GUIDE: Jailbreak & ACTIVATE iOS 5 beta 1 without UDID.

Hello,

I am terrible with “guides” and “how to”s but, while I wait the sync of all my data back from my hackintosh to my iPhone4 (32GB, full… can’t wait for apple “assumes” usb3 into their devices)  I will here post how to activate your iphone on iOS 5 without being a developer. Be clear that this will be done on your own risk, respect the legality of the place you live while doing so, it is your responsibility, and you may finish with a non-working device. But, lets go to the steps.

ATTENTION: YOUR PHONE WILL DEPEND ON TETHERED BOOT FOR JAILBREAK AND WILL HAVE IT’s BASEBAND UPDATED! DO NOT USE THIS GUIDE IF YOU ARE A UNLOCKER. THIS GUIDE IS INTENDED TO MINIMALLY EXPERIENCED USERS AND SHOULD NOT BE USED IF YOU DON’T UNDERSTAND ANYTHING IN IT.

WHAT YOU NEED:

• Mac OS X (running in any kind of computer, be it made by Apple or not)
• iTunes 10.5 Beta for Mac
• The 5.0 beta 1 ipsw made for your idevice
• redsn0w 0.9.8beta1

STEP 1: Backup your data

OPTIONAL: If you are already jailbroken, check the LIST OF KNOWN WORKING JAILBREAK PACKAGES IN THE END OF THIS GUIDE, uninstall anything that is not inside it, then go to Cydia, download aptbackup and backup your actual jailbreak tweaks (ONLY KEEP THE ONES WHICH ARE IN LIST)

1a) From iTunes 10.5, right click on your iphone icon and click in “backup”

STEP 2: Restore to 5.0

2a) Enter DFU Mode (To do so please refer to other tutorials or use redsn0w’s option itself)

2b) In iTunes 10.5, option+click in “restore” over your DFU device (“update” will give you error 3002 because you don’t have your UDID registered) and select your 5.0 ipsw

2c) when the update is over, unplug your device from the computer, do not touch your iTunes until requested again.

STEP 3: Bypassing the Activation Lock

1a) Follow the instruction on your iphone until you get locked into the “unable to activate” screen

1b) Press 3 times (fast) the home button, voice-over will turn on.

1c) Ignore the irritant voice and click on the battery icon so it wil have a square around it

1d) use 3 finger from the top of the screen swiping down (maybe you will have to do it more then once), that will bring 2 gadgets to the screen: stocks and weather.

1e) click over the yahoo weather icon (a small “Y!” near the weather in the right) so it will have a square around it, then double click inside this square, this will bring you to the well known weather screen)

1f) From the weather screen, press the home button. Welcome to iOS 5. press your home button 3x again to turn voiceover off. Instead of using the device, shut down.

STEP 4: Jailbreaking

4a) Open redsn0w and install cydia, follow the software instructions, so your device will get jailbroken.

4b) once finished, quit and reopen redsn0w to boot tethered (follow the utility instructions), use the activation lock bypass again to get into springboard, we will fix this needing on next step.

PS: Always point redsn0w to your 5.0 ipsw when opening it

STEP 5: Activating / Hacktivating iOS 5

5a) Enter cydia, and add the repository: www.sinfuliphonerepo.com

5b) Download iFile from this repository.

5c) Inside iFile, open the following file as property list viewer inside your iDevice: /System/Library/CoreServices/SystemVersion.plist

5d) Remove the file last entry: ReleaseType/Beta

5e) Save (OK), turn your device off and boot it tethered again.

5f) Open iTunes. iTunes will activate the device, since it no longer says that it is a beta. You still need a valid SIM or a factory unlocked iPhone. (In Brazil, all iPhones have to be sold unlocked by Law)

STEP 6: Restore your settings

6a) iTunes will ask which backup settings to restore: the ones you saved in step 1a!

6b) Wait the long sync, in the end your iphone will be activated, reboot tethered to skip the “3 steps” so you will still have a little privacy.

OPTIONAL: Enter Cydia and download aptbackup again if you did the step 1 optional aptbackup. This time click on restore, so you will restore your jailbreak items too.

Enjoy your activated iOS 5.0 beta 1 without paying U$100 to apple nor sending your information to them just to apply for a UDID.

—————————————————–

LIST OF KNOWN WORKING JAILBREAK PACKAGES IN iOS 5:

Working Tweaks:

3G Unrestrictor
Dreamboard
Direct Closer Pro
FolderLock
DeleteMail
Five Icon Dock
PrefrenceLoader
Manual Correct
Fake Operator
afcadd
openssh
opensl
appsync
Fastr
EZdecline
Cyntact
ChatPic
App Switcher Rotator
App Switcher Brightness
barrel
fake clock
backgrounder
BiteSMS
Firewall iP
FolderCloser
PictureMe
iFile
CyDelete
OpenSSH
iSHSHit
TetherMe
Grooveshark

Lion (Mac Os X 10.7) ONLY available in the Mac’s AppStore! (Confirmed by WWDC2011)

Sad news for hackintoshers: as expected by many, Mac OS X will no longer have a Installation Disk! The information was confirmed minutes ago in WWDC 2011.

For now on it is better to refer to the controlled Mac App Store if you are searching for Lion.

As always, who wants it, will find a way, but for now on, Apple’s OS will only run on “authorized computers” and now subject to Mac App Store “mutant” EULA.

More on the subject soon, this is just a fast tweet about the obvious, I was called mad a year ago when predicting this.

I wish I was mad on this subject.

Firmware Mod To upgrade MacPro4,1 (4/8core) to Macpro5,1 (6/12core) Released @ Netkas.org !

GREAT News!

Netkas.org user MacEFIRom has released a utility to upgrade your firmware ROM (BIOS/EFI) from your MacPro 2009 to MacPro 2010, allowing the use of 6-core xeon CPUs as possibility.

The utility is greatly designed to have no Apple code in it – a reason by which many firmware modders were holding themselves to release a modified cpucode info or at least some modules upgrades to the MacPro 4,1 (2009) firmware. Instead of the basical work of manually picking the ROM, modifying and releasing, the programmer was enough smart to create a utility that changes the files in your own machine, making the process happen on your own machine with files downloaded by yourself.

It is important to note that Apple released in 2010 a slightly revised version of 2009 MacPro as if it was a whole new machine, when all core functions except graphics and CPU (both external removable components) were already the same.

I was pleased to receive these news, please people, spread it: This is a intelligent and revolutionary change over Apple’s recent programmed-obsolescence ways. Doing what was done is more then a hacking or disagreement with some company, is thinking green, extending the lifetime of your product and an attitude toward the Planet itself!

If they don’t give a step forward, lets do it ourselves.

To have more informations on the utility, download or use it, JUST CLICK HERE to see netkas’ original post.

CIPAV – Government’s Surveillance Spyware

Originally posted @ Electronic Frontier Foundation

FBI Details on Government’s Surveillance Spyware

Commentary by Jennifer Lynch

EFF recently received documents from the FBI that reveal details about the depth of the agency’s electronic surveillance capabilities and call into question the FBI’s controversial effort to push Congress to expand the Communications Assistance to Law Enforcement Act (CALEA) for greater access to communications data. The documents we received were sent to us in response to a Freedom of Information Act (FOIA) request we filed back in 2007 after Wired reported on evidence that the FBI was able to use “secret spyware” to track the source of e-mailed bomb threats against a Washington state high school. The documents discuss a tool called a “web bug” or a “Computer and Internet Protocol Address Verifier” (CIPAV),1 which seems to have been in use since at least 2001.2

What is CIPAV and How Does It Work?
The documents discuss technology that, when installed on a target’s computer, allows the FBI to collect the following information:

• IP Address
• Media Access Control (MAC) address
• “Browser environment variables”
• Open communication ports
• List of the programs running
• Operating system type, version, and serial number
• Browser type and version
• Language encoding
• The URL that the target computer was previously connected to
• Registered computer name
• Registered company name
• Currently logged in user name
• Other information that would assist with “identifying computer users, computer software installed, [and] computer hardware installed”3

It’s not clear from the documents how the FBI deploys the spyware, though Wired has reported that, in the Washington state case, the FBI may have sent a URL via MySpace’s internal messaging, pointing to code that would install the spyware by exploiting a vulnerability in the user’s browser. Although the documents discuss some problems with installing the tool in some cases, other documents note that the agency’s Crypto Unit only needs 24-48 hours to prepare deployment.4 And once the tool is deployed, “it stay[s] persistent on the compromised computer and . . . every time the computer connects to the Internet, [FBI] will capture the information associated with the PRTT [Pen Register/Trap & Trace Order].5

Where Has CIPAV Been Used and What Legal Process Does the FBI Rely On to Use It?

It is clear from the documents we received that the FBI—and likely other federal agencies—have used this tool a lot. According the documents, the FBI has used CIPAV in cases across the country—from Denver, El Paso, and Honolulu in 2005; to Philadelphia, California, and Houston in 2006; to Cincinnati and Miami in 2007. In fact, one stack of documents we received consists entirely of requests from FBI offices around the country to the agency’s Cryptologic and Electronic Analysis Unit (“CEAU”) for help installing the device.6

The FBI has been using the tool in domestic criminal investigations as well as in FISA cases,7 and the FISA Court appears to have questioned the propriety of the tool.8 Other agencies, and even other countries have shown interest in the tool, indicating its effectiveness. Emails from 2006 discuss interest from the Air Force,9 the Naval Criminal Investigative Service10 and the Joint Task Force-Global Network Operations,11 while another email from 2007 discusses interest from the German government.12

The FBI’s Crypto Unit appears to have viewed the CIPAV as a proprietary tool. In one email, an agent grumbled, “we are seeing indications that [CIPAV] is being used needlessly by some agencies, unnecessarily raising difficult legal questions (and a risk of suppression without any countervailing benefit).”13 In another email, an agent stated, “[I] am weary [sic] to just hand over our tools to another Gov’t agency without any oversight or protection for our tool/technique.”14 And a third email noted, “[w]e never discuss how we collect the [data CIPAV can collect] in the warrants/affidavits or with case agents. AUSAs, squad supervisors, outside agencies, etc.”15

It appears from the documents that the FBI wasn’t sure what legal process to seek to authorize use of the spyware device. Some emails discuss trying to use a “trespasser exception” to get around a warrant,16 while others discuss telling the AUSA (government attorney) to cite to the “All Writs Act, 28 U.S.C. § 1651(a).”17 And one email suggests some agents thought the tool required no legal process at all. In that email, the FBI employee notes he considers the tool to be “consensual monitoring without need for process; in my mind, no different than sitting in a chat room and tracking participants’ on/off times; or for that matter sitting on P2P networks and finding out who is offering KP.”18

Eventually, the FBI seems to have sought a legal opinion on the proper use of the tool, both from the Office of General Counsel and from the National Security Law Branch,19 and ultimately, the agency seems to have settled on a “two-step request” process for CIPAV deployments — a search warrant to authorize intrusion into the computer, and then a subsequent Pen/Trap order to authorize the surveillance done by the spyware.20

What Does This Mean for the FBI’s Push for New Back Doors into Our Internet Communications?
Over the past few months, we’ve heard a lot from the FBI about its need to expand the Communications Assistance to Law Enforcement Act (CALEA), a law that that requires all telecommunications and broadband providers to be technically capable of complying with an intercept order. Federal law enforcement officials have argued that under current regulations they can’t get the information they need and want to expand CALEA to apply to communications systems like Gmail, Skype, and Facebook. However, these documents show the FBI already has numerous tools available to surveil suspects directly, rather than through each of their communications service providers. One heavily redacted email notes that the FBI has other tools that “provide the functionality of the CIPAV [text redacted] as well as provide other useful info that could help further the case.”21 Another email notes that CIPAVs are used in conjunction with email intercepts, perhaps using similar spyware-type tools.22 If the FBI already has endpoint surveillance-based tools for internet wiretapping, it casts serious doubt on law enforcement’s claims of “going dark.”

A device that remains “persistent” on a “compromised computer” is certainly concerning. However, if the FBI obtains a probable cause-based court order before installing tools like CIPAV, complies with the minimization requirements in federal wiretapping law by limiting the time and scope of surveillance, and removes the device once surveillance concludes, the use of these types of targeted tools for Internet surveillance would be a much more narrowly tailored solution to the FBI’s purported problems than the proposal to undermine every Internet user’s privacy and security by expanding CALEA. We will continue to report on both the FBI’s use of endpoint surveillance tools and on the agency’s push to expand CALEA as more documents come in.

Click here to access full pdf versions of the documents we received or see below for the pages referenced in this post.

1. 1. FBI_CIPAV_01 p.26
2. 2. FBI_CIPAV_09 p.3
3. 3. FBI_CIPAV_07 pp.10-11
4. 4. FBI_CIPAV_07 p.50
5. 5. FBI_CIPAV_08 p.67
6. 6. FBI_CIPAV_10
7. 7. FBI_CIPAV_07 p. 45, FBI_CIPAV_08 p.132, 143
8. 8. FBI_CIPAV_14 p.52
9. 9. FBI_CIPAV_08 p.20
10. 10. FBI_CIPAV_09 p.21-22
11. 11. Id.
12. 12. FBI_CIPAV_08 p.9
13. 13. FBI_CIPAV_05 p.1
14. 14. FBI_CIPAV 09 p.21
15. 15. FBI_CIPAV_07 pp.11
16. 16. FBI_CIPAV_08 p.29
17. 17. FBI_CIPAV_08 p.149
18. 18. FBI_CIPAV_14 p.36.”KP” is likely a reference to “kiddie porn.”
19. 19. FBI_CIPAV_14 p.42, 62
20. 20. FBI_CIPAV_08 p.169
21. 21. FBI_CIPAV_08 p.168
22. 22. FBI_CIPAV_08 p.143

OS X 10.7 Lion: Chmod from 775 (admin) to 755 (root only) in many folders. From restriction to hope.

So, my turn to talk a little about the 10.7 developer preview available from Apple Inc.

No, I will let the main subjects (like a possible opening in graphics cards upgrades) to when things are more concrete.

But, I cannot let this one pass:

Appstore don’t let you instal 755 files by standard (you can negotiate).

Many many 775 folders have been changed to 755 (root access only, in other words, terminal) in the system.

Is Apple Inc. preparing to focus on open systems again?
While still protectionist (even more – restrictive) this action may seem to target developers (from closed environment to hackers). 
Is Cook’s speech about wider publics getting from iphone “back to the mac”?

I hope so, with all my critics to Apple Inc. practices as a corporation and  it’s decisions and precedents opened to the I.T. market my dream is still a each time more open OS X. While restricting it’s software (and our focus must keep on that), is Apple finally opening hand of their each time more late, each time more closed agreements of exclusivity (A.K.A. CARTEL, SHARED MONOPOLY) getting away from macs’ world and giving place to slightly more open environments?

Lets hope so, at least our right to choose our GPU….

One step at a time?