That depends on what you mean by security.Is there any security risk in using the JuopunutBear hboot over the original, or the use of the 4ext recovery manager?
I more meant does using the JuopunutBear bootloader and 4ext open your phone to the possibility to be exploited. I'm sure that the programs are trustworthy, I'm just paranoid of giving "unknown" programs open access to my phone. In other words, is there risk of malevolent code that could be installed, and thus garner passwords, personal info, etc. In addition, what is gained by getting S-OFF, over just the HTC unlock method? What is the benefit?That depends on what you mean by security.
As far as the integrity of your phone, neither method is going to damage it but the wire trick might corrupt the SD card contents. That can easily be fixed by formatting and restoring the SD card. 4EXT recovery is just a tool to take advantage of being rooted and S-OFF, and I don't think it inherently represents a security risk.
If you're asking if being rooted and S-OFF has security risks associated with it, to some extent it does, and some software doesn't run on rooted devices. the "S' in S-ON stands for security, in this case to protect the NAND memory of the phone, and once you turn that off you need to be a lot more careful about how and what you flash as I indicated in the warning on the OP of this thread.
Some companies and government agencies don't allow rooted phones to be used on their networks so you might want to check that if you work for one of those organizations. Rooting (and jailbreaking for iPhones) has generally been associated with hacking, even though that's not why the majority of us root and gain S-OFF for our phones.
Does that answer your question?
ramjet73
Not specifically, but generically rooting and gaining S-OFF for your phone by definition makes it easier for you to modify, and in turn potentially for malware to makes changes that couldn't be made if you stay stock. You definitely have to be a lot more careful about what you install and how you install it once you are rooted and S-OFF.I more meant does using the JuopunutBear bootloader and 4ext open your phone to the possibility to be exploited. I'm sure that the programs are trustworthy, I'm just paranoid of giving "unknown" programs open access to my phone. In other words, is there risk of malevolent code that could be installed, and thus garner passwords, personal info, etc. In addition, what is gained by getting S-OFF, over just the HTC unlock method? What is the benefit?
I just get paranoid, but the files in this guide should be clean? It's the programs/ROMS down the line i need to worry about?Not specifically, but generically rooting and gaining S-OFF for your phone by definition makes it easier for you to modify, and in turn potentially for malware to makes changes that couldn't be made if you stay stock. You definitely have to be a lot more careful about what you install and how you install it once you are rooted and S-OFF.
I'm not going to try to convince you to do the procedure as that is a decision only you can make. Reading this article may help and I'm sure you can find more references and opinions on the risks and benefits of rooting by searching the Internet.
ramjet73
Yes, the QADERSO.zip file is the only download required for this guide and it was scanned multiple times for malware, and I haven't had any reports of problems with the files contained in that .zip.I just get paranoid, but the files in this guide should be clean? It's the programs/ROMS down the line i need to worry about?
Ok guys, I need help. There are too many guides, tutorials and suggested methods that I can't chose the right one.
I have a EVO 3d from sprint.
The bootloader reads....
-Revolutionary-
SHOOTER XC SHIP S-OFF RL
HBOOT 1.40.1100
RADIO-1.09.00.0706
eMMC-bootJun 8 2011,17:20:22
This guide is for S-ON users, but I'll try to help anyway.
You are already S-OFF so you should be OK running the ICS ROM's except for a few that require the 1.58 bootloader. In your situation, I would recommend running the RUU.exe contained in the QADERSO.zip download for this guide from Windows to make sure everything is in sync with the official Sprint ICS build, then flashing the JBear Sprint ICS bootloader from post #7 of mpgrimm2's hboot thread linked a few posts above and on the OP of this thread after Step3. If you want to run GB or AOSP ROM's later you will need to downgrade your hboot to a lower version as documented in the hboot thread.
Then install 4EXT recovery by putting the phone into fasboot USB mode and using the "fasboot flash recovery recovery.img" as documented in Step2 of this guide. After that you can either continue with Step2 of this guide and root the stock ICS ROM, or use 4EXT recovery to flash a custom rooted ROM of your choice.
You won't need to do Step3 of this guide since you are S-OFF already.
ramjet73
No. That's an urban myth.So forgive me for pestering you again kind sirs, but.... Won't flashing one of jbeats hboots remove s-off??
No. That's an urban myth.
The only way to remove S-OFF and set radio security back to S-ON is to use the "fastboot oem writesecureflag 3" command and you don't want to do that unless you have a stock signed bootloader installed, such as the 1.58 bootloader installed with the RUU, or you will brick the phone.
ramjet73
Ah, ok. I see. So I revised my post above yours with a few more questions.... Mind answering those as well? Sorry. Thanks for the quick response though!
Regarding the hboots, I recommended getting them from post #7 of mpgrimm2's thread on bootloader differences in my original response to your first post. That thread explains the difference between the various bootloaders and gives you downloads for all of them in one place. The unlimited.io site has only the JBear hboots with no explanation of the differences.
I also recommended starting with the JBear Sprint ICS (1.58.5858) version, but you may need to downgrade if you decide to run GB or AOSP ROM's.
ramjet73
Yes, the QADERSO.zip file is the only download required for this guide and it was scanned multiple times for malware, and I haven't had any reports of problems with the files contained in that .zip.
As far as future program and ROM/kernel files go, there are apps from some pretty well known names in malware detection available for Android including Avast and Kaspersky and I would suggest you look into installing one of those, even if you stay stock.
ramjet73
Yeah, I rooted today using the guide although I kept the stock bootloader instead of the modified Jbear one. Is it okay that the bootloader says Locked but I have S-OFF?
I actually also downloaded the Avast security app today since I heard it was pretty good with a firewall and anti-theft.
Thanks for the help.
To flash an HBOOT from fastboot while S-OFF:
1. Put your phone in "fastboot usb" mode
2. Type the following cmds into cmd prompt (windows) or terminal (linux):
fastboot devices <-- to verify connectivity to PC: it should return your serial number
fastboot erase cache
fastboot oem rebootRUU
fastboot flash zip new_hboot.zip
fastboot reboot
The hboot filename can be anything you want, and doesn't necessarily have to be "PG86IMG.zip" using this method.
If you need to flash another ROM before the reboot or do something else in recovery, you can issue the "fastboot boot recovery.img" command instead of "fastboot reboot" to go directly to your custom recovery since there is no "fastboot reboot-recovery" command.
Start by installing the Sprint 2.89.651.2 RUU.exe or Virgin Mobile 1.13.652.2 RUU.exe from Windows. It doesn't take much longer than flashing a stock ROM and includes all the firmware so the phone will be totally in sync with the official ICS build. Flashing the RUU can also resolve problems with the HTC unlock process if the OTA was used to update to the official Sprint ICS version or a custom recovery and ROM have already been flashed.VM users: If the November VM OTA update (1.14.652.0) was installed and the phone is rooted with a custom recovery and ROM, please see this post for instructions on how to prepare the phone to run the RUU.exe. If both the November and March OTA (2.95.652.5) were installed there is no way to flash the RUU so proceed to Step2, or if already rooted flash a stock rooted ROM from this post then go directly to Step3.
Sprint users: If the March OTA ((2.95.651.5) is installed and the phone is unrooted proceed directly to Step2. If the March OTA is installed and it's rooted see this post for instructions on how to prepare for flashing the RUU.
VM users: Now would be a good time to download and install the OTA updates since they will flash updated firmware and patches to the stock software, and cannot be installed once a custom recovery is flashed in Step2. Just go to Settings/System updates/HTC Software, press check now, then download each of the two OTA updates (November and March) and follow the instructions to install them. The software patches will be overridden once a custom ROM is flashed, but the firmware updates will remain and should improve radio reception.
Sprint users: Installing the March OTA at this point will avoid having to flash the firmware only zip file for that update after getting S-OFF. To do that go to Settings/System updates/HTC Software, press check now, then download the update and follow the instructions to install it.
The wire trick is not difficult, but it can be a little confusing. It would be worth spending a little time reviewing the tips and references for Step3 at this point so the process goes smoothly.Important Note:
The unlimited.io team has withdrawn support for all Windows versions of the JBear utility (controlbear.exe). Do not go to their IRC channel for support while following this guide as they will not be willing to help anyone using Windows instead of Linux for the wire trick. If you are unable to get S-OFF using this guide you will need to flash the RUU again and go to the the unlimited.io website to download a Linux version and follow their procedures.
Since the JuopunutBear wire trick now requires Ubuntu Linux to use the supported procedure Evo 3D users might also want to consider unknownforce's Ultimate Recovery Tool 3.0 which has recently been updated and streamlined. Unfortunately it won't work for Evo V 4G users since there is no Virgin Mobile GB RUU that can be used as part of that S-OFF process.
To flash an HBOOT from fastboot while S-OFF:
1. Put your phone in "fastboot usb" mode
2. Type the following cmds into cmd prompt (windows) or terminal (linux):
fastboot devices <-- to verify connectivity to PC: it should return your serial number
fastboot erase cache
fastboot oem rebootRUU
fastboot flash zip new_hboot.zip
fastboot reboot
The hboot filename can be anything you want, and doesn't necessarily have to be "PG86IMG.zip" using this method.
If you need to flash another ROM before the reboot or do something else in recovery, you can issue the "fastboot boot recovery.img" command instead of "fastboot reboot" to go directly to your custom recovery since there is no "fastboot reboot-recovery" command.
There are actually two types of S-OFF, one is generally known as an unlocked bootloader (hboot S-OFF) which is required to be rooted with S-ON, and the other is radio S-OFF which allows access to more partitions in the phone's NAND memory. If you are interested in more detail on the differences this post by unknownforce has some good explanations.What is the real benefit of S-Off? I am 1.5 S-On and know which ROM's I can flash and which ones not to.