I have a old bootrom 3GS .. Week num 38 ...

Updated to 3.1.3 and baseband updated also ...

Is there any tool for old bootroms ? (i know there's no way for 359.3.2 models , but my bootrom is only 359.3)

and i heard smt about k24pwn exploit (or similar to that)

What is my current situation ?

Old bootrom is no help right now if you updated or restore to stock 3.1.3

A new iBoot exploit is required to re-jailbreak. With that, you could be jailbroken untethered again

As said many times already. No one is wasting a new iBoot exploit (if one even exists) on a minor release like 3.1.3

The hackers are not going to give up valuable exploits right now. Apple will fix the hole in 3.1.4 and we are back where we started.

Waiting patiently (and excercising caution with upgrading) is for the best. I know it is frustrating.

i see but what is the difference between iboot and bootloader

my bootloader is 6.4 and iboot version is 359.3 ..

Unlockable NO , Tethered NO according to Forecast ..

BTW are you optimistic about new JB to come when 3.1.4 or 3.2.0 is released ?

Originally Posted by tiktak

i see but what is the difference between iboot and bootloader

my bootloader is 6.4 and iboot version is 359.3 ..

Unlockable NO , Tethered NO according to Forecast ..

BTW are you optimistic about new JB to come when 3.1.4 or 3.2.0 is released

Don't trust f0recast - it's not very accurate (especially the tethered part). If you have actually verified that your bootrom iboot version is 359.3 then you are untethered.

Bootloader 6.4 - this is the baseband bootloader (there are actually two bootloaders on the phone). Some baseband bootloaders can be exploited to allow baseband downgrade (or even permanent unlock). The last known vulnerable baseband bootloader was 5.8

There are also confusingly two iBoots in the iPhone.

The first is burnt into the bootrom and can't be changed (hardware) this is the 359.3

The second is software upgradable and is responsible for recovery mode. 3.1.3 included an upgraded recovery mode iBoot that patched the exploit used in blackra1n (for all devices) and in redsn0w for 3GS and iPod Touch 3rd gen devices under OS 3.1, 3.1.1 and 3.1.2

A new recovery mode iBoot exploit is required to jailbreak 3.1.3 and higher on 3GS and iPod Touch 3rd gen devices. That is as simple as it gets.

As for when a new jailbreak will be released. I don't know. Ideally the cat and mouse game will mean that any new jailbreak will be released after new iPhone hardware is released in June/July.

I have been using different iphones since october 2007 .. I can hardly remember such a long-term waiting in any of FW Jailbreaks , maybe the one in the late 2007 (or early 2008) involving the first gen. iphone when we had to use some kind of so called "sim-lock blockers" like Xsim ,magicsim ..etc

If i'm not mistaken ,that was version 1.1.2 and 1.1.1 versions were so lucky at that time .

That time, however we managed to JB the firmware , but not unlock the device ,which forced us to use Xsim(s) ..

Then we override the sim-lock via software ,and soon after the bootloader was neutered ,so 2G iphones were problem-free.

Why ? Because every harmful action could be retrieved..

But the known exploits or at least the ways to JB after that (both 3G and 3Gs models) ,the story changed in a way like "time-crictical"

You make a mistake and wait for someone to fix it ,then you can use your beloved iphone...

I want to learn ,if hackers around the world could focus on the master part of the device to get complete control of it ,which would be a life-time solution for that specific model.

Or am i missing something ? Original iphone has a RAM based bootloader (so we can even write on the bootloader) , and late models have ROM based ?

Apple has improved the security (chain of trust) and even applied for a patent on the process since the first iPhone

The combination of the img3 format, more restrictive bootrom, shsh verification have made this more difficult.

The iPod touch 2G took many months for a jailbreak and if it had not leaked, that device would have remained unjailbroken for 9months after release. I expect it will also be around 9-10 months for new bootrom 3GS before they get tethered jailbreak.

That's why you dont think of a JB (and unlock) for 3.1.3 till the new hardware (new iphone) comes out ?

From what i have been told (over the web) , there is at least one exploit found in the cancer FW 3.1.3

But people around the world wonders mostly about the existence of that exploit or not ...

I think that matters more than the time of arrival of course

And BTW way , why are you pesimistic about the possibility of the NEW JB just when the new FW comes out (i mean 3.1.4 or 3.2) ..

Because they wont waste the exploit on a minor FW update ? Or they couldn't make one with this minor update ? Or did they already?

Enlighten us (as much as you can)

Originally Posted by tiktak

That's why you dont think of a JB (and unlock) for 3.1.3 till the new hardware (new iphone) comes out ?

From what i have been told (over the web) , there is at least one exploit found in the cancer FW 3.1.3

But people around the world wonders mostly about the existence of that exploit or not ...

I think that matters more than the time of arrival of course

And BTW way , why are you pesimistic about the possibility of the NEW JB just when the new FW comes out (i mean 3.1.4 or 3.2) ..

Because they wont waste the exploit on a minor FW update ? Or they couldn't make one with this minor update ? Or did they already?

Enlighten us (as much as you can)

They will definitely not waste an exploit on a minor update.

There are rumors of recovery mode exploit(s) that are being kept until another major os or hardware release. Only rumours though at this point.

Unlock exploit was found and reported to dev team for 3.1.3 but that will be nearly useless until a new iboot exploit is released. This unlock is being saved for a simultaneous release with new iboot/jailbreak

Have heard nothing about bootrom exploits (ie untethered on all 3GS) so that likely does not exist yet.

That does mean , people stuck on non-Jb and locked (but with oldbootrom) phones are closer to daylight ,but new bootroms are far away from being un-tethered ?

or is it true technically ?

even there is no iboot exploit , the unlock exploit is enough for old bootroms to unlock and JB ? (when a new FW comes out)

And by the way , is there any effort on itunes to accept older FWs ? (useless for unlock but maybe leads a way to use as an ipod while waiting for a unlock)

Originally Posted by tiktak

That does mean , people stuck on non-Jb and locked (but with oldbootrom) phones are closer to daylight ,but new bootroms are far away from being un-tethered ?

or is it true technically ?

even there is no iboot exploit , the unlock exploit is enough for old bootroms to unlock and JB ? (when a new FW comes out)

The first step for any JB / unlock on hardware released after the iPod Touch 2G (3GS, ipod touch 3G) is always an iBoot exploit.

The unlock exploit for 3.1.3 could be released now, but it would only benefit 3G owners (who should know better by now to not accidentally upgrade their OS). Apple would then close the unlock in 3.1.4 and the rumoured iBoot exploit would give jailbreak only (as unlock had been wasted)

This is why iBoot and unlock exploits should be released at the same time for best effect.

Originally Posted by tiktak

And by the way , is there any effort on itunes to accept older FWs ? (useless for unlock but maybe leads a way to use as an ipod while waiting for a unlock)

It is the iPhone not iTunes that rejects the older FW.

This is why a jailbroken 3GS (old bootrom only) can accept any custom IPSW, the checks that stop the iPhone from accepting older/non apple IPSW are patched out by pwnagetool.

This is not possible with new bootrom or with non jailbroken 3GS phones.