Σκάνδαλο με το evasi0n7: Το νέο jailbreak tool του iOS 7 προωθεί την πειρατεία (;)


By
Posted on Sunday December 22nd, 2013 / 23:08

Η σημερινή ημέρα συνεχίζει να εκπλήσσει όσους ασχολούνται με την Jailbreak σκηνή καθώς η αναπάντεχη κυκλοφορία του evasi0n7 συνοδεύτηκε από απρόσμενες καταστάσεις που δεν τιμούν την JB κοινότητα .

Συγκεκριμένα, οι Κινέζοι χρήστες (ή όσοι έχουν έχουν την Κινεζική γλώσσα ως default στον υπολογιστή τους) κατά τη διαδικασία του Jailbreak μπορούν να εγκαταστήσουν ένα Κινέζικο πειρατικό App store με την ονομασία TaiG. Το Cydia μάλιστα δεν είναι καν προ-επιλεγμένο για να εγκατασταθεί.

Taig-evasi0n7 Taig-evasi0n7

 

Σύμφωνα με φήμες, οι evad3rs δέχτηκαν το ποσό του $1.000.000 από την Κινέζικη εταιρεία που διαχειρίζεται το TaiG ώστε να προχωρήσουν σε αυτή τη κίνηση.

Αναμένουμε μέσα στις επόμενες ημέρες να ξεκαθαρίσει το τοπίο, ωστόσο μέχρι τότε καλό θα ήταν να ΜΗΝ προχωρήσετε σε Jailbreak για λόγους ασφαλείας των προσωπικών σας δεδομένων.

Το twitter έχει πάντως πάρει “φωτιά” με τις αποκαλύψεις από τον Stefan Esser (@i0n1c) να διαδέχονται η μία την άλλη:

 

 

Ο Will Strafach (@chronic) φαίνεται πως υποστηρίζει τα λεγόμενα του Stefan Esser (@i0n1c):

 

Ο Saurik δηλώνει πως γνώριζε για το TaiG εδώ και 2 μήνες και προσπάθησε να αλλάξει γνώμη στους evad3rs:

 

 

 

Από την άλλη, οι evad3rs διαμέσου του @pod2g προσπαθούν να διασκεδάσουν τις εντυπώσεις:

 

 

Αναμένουμε λοιπόν τους evad3rs να εξηγήσουν τα ανεξήγητα. Το μόνο σίγουρο είναι πως ξαφνικά η βδομάδα αυτή απέκτησε πολύ μεγάλο δημοσιογραφικό ενδιαφέρον!

 

Update: Η επίσημη απάντηση των evad3rs

Dear Jailbreak Community,

We are deeply troubled by the rumors and speculation surrounding our iOS 7 jailbreak. We would like to present the whole story to you.

Most of the concern surrounds the inclusion of the Chinese App Store Taig. In the course of developing the iOS 7 jailbreak, we were approached by the company with an offer of partnership in offering Taig bundled with the jailbreak in China. Taig is a Chinese App Store written in Chinese. tailored and, we believe, well suited to meet the needs of users for the Chinese market. Users are not locked into Taig. Cydia can also be installed and Taig removed afterwards. It would be deeply hypocritical to remove choice from the user in the course of jailbreaking.

Taig has never asked us to disclose our exploits to them, let alone sell them. We were simply asked to bundle their third-party app store in China in a similar way we bundle and distribute Cydia around the world as an additional App Store, and in a similar way to how previous jailbreaks like blackra1n have bundled non-Cydia stores.

Of course, the safety and security of our users is a paramount concern, and due to the amount of close scrutiny by security professionals around the world, we offer one of the lower risk programs available for download on the Internet. We are saddened by the accusations that we would ever do such a thing, or sell weaponized exploits. If anyone ever attempted to include malware in a jailbreak, we are confident that the many security experts combing through jailbreak software would find it. The binaries are obfuscated for a similar reason to why we have in the past compiled in Cydia rather than including it as a separate file. We wish to secure the integrity of the jailbreak and discourage its use by third parties who may in fact wish to weaponize it. The obfuscation is of course not intended to deflect serious analysis by security professionals (who have quickly already fully analyzed and discussed the contents of the jailbreak), it is simply intended to prevent easy repackaging by other parties.

Preventing piracy is also extremely important to us. We are deeply sorry and embarrassed about the piracy that was seen today. All of us have spoken out vehemently against piracy in the past. We don’t believe it’s right for developers to not get paid for their work. In our agreement with Taig, we contractually bind them to not have piracy in their store. This was an extremely important precondition of working with them. In entering the agreement with them, we had hoped and continue to hope that our cooperation with Taig will improve the piracy situation in China. Many App Stores within China, including those run by large corporations, have many issues with pirated software. Promoting an app store that is required not to have piracy with our jailbreak, we believe, will help developers.

We are very upset that despite our agreement and review by their team, piracy was found in the store. It was not acceptable and they have been strenuously working to resolve the problem in good faith, and have removed all instances of it that we have brought to their attention. We are happy that it was not overlooked by the community. We’ve been so heads down working on the code that we didn’t see this. We are sorry. We will continue to monitor this issue and work to resolve it completely. Taig will be pulled from the jailbreak if it cannot be resolved.

Many of you have also wondered why this jailbreak was released without Cydia and MobileSubstrate being updated for iOS 7. After we received the offer from Taig, we informed Saurik, our friend, of our decision to accept the offer. SaurikIT had been in talks with Chinese companies regarding potential partnerships, made a counteroffer. We believe they share our views on how a relationship with companies in China currently utilizing jailbreaking might benefit everyone in the community. Unfortunately, the negotiations did not work out. A few days later, we received information that SaurikIT was working with another group to release a jailbreak ahead of us. We decided to release, knowing that Cydia, MobileSubstrate, and jailbreak tweaks would be updated after a few days, just as it always has in the course of jailbreaking.

Yes, we have benefitted financially from our work, just as many others in the jailbreak community have, including tweak developers, repo owners, etc. Any jailbreak from us will always be free to the users but we believe we have a right to be compensated in an ethical way, just as any other developer. However, the interests of the community will always be the most important thing to us. When releasing the jailbreak, we pledged all our donations to foundations supporting the interests of the community. We are deeply upset at how we have inadvertently distressed the community and we are focused on fixing it.

We love the jailbreak community and you motivate us to do this work. Having a choice and freeing your device is important.

We hope you understand and we thank you for all of your support.

evad3rs

Update No2: Διαθέσιμη είναι η νέα έκδοση του evasi0n7 1.0.1 από την οποία αφαιρέθηκε το TaiG για τους χρήστες με Κινεζική γλώσσα στον Η/Υ τους

Επιπλέον, έχουμε νέες δηλώσεις από τους evad3rs σχετικά με ζήτημα του TaiG και της πειρατείας

Dear Jailbreak Community (part 2),

We want to address some additional concerns put forth by the community:

Privacy and Taig

First and foremost, and of utmost concern, is privacy. No one’s data was ever sent anywhere. Of course, as a member of the community whose work frees devices, it would be against everything we’ve worked for the last 7 years to jeopardize the security of the users of our software. To reiterate, no Taig software was installed unless the computer’s language was set to Chinese. Furthermore, no Taig software would run unless the user opened the Taig application.
After rumors abound of encrypted data being sent for users in China who’ve installed Taig, we decided to do what we do best – reverse engineer the code of Taig to understand what was being sent. Taig transmitted data similar to what Cydia transmits. Unique device identifiers were transmitted in encrypted form similar to how Cydia uses SSL to protect the privacy of its users. Taig did not transmit any private user data from the devices at all.

Piracy and Taig

Our written and verbal agreement with Taig banned it. They assured us it was not in there. We did not check every package in their store but a cursory examination before release found no problems. However, after investigation and after notification from the community, we found examples, including pirated tweaks, Apple App Store apps, and even pod2g’s PodDJ app. We dropped the ball on this. While we at first did not believe Taig purposefully violated our agreement, the depth of the transgression against the software developers and the jailbreak community cannot be overlooked and we could not move forward after that even if it were fixed. We terminated our relationship with them. We are very disappointed that they have decided to put up a cracked version of the jailbreak on their site that installs Taig. We did not give them any permission or source code.
We have refused all monies from Taig

There have been a lot of rumors listing various amounts we’ve been paid. We have received no monies from any group, including Taig. We will not be accepting any money. Our donations are being given to Public Knowledge, Electronic Frontier Foundation and Foundation for a Free Information Infrastructure to help protect jailbreaking as your legal right.
Jailbreak Updates

We are working hard to fix the problems with the jailbreak. Unfortunately, it’s the holidays and we would like to spend time with our friends and family. The events of the last couple of days have been extremely stressful for us and we need some time to recover. We will work as hard as we can to resolve any remaining issues. Thank you for your understanding.
We worked very hard to bring this jailbreak free of charge to the community. We hope you can all enjoy it.

evad3rs

Σχολιασμός στο forum

About Vasilis Ananiadis

Ο ζωντανός θρύλος της Ελληνικής blogόσφαιρας, ο αβυσσαλέος master του SEO, o πρίγκηπας των Social Media, ο τυφώνας των Web Startups, ο οργασμός της ιντερνετικής επιτυχίας. Τώρα και στο twitter: @vananiadis

Tags: , ,




One Response to “Σκάνδαλο με το evasi0n7: Το νέο jailbreak tool του iOS 7 προωθεί την πειρατεία (;)”

  1. […] Update: Αναμένουμε μέσα στις επόμενες ημέρες να ξεκαθαρίσει το τοπίο, ωστόσο μέχρι τότε καλό θα ήταν να ΜΗΝ προχωρήσετε σε Jailbreak για λόγους ασφαλείας των προσωπικών σας δεδομένων. Διαβάστε περισσότερά, εδώ: Σκάνδαλο με το evasi0n7 […]