Reversing Google’s IPhone Voice Search

November 18, 2008 by Eliot 4 Comments

Google recently updated their Google Mobile App with a couple new features. Voice Search automatically starts listening when you raise the phone to your ear. Just say what you’re looking for, and it will poll Google and return the results. The app leverages Google’s voice recognition engine, which they’ve been training with Goog-411. [Andy Baio] has been experimenting with audio transcription and was curious what the new app was doing behind the scenes. He started by sniffing the packets as they traversed his network. Unfortunately, the size of the data packets transmitted is so small that he’s almost certain he’s missing something. He’d appreciate any help in this endeavor. Part of the problem might be Google getting special treatment and using undocumented iPhone SDK features.

Google Explains Android Patches

November 13, 2008 by Eliot 6 Comments

g11

Google has been trickling out info about what they’re actually fixing in the G1 firmware updates. Before RC29, users were able to bypass the phone lock using safe mode. RC29 also brought WebKit up to date, presumably patching the bug [Charlie Miller] found. RC30 takes care of root console problem. Unfortunately there are very few details as to what or how particular items were broken. This release method leaves much to be desired; having the official Android Security Announcements group be the absolute last place to get security news is asinine.

[photo: tnkgrl]

How To Destroy A Filesystem

November 9, 2008 by Eliot 29 Comments

rmrf

The G1 ‘execute every command you type‘ bug naturally spawned ‘rm -rf /’ jokes. rm is the Linux command for deleting files. The -r and -f flags will cause it to remove files recursively and ignore confirmation. Executed as root it will annihilate the entire filesystem. Won’t it? [Jon Hohle] decided to test exactly how destructive the command was to *nix systems. How functional would the system be afterwards? He tested it side by side with the Windows equivalent, both ‘format c:’ and ‘del /F /S /Q’. He wanted to see what protections were available and what would be left working. Linux ended up completely broken while Windows, thanks to file locking, actually shutdown cleanly… and never came back. Some OSes, like Solaris, refuse to run the command ‘rm -rf /’ to prevent accidents.

Android Executes Everything You Type

November 9, 2008 by Eliot 11 Comments

This is one of the more bizarre bugs we’ve ever heard. The T-Mobile G1 has an open root shell that interprets everything you type as a command. It was discovered when a user just happened to type the word ‘reboot’ in a conversation and the phone immediately rebooted. A patch has already been rolled out to fix this issue. It also buttons up the earlier telnetd SUID problem.

[photo: tnkgrl]

Getting Root On The G1

November 5, 2008 by Eliot 27 Comments

If you’ve been holding off on a T-Mobile G1 purchase because you didn’t like the apparent user restrictions, there’s some good news. The Android powered phone comes with an easy button for getting root. Install a terminal app and you can manually start the telnetd service. All that’s left is telenetting into the device and it’ll give you root level access.

Android Source Code Released

October 21, 2008 by Eliot 14 Comments

[youtube=http://www.youtube.com/watch?v=7Y4thikv-OM&fmt=18]

Google has officially released the Android source code. While the T-Mobile G1 is being released tomorrow—some already have it—it is just one Android device. The availability of the source means that the platform could be port to almost any device. It’s a complete embedded Linux package and we’ve already seen it running on the N810. We can’t wait to see what hacks come out of this.

Android Hacks Roundup

October 10, 2008 by Patrick Lokken 5 Comments

Our friend [Jeffrey Sharkey] hacked the iTunes remote control protocol and produced his own version for Android, one of the smartphone OSes we just covered. He pored over dumped packets for a few days and wrote a client which is of course GPL’d. Besides that, he’s been busy winning the Android Developer Challenge. His app, Compare Everywhere, was one of the top 10 winners, netting him a cool $275,000. This ingenious bit of code deciphers barcodes scanned using a cell phone camera and then finds prices for that item at every nearby store that sells it.

The other winners wrote apps that do cool things such as one-click cab ordering, locate missing children, and find parties. Check out all 50 finalists and winners here.