Exact firmware version for hacked E90
Here's the exact firmware details for the hack described earlier:
RA6_0545986_07.24.0.3_048
Type: RA-6
Model: E90-1
Product code: 545986
MD5 sums for the files:
da95e507b1785a33b8f6bb2597a6ffcc *RA6p_072403.C01.orig
899e730ce4a319f1b85de482b7c3c5c1 *RA6p_072403.C01.hack
c51394c667b5a75bb121cea25d2e0205 *RA6swipolicy.txt
RA6_0545986_07.24.0.3_048
Type: RA-6
Model: E90-1
Product code: 545986
MD5 sums for the files:
da95e507b1785a33b8f6bb2597a6ffcc *RA6p_072403.C01.orig
899e730ce4a319f1b85de482b7c3c5c1 *RA6p_072403.C01.hack
c51394c667b5a75bb121cea25d2e0205 *RA6swipolicy.txt
posted by manko at
Saturday, October 27, 2007
9 Comments:
hi
you did not really do this did you ?!
do you have some e90 inner screen screenshots about allfiles with xplorer 1.11 or y-browser 0.8 ?!
ciao
i would try it with following ini file:
AllowUnsigned = false
MandatePolicies = false
MandateCodeSigningExtension = false
Oid = 1.2.3.4.5.6
Oid = 2.3.4.5.6.7
OcspMandatory = false
OcspEnabled = true
AllowGrantUserCapabilities = true
AllowOrphanedOverwrite = true
UserCapabilities = AllFiles DiskAdmin NetworkServices LocalServices ReadUserData WriteUserData ReadDeviceData WriteDevic
eData UserEnvironment PowerMgmt MultimediaDD TrustedUI ProtServ NetworkControl SwEvent Location SurroundingsDD CommDD
SISCompatibleIfNoTargetDevices = false
AlternativeCodeSigningOID = 1.3.6.1.4.1.94.1.49.1.2.2.1 1.3.6.1.4.1.94.1.49.1.2.2.5
PhoneTsyName = phonetsy
filling needed size with spaces plus 0dad!
my dd adds file to position but deletes rest - so i used khexedit !
allfiles should allow you to have full access to private and sys - can you agree ! did you really test this !
ciao
hi
not 0dad but 0d0a !
buy
hi
above mentioned did not work - installer did not start - so i use your ini now !
all went fine - i couldnt wait :)
anyhow. i can not get the ybrowser installed ! i use my symbian-signed devcert but no luck ! during install i get the cert error (because my devcert has no allfiles) !
selfsigned does not work either as i get the error "file corrupted" during install! (because of wrong uid's)
any help in this ?!
ciao
Don't use symbian signed developer cert, use self-signed (makekeys -cert)
And remember to use UIDs from test range for your own apps (y-browser is already in that range)
hi
i managed it ! added tcb and drm capabilities to the ini and changed AllowUnsigned = true !
so i can install my sis unsigned, as the signing thing did not work !
ciao and tx for this great tip !
lets hope they will update the firmware for e90 in the way that this hack still works ! i guess the delay of getting firmware through nsu has something todo with your hack !
ciao
ps: the java trick you mentioned earlier can be advanced in a way to chage all maxsecurity settings from oneshot or session to blanket !
pss: i wonder what more is possible !
psss: btw what dd did you use - my dd cuts the file after putting back the ini to the image !
hi
i guess the new nsu version 1.4.14 stops the possibility to hack the firmware ?!
ciao
Only thing v1.4.14 changes is that NSU servers spend more bandwidth - I posted details about it on other article
ehh.. I did not make alowunsigned=yes... is it too late?
If you make 'AllowUnsigned = true' then you also need to either remove 'OcspEnabled = true' (or set it to false) - the advantage if you remove the line completely is that you can remove the 'Oid' lines as well, leaving space for additional user capabilities or what ever else you want to put in there.
Post a Comment
Links to this post:
Create a Link
<< Home