I've read around in the "supposition to the way of success" and a thought came to my mind.

Might it not be wiser to try and hack iTunes itself (so that it activates the phones even if they're locked) instead of hacking the iphone.

I'm not a hacker at all, at most a power user but I imagine, when the phone is connected to the pc, itunes recognises it as either "this one's locked" or "this one's unlocked". If the serial number is used to decide whether it should be locked or not and there is a "list" of such in itunes itself, one could maybe edit such a "list". If it uses the internet to ask for this, one could find out what data exactly is transmitted upon connection of a locked and unlocked iphone, compare it and try to imitate the response of the unlocked iphone with a locked one.



If the ideas are obsolete, and have been talked over a 100 times already, just delete the thread.

regards,

i think that has already been considered and it doesn't work because (correct me if I'm wrong) you would need the NCK which is a unique 15 digit key that apple sends to your iphone via itunes and which is needed to unlock it. problem is it only works with the right HWID, NORID, CHIPID, (id's embedded in the iphone hardware/chips and unique to each phone) and doesn't unlock any other iphones.
so unless you can bruteforce it (http://www.theiphonewiki.com/wiki/in...CK_Brute_Force) which would take years on a high-end cmoputer, it pretty much doesn't work.

but i'm new to all this so just tell me if got my facts wrong .

Originally Posted by kannidol

i think that has already been considered and it doesn't work because (correct me if I'm wrong) you would need the NCK which is a unique 15 digit key that apple sends to your iphone via itunes and which is needed to unlock it. problem is it only works with the right HWID, NORID, CHIPID, (id's embedded in the iphone hardware/chips and unique to each phone) and doesn't unlock any other iphones.
so unless you can bruteforce it (http://www.theiphonewiki.com/wiki/in...CK_Brute_Force) which would take years on a high-end cmoputer, it pretty much doesn't work.

but i'm new to all this so just tell me if got my facts wrong .

You may be new but you are 100% correct

Originally Posted by kannidol

i think that has already been considered and it doesn't work because (correct me if I'm wrong) you would need the NCK which is a unique 15 digit key that apple sends to your iphone via itunes and which is needed to unlock it. problem is it only works with the right HWID, NORID, CHIPID, (id's embedded in the iphone hardware/chips and unique to each phone) and doesn't unlock any other iphones.
so unless you can bruteforce it (http://www.theiphonewiki.com/wiki/in...CK_Brute_Force) which would take years on a high-end cmoputer, it pretty much doesn't work.

but i'm new to all this so just tell me if got my facts wrong .

Just one more thing...there is a limited number of trials for guessing the NCK, around 5 or so. After that, the phone becomes permanently locked to the carrier. Unless you're feeling really, really lucky, I wouldn't try it .

For a n00b, you sure know a lot. *looks suspiciously* :p

doesn't quite work that way man. you can't just patch itunes so that it gives you a NCK just like that

just one more cause this is popping up as a question every now and then aswell.

Today Apple has HWID, NORID, CHIPID... of all iPhones 3G sold in countries, where the iPhone has to be sold unlocked (http://support.apple.com/kb/HT1937). So once a phone of those is connected the first time via iTunes, the apple servers check HWID, NORID, CHIPID... and compare it to their database. If the matching iPhone is marked "factory unlocked" the Apple servers send the unique NCK for this iPhone.
Since 3G, Apple already has the to-be-unlocked list of iPhones sitting in their database.

Before 3G - as an example last year in Germany when Apple had to offer unlocked 2Gs for about 10 days - they took one of the "regular" iPhones out of their stock at the T-Mobile store, took a note of the iPhone data (IMEI.....) sent that by fax (!!!) to Apple and the guys there entered the data into Apples database - same result.

I have one of these factory unlocked iPhone 2G's from last year, it shows the same behavior as the factory unlocked 3Gs after a restore. Connected to iTunes you get a splash screen "iPhone is activated" and here you go.

Similar to the 2G-job is the procedure in those countries where you can ask the carrier after a while to officially unlock your iPhone 3G. They cash in the money (of cause) and send the iPhones data to Apple then...

just my 2 cent
v.