Tag Archives: ssh

Figuring out software version of a passcode-disabled iPhone

If you have an iPhone that’s passcode-locked, especially with message that iPhone needs to be connected to iTunes, you may want to try to unlock it by jailbreaking, installing SSH and messing with the filesystem. (tcprelay.py from usbmuxd is very helpful for SSHing if the iPhone doesn’t connect to a known wireless network.) There’s this tutorial on installing SSH on a disabled iPod, which doesn’t use tcprelay.py and is targeted for Windows users, but it should nonetheless give you the starting info.

Before you start you may want to discover which software version is installed on the iPhone.

Current redsn0w, 0.9.11b4, displays the device name, ECID, and software build when you use the “Fetch SHSH” functionality. There’s also “Identify” functionality which should do the same thing, but you won’t be collecting SHSH blob (it’s a good idea if you want to downgrade in the future.) Build name is a string similar to iPhone2,1_5.0.1_9A405 and can be used to obtain the correct .IPSW for your device, enabling you to jailbreak the device and to install contents of “SSH Bundle.tgz”. Most important thing is – fetching SHSH blobs is a non-destructive operation.

You’re welcome.

(All files mentioned are googleable.)

Mount remote GNU/Linux filesystem over SSH wth Dokan

If you are impaired with Windows, and you want something similar to sshfs (that is, mount a remote system as a local drive) look no further:

It’s originally Japanese, and suffers from a bit of Engrish, but it is free and obviously developed by a genius, so it’s all forgiven.
Hiroki Asakawa, thank you!

SSH server owners, beware

In case you haven’t noticed yet, your machine may be under attacks from botnets. Go check your /var/log/auth.log (at least under Debian) and see for yourself. Botnets are attempting to crack your passwords using brute-force.

Recommended strategies:
  • Change port. I’ve picked 2022.
  • Disable password logins. Use only authentication using secure keys. Too much of a hassle for me, especially on a server I share with others, since we’d have to carry our key files around.