What is Reddit's opinion of PwnageTool?

From 3.5 billion Reddit comments

This sounds like something that's laughably easy to work around. There's probably already a fix in Cydia; if not, I bet there will be by week's end.

edit: Apparently, the executable returns "42" upon successful execution. I guess Apple thinks that jailbreaking is The Answer to the Ultimate Question of Life, the Universe, and Everything.

edit to the edit: It turns out that iBooks tries several "decoy" binaries, some of which fail to execute(meaning it passes the condition, so iBooks will run as expected) on a phone JBed with PwngageTool. Greenpois0n is a bit more liberal in the code it allows to run, so the binaries execute "properly"(bad) 100% of the time. Comex has already managed to come up with a fix, which has already been incorporated into PwnageTool. A Cydia package that fixes it without requiring a restore should follow soon.

What if you try using the newest version of redsn0w, 0.9.15b3? You can get it from the iPhone Dev Team's official blog - scroll to the end of this blog post.

Go here & download the 6.0 firmware for your device (save to your desktop). Go here & download redsn0w. Run redsn0w & select extras. Click select ISPW & select the 6.0 ISPW that you just saved to your desktop. Click the back button & now select the jailbreak button. Plug in your iPod and turn it off. Click through the next buttons & follow the instructions. Let the jailbreak do its thing. When it is done go back and "just boot tethered". After the reboot open Cydia & let it do its thing. It will usually close itself once. Open Cydia again & wait for it to completely refresh. You usually get a popup asking you to "upgrade essential". Select "complete upgrade" then install. Restart button. Open Cydia & search for p0sixspwn. Install this package. Restart or reboot or whatever it asks. All done. Open Cydia & install whatever you like.

Edit: if you're not sure if you have an over the air update go ahead & restore it with iTunes on your computer.

It should be possible if you've saved shsh blobs for both iOS4 and iOS5. Otherwise, no. See more here.

http://blog.iphone-dev.org/post/31869383801/blob-o-riffic

That's how it goes when you buy Apple devices.

Up until about a year ago that was possible, yes.

But then Apple put a fix through that appears to haven't been cracked yet for iPhone 4+.

It is highly likely that with availability of unlocked phones (remember there were almost none, only in a few countries?) most hackers stopped being interested in pursuing unlock and concentrated on other things.

An authoritative source for this is: http://blog.iphone-dev.org/

The Dev Team Blog also has a post about the status of the iPad 3 jailbreak: "As always, keep in mind this is very preliminary progress, and it's impossible to predict how or when these things turn out. The only thing you need to remember is the golden rule: Don't update your new iPad3 past whatever iOS it comes shipped with."

(Moderator note: I removed a few other submissions about this news, sorry everyone! They had titles that omitted the important detail that this is a very preliminary jailbreak with no ETA, and they linked to posts with a lot of speculation instead of directly to MuscleNerd's tweet. It's helpful to be precise about this so that readers don't get their hopes up and then get disappointed. This is explained in the sidebar, as usual. Thanks!)

I0n1c hasn't released any type of tool since iOS 4.3.X. The dude's untether survived 3 iOS revisions which is really rare. You are right though, in he is only doing work now to sell, it seems.

As I've said here in a few places, there's no indication that this person is any different from the zillion other fake, scam, and/or wannabe jailbreaking teams, so it's best to avoid giving them undeserved attention and getting your hopes up.

If a person has something legitimate but incomplete that they'd like to offer for free to the public in a completed form, they can talk to the dev teams on IRC and contribute to the existing legitimate but incomplete effort. (There are public examples of dev team members welcoming collaboration from skilled independent people - just recently they were tweeting friendly messages with @mdowd after HITB. And I know @i0n1c isn't everyone's favorite, but he contributed an untether.)

If a person has something else that they want you to believe in, they make grandiose statements and promise specific ETAs.

Since you have an iPhone 4S, you're stuck. See this Dev Team Blog post:

> But once you fall off the 5.x train by restoring to 6.x, you’ll be stuck there until the next jailbreak.

I appreciate your input. But you are wrong.

http://blog.iphone-dev.org/

"The majority of people who use ultrasn0w at iOS5 right now will probably be those with old-bootrom iPhone3GS devices, since they already have an untethered jailbreak via redsn0w. For everyone else, the iOS5 jailbreak is currently tethered and you need to “Just boot” tethered with redsn0w every time your phone reboots. That’s not always easy to do if your phone reboots while away from home!"

I recommend using redsn0w for this jailbreak. It is more stable than greenpois0n in my opinion. The newly update interface is nice, and it is very straight forward, just have your device plugged in and off and be familiar with how to put it into DFU mode (the program provides instructions).

Edit: Grammar

Windows or Mac?

Either way, download "redsn0w" to jailbreak (which installs Cydia), and open Cydia to download "ultrasn0w" (the actual unlock).

Here is a <strong>VERY</strong> comprehensive tutorial on how to do so. Follow it carefully, and you won't have any trouble. Whatever you do, do NOT pay ANYONE to do this for you.

Make sure to visit the developers' website to thank them and/or leave comments. http://blog.iphone-dev.org/

P.S. You're welcome. Please upvote this so people can learn to do this as well...

You can get the latest version of redsn0w from the Dev Team Blog, and I'd follow the sidebar's link on info about iOS 6 jailbreaking. If you're on Windows, don't forget to run redsn0w in administrator mode. It's absolutely crucial.

See this FAQ answer:

> Use redsn0w's "DFU IPSW" feature as explained here. Keep in mind that this isn't a great idea if you're going to use a tethered jailbreak, since every time the device reboots, you'll need to put it into DFU mode in order to boot tethered. In general, it's best to just get your buttons repaired.

iOS 6.0.1 only has a tethered jailbreak for iPod touch 4th generation, so you should wait for an untether or get your button fixed.

I didnt follow a guide, but can try and explain how i did it. (Im currently in work, so this guide may be slightly off, will double check the process later)

1) Go to http://blog.iphone-dev.org/ and download the latest version of redsn0w (redsn0w 0.9.15b2)

2) Download the correct .ipsw file for iOS6 http://www.iclarified.com/entry/index.php?enid=750

3) In redsn0w click extras and then select ipsw and browse to downloaded file

3) Click back and then jailbreak. There is an option to install Cydia with this version of redsn0w although it didnt appear for me the first time

4) This is a tethered jailbreak so once redsn0w completes, click back then extras, then just boot and follow the instructions to boot up

5) If Cydia doesnt appear, try booting tethered again.

Hope this helps, although remember there is no jailbreak for the iphone 4s or 5 at the minute. This is how i went about it on my iphone 4.

You can't restore an iPhone 4S to iOS 5.1.1 anymore. Your options are to leave it on iOS 5.0.1 and use a future version of redsn0w to restore it to iOS 5.0.1, or upgrade it to iOS 6.0.

Nobody knows when a downgrading process or new jailbreak will be released. For news, follow the Dev Team Blog and/or jailbreakers on Twitter, such as MuscleNerd.

Check out the sidebar - yes, you can jailbreak iOS 5.0.1 on an iPhone 3GS, and http://jailbreakqa.com/ios5 will tell you the right tool to use (redsn0w from the iPhone Dev Team).

I am not up to date with the latest (past 24 hours), but from what I have read, the only jailbreak for ios5 is redsn0w beta from the dev team. They have a rather long blog post that talks about it, and I think they mention they mentioned that they are waiting for a full untethered solution (for most phones) before making a new pwnage. Read about it here: http://blog.iphone-dev.org/redsn0w-iOS5

I am thinking of doing it today on my phone, but also make sure you check the compatibility of your tweaks and changes: http://cydiahelp.com/ios-5-compatible-cydia-apps-tweaks-list/

>Q: Are the holes exploited by jbme3.0 closed in iOS5?

>A: The holes still exist in the iOS5 betas, but they’ll almost certainly be fixed by the time iOS5 is public. However because the iPad2 had no public jailbreak yet, it probably wasn’t worth waiting until the fall to use them. If history repeats itself though, there will be more holes and exploits.

http://blog.iphone-dev.org/post/7295551750/jailbreakme-times-3

The current 4.3.2 jailbreak uses RedSnow from the Dev-Team. The only "difficult" part is getting into DFU mode, you have to be ready to hold down the buttons in a certain order. If you mess up it's easy enough to try again, and it's almost impossible to actually damage your phone.

I'd definitely recommend jailbreaking, and check out some of the other "must have jailbreak apps" threads on Reddit.

edit: You also need to locate the .ipsw (firmware software) downloaded by iTunes, or you can download it from this site.

1. A URL is not required

2. Wrong reddit/subreddit

3. Call it a Third Generation iPod Touch please and thank you.

4. Use google, you fucking lazy ass.

5. Go here: http://blog.iphone-dev.org/

6. Die in a fire

Nope. As per iPhone dev team

>Update #2: The notion of a “tethered” jailbreak is pretty new to many people, so here’s a quick rundown on what to expect: > > “Tethered” does not mean you cannot boot at all without PC/Mac assistance. If you have not installed any tweaks that hook into important programs like SpringBoard or CommCenter, your device will actually boot. However, jailbreak programs like Cydia won’t work (and Cydia may still have a white icon). Also, certain built-in apps that had to be moved by Cydia will fail (Safari being the most noticeable example). > If you’ve installed MobileSubstrate tweaks that hook into SpringBoard or other important programs, your boot will actually fail (you’ll get stuck at the Apple logo). You need to use redsn0w to “Just boot tethered right now”.

This is all 100% accurate because...well I had a tethered JB as noted above, and it just doesn't boot.

You don't have to restore to jailbreak your device. You can just jailbreak with redsn0w. Once jailbroken, you can use AppSync Unified from the https://cydia.angelxwind.net/ repo, then install the IPA through something like iFile.

Sure. Here are some (badly worded) step by step instructions:

1. Update it to iOS 6.1.6 through iTunes
2. Download redsn0w from here
3. Download the iOS 6.0 IPSW from here
4. Open redsn0w, click Extras > Select IPSW
5. Choose the IPSW file you just downloaded and press OK
6. Press Back
7. Make sure your phone is plugged in to your computer
8. Hold down the home and sleep button for 10 seconds, make sure the screen is off and doesn't turn on.
9. Let go of the sleep button, but keep holding the home button for about 20 seconds, or until you hear a noise from your computer
10. Click jailbreak and wait.
11. When it's done, close redsn0w
12. Repeat steps 4-9
13. Click Extras > Just Boot, then wait
14. Once your device is booted up, open Cydia and allow it to refresh sources
15. Search Cydia for "p0sixspwn"
16. Install that, and you're done.

Nope. There's no jailbreak for iPhone 4S on iOS 5.1 (as explained by this instructions page linked from the sidebar), and SHSH blobs don't work like that. You just have to wait for another jailbreak for the iPhone 4S; you can follow the Dev Team Blog for news.

You can jailbreak it tethered right now if you want to, using redsn0w. It's just slightly inconvenient to have a tethered jailbreak.

But yeah, you can also wait for an untethered jailbreak for iOS 5.1 and then use whatever tool is announced that can do it (probably redsn0w). There is no ETA; keep an eye on the Dev Team Blog for news, or just check in with the subreddit (and the subreddit sidebar) occasionally.

An untethered jailbreak has not been released for iOS 5.1, for updates, follow this blog, there will be an announcement when an untethered jailbreak is available. Thank you.

http://blog.iphone-dev.org/

The place to get official and free jailbreak tools is here: http://blog.iphone-dev.org/

Tethering is specifically forbidden by your softbank contract. Until now softbank hasn't really enforced this but that doesn't mean they won't in the future. I wouldn't go too overboard with downloads, just to be safe. Softbank's network is so frustratingly slow that you probably won't want to tether too much anyway...

Edit: If you want to read more about Softbank, smartphones, and general Japan carrier issues I suggest this blog.

You might want to check out the whited00r firmware

It's a jailbroken firmware you can download and put on the phone - although be mindful that this requires a full restore.

It's basically a version of iOS stripped of a bunch of things that slow down your phone, or things that are unhelpful. (Like removing all FaceTime support from the OS. Who needs that on a 3G?)

They claim it improves speed and battery life. I don't know how true this is, but I do know that I'm running iOS4 on an iPod Touch 1st Gen. And it's not unusable.

You could also give thought to restoring to a stock iOS version, jailbreaking it (with something like redsn0w, and try removing launch daemons. This is a very at-your-own-risk prospect though. (Although the worst you'll do is make your phone need a restore.)

There are some battery tweaks available in Cydia. Not a lot though. Things like Auto3G, which automatically disables the 3G radio when the phone is in standby, and re-enables it when the phone's screen is turned on. I've never noticed a whole lot of difference, although YMMV.

Shoot me a PM or reply to me here if you need a hand working any of this out. I'll always reply, although it might take me a while.

Jailbreak and unlock

Plans

SIM card

The iPhone 4 does not have a 4G radio, so it will not work.

Because of the Baseband.

You can install iOS 4.1, but you end up with the 6.1.6 baseband. The phone should work fine with that, but iTunes will kinda freak out if the restore process doesn't go 100%.

You need something like redsn0w to kick the device out of recovery after installation of iOS 4.1. I think that is how I got the 4.1 install to finish. I haven't done it in a while.

You don't have to jailbreak, it can be a stock 4.1 install. But you still need the tool.

http://blog.iphone-dev.org/

If remember well, you could do a completely and real restore on your device without updgrading on that specific iOS version using redsn0w as long as you have the correct blobs saved (see more here).

Correct. 4.1 couldn't be jailbroken unless you wanted tether until GeoHot literally popped out of fucking nowhere and released limera1n causing a huge shitstorm because everyone thought he'd left the scene. Then greenpois0n came out and no one gave a crap about limera1n anymore. He should come back in like iOS 11 and just blow everyone's mind.

http://blog.iphone-dev.org/post/1280823486/limera1n-surprise

https://theiphonewiki.com/wiki/Limera1n_Exploit

Oh god I just started reading about those dreaded basebands okay I'm done for now.

You actually can, if your iPad 2 meets a few requirements, using redsn0w. As long as you have all of the required SHSH blobs. From http://blog.iphone-dev.org

1. iPad2 owners (all three models) with saved 4.x blobs can use those instead, even from 6.x

if you have both 4.x and 5.x iPad2 blobs, you can always get to 5.x via the 4.x blobs, even if you’re currently on 6.x you cannot get to 5.x from 6.x without the 4.x blobs (but you may still qualify for the iOS5-to-iOS5 restore described above) if somehow you have 4.x blobs but no 5.x blobs, you can still go down to 4.x from 6.x this only applies to iPad2 owners (they’re the only A5+ devices that ever had a public 4.x FW) redsn0w still supports (but doesn’t require) jailbreaking A5+ devices at 5.0.1 and 5.1.1. Just head back to the first page after re-restoring to 5.x. It’s always much faster to jailbreak those FW versions with a freshly-restored device, before letting iTunes restore from a saved userland backup.

Do you have blobs saved for iOS 4? If so, you should be able to go back to iOS 5. In terms of going back to iOS 6, I'm not sure.

Go here & download the 6.0 firmware for your device (save to your desktop). Go here & download redsn0w. Run redsn0w & select extras. Click select ISPW & select the 6.0 ISPW that you just saved to your desktop. Click the back button & now select the jailbreak button. Plug in your iPod and turn it off. Click through the next buttons & follow the instructions. Let the jailbreak do its thing. When it is done go back and "just boot tethered". After the reboot open Cydia & let it do its thing. It will usually close itself once. Open Cydia again & wait for it to completely refresh. You usually get a popup asking you to "upgrade essential". Select "complete upgrade" then install. Restart button. Open Cydia & search for p0sixspwn. Install this package. Restart or reboot or whatever it asks. All done. Open Cydia & install whatever you like. I just jailbroke my nephews iPod touch 4th gen a couple Of days ago so it's all fresh in my mind. If you have any more questions just ask.

Edit: if you're not sure if you have an over the air update go ahead & restore it with iTunes on your computer.

All the existing jailbreaks for iPad 2, iPad 3rd generation, and iPhone 4S have been "userland" jailbreaks, including JailbreakMe and Absinthe. They include a combination of userland and kernel exploits, since there are no bootrom exploits available for those devices. You can't hacktivate them or preserve basebands, but they're still fully jailbreakable.

The real issue here is that the DreamJB person appears to not know what he/she is talking about, since one userland exploit (as its FAQ states) won't get you very far. You need a combination of several userland and kernel exploits - see @planetbeing's recent tweets.

As I've said here in a couple places, there's no indication that this person is any different from the zillion other fake, scam, and/or wannabe jailbreaking teams, so it's best to avoid giving them undeserved attention and getting your hopes up. If a person has something legitimate but incomplete that they'd like to offer for free to the public in a completed form, they can talk to the dev teams on IRC and contribute to the existing legitimate but incomplete effort. (There are public examples of dev team members welcoming collaboration from skilled independent people - just recently they were tweeting friendly messages with @mdowd after HITB. And I know @i0n1c has few fans, but he contributed an untether.) If a person has something else they want you to believe in, they make grandiose statements and promise specific ETAs.

from the dev-team blog:

• if you have both 4.x and 5.x iPad2 blobs, you can always get to 5.x via the 4.x blobs, even if you’re currently on 6.x

• you cannot get to 5.x from 6.x without the 4.x blobs (but you may still qualify for the iOS5-to-iOS5 restore described above)

Source: http://blog.iphone-dev.org/tagged/redsn0w

So no, you are out of luck :-(

The old redsn0w beta was intended for developers only, but the latest release of redsn0w doesn't have any developer-specific indications according to the Dev Team blog post for it. We don't know if we'll ever get an untethered jailbreak for iOS 6.0, so the tethered jailbreak is available for people who don't mind it. There's just a fairly small number of people on tethered 6.0 since it's limited to three devices (and a lot of people aren't willing to use tethered jailbreaks), so a lot of developers don't seem to be rushing to make their products compatible.

I imagine that Springtomize is an especially complicated product to update because it has dozens of different little features. The author said at the beginning of October that he's working on it - see this tweet and this one.

nope... u done fucked up. sorry..

source: http://blog.iphone-dev.org/

iPad3, i4S (and iPad2 owners who don’t satisfy #2) will always be able to RE-restore the current 5.x OS that’s already on their device. So if you’re at 5.1.1 when the window closes (and you’ve saved your blobs), you’ll always be able to RE-restore to 5.1.1 again. This makes the 5.1.1 jailbreak a lot less fragile — you don’t have to worry about messing up your install with funky extensions or getting into a boot loop, because you can always RE-restore from 5.1.1 to 5.1.1 again (or from 5.0.1 to 5.0.1 again, etc). But once you fall off the 5.x train by restoring to 6.x, you’ll be stuck there until the next jailbreak.

Unfortunately this will just give you an iTunes error - Apple is no longer signing iOS 5.1.1 for iPad 3rd generation, so you can't restore to it without SHSH blobs. See the Dev Team Blog for more details:

> redsn0w now lets you restore an A5+ device from any iOS5 to any other iOS5 as long as you have correct 5.x blobs for the starting (current) and ending points of the restore

And see the sidebar's guides to [SHSH blobs(http://www.jailbreakqa.com/faq#32763) and downgrading/upgrading using SHSH blobs for explanation.

> Download iOS 5.1.1 [1] from here. Hold shift when clicking restore button and navigate to downloaded file. That should do it.

NO! Don't do this!

Apple stopped signing 5.1.1 when iOS 6 was released. If you do this, you will get an error message towards the end of the install and you WILL HAVE TO UPGRADE TO iOS 6 to make your device function again!

Wait for the next release of redsn0w. It will have a re-restore to 5.1.1 option, but until then you can't do it.

You are wrong though.

See the iPhone Dev-Team for the real news.

blob-o-riffic

From the posting:

>iPad3, i4S (and iPad2 owners who don’t satisfy #2) will always be able to RE-restore the current 5.x OS that’s already on their device. So if you’re at 5.1.1 when the window closes (and you’ve saved your blobs), you’ll always be able to RE-restore to 5.1.1 again. This makes the 5.1.1 jailbreak a lot less fragile — you don’t have to worry about messing up your install with funky extensions or getting into a boot loop, because you can always RE-restore from 5.1.1 to 5.1.1 again (or from 5.0.1 to 5.0.1 again, etc). But once you fall off the 5.x train by restoring to 6.x, you’ll be stuck there until the next jailbreak.

So going from 6.x to 5.1.1 will NOT be possible.

Call Orange and see if they will unlock it or you can upgrade to the ipad baseband then downgrade to 5.13.04(to get gps back) and unlock using ultrasn0w. Here is the dev team on how to downgrade. JUST REMEMBER > If you have an iPhone3GS and if digits 3-5 of its Serial Number are 134 or later (xx134…), then you should NOT try to install the 06.15 baseband on your 3GS!!

You should be able to "hacktivate" it just by running redsn0w on it. If you still want to restore it to a different iOS version, see this guide to fixing restore errors.

This is the sidebar link you want: instructions for jailbreaking iOS 5.0.1 and 5.1 (including current jailbreak status). As it explains, there is a tethered jailbreak available for iOS 5.1 on iPhone 4 using the latest version of redsn0w.

Well, the only jailbreak i could find for iOS 5.0.0 is a tethered one you can download through: http://blog.iphone-dev.org/redsn0w-iOS5 .

But if you update to 5.1 there is also a tethered jailbreak for this version in: http://blog.iphone-dev.org/post/18906290309/march-mayhem .

Hope I helped!

You have to use a jailbreaking tool that is explicitly compatible with your type of device and its version of iOS. You can check the jailbreaking tools guide linked in the sidebar, but here's a shortcut: just use the latest version of redsn0w.

First check to make sure it's an iPhone 4S. :p Then try using a different USB port or computer.

You can also try using the command-line version of Absinthe, linked at the bottom of this post, and see if it gives any interesting error messages or anything. Here's a random internet tutorial for using it.

A tethered jailbreak isn't that big a deal on an iPad, especially if you usually have your computer nearby; you rarely need to reboot, mostly just while installing things from Cydia.

Also yeah, you'll need to update to the official iOS 5 and then jailbreak it (with redsn0w).

Download Redsn0w or Pwnagetool right from the official iPhone Dev team website:

http://blog.iphone-dev.org/post/5239805497/tic-tac-toe

Read the jailbreak FAQ:

http://jailbreakqa.com/questions/32462/frequently-asked-questions

greenpois0n only works for version 4.2.1, which turns out to be very different from version 4.2.10. Confusing, I know. Blame Apple for that version numbering scheme.

Instead, you want to be using the very latest version of redsn0w, available here: http://blog.iphone-dev.org/redsn0w-iOS5 - and running redsn0w will ask you for a copy of the IPSW (firmware file) for your version, which you can snag from http://theiphonewiki.com/wiki/index.php?title=Firmware

4.2.8 is the Verizon/CDMA equivalent to 4.3.3 on AT&T/GSM phones.

The Dev Team blog post lists all the versions jailbreakable by JailbreakMe: http://blog.iphone-dev.org/post/7295551750/jailbreakme-times-3

Looks like you are out of luck, 4.3.3 is the only supported version right now... http://blog.iphone-dev.org/post/7295551750/jailbreakme-times-3

Recommend perusing here: http://www.reddit.com/r/jailbreak

The Dev-Team blog post claims the exploit was unpatched in iOS5. I don't follow the cat and mouse game as much as I used to though, so perhaps I've missed a tweet or comment from somebody contrary to this.

Did you even bother to read the article that you linked?

The iPad 2 jailbreak is still in development, and was recently stated that it would be released here soon. It is still however, still being developed.

When it's released, you will know by checking here: http://blog.iphone-dev.org/

What I did with redsn0w was super simple, just downloaded the 5.1.1, clicked restore in reds0w, waited 5-10 min and I got a completley normal iOS 5 that I jailbroke right afterwards.

Here's from the redsn0w change log- directly restore pre-A5 devices to earlier firmware — no more complicated 15-step how-to’s with stitching, iTunes errors, and “hosts file” concerns fetch new signed blobs for any IPSW (present or future — no redsn0w update required) using Extras->SHSH Blobs->New http://blog.iphone-dev.org/

You must have all of the required SHSH blobs. If you do not have them, there is no scenario in which a downgrade would succeed for iPad 2. You must have iOS 4.x blobs to accomplish this.

http://blog.iphone-dev.org

Good luck, and have a nice day! :)

3GS refurbs will have a new display assembly, and probably a new battery. All other components (metallic bezel, back, buttons, logic board, etc) will be used.

I would not try a software unlock on 2011+ 3GS models, as the baseband changed enough that downgrades are not possible (and will brick if attempted - the real brick, where it cannot be used). You can find more info here: http://blog.iphone-dev.org/post/25350690843/0615-fun

Chronic Unlocks charges $80 for Telus unlocks. I'm going to assume the phone is not worth that.

What blobs do you have? You can still get to 5.x at least provided you have 4.x and 5.x blobs with redsn0w, per this:

>iPad2 owners (all three models) with saved 4.x blobs can use those instead, even from 6.x

>if you have both 4.x and 5.x iPad2 blobs, you can always get to 5.x via the 4.x blobs, even if you’re currently on 6.x

>you cannot get to 5.x from 6.x without the 4.x blobs (but you may still qualify for the iOS5-to-iOS5 restore described above)

>if somehow you have 4.x blobs but no 5.x blobs, you can still go down to 4.x from 6.x this only applies to iPad2 owners (they’re the only A5+ devices that ever had a public 4.x FW)

Short answer? You have to downgrade to 4.x from iOS6 and then upgrade to 5.x for it to work.

Long answer? I hope this is close to the right reasoning, please enlighten me if it's not technically correct (the best kind of correct).

Apple changed their restore process with iOS5, mainly because of the addition to incremental on-device delta updates. For iOS<5, SHSH blobs are the device specific checks used to make sure you can restore to that firmware. As of iOS5, Apple also uses the APTicket which is created at the time of restore specific to that device and that restore session.

Now, the way I understand it is: You can downgrade from iOS6 to iOS4 because iOS4 restores only check your SHSH blobs. You can then restore to iOS5 with saved blobs and APTickets due to a loophole in the iOS5 restore process (which also allows you to restore iOS5->iOS5). However, iOS6->iOS5 would require a new, specific APTicket (which you can't get, since Apple isn't sending them out for old versions of iOS).

Asking about the "best jailbreak OS" doesn't quite make sense, so I'll guess that you're asking about the best jailbreaking tool to use. Any recent version of redsn0w should work fine - you can get it here, and it's pretty straightforward to use. Just open it (run it as administrator if you're using Windows) and click "Jailbreak".

See the sidebar's guide to SHSH blobs - it explains why iTunes won't allow you to restore to iOS 5.1.1:

> What do the words "SHSH blobs" mean? SHSH blobs are digital signature files unique to your device.

> Why are SHSH blobs important? Apple only allows you to restore to the iOS versions (firmwares) they "sign" (by providing SHSH blobs), in order to prevent you from restoring to earlier versions that may be easier to jailbreak. Apple's "signing" of each iOS version only lasts for a limited time, usually just for as long as that iOS version is the latest version available. Once Apple stops signing the SHSH for an iOS version, there is no way to restore that version again, unless you have SHSH blobs saved for that version. (If your device is currently on a version that Apple is no longer signing, restoring with iTunes will upgrade your device to the latest signed version.)

If you're willing to use a tethered jailbreak, you can jailbreak it on 5.1, or upgrade it to 6.0 and jailbreak it. Just use the latest version of redsn0w.

Have you tried plugging your phone into your computer and deleting the app from iTunes?

Are you sure a re-restore won't work? If you have SHSH blobs saved for 5.1.1, you can try it. It won't work if your phone was updated at the factory to 5.1.1 via OTA, but it should be OK to give it a shot according to the Dev Team:

> redsn0w detects an OTA/normal-restore APticket mismatch very early, so if you don’t know your status there should be no harm in trying. Any device in recovery mode after such a mismatch can boot normally again just by going back to “Even More” screen from the “Restore” screen (or use “Recovery Fix” if you quit redsn0w before doing that).

It'd be ideal to get an iPhone 4S on 5.1.1 with 5.1.1 SHSH blobs saved on Cydia's servers, or on 5.0.1 with 5.0.1 blobs saved on Cydia's servers, so that you can restore it to 5.x if you need to. You might have to look for already-jailbroken ones only, since the average person probably has no idea what SHSH blobs are.

If being able to restore is important to you, you also need to make sure that the iPhone 4S was updated to its current version of 5.x with iTunes instead of OTA - see the Dev Team Blog for details.

Make sure you're using the latest version of redsn0w (redsn0w 0.9.15b2).

But before you bother with that, have you tried asking your roommate to call AT&T and get the phone officially unlocked by them? It's probably out of contract and eligible for a free unlock.

If that isn't possible, you might also consider purchasing an IMEI unlock instead, which works just like an official unlock. You can get them via eBay for $10ish, and they're more convenient than an ultrasn0w unlock.

Which version of redsn0w did you use? The old developer beta (0.9.13dev4) installs OpenSSH but not Cydia, and the new general-use version (0.9.15b2) installs Cydia but not OpenSSH. It's best to use the new version.

There isn't an untethered jailbreak. An updated tethered jailbreak was just released yesterday though.

If the phone is physically broken, there wouldn't be any way of knowing that your device was jailbroken. If there's a software issue, Apple most likely won't fix it if your device is jailbroken. However, if you restore it to factory settings, there won't be any traces of a jailbreak on your device.

That version of redsn0w can't re-restore anything on iPhone 4S. You have to wait for a new version of redsn0w to be released, as described in this Dev Team blog post.

This is completely wrong. A bootrom exploit is still a software exploit, it's just one that cannot be patched remotely or through a firmware update. That is why it is so prized.

A bootrom exploit can be Tethered or untethered. Nothing that jailbreaks a phone currently uses a "hardware" exploit as that would mean you'd have to actually manipulate the hardware (not the software contained on it). The advantage is that if you find one of these kinds of exploits, it's permanent.

So to recap...

• Bootrom exploits can be untethered or tethered. These cannot be patched because the bootrom is never remotely updated by Apple, it is static.

• A Userland exploit is one that takes place after the phone boots & that exploit can be used to grant root access or "jailbreak." It too can also be tethered or untethered. These are patched with a firmware update.

• Lastly, Musclenerd is working on an updated redsn0w that will have the untethered jailbreak for iOS 6 on old bootrom 3GS iPhones. It's on the Dev Team's website.

Apple has already closed the SHSH signing windows for all iOS 5 firmwares. You may be able to upgrade in the future if the device is/was jailbroken, but for now you're stuck on either the firmware the device is currently on or iOS 6.

Also note that you can get a full screen web clip linking to the Google Maps mobile site (with the old icon too!) - see <https://twitter.com/CaseyTal/status/252269535627988992>.

A tethered jailbreak for limera1n-jailbreakable devices (iPhone 4, iPhone 3GS, iPod touch 4th generation) should be released shortly, as the Dev Team said recently:

> A4 devices and 3GS will always be downgradable (and jailbreakable) with saved blobs due to limera1n. The tethered iOS6 jailbreak for those devices (and untethered for old-bootrom 3GS) will be out when Cydia and other important pieces are all working properly.

Here's an old post by planetbeing about how it's impossible to predict when new jailbreaks will be released.

That won't work, unfortunately. SHSH blobs can't be used to upgrade or downgrade between versions of iOS 5 on iPhone 4S - see this Dev Team Blog post.

You do have to deactivate & reactivate the phone to get an IMEI-based unlock to kick in, which is why Apple recommends a restore.

On an iPhone 4, you can use redsn0w's deactivate feature or SAM's deactivate feature, but I don't think those methods work for iPhone 4S.

And unfortunately SHSH blobs don't work to downgrade an iPhone 4S from iOS 6 to iOS 5.

OP: so, I believe you're sort of stuck. There are no jailbreaks for iPhone 4S on iOS 6, and it's unlikely that one will happen soon. A workaround though would be to get a Gevey SIM for the iPhone 4S to unofficially unlock it - it'd require spending a bit more money, and Gevey SIMs are awkward, but this would let your sister use the phone on iOS 5.1.1 until she's ready to give up the jailbreak and update to iOS 6.

Yes, it means if you reboot the device, you need to boot it using the "boot tethered" option in Redsn0w. There's no telling, but I used a tethered jailbreak for quite a while when I had an iPhone 4 and I never needed to reboot it, I just sometimes had Cydia crashes and would have to reboot but if you seriously need your Jailbreak then that's the only option. I don't even jailbreak anymore.

Here's the info you might want to read. http://blog.iphone-dev.org/redsn0w-iOS6

if it's a smartphone (android, iphone, ...) you can usually do it yourself. check out http://blog.iphone-dev.org/ for iphones and http://ready2root.com/ for android. if it's not a Smartphone you might have luck googleing the brand along with "unlock code". Other than that have you tried just walking into the rogers or bell/telus store downtown and straight up asking?

You'd have to use greenpois0n RC6.1, which is no longer listed on the greenpois0n.com site. But you can use redsn0w instead: http://blog.iphone-dev.org/tagged/redsn0w - or sn0wbreeze (if you use Windows): http://ih8sn0w.com/

Both jailbreak teams (Chronic-Dev and iPhone Dev) work together so there will be a tool for both. If I remember correctly on their last release they simultaneously released tools for both operating systems. redsn0w 0.9.11b4(tethered 5.1.1) is out and supported by both so I imagine they'll just update the tools with the untether files when the times comes.

You can reinstall 5.0.1 on A5 devices now. The new version of redsn0w supports restoring a fresh copy of 5.0.1. The only caveat is that it will update your baseband to 5.1.1's. This method also requires you to have the SHSH either stored locally or on saruiks servers.

http://blog.iphone-dev.org/post/22834622159/5x-redux

Do some googling before you post.

There are no ETAs for new jailbreaks. Just watch this subreddit, the Dev Team Blog, or @pod2g for news.

After looking around I believe I was correct, to some degree. It seems that if you download redsn0w it will allow you to do a tethered jailbreak of 5.0. From there you could easily download the untether from cydia, which I believe was made by geohot. I can't remember the package name at the moment.

I can't remember if redsn0w will pull the appropriate ipsw for you. If it does it should be as easy as plugging in your phone and following directions. If not, pm me and I'll be glad to walk you through it.

Are you using the latest version of redsn0w? It should "hacktivate" the phone so that you can use it. Try these redsn0w tips too to make sure redsn0w is working.

>Will there be any proof that you jailbroke it if you restore?

No, it's impossible to prove.

>Also my baseband 3.0.0.3 is not listed in the jailbreak site..what do I do?

If you're referring to baseband as in ultrasn0w (use a different carrier etc) I can't help you. If you just want to jailbreak, redsn0w 0.9.10b3 works for for iOS 5.0.1 on iPhone3GS, iPhone4, iPhone4-CDMA, iPad1, iPod touch 3G, iPod touch 4G. errrr just read the post here

Since you have the iPad baseband, you always have to use custom firmware (which you can make using Snowbreeze on Windows or redsn0w on Mac) to upgrade. And then upgrading to 5.0 there are special instructions: http://blog.iphone-dev.org/post/11430068008/pre-qualifier

But you're stuck for now, since you can only upgrade to 5.0.1 right now, and ultrasn0w is compatible with 5.0 but not 5.0.1. You have to wait for the Dev Team to update it.

I guess you could try jailbreaking it with redsn0w (http://blog.iphone-dev.org/redsn0w-iOS5), which will try hacktivating it, and using a Gevey SIM so that you can use the carrier of your choice. To preserve your options, avoid updating it to iOS 5.

The 3G supports up to firmware 4.2.1. The 4.0 baseband is unlockable (5.13.04). I would stock restore to 4.0, then use pwnagetool/redsn0w to make a 4.2.1 IPSW (firmware file) without the baseband update, resulting on your being on ios 4.2.1 with baseband 5.13.04. Then unlock with the latest ultrasn0w. You can get the stock IPSWs here.

Don't make the mistake of doing the 6.15.00 ipad baseband flash. It will kill your GPS.

Although you can downgrade firmwares, baseband (the thing that is carrier locked) is a one way update. You cannot come back to an unlockable state if you screw up. So make sure you take the time to do it right, and do not update past 4.0.0 stock.

http://blog.iphone-dev.org/post/901809518/grow-grow-ultrasn0w

http://en.wikipedia.org/wiki/IOS_version_history#iOS.C2.A04.x:_Fourth_major_OS_release

Are you using the latest version of redsn0w from that link? Does it give you an error message of any kind?

You can also try using the older version of redsn0w available here: http://blog.iphone-dev.org/post/5239805497/tic-tac-toe

You'll need to install the iPad baseband - check out http://iclarified.com/unlock for some guides, and see http://blog.iphone-dev.org/post/11430068008/pre-qualifier for info about unlocking and iOS 5.

If you just want to jailbreak, use redsn0w: http://blog.iphone-dev.org/redsn0w-iOS5 - it's easy. Just note that if you're on iOS version 4.3.4, 4.3.5, or 5.0, it's a tethered jailbreak. Being concerned about basebands is only important if you need to unlock to use a different carrier.

So, this is what you need to do to update to 4.3.3 and jailbreak in slightly more detail:

Get TinyUmbrella and run it. Plug in your phone and it should detect it. Select it from the list on the left hand side, and click "Save SHSH" on the top right. It'll connect and check for all the SHSHs it can get access to (either saved on Cydia or currently being signed by Apple) and eventually it'll give you a list in the "General" tab of available SHSHs.

Those are the versions of iOS you can use.

Grab the relevant firmware for your device from this website.

Go back to TinyUmbrella, and there's a button on the top right, "Start TSS Server". Do that, and while the TSS server is running it'll intercept the signing request from iTunes and give the right signature.

Open up iTunes, shift-click the "update" button for your phone and it'll ask you for an IPSW. Point it to the IPSW you downloaded and it'll install that firmware version. It shouldn't mess with your non-jailbreak apps and settings, but it will most definitely clear your Cydia apps and settings whatnot. (Disclaimer: It might actually lose some of your things. Back up before you do anything and don't hold me responsible if it ruins things.)

Stop the TSS server after you've updated your iPhone.

Once you've done all of that, download redsn0w, and run it. It's pretty straightforward and much the same as greenpoison.

So, that's what you've got to do. That being said...

I would recommend you don't bother.

Just wait for iOS5. It's simpler, it's easier, you don't have to mess as much with SHSHs and whatnot. It's just too much of a hassle otherwise, but if you want to do it, there's how to.

Pretty sure jailbreakme.com doesn't support iPhone 3G. redsn0w would be my recommended route for you. Its very straight forward, just know how to put your iPhone into DFU mode.

You want to use redsn0w to perform a jailbreak on 4.2.1. You'll also need the relevant firmware IPSW from here by clicking the dropdown under iPhone/iPod Touch/iPad and selecting the 4.2.1 IPSW for your device.

Run redsn0w, follow the onscreen instructions. Voila.

If you update, you'll lose the jailbreak. If you restore, you'll lose the jailbreak. Keep that in mind.

IF you happen to get upgraded to 4.3.5, you can still jailbreak, using a beta jailbreak tool. That's on your head, though.

For future reference: jailbrea.kr

Oh, and: SHSHs will shortly be obsolete, but you do NOT have to be jailbroken to save them, you just need to run TinyUmbrella. Just an FYI.

For jailbreaking 4.3.5, are you using the very latest version of redsn0w beta from http://blog.iphone-dev.org/redsn0w-iOS5 ?

If downgrading to 4.1 isn't working, it sounds like your hosts file might be messed up -- make sure it's clear of any gs.apple.com lines.

And each time, did you start the restore from DFU mode? You can also try making a custom firmware using PwnageTool and using that to restore instead of a standard firmware.

A new phone might come with 4.2.10, or it might come with something earlier. It just depends on whether you get lucky.

(But the 4.2.10 tethered jailbreak is now working fine as of the latest redsn0w update here.)

Do you mean iOS 4.2.1? On iPod touch 3g, JailbreakMe only supports 4.3, 4.3.2, and 4.3.3 - see http://blog.iphone-dev.org/post/7295551750/jailbreakme-times-3 for details. I don't imagine that JailbreakMe is going to be updated soon.

But you can still use greenpois0n to jailbreak it: http://greenpois0n.com/

Maybe.

Did you buy an unlocked phone recently from an Apple store? I think they started selling unlocked iPhones in the US a month or so ago. If not then you have a locked phone. (If you did this you would have paid full price up front for the phone with no contract required from AT&T.)

If your phone is locked you can go the jailbreak+software unlock routine if your baseband version is low enough. The place to read about that is here. (This seems to be down right now but will come up in a while I guess.) There are also some hardware solutions, the best of which seems to be this one but I have never tried them. Regardless of which way you unlock you can no longer update your iOS the standard way via iTunes as that will also update your baseband and probably disable your unlock.

I'm on my second iPhone now and Apple's total control-freak ways are making me seriously consider an Android handset for my next phone.

The exploit is still there, but it is not a support device.

>Q: Which devices and firmware versions are supported?

>A: In this initial release, the following configurations are supported:

>iPad1: 4.3 through 4.3.3

>iPad2: 4.3.3

>iPhone3GS: 4.3 through 4.3.3

>iPhone4: 4.3 through 4.3.3

>iPhone4-CDMA: 4.2.6 through 4.2.8

>iPod touch 3g: 4.3, 4.3.2, 4.3.3

> iPod touch 4g: 4.3 through 4.3.3

From dev-team blog

Like noncompliantcitizen below correctly says, you cannot unlock 5.16.02. You can flash the BB to 6.15 (ipad baseband) and then unlock that, but that carriers serious repercussions like a probably not working GPS.

http://greenpois0n.com/ <- you want that for 4.2.1. If you decide to upgrade to iOS 4.3.3, you want redsn0w from http://blog.iphone-dev.org/.

If you need a carrier unlock as well, check out http://caniunlock.com/ for the current status.