5.6.5 Jailbreak (closed-kindle) -- released!

[knc1]

Quote:

Originally Posted by ikeboy

That's exactly what I said. You need to download an executable and copy it to the device.

My point was that it didn't seem to be a lucrative target for a botnet operator. It takes more steps to socially engineer, and has less power.

Something can both be a hazard and yet not cost effective to deploy a botnet with. Still should be fixed, obviously.

(It might work better as a targeted attack stealing browser cookies or something.)

The Kindle is the only computer you need.
The browser is very able to download files.

You only need a single file on the Kindle +
Visit one of the public jb servers
(+ currently follow directions, but the 'trick' is in the java script, not the directions)

[AirRaven]

For what it's worth, setting up a DNS redirect is an unnecessary step for this.

All that's necessary is that you change the server's hostname to "a".

Here's a pretty straightforward guide. Trivial process.

Just verified as working.

[ikeboy]

Quote:

Originally Posted by knc1

The Kindle is the only computer you need.
The browser is very able to download files.

You only need a single file on the Kindle +
Visit one of the public jb servers
(+ currently follow directions, but the 'trick' is in the java script, not the directions)

I thought the kindle can only download ebook files? Is it possible to craft an ebook that has the script? (I think txt files are allowed, which should be able to script.) Also, is the name deterministic? I seem to remember the file name for a downloaded book would have an unpredictable name.

If yes to both, I'd have to agree with you, the ease of exploitation goes up significantly.

Also, does the file need to be on the root of the device?

[NiLuJe]

@AirRaven: That would imply that your network actually propagates local hostnames on the network, which might not always be the case, but good to know .

And, BTW, isn't the full reboot a bit overkill? Shouldn't cycling the network interface be enough?

[Mike_73]

Quote:

Originally Posted by Stiehler

@knc1
how will I know that Jailbreqak was really successful

kindlefere.com/jb/ Method worked for me (pw2 Brazilian portuguese )


It appeared that the jailbreak fou a hit in the top of the kindle bar , however, as I really know it was a success? I did it without doing a reset before , that I need to do one now?

Just try adding KUAL to your kindle and see if the launcher pops up as a "book". If so, your kindle is jailbroken.

[Noexpert]

Goal = Install Screensaver Hack

Step by Step:

1. PW3 = running 5.6.5.
2. For Jailbreak = JB in Root Folder ->Experimental Browser-> kindlefere.com/jb/ -> ;fc-cache = JAILBROKEN!!
3. Hotfix = 1.14.N-FW-5.x-hotfix.zip -> Unzip ->Update_jailbreak_bridge_1.14.N_install.bin to Root Folder = SUCCESSFULL!

AND THEN

4. Update_python_0.14.N_install_pw2_kt2_kv_pw3.bin to Root Folder -> Restart = NO Python Folder?????


Additional: Folders in Root:

.active_content_sandbox
documents
mkk
rp
driveinfo.calibre
jb
metadata.calibre

[NiLuJe]

@Noexpert: You need to use MRPI to install the ScreenSavers hack and its eventual dependencies.

Also, *never* reboot your device with a custom package in the root of the userstore.

[Branch Delay]

If you're worried about your device being vulnerable, upgrade to 5.7.2. Lots of incorrect info and speculation going around the thread. If/when anyone figures out how this works with a bit more certainty, please re-evaluate.

Nevertheless, I recommend hosting it yourself and not running untrusted code from random webservers. That is how bad things happen.

I'll throw up a signed version today.

(of course, you're still trusting me in this situation.)

[Noexpert]

Quote:

Originally Posted by NiLuJe

@Noexpert: You need to use MRPI to install the ScreenSavers hack and its eventual dependencies.

Also, *never* reboot your device with a custom package in the root of the userstore.

NiLUJe MANY THANKS!

Not forgetting Branch Delay!

[Mike_73]

Just wanted to post that after reading that someone had posted he updated to 5.7.2 after JB, I tried too.

JB without factory reset and update to 5.7.2 and JB still working.

[dhdurgee]

Sucessfully used jb on my KT2 S/N: 90C6 0606 xxxx xxxx here and installed SS.

Will need to disable special offers to be able to use the SS hack. What is the easiest way to do so?

Per B_D sounds like it makes sense to upgrade to 5.7.2 to close the security hole. what is the easiest way to do so and keep the jb and hacks alive?

Dave

[NiLuJe]

@dhdurgee: By clicking on the 'send us $20' link in your Manage My Devices (or whatever it's now called) page on your Amazon account to unsubscribe to Special Offers .

Since a FW update wipes mostly everything, you'll want to do the update *before* installing other stuff. That said, if this is your first foray into custom Kindle stuff, I'd still recommend familiarizing yourself with everything on FW 5.6.5 before moving on to a less friendly FW version.

[knc1]

Quote:

Originally Posted by dhdurgee

Sucessfully used jb on my KT2 S/N: 90C6 0606 xxxx xxxx here and installed SS.

Will need to disable special offers to be able to use the SS hack. What is the easiest way to do so?

Per B_D sounds like it makes sense to upgrade to 5.7.2 to close the security hole. what is the easiest way to do so and keep the jb and hacks alive?

Dave

Send Amazon money.

Translation:
Go to your Amazon account page -
In the manage devices you should find a selection to disable special offers.

Install 5.7.2 OR NEVER use the Kindle's experiamental browser - its build of webkit is dangerous to use.

In this order:

Jailbreak
The jb 'hotfix'
restart the Kindle
Install 5.7.2
install KUAL+MrPI (the only way our packages can be installed)
Have Amazon disable special offers for you.
'sync and check'
Install other stuff as desired

[Mike_73]

Quote:

Originally Posted by dhdurgee

Sucessfully used jb on my KT2 S/N: 90C6 0606 xxxx xxxx here and installed SS.

Will need to disable special offers to be able to use the SS hack. What is the easiest way to do so?

Per B_D sounds like it makes sense to upgrade to 5.7.2 to close the security hole. what is the easiest way to do so and keep the jb and hacks alive?

Dave

I have applied the JB and then downloaded the update on PC, transferred to kindle and went from there. Launcher and Koreader were still on the device after the update. But then again, I usually try pushing my luck. For my phone and custom roms, I only do wipes if my updates didn't work out and I get stuck. If it works, I was lazy going through all the right steps and got lucky without setting everything up again.

[jscris]

Success with jb on KV US English B0130907... KUAL and Mr. Pi installed, updated to 5.7.2 Thanks to everyone!