Less than three days after Apple's mobile device went on sale, researchers had taken the first steps towards unlocking the device.
Eric Tews, a cryptography student at the Technical University of Darmstadt, reported on the Full Disclosure mailing list that an analysis of the iPhone's disk image had unearthed two internal passwords labelled 'root' and 'mobile'.
Researchers are not entirely sure what function the two passwords perform, nor are they certain that the passwords are the same for every iPhone.
"In general the passwords appear to be part of the underlying OS X/Unix-based system that makes the phone work," independent security researcher Kevin Finisterre.
Finisterre suggested that internal programs may use the passwords to gain access to the iPhone components.
Developers could use these 'credentials' to communicate with the iPhone's cellular radio, for instance, and receive feedback from the touch screen.
Security researcher Tom Ferris explained that the work being done on the Full Disclosure list is " definitely the first step".
Ferris pointed out that there is still plenty of hacking to be done before anybody other than Apple will be able to install programs on the iPhone. "They do not have the keys to the kingdom yet," he said.
Ferris noted that, while researchers have been able to open the iPhone software and find such things as caller-ID information, they have yet to gain the ability to write and execute code on the device, leaving the passwords of little use at the moment.
"But once they are able to break out of that sandbox it is game over," said Ferris.
.png&h=140&w=231&c=1&s=0)
.png&w=120&c=1&s=0)
EDUtech AU
.png&w=120&c=1&s=0)
Security Exhibition & Conference 2025
Integrate Expo 2025
Digital As Usual Cybersecurity Roadshow: Brisbane edition
iTnews Benchmark Security Awards 2025
.jpg&h=140&w=231&c=1&s=0)
.jpg&h=140&w=231&c=1&s=0)
