iOS 4.1 [HOW TO] Jailbreak any iOS Device running any firmware

Discussion in 'iOS Jailbreak & Cydia' started by tanktan38, Oct 7, 2010.

  1. tanktan38

    tanktan38 Active Member

    Joined:
    Dec 29, 2009
    Messages:
    1,085
    Likes Received:
    15
    Device:
    3G iPod touch
    How to jailbreak
    any iOS device running any firmware
    By TankTan38

    Jailbreak MB devices with redsn0w!
    Jailbreak MC devices with limera1n!
    Jailbreak EVERYTHING with my guide!


    Here is my step by step guide to jailbreak any iPhone/iPod touch/iPad, regardless of the firmware. This guide started as a guide that was supposed to help people make the transition from blackra1n to Spirit, but it ended up growing into a How to jailbreak everything guide. Once 4.0 came out, it got harder and harder for me to update it, especially when iH8sn0w released his tool on how to jailbreak 4.0 on MC devices with 3.1.2 SHSH blobs backed up. But, after JailbreakMe.com was re-released, I decided to completely rewrite the guide. Not from scratch, but I updated the old sections to make it easier to follow, and easier for me to update.

    My goal here is to help you get from being on any firmware and jailbroken or not, to your devices latest available firmware, jailbroken. Most jailbreaking tutorials just tell you how to jailbreak. This tutorial, however tells you what you need to do BEFORE you jailbreak (like restore, update, backup apps, save your SHSH blobs, etc.), gives you choices of what to use to jailbreak (right now, it's redsn0w and jailbreakme.com), what to do after the jailbreak (restore your apps, backup your SHSH blobs again, etc.), and even what to do in the future (like if Apple releases a new firmware).

    In tutorials that just tell you how to jailbreak, you may get confused. For example, if someone was jailbroken tethered with, say blackra1n on 3.1.2, and they wanted to be untethered with Spirit on the same firmware. They would find a guide on how to jailbreak with Spirit, and they would do it. The problem with that is, the guide might not have told them that if you were already jailbroken with blackra1n, that they needed to restore. And if it did, it certainly didn't go as in depth as my guide does. When they probably just would have said "Restore!", my guide tells you what you need to do before you restore, like backup your SHSH blobs and sync with iTunes. As an added bonus, my guide even tells you how to restore (and update, for that matter).

    Okay, enough of my ranting already, lol. I hope you enjoy my guide.

    Disclaimer: I am not responsible for any damage done to you device. If your devices gets messed up, please don't blame me, any jailbreak developer, or any other member of this site. Just post a thread about your problem. Believe me, you can ALWAYS fix an iOS device, unless the hardware is damaged, which won't happen by following this guide. Thank you.




    Start here: Find your Device!

    First, you need to figure out what device you have, what bootrom version you have, what firmware version you are running, and if you are already jailbroken or not. If you don't know how to figure it out, scroll down to Extra C.

    Original iPhone

    Already Jailbroken:
    -3.1.2 and lower: Do parts Aa, Ba (restoring to 3.1.3), Cb, D, and E only.

    Not Jailbroken:
    -3.1.2 and lower: Do parts Ab, Bb (updating to 3.1.3), Cb, D, and E only.

    -3.1.3: Do parts Cb, D, and E only.

    iPhone 3G & iPhone 3GS Early MB Model

    Already Jailbroken:
    -4.2.1 and lower: Do parts Aa, Ba (restoring to 4.2.1), Cb, D, and E only.

    Not Jailbroken:
    -4.1 and lower: Do parts Ab, Bb (updating to 4.2.1), Cb, D, and E only.

    -4.2.1: Do parts Cb, D, and E only.

    iPhone 3GS Late MC Model

    Already Jailbroken:
    -4.2.1 or lower: Do parts Aa, Ba (restoring to 4.2.1), Ca, D, and E only.

    Not Jailbroken:
    -4.1 and lower: Do parts Ab, Bb (updating to 4.2.1), Ca, D, and E only.

    -4.2.1: Do parts Ca, D, and E only.

    AT&T/GSM iPhone 4

    Already Jailbroken:
    -4.2.1 or lower: Do parts Aa, Ba (restoring to 4.2.1), Ca, D, and E only.

    Not Jailbroken:
    -4.1 and lower: Do parts Ab, Bb (updating to 4.2.1), Ca, D, and E only.

    -4.2.1: Do parts Ca, D, and E only.

    Verizon/CDMA iPhone 4
    Coming Soon.

    iPod touch 1st generation

    Already Jailbroken:
    -3.1.2 and lower: Do parts Aa, Ba (restoring to 3.1.3), Cb, D, and E only.

    Not Jailbroken:
    -3.1.2 and lower: Do parts Ab, Bb (updating to 3.1.3), Cb, D, and E only.

    -3.1.3: Do parts Cb, D, and E only.

    iPod touch 2nd generation MB & MC Models

    Already Jailbroken:
    -4.2.1 and lower: Do parts Aa, Ba (restoring to 4.2.1), Cb, D, and E only.

    Not Jailbroken:
    -4.1 and lower: Do parts Ab, Bb (updating to 4.2.1), Cb, D, and E only.

    -4.2.1: Do parts Cb, D, and E only.

    iPod touch 3rd & 4th generation

    Already Jailbroken:
    -4.2.1 or lower: Do parts Aa, Ba (restoring to 4.2.1), Ca, D, and E only.

    Not Jailbroken:
    -4.1 and lower: Do parts Ab, Bb (updating to 4.2.1), Ca, D, and E only.

    -4.2.1: Do parts Ca, D, and E only.

    iPad 1st Generation

    Already Jailbroken:
    -4.2.1 and lower: Do parts Aa, Ba (restoring to 4.2.1), Ca, D, and E only.

    Not Jailbroken:
    -3.2.2 and lower: Do parts Ab, Bb (restoring to 4.2.1), Ca, D, and E only.

    -4.2.1: Do parts Ca, D, and E only.

    Apple TV 2nd Generation
    Coming soon.

    Part Aa: Pre-Update/Restore To-do List for Already Jailbroken Devices

    -So the restore process doesn't take forever, delete some of those apps you don't use much. Not only is that making the restore time shorter, but you'll free up space and you'll be a bit more organized! Remember to also delete them from iTunes. If you want to delete an app you paid for, don't worry because you can always download it again.

    -From my experiences, you don't really have to worry about losing app data. But, just in case, I did email myself my notes. But, after restoring, everything (including my notes) were still there. Just make sure you sync with iTunes, explained in the following bullet.

    -Sync with iTunes one last time to make sure your device is backed up. We wouldn't want to lose any data, would we?

    -Backup your jailbroken apps with AptBackup so you don't have to find and install all of them again. Find it on Cydia for free.

    Okay, now we're ready to restore. If I forgot anything, please tell me!


    Part Ab: Pre-Update/Restore To-do List for Non-Jailbroken Devices

    -So the restore process doesn't take forever, delete some of those apps you don't use much. Not only is that making the restore time shorter, but you'll free up space and you'll be a bit more organized! Remember to also delete them from iTunes. If you want to delete an app you paid for, don't worry because you can always download it again.

    -From my experiences, you don't really have to worry about losing app data. But, just in case, I did email myself my notes. But, after restoring, everything (including my notes) were still there. Just make sure you sync with iTunes, explained in the following bullet.

    -Sync with iTunes one last time to make sure your device is backed up. We wouldn't want to lose any data, would we?

    Okay, now we're ready to restore. If I forgot anything, please tell me!


    Part Ba: Restoring your Device

    Step 0: Make sure you update iTunes to the latest version.

    Step 1: Connect your iDevice to the computer (using the USB cord provided by Apple

    Please Register or Log in to view images

    ) and open up iTunes.

    Step 2: Now, click the name of your iDevice in the little devices list.

    Please Register or Log in to view images



    Step 3: You should now see your iDevice's page. Click here for an example.

    Step 4: Okay now for the good stuff. Click the "Restore" button.

    Please Register or Log in to view images



    Step 5: If iTunes asks you to backup your iPod, say yes!

    Please Register or Log in to view images



    Step 6: Once you're done, you can now use your iPod again. Just for fun, I was playing around with my iPod in its "non-jailbroken" form. Good times, good times.

    Whew! Time to jailbreak!


    Part Bb: Updating your Firmware

    Step 0: Make sure you update iTunes to at least 9.2.

    Step 1: Connect your iDevice to the computer (using the USB cord provided by Apple

    Please Register or Log in to view images

    ) and open up iTunes.

    Step 2: Now, click the name of your iDevice in the little devices list.

    Please Register or Log in to view images



    Step 3: You should now see your iDevice's page. Click here for an example.

    Step 4: Okay now for the good stuff. Click the "Update" button. If you have already downloaded the firwmare you will be updating to, shift+click the update button and find the firmware.

    Step 5: If iTunes asks you to backup your iPod, say yes!

    Please Register or Log in to view images



    Step 6: Once you're done, sync your iPod to the latest backup, and you can now use your iPod again.

    Whew! Time to jailbreak!

    Part Ca: How to Jailbreak with Greenpois0n!
    Guide in just a few minutes.....

    www.greenpois0n.com

    Part Cb: How to Jailbreak with Redsn0w!

    Okay, it's time to jailbreak!

    Note: If you have an MC model iPod touch 2nd gen, your JB will be tethered.

    Step -2: Download Redsn0w for your OS using one of the links here.

    Step -1: Download your current iOS firmware from here.

    Step 0: Connect your iOS Device and open RedSn0w.

    Step 1: When RedSn0w asks for an .ipsw, open the firmware we downloaded early.

    Step 2: Check some of the things you want, like Verboose boot or multitasking for 2nd gen devices. Just make sure you check "Install Cydia".

    Step 3: Restore to the firmware created with DFU mode and you are jailbroken!

    If you didn't understand my guide, here are two other guides for RedSn0w Beta:
    winner00's guide
    bradabab's guide

    Part Cc: How to Jailbreak with JailbreakMe.com

    This is a very cool way to jailbreak! This website, originally from the 1.x days, has been updated by Comex and the iPhone Dev-Team to work with 4.0!

    Step 0: Make sure you are not jailbroken before continuing.

    Step 1: Open up Safari on your iDevice, and go to JailbreakMe.com.

    Step 2: Slide to Jailbreak, just like you would if you were unlocking your device.

    Step 3: A little bubble will pop up, telling you that it is downloading. Once this is complete, it will tell you to sit tight, because it's jailbreaking your device. Once this is complete, go back to your homescreen and you will find your friend Cydia!

    If you have any problems, like once you slide to jailbreak, it does nothing but show a purple picture, or when it starts downloading, it says server timed out, first try going to JailbreakMe.ModMyi.com instead of JailbreakMe.com. If this fails, go to Settings>Safari, then clear your history, cache, and cookies, then reboot your device. Then try JailbreakMe.com or JailbreakMe.ModMyi.com again. If it fails, the server is probably high stress, so you might want to wait a few hours before trying again.

    Part D: Post-Jailbreak To-do list

    Welp, you're done. You could run off into the wilderness and scream "Woohoo! I'm jailbroken! Suck it, Apple!", but there's a few things left.

    -If you haven't already, backup your SHSH blobs! This will allow you to restore to the firmware you upgraded to when ever you want to. And, if you are using limera1n to jailbreak your MC model device, 4.1 SHSH blobs will allow you to be untethered forever, because the exploit limera1n uses is tethered without a userland exploit from Comex. To do this, follow Extra A.

    -If you were jailbroken before, restore your jailbroken apps from AptBackup. If you are now on 4.x, I recommend you not just restore from the backup. You may screw up your device, and have to restore. You need to make sure that the JB apps are compatible with 4.x with this. Make sure you uncheck the apps that aren't compatible before you restore from a backup. But, if you would like, you could do what I did and use the backup as a list of what you had before, then manually install anything that you want after checking to make sure it works with iOS 4.

    -If you're missing that app you deleted earlier, you can restore it if you'd like. Just connect your iPod to iTunes, go to its device page, and click on the "Applications" tab. Then scroll down the list and look for the app you deleted. It should be unchecked. All you have to do is recheck it and sync your iPod. If you deleted it from iTunes, just redownload it.

    -If you (for some odd reason) lost any of your data (like your notes), go over to your email and copy and paste them back!

    -If you have an iPhone and you would like to unlock it, make sure the repo "repo666.ultrasn0w.com" is added, then install ultrasn0w. Make sure you be careful when updating your firmware, and you especially need to back up you SHSH blobs for firmwares that the unlock works on.


    Part E: The Future

    -If in the future, iTunes says "There is an iPod software update avaliable", check "Do not show this again" and click no unless you want to lose your jailbreak.

    -If you do happen to upgrade to an unjailbreakable firmware, you should be able to downgrade back to a jailbreakable firmware IF and ONLY IF you weren't stupid enough to not back up your SHSH blobs. If you have an MB model device, you can use Pwnagetool to downgrade. Follow Extra B if you ever need to restore to a firmware you saved your blobs for.

    -Whenever you upgrade your device to a new firmware, make sure you save you SHSH blobs with Extra A, even if you're not jailbroken.

    -Also, don't update iTunes unless the iPhone Dev Team, Geohot (yea.... no.), or a reputable member of this website gives the "Go ahead!". You never know, Apple may try to be sneaky and block jailbreaks using iTunes.

    -One more thing, the iPhone Dev-Team has informed the community about a security hole in iOS 4.0.1 and below that can be used to inject malicious code via a PDF file. This is also the exploit used in JailbreakMe.com. To help prevent this from happening, install "PDF Loading Warner" from Cydia or Rock. This will inform you if a PDF file is trying to open via a popup message. Note, this exploit can be used to inject malicious code no matter the status of the device, e.g. Jailbroken or non-jailbroken; redsn0w or jailbreakme.com, so it is recommended that this is installed on any jailbroken device.

    Okay, that's it for real. Thanks for following my guide! Tell all of your friends!


    Extra A: How to save you SHSH blobs

    Do you want to save your SHSH blobs? Well, you have come to the right place! Here, I will be showing you two methods of how to save your blobs. Read on to choose which method to use.

    The first method, and my personal favorite, is TinyUmbrella. It combines The Firmware Umbrella and TinyTSS, allowing it to not only save your blobs, but host them too. This is the best way to go. Period. Why? It works jailbroken or not, and it saves your blobs in two places: Cydia and your computer.

    The second method would be to save using Cydia. I don't recommend this, unless you have to. It is probably a bit easier the TinyUmbrella, but not by much. The only reason you should use Cydia is if the firmware signing window is about to close and you don't have access to a computer to use TinyUmbrella. I'm not saying Cydia is that bad, but it's nice to have a local copy of your blobs incase Cydia is bombarded with requests.

    So, once you have chosen your method, find it below, and begin!

    Method 1: TinyUmbrella

    Step 0: Download TinyUmbrella using the links on the side of this page.

    Step 1: Open the program that was included in the download.

    Step 2: Connect the iOS device you want to save the SHSH blobs of.

    Step 3: In the top, left hand corner, click "Save My SHSH", and let it do its thing.

    Congrats! Now you have saved your SHSH blobs, and you will be able to restore to the firmware you are on forever!

    Method 2: Cydia

    Step 1: Open Cydia on your iOS device.

    Step 2: Tap "Make my Life Easier!", and you're done!

    Congrats! Now you have saved your SHSH blobs, and you will be able to restore to the firmware you are on forever!


    Extra B: Restoring to a firmware that you saved SHSH blobs for

    Did you accidentally upgrade again? Did you save you SHSH blobs? If you said yes to those questions, you are eligible for a downgrade!

    Anyways, I won't be writing this part of the guide myself until I actually have to use it. So, I found a great guide on how to do this, but it uses TinyTSS instead on TinyUmbrella, which is okay, but that's what I wrote about in Extra A. So, if someone would do a tutorial on TinyUmbrella, it would be appreciated. The link to it is below.

    Downgrade from iOS4 to 3.1.* (requires SHSH blobs) by reddevilmaestro


    Extra C: How to find your device model and firmware
    Coming soon!




    Thanks for reading my guide, I hope you liked it. Please don't post this guide on any other site; just link it.

    Sites allowed to serve this guide directly:
    http://www.ifans.com
    http://www.dsifanboy.com
    http://www.modmyi.com
  2. FaL LeGeNd

    FaL LeGeNd Member

    Joined:
    Jul 29, 2010
    Messages:
    391
    Likes Received:
    0
    Device:
    iPhone 3GS (Black)
    WALL OF TEXT!!!!!!!!!!!

    Very nice guide

    Please Register or Log in to view images


    It's obvious you put a lot of hard work into it. Just so you know, MC models won't be supported in greenpois0n.
  3. tanktan38

    tanktan38 Active Member

    Joined:
    Dec 29, 2009
    Messages:
    1,085
    Likes Received:
    15
    Device:
    3G iPod touch
    Thanks, yea, I gotta fix my little catch phrase thing up there. It's already fixed inside of the guide, though.
  4. tw23

    tw23 Community Development Staff Member

    Joined:
    Sep 11, 2010
    Messages:
    4,622
    Likes Received:
    510
    this should be a sticky
  5. tanktan38

    tanktan38 Active Member

    Joined:
    Dec 29, 2009
    Messages:
    1,085
    Likes Received:
    15
    Device:
    3G iPod touch
    It will be; just wait. This is the 3rd revision of my guide. The only reason I post it in new threads each time is to move it out of the 3.x Jailbreak section and whatnot.
  6. tanktan38

    tanktan38 Active Member

    Joined:
    Dec 29, 2009
    Messages:
    1,085
    Likes Received:
    15
    Device:
    3G iPod touch
    Updated to include limera1n. Can a mod resticky this, please.
  7. tw23

    tw23 Community Development Staff Member

    Joined:
    Sep 11, 2010
    Messages:
    4,622
    Likes Received:
    510
    thank u... plz make this a sticky mods.. this is a very helpful thread. THANKS!!!

    Please Register or Log in to view images

  8. b-mac 39

    b-mac 39 Well-Known Member

    Joined:
    Dec 15, 2009
    Messages:
    5,809
    Likes Received:
    60
    Device:
    iPhone 4S (White)
    I knew I remembered this thread from somewhere...
  9. tanktan38

    tanktan38 Active Member

    Joined:
    Dec 29, 2009
    Messages:
    1,085
    Likes Received:
    15
    Device:
    3G iPod touch
    I just repost it in the section of the newest firmware when or near when a jailbreak for it is released.
  10. XxRedRumxX

    XxRedRumxX Well-Known Member

    Joined:
    Dec 18, 2009
    Messages:
    6,666
    Likes Received:
    1,079
    Device:
    Samsung Galaxy Nexus
    Edit the iPod Touch 4G part too.

Share This Page