32 replies to this topic

[brutal truth]

Pod2g, who was instrumental in the 5.0.1 and A5 jailbreak, has issued an update on an untethered jailbreak of 5.1.

Quote

News: we have all exploits required to do a new jailbreak. I'm working on bypassing ASLR at bootup.

He said last month that he only had a few pieces, so hearing they have all the exploits this is good news for jailbreaking 5.1. Hopefully it won't be too much longer!

Update:

Edited by brutal truth, 24 April 2012 - 11:34 AM.
Updated with latest information from pod2g

[DaKnOb]

But @chpwn later on told us this might mean months before seeing a completed solution that will allow any of us jailbreak his iOS 5.1 device.

[Jreaper]

transport jailbreak files to attach files people and jailbreak right from ihackmyi

[DaKnOb]

Jreaper, on 18 April 2012 - 04:05 PM, said:

transport jailbreak files to attach files people and jailbreak right from ihackmyi

What?

[Jreaper]

sorry i am mistaken i meant they need to make some jailbreak files so people can download jailbreak right on ihackmyi

[brutal truth]

DaKnOb, on 18 April 2012 - 03:47 PM, said:

But @chpwn later on told us this might mean months before seeing a completed solution that will allow any of us jailbreak his iOS 5.1 device.

It always takes time to wrap exploits and fix bugs before it's ready for the public. This is just stating that a major hurdle has been passed and progress is being made.

[brutal truth]

Jreaper, on 18 April 2012 - 05:37 PM, said:

sorry i am mistaken i meant they need to make some jailbreak files so people can download jailbreak right on ihackmyi

We've considered this but because even current jailbreaks are updated frequently it would take some effort to keep our files up to date with each incremental version.

[DaKnOb]

They're probable going for 3 user-lands, like i0n1c.
5.1 is okay, but what if they have to fight Kernel-Level ASLR?

[brutal truth]

DaKnOb, on 18 April 2012 - 05:42 PM, said:

They're probable going for 3 user-lands, like i0n1c.
5.1 is okay, but what if they have to fight Kernel-Level ASLR?

I don't know. He's done great work overcoming the A5 so I'm hopeful.

[Jreaper]

brutal read my forum on my idea no its not for new forum something else

[DaKnOb]

Apparently, they'd need a lot of time. Hopefully Apple won't implement such level of security.

[Wolvy]

Jreaper, on 18 April 2012 - 05:46 PM, said:

brutal read my forum on my idea no its not for new forum something else

absolutely no idea what you're rabbiting on about

[brutal truth]

Update from MuscleNerd:

ASLR seems bypassed! Weird machines FTW. Time to ROP the payload.

[albert65]

Tying to catch up and dealing with my ignorance....

What does ASLR, FTW (for thewin?) and ROP mean??

SHould I understand that the untethered realese is close to come?

[brutal truth]

All we really know is it's in the works.

[Towelie]

if this works i will finally update

[DaKnOb]

albert65, on 20 April 2012 - 03:11 PM, said:

Tying to catch up and dealing with my ignorance....

What does ASLR, FTW (for thewin?) and ROP mean??

SHould I understand that the untethered realese is close to come?

ASLR stands for Address Space Layout Randomization. Instead of using the same memory "places" all the time, it uses a random one, making the jailbreak much harder by the time they don't know where to look for specific variables.

[albert65]

Has it compare to before a more efficient and faster memory management or is it just for avoiding easy jailbreaking?

[DaKnOb]

albert65, on 21 April 2012 - 07:44 AM, said:

Has it compare to before a more efficient and faster memory management or is it just for avoiding easy jailbreaking?

It is amazingly more secure with pretty much unnoticeable hardware use

[brutal truth]

Added the latest update from pod2g:

Quote

ETA for 5.1 JB: no clue! We're going to set pieces of the puzzle together this week. We could have issues... Could be 1 month maybe 2...

I know 1 month seems long, but it's short to work on a project like this when it's a hobby and you've other things to do as well.