Skip to Content

Free TUAW iPhone app -- try it now!
AOL Tech

hacks posts

Filed under: Security, iPhone, Jailbreak/pwnage

Worm rickrolls unsecured jailbroken iPhones via SSH

by Josh Carr (RSS feed) on Nov 7th, 2009

For the last few days, some jailbroken iPhone users have found their home screen background a little different than they remembered. A hacker, going by the name "ikee," created a worm that changes the home screen background on jailbroken iPhones whose owners failed to change the default password after installing SSH. Simply jailbreaking your iPhone will not make you vulnerable to this sort of hack. The iPhone OS, in general, is also immune to this hack. Still confused? Let's back up a bit.

On jailbroken iPhones, SSH is installable with a package from Cydia that allows you to connect to your phone and make changes to the filesystem. It does this by logging into the root user with the password "alpine." After installing SSH, it is always recommended that you change "alpine" to the password of your choosing. This hack can only affect people who chose not to change that password -- no one else.

This hack originated in Australia, the home country of ikee, and has possibly spread to other iPhones in other countries, but we've been unable to verify that. A gentleman by the name of JD held an interview with the hacker over IRC and posted it to his blog. In ikee's own words, here's how the worm has spread:
...The code itself is set to firstly scan the 3G IP range the phone is on, then Optus/Vodafone/Telstra's IP Ranges (I think the reason Optus got hit so hard is because the other 2 are NAT'd) then a random 20 IP ranges. I'm guessing a few phones hit a range that another vulnerable phone was on.
Basically, once your phone is infected, the worm starts looking for other iPhones on the cellular network that use the root:alpine combination. Once it finds another vulnerable iPhone, it installs itself and begins the process again... and again... and again.

Luckily for the jailbreakers in the audience who may have been affected, there's really no harm done -- at least not with this version of the worm. According to the hacker, this was more of an experiment than anything else. The worm changes your background and then disables inbound SSH, which is a good thing. If SSH was left turned on, a similar worm could follow along but conceivably do much more damage. For instructions on how to delete this worm, read JD's interview with ikee. I would recommend reading the interview just for the information it presents; I found it pretty interesting. If you've got a jailbroken iPhone or iPod touch and you've never changed the default device password, now's the time. Here's how, if you are using terminal:

Type: ssh root@(iPhone IP address)
When prompted for the password type: alpine
Now you're connected the phone...
type: passwd
It should then prompt your for a new password -- type one that you'll remember. There's no easy way to reset it if you forget it.

That's it. Please remember to be responsibly secure with your devices. Hackers like ikee are troublesome, but this could have been much worse. While I don't personally condone his actions, he's prevented a lot of people from being vulnerable to more malicious attacks later down the road.

Thanks, James!

Tags: hacks, iphone, jailbreak, password, vulnerability, worm, Worms

Filed under: Hacks, Odds and ends, TUAW Tips

TUAW Tips: Get a better view with Quick Look

by John Burke (RSS feed) on Oct 2nd, 2009

Quick Look is such an awesome feature of Mac OS X 10.5 and 10.6, making it really fun and easy to view files and folders from anywhere on your Mac. But what happens when you have a folder with multiple items and want to get a better idea of what's inside? Well, you could always just open the folder in Finder, but there's a cool modification you can make to get an even quicker view.


You can get this working on your Mac in a few simple steps:
  1. Quit/Relaunch Finder using the Force Quit menu
  2. Open Terminal
  3. Paste (or type) the following command: defaults write com.apple.Finder QLEnableXRayFolders 1
  4. Relaunch Finder
The contents of the folder will now be shown when you use Quick Look. In true Apple elegance, the files will even fade and cycle through the contents.

[via Mac OS X Hints]

Tags: false, finder, hacks, modifications, quick look, QuickLook, tips, tips and tricks, TipsAndTricks

Filed under: Audio, Tips and tricks, Mac mini, TUAW Tips

Followup: Transmit TV audio through your Mac

by Erica Sadun (RSS feed) on Sep 25th, 2009

After my post earlier this week about transmitting Mac audio, readers contacted me about extending this solution. Although they liked the idea of direct audio while working out on a treadmill or exercise bike, several stated that they also wanted to watch from the sofa once the spouse or the kid go to sleep. The idea was the same: audio transmission to an iPhone or iPod touch. The source was different. They wanted to watch live cable TV or their TiVo. And for the punchline, their media center Mac lacks a tuner. Was there a similar quiet Mac-based solution that would let them transmit the TV audio from these non-Mac sources?

If your Mac has a microphone jack, internal or even through an external USB solution, the answer is yes. You can easily connect your TV audio to your Mac just like you would connect it to a pair of speakers. Run a cable between a spare audio output (modern TVs usually offer more than one, if not, you can use a splitter) to the microphone jack on the Macintosh. On my low-end TV, this means an RCA stereo cable that feeds to a standard stereo minijack plug.

Setting up the Mac host is simple. Instead of feeding audio via Soundflower, as described in the earlier post, choose your microphone audio input in the Skype settings. Start a call to your iPhone or iPod touch, switch the TV source (usually via a "Source" button that picks which signal to watch, such as Composite 1, Component 2, etc.) to your normal cable or TiVo input. Set the external speaker volume to zero. The signal arrives at the Mac microphone independently of those speakers.

You may find that the audio out signal tends to be on the low side. Many TV speakers provide their own amplification. If this is a problem for you, you can hook in an inline amplifier. (I use an old Radio Shack 277-1008C.) Alternatively, you can boost the audio via a third party program like Rogue Amoeba's Audio Hijack Pro.

This solution takes a few more cables, components, and connections than the Mac Audio-to-iPhone through Skype set-up discussed in the earlier post. But if you have the cables on-hand already, it offers an inexpensive solution compared to many other wireless TV headsets on the market right now.

Tags: Amplifiers, Audio, Audio Hijack Pro, AudioHijackPro, Hacks, Rogue Amoeba, RogueAmoeba, Skype, Speakers, Television, TiVo, TV

Filed under: Accessories, Hacks, Mods, iPhone, iPod touch

Build your iPhone a dock from its own box

by Dave Caolo (RSS feed) on Aug 19th, 2009

As the product of frugal New England Yankees, I like items that multi-task. If said item is something that could typically get thrown away, even better. Check out this awesome iPhone 3GS dock made from its retail box.

Since the 3GS does not ship with a dock (bummer), enterprising owner Vince Tang used the included USB cable, the docking "plate," which is that tiny piece of plastic meant to seat the phone correctly, and the sturdy box to create a dock. Specifically, he cut a hole in the box's lid, crammed the plate and cable inside and glued the daylights out of it. We think it looks pretty good (from the top at least).

In fact, if I hadn't sent my old iPhone to NextWorth in my 3GS box, I'd be making one of these right now. Well done, Vince!

Tags: diy, hacks, iphone, iphone 3gs, Iphone3gs, mods

Filed under: Accessories, Hardware, Hacks, How-tos, Terminal Tips

Mac 301: Time Machine backups after your Mac's brain surgery

by Chris Rawson (RSS feed) on Jul 20th, 2009

As I've discovered recently, one of the unfortunate side effects of having the logic board on your computer replaced (aside from the potentially hefty bill involved if your AppleCare has lapsed) is that your Time Machine backups won't play nicely with your Mac after the repair if you're using a Time Capsule.

Replacing the logic board is essentially like getting a whole new Mac; though all the data on the hard drive is identical, the new logic board will have different hardware identifiers (specifically, the MAC address) that will tell your Time Capsule, "This is a new Mac that's never been backed up before. Please treat it as such." The Time Capsule, doing as it's told, will fumble along and create a new Time Machine backup while ignoring the old backups completely.

Your options then are these:

1. Scrap your old Time Machine backups and start fresh. There may be an allure to this, but it's almost certainly unnecessary, and you can lose months of perfectly good backups. Plus, you then have to deal with the incredibly long first Time Machine backup all over again.

2. Hack your Time Machine backup using the following procedure, which will allow you to resume Time Machine backups as though your logic board was never replaced.

Continue readingMac 301: Time Machine backups after your Mac's brain surgery

Tags: applecare, hacks, how to, mac osx hints, MacOsxHints, terminal, time capsule, time machine, TimeMachine

Filed under: Hardware, Software, Hacks, iPhone

iPhone-controlled R2D2

by Dave Caolo (RSS feed) on May 12th, 2009



It's impossible not to love a blog post that begins, "I found a way to remote control my R2D2 with an iPhone."

The video above shows the author, ggpipe, using the iPhone's accelerometer to control R2's dome. Pretty cool. In the future, he plans to use the phone to send text to R2's logic displays. We love it and can't wait to see a fully assembled, iPhone-powered R2D2!

It's great to see people extending the iPhone's capabilities, and homegrown remotes are a cool choice. A couple of weeks ago, we posted a story about a guy who turned his iPhone into an R/C aircraft controller, and last year we saw Delphi's Wireless Vehicle Access software that lets you control many of your car's functions. Keep up the good work, everyone!

[Via Rick Yaeger]

Tags: hacks, iphone, r2d2, remote, star wars, StarWars, wireless

Filed under: Desktops, Hardware, Software, Hacks, Cult of Mac, PowerBook, PowerMac G5, Mods, Leopard

MacMods of the Year for 2008 announced

by Mike Schramm (RSS feed) on Jan 13th, 2009


MacMod.com has announced their honorees for the best mods on Macs that they saw last year, and you can see all of the hacks and mods over at their site right now. Most of the mods are case modifications, like the very slick iPhone custom, and the "Xbox G4," as seen above, which is a Powerbook G4 modded into the case of an Xbox 360 (with working ring of light!).

I find it interesting that despite all of the slick case designs and gadget melds, the winner ends up being a software hack (well, it's actually more than a software hack, but still, you won't find any neon tubing in this mod, just a beige case): Leopard running on a PowerMac 8500. The mod itself ends up being a fine trip over the history of Apple's current software, its past machines, and all of the gooey chips and hardware inside. Very cool. Kudos to all the modders for their work -- we can't wait to see what 2009 brings to the mod community.

Tags: beige-g3, cases, g4, hacks, hardware, leopard, Mod-of-the-year, modding, powerbook, powermac-8500, software, xbox360

Filed under: Analysis / Opinion, Hardware, Hacks, How-tos, Cult of Mac, Mods, MacBook Air

eeeMac creator tells you how to do it yourself

by Mike Schramm (RSS feed) on Jan 7th, 2009


A little while ago, we posted about Gregory Cohen's eeeMac -- he modded an eeePC into an OS X-running ultraportable, including adding a little Apple icon on the back. And now, he's posted how he did it all on a blog, so that if you've got a few Saturday afternoons, an eeePC to destroy, and a big interest in making a really tiny (fake) Mac, you can do it too. And even if you don't want to crack the case and do a little modding, you can still try to just get OS X running on the little machine -- Gregory has done all the hard work for you and boiled everything you need down into a 22mb disk image (you'll also need a retail OS X disc, of course).

Very cool. I'd never have the time or insight to put one of these together, but I can definitely marvel at the achievement.

Tags: disk-image, eeemac, eeepc, gregory-cohen, hacks, mod, os-x, saturday-afternoons, tiny

Filed under: Hacks, Terminal Tips, TUAW Tips

TUAW Tip: Add file extensions to Quick Look

by Brett Terpstra (RSS feed) on Sep 25th, 2008

TUAW reader David wrote us to ask how he could view .erb files (Rails development) in Quick Look. The fact is, there are a lot of plain-text files with extensions that Quick Look doesn't recognize. It's relatively straightforward to tell Quick Look to treat these files like any other text file and preview them as plain text; it does require diving into plist files and possibly breaking an application, so don't dive in unless you're comfortable and fully backed up. Read on for a short tour of Quick Look hacking basics ...

Continue readingTUAW Tip: Add file extensions to Quick Look

Tags: hacks, quick look, QuickLook

Filed under: Terminal Tips

Terminal Tips: Add recent applications as a Stack on Dock

by Cory Bohon (RSS feed) on Sep 16th, 2008


Do you find yourself constantly using the Apple menu to find your recently opened applications? This simple Terminal hack will create a custom Stack on the Dock that will show your recently opened applications. Just open Terminal.app (/Applications/Utilities/) and type in the following command:

defaults write com.apple.dock persistent-others -array-add '{ "tile-data" = { "list-type" = 1; }; "tile-type" = "recents-tile"; }'

Once you type in the command, you will need to restart the Dock by typing "killall Dock" and pressing enter. If you decide you don't want the newly created Stack, just drag it off the Dock like any other Stack.


Want more tips and tricks like this? Visit TUAW's Mac 101 and Terminal Tips sections.

Tags: command, Dock, hacks, Mac, recent items, RecentItems, Stacks, Terminal, tips

Filed under: Terminal Tips

Terminal Tips: Disable iTunes 8 store arrows

by Cory Bohon (RSS feed) on Sep 10th, 2008

Last week we talked about how to modify the iTunes track arrows to point to the library instead of the music store. With the introduction of iTunes 8 yesterday, this hack no longer works (it will still work if you stick with iTunes 7.x). However, you can easily remove the iTunes store links entirely, if you prefer. Just open Terminal (/Applications/Utilities) and enter the following command: 
defaults write com.apple.iTunes show-store-arrow-links -bool FALSE
When you re-launch iTunes, the links will be gone. To get things back to normal, just replace "FALSE" with "TRUE."

[via Mac OS X Hints]

Want more tips and tricks like this? Visit TUAW's Mac 101 and Terminal Tips sections.

Tags: hacks, Mac, terminal, tips

Filed under: Terminal Tips

Terminal Tips: Disable annoying application crash dialogs

by Cory Bohon (RSS feed) on Aug 28th, 2008


Don't you hate it when an application becomes unresponsive and crashes? Are you even more tired of reading annoying application crash dialog boxes? A simple Terminal hack allows you to never see these dialogs again. Just open Terminal (Applications > Utilities) and type:

defaults write com.apple.CrashReporter DialogType none

This will disable the "...unexpectedly quit" dialog that normally appears when an application crashes. If you ever want the dialogs to start appearing again, just replace "none" with "prompt".


Like tips like these? Try out TUAW's Mac 101 and Terminal Tips sections.

Tags: application, applications, crash, hacks, Mac, Terminal, tips

Filed under: OS, Terminal Tips

Terminal Tips: Make hidden Dock icons transparent

by Cory Bohon (RSS feed) on Aug 22nd, 2008


Without using Exposé, it is hard to tell which Mac OS X applications are hidden and which aren't. But, with a simple Terminal hack, you can have all your application icons displayed as transparent. Simply open Terminal.app (Applications > Utilities) and type the following command exactly:

defaults write com.apple.Dock showhidden -bool YES

Once you type the command and press enter, you need to restart the Dock by typing "killall Dock" and pressing enter. Once the Dock restarts and you hide applications, you will notice that hidden applications have a transparent look. If you want to reverse the command, just replace the "YES" with a "NO" and restart the Dock again.

Like these tips and tricks? Why not take a look at TUAW's Mac 101 and Terminal Tips category.

Tags: application, hacks, hidden, icons, Mac, Terminal, transparent

Filed under: OS, Hacks, Terminal Tips

Terminal Tips: Disable Dashboard

by Cory Bohon (RSS feed) on Aug 21st, 2008


If you are the type of person that sees Dashboard as an application that just wastes space in your Dock (and an icon on your keyboard), then why not disable it? It is very easy to disable Dashboard; just type in the following command in Terminal.app (Applications > Utilities):

defaults write com.apple.dashboard mcx-disabled -boolean YES

You must restart the Dock in order for this hack to work, so type "killall Dock" into Terminal and press enter -- the Dock should restart. To enable Dashboard again, just type in the above command, replacing "YES" at the end with a "NO." Now when you try to launch Dashboard, nothing will happen; this will save you some system resources.

If you found this tip useful, take a look at TUAW's Mac 101 and Terminal Tips sections.

Tags: dashboard, disable, hacks, Mac, Terminal, tips

Filed under: Hacks, iPhone

Reader report: Rebel SIM working with 3G iPhone

by Dave Caolo (RSS feed) on Aug 19th, 2008

A reader in Barbados sent us a message today describing the success he had with a Rebel SIM card and his 3G iPhone. Having purchased a 3G in Canada, he returned to Barbados and ordered the Rebel, which has been working perfectly with no dropped calls.

Barbados does not have 3G service, but decent GSM. Of course, we can't confirm the story (though we'll gladly fly over to sunny Barbados to try it out!), so your experience my vary. In the meantime, you may want to read this article on how to remove your iPhone's SIM card, or our chat with jailbreaker Pytey.

Tags: hacks, iphone, jailbreak, rebel sim, RebelSim, unlock

Next Page →

Tip of the Day

Use Spotlight as a reference tool. Type any word in the Spotlight box and one of the top entries will be a definition. Click on it, and it will bring up the dictionary application to check the word in either the dictionary, thesaurus, Apple database, or Wikipedia.

Learn More

Follow us on Twitter!

TUAW flickr Pool

www.flickr.com
 TUAW [Cafepress]

Featured Galleries

DNC Macs
Macworld 2008 Keynote
Macworld 2008 Build-up
Google Earth for iPhone
Podcaster
Storyist 2.0
AT&T Navigator Road Test
Bento for iPhone 1.0
Scrabble for iPhone
Tom Bihn Checkpoint Flyer Briefcase
Apple Vanity Plates
Apple booth Macworld 07
WorldVoice Radio
Quickoffice for iPhone 1.1.1
Daylite 3.9 Review
DiscPainter
Mariner Calc for iPhone
2009CupertinoBus
Crash Bandicoot Nitro Kart 3D
MLB.com At Bat 2009
Macworld Expo 2007 show floor

 

Most Commented On (7 days)

Recent Comments

More Apple Analysis

More from AOL Money and Finance

AOL Radio TUAW on Stitcher