Symbian安全机制被破解?
11月 7th, 2007
确实,我在N73手机上获得了所有的Capability,而我的N95因此而“牺牲”。
所有的焦点在于 SWIPOLICY.INI 。
When installing native Symbian OS packages (.SIS files) onto a device, the code performing the installation (the Software Installer, sometimes referred to as SWI) first reads the settings in a policy file in ROM (swipolicy.ini) to determine how the installation should proceed. Swipolicy.ini is configured by a device manufacturer prior to device shipping.
利用的就是这个漏洞:更新固件的时候,在下载完但还没有更新到手机中之前,修改swipolicy.ini文件,使他包含所有的capabilitiy。
所以,严格意义上应该不算破解Symbian的安全机制,因为影响到的只有一个手机。但是对于开发者来说还是相当有诱惑力的,可以试验许多以前不可能在Symbian 9上实现的功能,同时你也获得了手机上所有的DLL文件!
Popularity: 4% [?]
Entry Filed under: Symbian行业动态
Leave a Comment
Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <code> <em> <i> <strike> <strong>
Trackback this post | Subscribe to the comments via RSS Feed