Clear iSpot was a little too easy to crack

Tuesday

Aug102010

Wojo on

Tuesday, August 10, 2010 at 9:57PM in

Technology tagged

Clear,

WiMax,

iSpot

Disclaimer: Whenever you “jailbreak” a device like this you risk bricking it and getting into some trouble. Be nice and be fair! Do this to learn, gain access on devices that aren’t working correctly (which a lot of people are running into right now), extend the capabilities by installing extra software, etc.

Warning: If you are not familiar with the Linux command line and various tools listed below then see my follow-up about using the pre-made configs from jaku.

This is a follow up to my original post which gives some of the background on the iSpot. Have fun!

To get root access:

Download your configuration and extract it
Add a line to lan.conf to add a new user with no password to your /etc/passwd
1. For example: echo “wojo::0:0:root:/root:/bin/sh” >> /etc/passwd
Tar up the config and upload it
When the iSpot comes back up, go into super user mode (/super via HTTP, u: super, p: super), Tools -> Admin and enable Telnet at the bottom under “Save Telent and Log Configuration” (there are so many typos on this device!)
Telnet to 192.168.1.1 and enter the username from above (e.g. wojo)
Enjoy root
Remove the addition to the /etc/lan.conf on the device so it stops adding the user on every reboot

Want to disable the MAC address restrictions?

Edit /system/wimax/tree.xml in your favorite text editor (vi is on the box)
Search for “RestrictedUse” and set the value to “false” in the node below
Save the file and reboot

How about enable RNDIS so you don’t have to use WiFi?

From either your local configuration files or via a shell, edit board.conf
Change ENABLE_RNDIS to a value of 1
Go to http://192.168.1.1/html/rndis.html
Set your preference on WiFi enabled during USB tethering
For Windows only: download the driver

Lastly, if you don’t want configs and firmware pushed down, you probably want to at minimum:

Disable auto-upgrading in upgrade.conf (ENABLE_AUTO_UPGRADE=”NO”),
disable OMA-DM in super user mode under WiMAX -> OMA-DM to prevent OTA updates, and
never do a factory reset with a signal as the device could pull down new configs and do a firmware upgrade.

Thanks to Jon at methodicjon.com for a reminder to close up as much as possible in terms of OTA automatic updates.

Now what cool things can the iSpot be extended to do now I wonder?

Update on Tuesday, August 10, 2010 at 11:01PM by

Wojo

Almost at the same exact time I posted this I got a tweet from @jaku about http://ispotunrestricted.com/, his site that has a config file you can download that does the modifications for you via some inline vi commands nontheless! No need to get a shell unless you really want to snoop around and lock things down more.

Update on Tuesday, August 17, 2010 at 12:02PM by

Wojo

Do not update to firmware v1994 as it removes the ability to upload configs and changes the super user password.

Permalink |

2 References |

References (2)

References allow you to track sources for this article, as well as articles that were written in response to this article.

Response: Fruit Of Mattseh

at Fruit Of Mattseh on October 27, 2012

Clear iSpot was a little too easy to crack - Blog - wojo
Response: cracks

at cracks on February 10, 2013

Hello Wicked post! Check out: http://bit.ly/W9sLJi

Reader Comments

There are no comments for this journal entry. To create a new comment, use the form below.

Post a New Comment

Enter your information below to add a new comment.

My response is on my own website »

Author:

Author Email (optional):

Author URL (optional):

Post:

↓ | ↑

Some HTML allowed: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>

wojo's playground

Recent Comments