (4.2.1, Redsn0w JB-monte) oldest SHSH 4.1
    iPhone 3GS 32GB (4.3.3; Pwnagetool) factory unlocked oldest SHSH 3.1
    iPhone 8GB (3.1.3; Pwnagetool) AT&T Locked - Unlocked with bootneuter

    -
    Did we solve your problem? Got a dollar or two spare ? Donate!

 

 

Similar Threads

  1. URGENT! SSH ramdisk for 4.3.2
    By tomtonajeron in forum iOS 4.x (iPhone OS 4.x)
    Replies: 3
    Last Post: 09-30-2011, 01:14 AM
  2. [New Ramdisk] FirmWare 2.0
    By cosmoLV in forum General
    Replies: 1
    Last Post: 07-19-2008, 09:17 PM
  3. [tut req] Ramdisk Images
    By truehybridx in forum General
    Replies: 0
    Last Post: 04-29-2008, 12:33 AM
  4. 1.1.4 ramdisk
    By themysteryninja in forum General
    Replies: 1
    Last Post: 03-14-2008, 04:57 PM
  5. RamDisk 1.1.1
    By linusmax in forum iPhone "2G" (Rev. 1)
    Replies: 2
    Last Post: 10-20-2007, 09:41 AM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
Powered by vBulletin®
Copyright © 2014 vBulletin Solutions, Inc. All rights reserved.
Search Engine Friendly URLs by vBSEO
(c) 2006-2012 Hackint0sh.org
All times are GMT +2. The time now is 02:13 AM.
twitter, follow us!