Many of you would have rejoiced when Comex released3.0. Not only did it bring what will always be considered the easiest possible, but it finally brought an jailbreak to the 2, which had proved a very tough nut to crack.
iOS 4.3.5, which addressed additional security (SSL vulnerability) flaws.was very quick to release .4, which plugged the PDF exploit which allowed the jailbreak to occur in the first place under the disguise of "security updates", closely followed by
What that means is, those of you running 4.3.4, 4.3.3, or indeed any prior versions of4, you still have security holes which could potentially be taken advantage of by hackers. In order to remedy this, you would theoretically need to upgrade to 4.3.5 to be up-to-date in terms of security.
That just doesn’t work for those enjoying anjailbreak on .3 or below. Anyone who’s dealt with a tethered jailbreak will know that it takes away the convenience of owning a device that does everything except make toast because it has to be reconnected to a computer every time a reboot is required. Sometimes, the benefits of the jailbreak are outweighed by the annoyance of it being tethered, and many opt to stick with untouched firmware until the next untethered solution is released.
The security issue on pre-4.3.5 devices is an SSL vulnerability known as "CVE-2011-0228", and luckily for those of you that don’t fancy getting caught in the dire straits of tethered jailbreaking, there is a simple solution on hand to fix the issue.
iSSLfix, which is available in, will bring your device’s security level on par with without the need to update. It can be found on the BigBoss repo, which you will already have installed on your source list unless you’ve deleted it. You will have to momentarily change your file view settings to Expert if you are currently onSimple in order to locate the file in a search. This can be done by going to Manage > Packages, and tapping theSimple button in the top right-hand corner, which will expose the "Expert" files within .
Obviously you’ll need to have a jailbroken, iPad or to install iSSLfix from Cydia.
Alternatively, you can pick up the .deb file and SSH it into your device.
Those running the latest version ofBeta will not need this package as it is already patched.