|
|
|
|
|
|
by RyanKearney
5406 days ago
|
|
|
I wouldn't say security is impossible, but it isn't worth the time and effort some companies put into it. For example, Apple could stop putting 30 pin connectors on the iPhone, replacing it with only a power port to charge the device, then sandbox the rest of their apps on the phone (currently every jailbreak involving a vulnerability had to do with the fact that Apple doesn't sandbox their own applications like they do with third party applications.) Of course you could argue that you could take the device apart and hook up leads to the circuitry in an attempt to flash the device, but you're going to stop over 99.9% of the jail breaking community from jail breaking their devices. |
|
|
In addition, while it is possible to make the dock connector power only, it's only possible as of iOS 5 (with WiFi syncing). Also, that dramatically increases the cost of repair: a single corrupted file can't just be fixed in a quick bootloader-level restore, it requires reprogramming the entire device at the factory (let alone the difficulty of simply transferring a large music library from a computer without USB).
It's definitely not "simple" for Apple to make jailbreaking more difficult than they have. iOS 4.3+ include all of the security measures you'd expect in a modern OS: W^X, ASLR, codesigning, etc. And still it was possible to evade those and exploit the browser+kernel in a foolproof, web jailbreak.
(I designed the website for http://jailbreakme.com/, and while comex did put a crazy amount of work into that project, it is certainly possible that someone could repeat it.)