NNSquad - Network Neutrality Squad

NNSquad Home Page

NNSquad Mailing List Information

 


[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[ NNSquad ] "Uncrackable" G2 Android Phone Successfully and Permanently Rooted -- and Why This Matters!



                "Uncrackable" G2 Android Phone Successfully and 
                   Permanently Rooted -- and Why This Matters!

                  http://lauren.vortex.com/archive/000778.html


Greetings.  Almost exactly a month ago, in "New Android Phone
(Falsely) Accused of Containing a 'Malicious Root Kit'" 
( http://bit.ly/alTj4v [Lauren's Blog] ) -- I noted the situation with
the new T-Mobile G2 Android phone (aka HTC Vision), where a new
protection scheme had been employed by the manufacturer to (try)
prevent "rooting" (also known as "jailbreaking").  I also expressed my
hope that "permanent rooting" efforts in progress would be successful.

As I discussed, I view having complete control over my cell phones as
being important for privacy and security reasons -- and in terms of
overall user freedoms as well.  A "locked-down" device cannot be
relied upon to run the systems and applications of users' choosing.
And while there are certainly those persons who disagree with me on
this point, I consider these freedoms to be extremely important in an
age of ever increasing and widely distributed technologies.

So I'm very pleased to report that as of this morning, the G2 has been
successfully and permanently rooted ( http://bit.ly/bzUQVM
[xda-developers] ), opening the door to specialized applications and
the running of the excellent "CyanogenMod" enhanced systems 
( http://www.cyanogenmod.com ).  Incredible work guys!

As it turns out, it was quickly established that the G2 was not using
a firmware rewrite system, but rather was employing the protected mode
of JEDEC Embedded MMC memory (eMMC).  Temporary rooting of the device
was possible from early on since the underlying Linux kernel was
caching changes related to user root attempts, but the eMMC protection
mechanism was preventing those changes from ever being successfully
written to flash system memory -- so all such changes were lost at the
next boot of the phone.

For the last month I've been lurking on various Web sites and a key
IRC channel, watching a core group of dedicated hackers (and I'm using
"hackers" in the original, positive sense of the word), as they
gradually teased their way into the phone's systems -- truly a joy to
watch.  One individual in particular, with a "handle" that would be
recognized by any fan of the original "Star Trek" series, deserves
special commendation indeed.

The level of technical expertise exhibited by this group is
extraordinary.  And no matter how much you think you know about these
systems, it's definitely a learning experience to view these
reverse-engineering efforts in progress.  (By the way, did you know
that many modern cell phones' radio modems can be controlled via a
superset of the ancient -- more than 30 years old! -- Hayes modem "AT"
command set?  Yep.  True innovation can live a long life indeed!)

It seems likely that this same basic rooting technique will be 
useful -- at least for now -- when dealing with some other new HTC Android
phones hitting the streets.

I'm not suggesting that everyone needs to root their cell phones.
There are operational risks in doing so -- such as the possibility of
"bricking" your phone (making it nonoperational) if you screw up.  Nor
does everyone need the ability to run the sorts of applications and
systems that require rooting.

That being said, I do consider having the *choice* of running
such software to be an important one, and the concept of devices that
lock out user choice is frankly offensive to me.

The conflicting world views represented by various flavors of closed
systems -- vs. open systems -- will certainly trigger continuing
struggles, not just in the mobile device world, but in technology
generally as we move toward ever more complex and "cloud-aware"
systems.

But to distill this all down to a simple sound bite, as far as
consumers of technology are concerned:

   "Open Wins."

--Lauren--
Lauren Weinstein (lauren@vortex.com)
http://www.vortex.com/lauren
Tel: +1 (818) 225-2800
Co-Founder, PFIR (People For Internet Responsibility): http://www.pfir.org
Founder, NNSquad (Network Neutrality Squad): http://www.nnsquad.org
Founder, GCTIP (Global Coalition for Transparent Internet Performance): 
   http://www.gctip.org
Founder, PRIVACY Forum: http://www.vortex.com
Member, ACM Committee on Computers and Public Policy
Lauren's Blog: http://lauren.vortex.com
Twitter: https://twitter.com/laurenweinstein
Google Buzz: http://bit.ly/lauren-buzz