Comments on: HACK The Android RC30 t-mobile G1, get root access, and unlock! http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/ the illest, the cool Tue, 31 Aug 2010 21:09:47 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: danny http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3560 danny Tue, 15 Dec 2009 03:50:38 +0000 http://ronaldarichardson.com/?p=768#comment-3560 how come anytime I open terminal,til the point type in telnetd i got message in my phone said permission fail,can u help me with that how come anytime I open terminal,til the point type in telnetd i got message in my phone said permission fail,can u help me with that

]]> By: mike foster http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3552 mike foster Mon, 10 Aug 2009 00:24:57 +0000 http://ronaldarichardson.com/?p=768#comment-3552 I have done this as soon as the hacker posted the files. I highly recommend you do this. I have 1 question. How can I get the myfaves back without restoring the g1? I have done this as soon as the hacker posted the files. I highly recommend you do this. I have 1 question. How can I get the myfaves back without restoring the g1?

]]> By: anu http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3519 anu Tue, 12 May 2009 07:42:42 +0000 http://ronaldarichardson.com/?p=768#comment-3519 Hi :) I want the unlock code via software iam using blackberry 6220 & i got the <a href="http://www.mobile-unlocker.com/" rel="nofollow">mobile-unlocker</a> can anybody help me Hi :)

I want the unlock code via software iam using blackberry 6220 & i got the mobile-unlocker can anybody help me

]]> By: Ronald http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3516 Ronald Sat, 11 Apr 2009 22:09:09 +0000 http://ronaldarichardson.com/?p=768#comment-3516 I would but my brother long sold his g1. He didn't like it in the end, it's not the software Android. He just didn't like the hardware. I would but my brother long sold his g1. He didn’t like it in the end, it’s not the software Android. He just didn’t like the hardware.

]]> By: wil b http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3515 wil b Fri, 10 Apr 2009 16:34:53 +0000 http://ronaldarichardson.com/?p=768#comment-3515 can you make a video showing all this; it would be a hell of a lot easier :o) can you make a video showing all this; it would be a hell of a lot easier :o )

]]> By: Ronald http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3378 Ronald Sun, 18 Jan 2009 20:32:20 +0000 http://ronaldarichardson.com/?p=768#comment-3378 @Khaled --> quote#jesusfreke: Here is a zip file containing a modified recovery and boot image, as well as a few other things: http://rapidshare.com/files/166164961/AndroidMod.zip http://jf.nyquil.org/AndroidMod.zip http://android-dls.com/forum/index.p…rb_v=viewtopic (see post for actual link to file) The recovery image (recovery_testkeys.img) uses the test keys that are distributed with the android platform source. This means that an OTA update or an update.zip update must be signed with the test key in order for it to install. In other words, it will no longer install OTA updates from t-mobile. You don’t want them stealing back root access from you now do you? . I’ve also included the test keys and the SignApk.jar tool, so you can sign your own update scripts (for use only with the modified recovery image). You can resign any image, even if it has been signed before. So for example, if you needed to install an “official” t-mobile update, you must re-sign it with the test keys first. Another bonus in this recovery image is that ADB is enabled while in recovery mode. You can’t adb into a shell (no sh binary), but you can at least use it to push and pull files from the device. For example, you could push an update.zip file to the sdcard. The boot image (boot_nosecure.img) has been modified so that adb has root access by default. So when you do an adb shell, you automatically get a root shell. You can remount the system image using adb, and then push files directly to the system partition. Finally, the “update - Restore Original RC29 Boot Image.zip” file is an update.zip file signed with the test keys, which will restore your boot partition back to the stock RC29 image. Useful if you accidentally hose your boot partition.. To install the recovery image onto your phone: ========================================================= D:\Android\AndroidMod>adb push recovery_testkeys.img /data/local/recovery.img 912 KB/s (0 bytes in 1767424.001s) D:\Android\AndroidMod>adb shell $ su su # mount -o rw,remount -t yaffs2 /dev/block/mtdblock3 /system mount -o rw,remount -t yaffs2 /dev/block/mtdblock3 /system # cd /system cd /system # cat /data/local/recovery.img > recovery.img cat /data/local/recovery.img > recovery.img # flash_image recovery recovery.img flash_image recovery recovery.img # ========================================================= Note: You must place the recovery image at /system/recovery.img. the init.rc boot script automatically flashes the recovery partition with that file every time you boot up the phone. At this point, it’s probably a good idea to reboot the phone into recovery mode, and make sure it loads OK. If the recovery image is corrupt somehow, it will throw you back into SPL mode (the multi-color bootloader screen). If that happens, just boot the phone normally, and reflash recovery image. Once it boots into recovery mode, press alt+L, and the next to top line of text should say something like “using test keys.”. If it doesn’t, then you’re still using the original recovery image. Note: If you are planning on installing the modified RC30 update, you can ignore the following - there is no need to install the boot image. The update already has a newer, modified boot image. Now that you know you have the modified recovery image loaded, you can install the boot image: ========================================================= D:\Android\AndroidMod>adb push boot_nosecure.img /data/local/boot.img 939 KB/s (0 bytes in 1533952.001s) D:\Android\AndroidMod>adb shell $ su su # flash_image boot /data/local/boot.img flash_image boot /data/local/boot.img # rm /data/local/boot.img rm /data/local/boot.img # ========================================================= Now reboot the phone and let it boot normally. If the boot image was corrupted, it will boot into recovery mode instead. You can use the included update zip file to reload the original RC29 boot image. Otherwise, if it boots up normally, open a command prompt however you like (telnet, adb, terminal emulator app, etc.) and type “getprop ro.secure”. If it says 0, then you’re running the modified boot image. Otherwise, if it says 1, you’re still running the original boot image. from: http://forum.xda-developers.com/showthread.php?t=443041 @Khaled –>
quote#jesusfreke:

Here is a zip file containing a modified recovery and boot image, as well as a few other things:
http://rapidshare.com/files/166164961/AndroidMod.zip
http://jf.nyquil.org/AndroidMod.zip
http://android-dls.com/forum/index.p…rb_v=viewtopic (see post for actual link to file)

The recovery image (recovery_testkeys.img) uses the test keys that are distributed with the android platform source. This means that an OTA update or an update.zip update must be signed with the test key in order for it to install. In other words, it will no longer install OTA updates from t-mobile. You don’t want them stealing back root access from you now do you? .

I’ve also included the test keys and the SignApk.jar tool, so you can sign your own update scripts (for use only with the modified recovery image). You can resign any image, even if it has been signed before. So for example, if you needed to install an “official” t-mobile update, you must re-sign it with the test keys first.

Another bonus in this recovery image is that ADB is enabled while in recovery mode. You can’t adb into a shell (no sh binary), but you can at least use it to push and pull files from the device. For example, you could push an update.zip file to the sdcard.

The boot image (boot_nosecure.img) has been modified so that adb has root access by default. So when you do an adb shell, you automatically get a root shell. You can remount the system image using adb, and then push files directly to the system partition.

Finally, the “update – Restore Original RC29 Boot Image.zip” file is an update.zip file signed with the test keys, which will restore your boot partition back to the stock RC29 image. Useful if you accidentally hose your boot partition..

To install the recovery image onto your phone:

=========================================================
D:\Android\AndroidMod>adb push recovery_testkeys.img /data/local/recovery.img
912 KB/s (0 bytes in 1767424.001s)

D:\Android\AndroidMod>adb shell
$ su
su
# mount -o rw,remount -t yaffs2 /dev/block/mtdblock3 /system
mount -o rw,remount -t yaffs2 /dev/block/mtdblock3 /system
# cd /system
cd /system
# cat /data/local/recovery.img > recovery.img
cat /data/local/recovery.img > recovery.img
# flash_image recovery recovery.img
flash_image recovery recovery.img
#
=========================================================

Note: You must place the recovery image at /system/recovery.img. the init.rc boot script automatically flashes the recovery partition with that file every time you boot up the phone.

At this point, it’s probably a good idea to reboot the phone into recovery mode, and make sure it loads OK. If the recovery image is corrupt somehow, it will throw you back into SPL mode (the multi-color bootloader screen). If that happens, just boot the phone normally, and reflash recovery image.

Once it boots into recovery mode, press alt+L, and the next to top line of text should say something like “using test keys.”. If it doesn’t, then you’re still using the original recovery image.

Note: If you are planning on installing the modified RC30 update, you can ignore the following – there is no need to install the boot image. The update already has a newer, modified boot image.

Now that you know you have the modified recovery image loaded, you can install the boot image:

=========================================================
D:\Android\AndroidMod>adb push boot_nosecure.img /data/local/boot.img
939 KB/s (0 bytes in 1533952.001s)

D:\Android\AndroidMod>adb shell
$ su
su
# flash_image boot /data/local/boot.img
flash_image boot /data/local/boot.img
# rm /data/local/boot.img
rm /data/local/boot.img
#
=========================================================

Now reboot the phone and let it boot normally. If the boot image was corrupted, it will boot into recovery mode instead. You can use the included update zip file to reload the original RC29 boot image.

Otherwise, if it boots up normally, open a command prompt however you like (telnet, adb, terminal emulator app, etc.) and type “getprop ro.secure”. If it says 0, then you’re running the modified boot image. Otherwise, if it says 1, you’re still running the original boot image.

from: http://forum.xda-developers.com/showthread.php?t=443041

]]> By: Khaled http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3376 Khaled Sun, 18 Jan 2009 19:39:05 +0000 http://ronaldarichardson.com/?p=768#comment-3376 Hi All, What I know is that you can't run processes that listen to ports below 1024 with an unprivileged user. The case. After firing the terminal emulator application I discovered that the working user is "app_57" and by navigating to /system/bin then type telnetd it returned no errors but the return code is 255 like so: $ cd system $ cd bin $ telnetd $echo $? 255 I can't start the telnet daemon like that. Please advice. Hi All,

What I know is that you can’t run processes that listen to ports below 1024 with an unprivileged user.

The case.

After firing the terminal emulator application I discovered that the working user is “app_57″

and by navigating to /system/bin then type telnetd

it returned no errors but the return code is 255

like so:
$ cd system
$ cd bin
$ telnetd
$echo $?
255

I can’t start the telnet daemon like that.

Please advice.

]]> By: Ronald http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3357 Ronald Tue, 30 Dec 2008 06:12:55 +0000 http://ronaldarichardson.com/?p=768#comment-3357 Yeah you can jailbreak it following this tutorial, if I ever have the time, I'll try to put soemthing easier together... Yeah you can jailbreak it following this tutorial, if I ever have the time, I’ll try to put soemthing easier together…

]]> By: markus http://ronaldarichardson.com/2008/12/22/hack-the-android-rc30-t-mobile-g1-get-root-access-and-unlock/comment-page-1/#comment-3356 markus Tue, 30 Dec 2008 05:59:45 +0000 http://ronaldarichardson.com/?p=768#comment-3356 Can I jailbreak my rc 30 updated g1 Can I jailbreak my rc 30 updated g1

]]>