Glen,<br><br>The only way to get SSH enabled on your iPhone is to jailbreak it. There's a number of ways to do this. However, simply jailbreaking it doesn't automatically install SSH, you still have to install the "OpenSSH" package through Cydia or another similar install program.<br>
<br>This really only applies to people who have 1. jailbroken their phone 2. installed ssh 3. did not change their default root password.<br><br>If you are worried about other potential exploits by having the same "alpine" root password as however many million iPhones there are out there, I suggest you write to Apple.<br clear="all">
<br>- Brian<br>
<br><br><div class="gmail_quote">On Wed, Nov 4, 2009 at 11:45 AM, Glen Jarvis <span dir="ltr"><<a href="mailto:glen@glenjarvis.com">glen@glenjarvis.com</a>></span> wrote:<br><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
This may not be helpful, but in case it is, I'm sending it on.<div><br></div><div>My iphone is a plain old 3GS - purchased from the store - no jail-breaking -- completely legal.</div><div><br></div><div>However, if the root default password is standard like that, I wanted to change it to eliminate possible security risks. I did the following:</div>
<div><br></div><div>1) Connected to my webserver to see what IP address is recorded (in access logs),</div><div>2) Then tried ssh'ing to root@that IP address from a terminal -- large delay/ctrl-c and another approach</div>
<div>3) From the phone, using TouchTerm Pro, I tried doing the same as above. The connection was refused "Could not connect to server"</div><div>4) I tried <a href="mailto:root@127.0.0.1" target="_blank">root@127.0.0.1</a> and saw different behavior:</div>
<div><br></div><div>SSH connection error</div><div>debug1: Connecting to 127.0.0.1 [127.0.0.1] port 22.</div><div>debug1: connect to address 127.0.0.1 port 22: Connection..</div><div>ssh: connect to host 127.0.0.1 port 22: Connection refused</div>
<div><br></div><div>I have no direct terminal into the phone to see more... </div><div><br></div><div>Cheers,</div><div><br></div><div><br></div><div>Glen</div><div><br></div><div><br><div class="gmail_quote"><div class="im">
On Wed, Nov 4, 2009 at 11:10 AM, Micah Lee <span dir="ltr"><<a href="mailto:micahflee@gmail.com" target="_blank">micahflee@gmail.com</a>></span> wrote:<br>
</div><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;"><div><div></div><div class="h5">Change your root password from alpine to something else, if you haven't already. It looks like this Dutch kid hacked people's jailbroken iPhones by sshing as root with the default password: <a href="http://arstechnica.com/apple/news/2009/11/dutch-hacker-holds-jailbroken-iphones-hostage-for-5.ars" target="_blank">http://arstechnica.com/apple/news/2009/11/dutch-hacker-holds-jailbroken-iphones-hostage-for-5.ars</a><br>
<br>I don't have an iPhone so I can't test this stuff myself, but I'm guessing that they don't have firewalls, and if you have a 3G data plan your ssh port is wide open to the internet. So anyone that knows the AT&T IP address range for iPhones can scan for port 22, and then try logging in as root, with the default password alpine.<br>
<br>You can change your password by ssh'ing into your phone like so:<br><br>ssh root@YOUR_IPHONES_IP<br><br>Or from your iPhone, if you have the terminal app installed, open the terminal and type:<br><br>su<br><br>The default password is alpine. Once you're logged in, just type:<br>
<br>passwd<br><br>And you can change your password.<br><br>Also, I was playing with my iPod Touch and found some interesting things. If you are ssh'd into an iPhone or iPod Touch, /private/var/mobile/Applications/ contains all of the apps installed on the device, and all the private data for them. So, for example, on my iPod Touch,<br>
<br>/private/var/mobile/Applications/27201D0E-D41A-4198-9FC0-185868FC28ED/AIM Free.app/<br><br>is where the AIM app is installed, and<br><br>/private/var/mobile/Applications/27201D0E-D41A-4198-9FC0-185868FC28ED/Documents/Accounts.accounts<br>
<br>is where I found my saved AIM password, in plaintext. Also,<br><br>/User/Library/Cookies/Cookies.plist<br><br>contains all my mobile Safari cookies, including the saved ones for logging into Gmail.<br><br>There's normally a lot more info than this that can be found on iPhones, so change your password if you haven't already.<br>
<font color="#888888">
<br>Micah<br>
</font><br></div></div><div class="im">_______________________________________________<br>
Noisebridge-discuss mailing list<br>
<a href="mailto:Noisebridge-discuss@lists.noisebridge.net" target="_blank">Noisebridge-discuss@lists.noisebridge.net</a><br>
<a href="https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss" target="_blank">https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss</a><br>
<br></div></blockquote></div><br></div>
<br>_______________________________________________<br>
Noisebridge-discuss mailing list<br>
<a href="mailto:Noisebridge-discuss@lists.noisebridge.net">Noisebridge-discuss@lists.noisebridge.net</a><br>
<a href="https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss" target="_blank">https://www.noisebridge.net/mailman/listinfo/noisebridge-discuss</a><br>
<br></blockquote></div><br>