iPhone SDK = unlock iPhone 1.1.2

rajeevsharma8888 · 12-10-2007 03:53 PM

Hi guys,
this thing cropped up in my mind just now,
Currently there's no valid signature, so one cannot erase or flash "baseband".

and many people have bought iphone 1.1.2 OOB, and if iphone SDK comes out , it will sure come with some apps/games , that are digitally signed, so by cracking them, we can get a valid signature, and then erase baseband.
I know it's like a wait of another 2.5 months, but what other option do we have now !!!

Also one thing more, DOn't you think, that now devteam has made it public that they need new bootloader (as in 1.1.3), so apple has come to know about it, and now they will definitely avoid it.

but if devteam wouldn't have revealed this fact, then apple might have provided a new bootloader with 1.1.3 (whenever that comes).

just my 2 cents

Getting my iPhone from US to India (mostprobably it will be 1.1.2 with new bootlader/baseband), but once again , what choice do i have now !!!

**Nikolas.A** · 12-10-2007 03:57 PM

Why on earth would they digitally sign the apps/games?
Is there really a need to do so?
Are they that stupid to pass the key to us?

**MrMax182** · 12-10-2007 03:58 PM

Well, what about triying to duplicate the French itunes unlock?

**Nikolas.A** · 12-10-2007 04:01 PM

i made a new post about that.
They sniffed the packets and IMEI is not sent!

rajeevsharma8888 · 12-10-2007 04:01 PM

it's possible, 'coz in symbian also in OS older than s603rd, one could amke any app without a digital signature, but with s603rd, if there's an app or game, it's digitally signed !
same as in iPhone, if they release an SDK, they will require all the apps/games to be digitally signed, they wouldn't want any developer ,to just go and make an app or game.

**CCRDude** · 12-10-2007 05:00 PM

If you see a signed application (and code-signing is very useful in general), you've got the public part of the key, not the private part.

That's the big advantage of public/private key encryption: you sign a file using your private key, and everyone can verify the signature with the public key.
Or, you encrypt a file with your public key, and only the receiver can decrypt it with his private key.

So it's not stupid at all to sign files, you'ld still need a few dozen years of computing to brute-force guess the private key that belongs to the public key you know.

Simon Singh has written a good book about encryption, from Romes time to today, which explains all the different encryption technologies from thousands of years ago until now in popular and easy to understand terms. Don't know the English name of the book, but should be easy to find since he hasn't written that many.