Subscribe to
Posts
Comments
NSLog(); Header Image

dottie

Posted September 14th, 2007 @ 08:36pm by Erik J. Barzeski

I wonder how long it will be until someone's iPhone is hacked and their personal data stolen, say, at a Starbucks or something, because the user didn't change the root password but did install something like SSH.

If you've installed Installer.app and SSH, do yourself a favor: type passwd into an SSH session on your iPhone and change your root password.

4 Comments »

4 Responses to "dottie"

  1. | Reply durr
    Posted 15 Sep 2007 at 1:14am #

    Does the root account activated on the iPhone (it is not with Mac OS X client) ?

  2. | Reply Matt Sayler
    Posted 15 Sep 2007 at 8:21am #

    Or someone releases a rogue application ...

  3. | Reply Erik J. Barzeski
    Posted 15 Sep 2007 at 9:30am #

    [quote comment="43325"]Does the root account activated on the iPhone (it is not with Mac OS X client) ?[/quote]

    The root account, I believe, is the only account on the iPhone. As soon as someone installs an application (FTP, SSH) which allows access it is vulnerable.

  4. | Reply H
    Posted 17 Sep 2007 at 9:41am #

    Isn't there a "mobile" account as well - I thought I remembered reading that somewhere.


Comments RSS

Leave a Reply


Warning: Undefined variable $user_ID in /var/www/vhosts/nslog.com/httpsdocs/wp-content/themes/nslog/comments.php on line 96

Please abide by the comment policy. Valid HTML includes: <blockquote><p>, <em>, <strong>, <ul>, <ol>, and <a href>. Please use the "Quote Me" functionality to quote comments.