+ Reply
Page 2 of 3 FirstFirst 123 LastLast
Results 21 to 40 of 57

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.


Thread: Malicious Worm Takes Aim at Jailbroken iPhones

is a discussion within the

iPhone News

forums, a part of the

General iPhone

section;
Even I have changed my password. I am a first time jb'er and this is not that hard people. If you keep ssh on all the time bad things are
...
  1. #21
    iPhone? More like MyPhone
    Join Date
    Jun 2009
    Posts
    111
    Thanks
    6
    Thanked 2 Times in 2 Posts

    Even I have changed my password. I am a first time jb'er and this is not that hard people. If you keep ssh on all the time bad things are gunna happen

  2. #22
    Green Apple
    Join Date
    Nov 2008
    Posts
    56
    Thanks
    0
    Thanked 5 Times in 4 Posts

    I hate the way the press are advertising this as a problem with "jailbroken phones". Bit like saying "Windows hackers rejoice" when someone thunderbird have a bug in thier code. Yes they have a jailbroken but its not that, thats causing the problem.

  3. #23
    What's Jailbreak?
    Join Date
    Jun 2009
    Location
    Brooklyn NY
    Posts
    18
    Thanks
    1
    Thanked 7 Times in 2 Posts

    I have a question just in case ppl have problem changing the root password.

    I've notice that wen you install sbsettings and you swipe your finger accros the stattus bar u get a pop up window or some like that with short cuts to wifi, 3G, Brightness and SSH now will this do the trick on stoping hackers on hacking ur phone if you turn SSH off ? Me personally i keep it turned off even tho i have the root password changed i only turn it on if i use SSH .

    Can some one answear this qustion if they know it .

    Thank you very much ......

  4. #24
    What's Jailbreak?
    Join Date
    Oct 2007
    Posts
    29
    Thanks
    0
    Thanked 1 Time in 1 Post
    I haven't needed ssh on my phone in some time! I use iphone browser to transfer files to my phone, mobile terminal has been good enough for other things so far.

  5. #25
    What's Jailbreak?
    Join Date
    Oct 2008
    Location
    Brooklyn, New York
    Posts
    10
    Thanks
    0
    Thanked 2 Times in 1 Post
    Just change the password open cydia download mobile terminal and then erica tools when done open terminal enter the command passwd, press enter then after put old one in Alpine then your new one (please remember the new password) now more worry 's about silly apple tricks like 1.1.1, oops can not talk about that.

  6. #26
    What's Jailbreak?
    Join Date
    Jan 2008
    Posts
    17
    Thanks
    1
    Thanked 1 Time in 1 Post
    willing to bet any money that Apple is making these bugs.

  7. #27
    Livin the iPhone Life exNavy's Avatar
    Join Date
    Jun 2007
    Location
    Arizona
    Posts
    1,040
    Thanks
    56
    Thanked 169 Times in 124 Posts

    Quote Originally Posted by Imahottguy View Post
    For the love of gawd! n00bs: Change your effing root password!!

    @Meesany: You should put info on how to change the default password in the first post, n00bs need to be spoon fed.

    And the mobile password as well.

  8. #28
    My iPhone is a Part of Me rwin84's Avatar
    Join Date
    Nov 2007
    Location
    Orlando, FL
    Posts
    679
    Thanks
    3
    Thanked 16 Times in 16 Posts

    ridiculous... well i gues having a computer in our pocket has finally caught up with us... we now have to deal with all the problems of a computer...
    This is getting a lil' ridiculous...

  9. #29
    Green Apple sk8ertim's Avatar
    Join Date
    Jun 2008
    Location
    Kimri, Russia
    Posts
    66
    Thanks
    48
    Thanked 2 Times in 2 Posts

    Damn these "WORMS" are annoying!
    I havent switched my root PW on my Mom's iPhone, but she doesnt even use SSH! I have it installed and it is ALWAYS off.
    When I get a new iPhone, my PW will be 10chars long... maybe like all my other passwords, 26chars long...

    PEOPLE! CHANGE THE PASS IF YOU USE SSH!
    Then we wont have these "WORMZ"!

    Also, maybe in the next ver of oPenSSH there will be an add-on so that before completing installation you would have to MAKE YOUR OWN PASSWORD!

    Just my .02cents

  10. #30
    szr
    szr is offline
    iPhone? More like MyPhone szr's Avatar
    Join Date
    Aug 2009
    Posts
    293
    Thanks
    111
    Thanked 23 Times in 19 Posts

    You should not only change your root password, but edit your /etc/ssh/sshd_config to turn off Password based auth and only use Public Key auth.


    1) You first need to creat a public key and private key pair. You can do this on almost any computer that has an ssh client.

    If you use OS X or any UNIX/Linux type system, please see this link. On windows, Putty and Winscp come with a key generator that creates proper keys that they can use; see the link also, but ignore all parts expect those that tell you what to do on your iPhone/iPod, just make sure your ssh/sftp client is set it use your Private Key!

    > Setting up SSH keys <


    2) Open (or download from your device and open in your favorite editor) /etc/ssh/sshd_config


    3) Look for a line containing PasswordAuthentication, make sure it's not commented and set to no, so it looks like:
    PasswordAuthentication no


    4) Look for a line containing PubkeyAuthentication, make sure it's also not commented out and make sure it's set to yes, so it looks like:
    PubkeyAuthentication yes


    *** If you run into any problems logging in with root, you can use Mobile Term or iFile to edit /etc/ssh/sshd_config to set PasswordAuthentication to yes if need be, which is recommended when first testing your key to make sure it works while still allowing you the fall back of regular password auth. Once you verify Key auth is working, turn off Password auth.


    Also, regardless if you go with Key based auth or not, when you are out in public, it can be better to just turn off SSH altogether - very easy to do with something like SBSettings - you can't pick the lock if there is no door.

    IMHO it only makes sense to have SSH on when you're at home or other trusted locations.
    Last edited by szr; 11-23-2009 at 11:06 AM.

  11. #31
    Livin the iPhone Life
    Join Date
    Aug 2008
    Location
    New York
    Posts
    1,023
    Thanks
    3
    Thanked 78 Times in 63 Posts

    If you cant change your iPhone's root password, you should not be installing OpenSSH in the first place.


    Just my $0.02

  12. #32
    What's Jailbreak?
    Join Date
    Oct 2009
    Location
    Guernsey (Channel Islands)
    Posts
    6
    Thanks
    2
    Thanked 0 Times in 0 Posts

    thanks, but this has been going round for at least a fortnight, ive had it :L and i dont live in the netherlands theres the easy but *** way getting out without donating, which is restoring which is ***! Unless you have ROCK backing up your stuff

  13. #33
    Green Apple
    Join Date
    Jan 2009
    Location
    Haslet, TX
    Posts
    57
    Thanks
    0
    Thanked 55 Times in 24 Posts

    Would it not be possible to automatically prompt the user upon installation of OpenSSH to change the root and mobile passwords?

    Just a thought...

  14. #34
    iPhone? More like MyPhone
    Join Date
    Nov 2007
    Posts
    185
    Thanks
    0
    Thanked 5 Times in 4 Posts

    Quote Originally Posted by chris4851 View Post
    It's as simple as this.... if you know how to and have Jailbroken your phone you SHOULD know how to change your root password. Pure laziness and it's there fault to get infected.
    Yeah this might have been a good reply back in the 1.0 days, when jailbreaks and unlocks were pretty effin complicated to do. Nowadays, with Geohot's all in one click utility, every noob on the planet can get their iPhone jailbroken.

    I think the solution would be to incorporate a password change feature in the jailbreak utilities from now on.

  15. The Following User Says Thank You to bengo For This Useful Post:

    1hihum (11-23-2009)

  16. #35
    Theme Creator Jahooba's Avatar
    Join Date
    Jun 2009
    Posts
    2,906
    Thanks
    1,425
    Thanked 1,694 Times in 838 Posts

    Quote Originally Posted by Imahottguy View Post
    For the love of gawd! n00bs: Change your effing root password!!

    @Meesany: You should put info on how to change the default password in the first post, n00bs need to be spoon fed.
    You call people noobs but don't help them out. Modmyi is a place where we help people, if you want to be an elitist a-hole then go somewhere else.

    You should know better by now.
    Last edited by Jahooba; 11-23-2009 at 12:38 PM.

  17. The Following 3 Users Say Thank You to Jahooba For This Useful Post:

    1hihum (11-23-2009), kainisable (11-23-2009), The Digital Alchemist (11-23-2009)

  18. #36
    Banned
    Join Date
    Aug 2009
    Location
    Bklyn NY !!
    Posts
    913
    Thanks
    60
    Thanked 62 Times in 51 Posts

    great, this is all we need to give Apple an excuse for making iphones un-jailbreakable.

  19. #37
    iPhone? More like MyPhone
    Join Date
    Nov 2007
    Posts
    185
    Thanks
    0
    Thanked 5 Times in 4 Posts

    Quote Originally Posted by jOnGarrett View Post
    great, this is all we need to give Apple an excuse for making iphones un-jailbreakable.
    yeah... I don't think they have a choice... it's called jailbreaking for a reason.

  20. #38
    Livin the iPhone Life rhekt's Avatar
    Join Date
    Jun 2009
    Posts
    1,294
    Thanks
    43
    Thanked 65 Times in 53 Posts

    well...here it all goes again. fortunately w/ the previous 2 viruses you got a nifty pic letting you know you were infected. itll be too late, especially financially for those that get this sand worm.
    killall Terminal[]

  21. #39
    Banned
    Join Date
    Apr 2008
    Location
    california
    Posts
    82
    Thanks
    11
    Thanked 9 Times in 4 Posts

    how come these carriers don't protect their customers and their own network by locking down these ports and protocols? duh!

  22. #40
    Green Apple fidosam's Avatar
    Join Date
    Oct 2007
    Location
    Montreal, Quebec, Canada
    Posts
    82
    Thanks
    33
    Thanked 4 Times in 4 Posts

    Quote Originally Posted by marko911 View Post
    TO ALL : Please just change the root password and thats it its not that hard just click on this link and it will show you step by step on how to do it ..

    How To Change the iPhone’s Root Password | Just Another iPhone Blog

    Dont forget to hitt the " thanks " if it helped you .
    Thank you once again! I was having problems SSHing today (LOL) and used MobileTerminal instead...piece of cake!

Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts