These won't help, will they?
This is a discussion on Exploits Known To NOT Work On The AT&T Backflip (05/2010) within the Motorola Backflip Development & Hacking forums, part of the Motorola Backflip category; These won't help, will they?...
Ive looked at these before but i dont think they will help us.Opened them up with a certificate viewer and they all seem to have something to do with certain web addresses.Dont know much more about them though.
If they're public keys, they are not of any use to us.. We need the private keys to sign stuff so the handset will accept it..
I'm also trying the ADB-in-recovery exploit, but it doesn't seem to be working for me (yet!) -- I'll just have to keep trying...
I apologize for thinking, let alone uttering, the following sillyness.. but is there not a root-leveled user account on the phone whose credentials could be brute forced? Or some other way to force the system to boot from a 3rd party device which then could provide access to the phones file system where the passwd file could get overwritten? Or if the phone itself requires a signed bootloader, could not this requirement be even physically hacked out? or hit it with a jtag editor and given a completely new soul?
That would be awesome if we could get the bootloader to boot from a different partition on the sdcard.. Then just mount everything from there to edit it..
As far as I know, there are no credentials of any kind to be had, due to the lack of a passwd file.. Any attempt to run busybox login or busybox sulogin complains about the missing passwd file to authenticate against.
If I could mount stuff in user mode, or at least make some kind of fake /etc that my login would recognise, I could trick sulogin/login into letting me be another account..
There are a couple of root-suid executables, but I don't think any of them allow any kind of interaction beyond what they're programmed to do..
You can add InstantRoot.apk to the list.Even tried extracting the asroot file and the scripts and modfying them to read from a different directory and it still didnt work.Still playing around with different options!