Thread: I'm leaving... thank you all!
View Single Post
Old 11-30-2012, 09:06 AM   #28
DuckieTigger
Wizard
DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.DuckieTigger ought to be getting tired of karma fortunes by now.
 
DuckieTigger's Avatar
 
Posts: 4,764
Karma: 246906703
Join Date: Dec 2011
Location: USA
Device: Oasis 3, Oasis 2, PW3, PW1, KT
Quote:
Originally Posted by ixtab View Post
Reality check: while this is theoretically possible, it would be targeting such a "niche market" that it's simply not worth the effort from an attacker's point of view.

Anyway, I'm currently looking into how 5.3.0 can be jailbroken. I'm not entirely there yet, but I did find a vector* which requires manual user intervention (interaction ON the device screen), no way to automate it. Would that qualify as "benign and safe enough" for you? If so, would you agree that Amazon should leave that little loophole in? And do you think they will?

(*) No, I'm not going to disclose anything right now, no need to ask.
Nice. Keep working on it. User interaction would be a safe enough venture - unless what it says on the screen is misleading. You could also run a brute-force in background to find the key ...
DuckieTigger is offline   Reply With Quote