• On TechRepublic: 10 cool USB flash drive tricks
advertisement
mySimon mySimon mySimon Outdoor Gear mySimon Swimwear mySimon Home and Garden
November 10, 2009 4:37 PM PST

Secure your jailbroken iPhone against worm

by David Martin
  • Font size
  • Print
  • 3 comments
Share

If your iPhone was recently "Rickrolled" by a worm that targets jailbroken iPhones, the following six steps will show you how to change the root password--used to connect to your device via a Unix software secure shell--to protect yourself in the future.

Before starting, you will need to have MobileTerminal installed from the Cydia store. Then:

1. Tap the MobileTerminal icon to open a terminal window.

2. Enter su and press return.

3. Enter the current default root user password alpine and press return.

4. Type passwd and press return.

5. Enter a new password and press return.

6. Enter the new password again and press return.

The root password is now changed, and your jailbroken iPhone or iPod Touch is now a bit more secure than it was before and less vulnerable to the first worm detected that targets the iPhone.

Updated 11/11/09 at 5:27 p.m. PST: One commenter pointed out that the mobile user account, the default user on the iPhone, can access all your data and shares the same default password of alpine. You can change the mobile password by launching MobileTerminal and following steps 4 through 6 above.

Topics:

Guides & How-Tos

Tags:

iPhone,

Apple,

jailbroken,

jailbreak,

root,

password,

change

Share:
Digg
Del.icio.us
Reddit
Recent posts from iPhone Atlas
Dragon for iPhone: Texting without typing
HP PC users experience iPhone sync problems
iPhone apps to help parents keep tabs on kids
'Colossal' collection: 2,222 short stories for iPhone
How to fit a pharmacist in your pocket
AT&T iPhone app collects complaints about poor service
Five iPhone games to get you in the holiday spirit
Play some beats and bring the house down: iPhone apps of the week
Add a Comment (Log in or register) (3 Comments)
  • prev
  • 1
  • next
by DistortedLoop November 10, 2009 8:10 PM PST
It's possible to ssh into an iPhone using the 'mobile' account as well as 'root', so you should change the password for the 'mobile' account as well. Just do steps 4-6 from the prompt before typing su to change to 'root'.
Reply to this comment
by deeviousgenius November 11, 2009 3:56 AM PST
Another great security option is to disable SSH when you ain't using it using SBSettings or Bossprefs. Free and easy to install from Cydia. That way NO ONE can enter until you turn SSH back on.

SSH is really the killer here so only turn it on when you need to use it. Its a simple security precaution. I would still advise changing the password though and DistortedLoop is right in saying you should alter the password of mobile as well... just for extra security...
Reply to this comment
by xqzes_xqzes November 12, 2009 8:15 AM PST
I followed these steps yesterday, and my phone's had no service since. Is there any relation, and if so, how do I fix it? I had full service in my apartment until I did this.
Reply to this comment
(3 Comments)
  • prev
  • 1
  • next

Search iPhone Atlas

advertisement

About iPhone Atlas

iPhone Atlas helps you navigate the ins and outs of Apple iPhone ownership with how-tos, troubleshooting information, news, reviews, and more. Got a tip? Want to contact us? E-mail iphoneatlas@cnet.com.

Add this feed to your online news reader

iPhone Atlas topics

Reviews & advice
Site map
Editorial policies
Meet the editors
How we test
Forums
Internet speed test
Popular topics
Apple iPhone
Apple iPod
Cell phones
Dell
GPS
LCD TV
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
CNET Mobile
Customer Help Center
RSS
CNET Widgets
About CNET
sponsored