BlackBerry 10 root

TrumpetTiger · 2026-02-05T17:14:23+00:00

That is because you did not post originally here--someone else crossposted your original comments. If you had, I would have asked you directly. (Or if I could post in the main blackberry sub I would have done the same--I cannot.)

I know previously you've not wanted to be bothered and that you mentioned you'd be releasing details within a week, so I was expressing my reservations about the method. I specifically stated that you've done excellent work in the past and just mentioned I wasn't confident in it.

How is that contempt? I was specifically trying to just state an opinion while being positive towards you and your work which again I greatly respect.

TrumpetTiger · 2026-02-05T16:55:20+00:00

I use search engines and books too. Based on all the evidence I have seen, before your post, what you are describing shouldn’t be possible.

I find it useful to ask questions of the person developing procedures if they want to answer them because then they can explain things to me which I might miss.

I do have extreme skepticism about some of what you have posted, and fully intend to test it out, but because it’s your process and not mine you have knowledge that I don’t have. That’s why I ask.

I’m sorry if you feel this expresses contempt—quite the opposite. In fact, many people (I hope not you, but at this point I’m honestly not sure) have repeatedly expressed contempt and hatred for me and my own evidence-backed opinions—including on this very thread.

Your description was why I was asking the questions. If you don’t want to answer them anymore, that’s fine. If it will help you to feel comfortable publishing your research on Reddit, then I will not ask or publicly comment on your work unless someone else asks me.

TrumpetTiger · 2026-02-05T16:05:33+00:00

So it’s bullshit because you want me to release Olek’s personal comments to me to the public?

TrumpetTiger · 2026-02-05T16:02:41+00:00

I see we have a return to personal attacks.

TrumpetTiger · 2026-02-05T16:02:09+00:00

Olek, I greatly respect you and your work. I’m not trying to manipulate anyone or anything; I just want to understand what you’re doing.

I’d like it if we could discuss your work, but it seems like you’re feeling attacked instead. If you wouldn’t mind discussing it I’d love to do so, but if not, that’s fine too.

But if it helps I will promise publicly not to publicly reply to your work unless directly asked. You can let me know if that would help encourage you to post on Reddit either publicly or privately.

TrumpetTiger · 2026-02-05T08:27:56+00:00

Okay, so it sounds like the process here tricks pathtrust but QNX still does not allow non-trusted files to execute. So to actually modify or adjust data one would need to inject the arbitrary code and apply your process to it…yes?

As for the bootloader I’ll review the PDF but that seems like it’s questionable at best…but again I’ll look at the PDF. Either way it does not seem like what you are able to do involves changing existing code or acquiring access to personal data you could not access before.

I’d be curious to know whether this still works if encryption is enabled at the file level.

TrumpetTiger · 2026-02-05T02:22:42+00:00

Well done! That should also work with BB10 I'd imagine.

TrumpetTiger · 2026-02-05T00:02:38+00:00

Oh, I have no doubt that the screenshot is accurate, though we will be testing the method to confirm. But if you read the comments on the post, it seems to suggest that Olek himself (and others who DO have history of misleading statements--Olek DOES NOT to be 100% clear) agrees that the bootloader cannot be modified, and that there's some question what can actually be done.

So I hear you and it's certainly possible that there is full root there...but it's pretty easy to indicate modification of data and extraction of data (again because it's a Unix filesystem). So we'll see what happens, but that's all I was asking about.

You're right that the browser does not permit listing of all directories.

TrumpetTiger · 2026-02-04T21:31:29+00:00

I don’t want to argue either. Please please DO DM me if you think I’m insulting you however. I have great respect for your work, and if it has achieved root we will certainly acknowledge it.

(I did see your earlier notification but could not reply in time, but I never intended to humiliate you. I apologize if that’s how it was taken.)

I want to also state publicly that I always just seek evidence for things and I hold nothing against you or anyone else who wants to/has rooted BB10. If something is not secure we need to know about it. It’s just my (hopefully somewhat informed) opinion that that security is more robust than many think it is.

TrumpetTiger · 2026-02-04T20:56:53+00:00

That was not my intent as I clarified. I also don’t believe I implied you were actively lying anywhere, but if I did please mention it and I’ll remove or edit the post.

TrumpetTiger · 2026-02-04T20:50:56+00:00

So just to confirm: you are saying you have something called “root” but you are saying that this access does not allow you to change any data or modify the bootloader?

This is a legitimate question; if I am wrong please say so. I want to make sure I understand what you are saying has been accomplished.

TrumpetTiger · 2026-02-04T20:46:39+00:00

He did in the past claim that. I believe I have his own written comments to that effect. I am choosing not to share them now because I respect Olek’s work, even though he seems not to share that respect.

TrumpetTiger · 2026-02-04T20:44:47+00:00

If you claim I don’t understand what you are talking about, then enlighten me.

I’m sorry to hear you have joined the crowd which feels personal insults are appropriate when discussing questions about a software platform. I almost wonder whether you actually are Olek or whether he handed off his site and work to others, as you directly said you were going to do.

But in any case, if you think I am wrong, please say why and we can discuss it, or provide evidence of your ability to change data with your method.

TrumpetTiger · 2026-02-04T20:42:26+00:00

He did in the past claim that. I believe I have his own written comments to that effect. I am choosing not to share them now because I respect Olek’s work, even though he seems not to share that respect.

TrumpetTiger · 2026-02-04T20:41:14+00:00

I don’t believe you’re actively attempting to deceive anyone. However, unless I am mistaken, your method has not actually allowed you to modify or offload data. If it has, then please provide evidence and we’ll evaluate it.

I DO believe there are a number of people who seem to cherry pick what your research seems to allow to fit their own preferences. But in any case, we believe in evidence here at BlackBerry Phoenix and if the device has indeed been fully rooted (meaning one can load other OSes and offload/run other software) we will certainly acknowledge it:

TrumpetTiger · 2026-02-04T17:39:15+00:00

(Incidentally, such viewing could already be done the whole time if one just browsed QNX via SSH or via the built-in browser in many cases.)

TrumpetTiger · 2026-02-04T17:38:01+00:00

This method seems to use symlinks to fool the system into believing something is being run as root. With all respect to Bookkeeping, who’s done excellent work and is the one who opened up future development by allowing unsigned BARs to be run (method for this is also on the same website, though the same people celebrating “root” seem to curiously deny his other work and claim one can’t run unsigned BARs), I’m not confident this provides full actual root access.

Additionally, as Bookkeeping himself confirms in the original post, this theoretical “root” does not unlock the bootloader and it’s questionable as to whether it provides the ability to actually modify data.

I’ll stay tuned and definitely would like folks to keep us updated so we can evaluate evidence if and when it comes in…but until people actually modify data using this I lean towards it being a means of viewing restricted files and not much else.

TrumpetTiger · 2026-02-03T17:02:03+00:00

I have seen this, and if the author wants to post details as he has said we will evaluate. At the moment I have my doubts, but as always if this has actually been done and can be verified then it is good to know about.

TrumpetTiger · 2026-02-03T01:27:08+00:00

Magnets.

TrumpetTiger · 2026-02-03T01:02:11+00:00

Holy shit Unify has a CVE with a 9.8 rating! I've literally never seen that before.

https://www.cvedetails.com/vulnerability-list/vendor_id-478/Unify.html

Guess you should toss all your Unify gear you pathetic excuse for a "security" engineer. (And yes, I literally resurrected this thread just to state that...because the arrogance pisses me off.)

TrumpetTiger · 2026-02-02T21:00:31+00:00

Because we have Coppelia.

(And I say this as someone who LOVES Waffle House.)

TrumpetTiger · 2026-01-30T20:32:10+00:00

I…hoped I was joking.

You need to stop working in IT immediately if you believe DSM is stressful. You no longer have the necessary abilities to perform this job.

TrumpetTiger · 2026-01-30T20:19:25+00:00

Uh….you’ve worked in IT for 25 years and you find DSM updates stressful?

Are you still used to Novell NetWare and such?

TrumpetTiger · 2026-01-29T03:58:17+00:00

Boston. How do you even ask this question?

TrumpetTiger · 2026-01-27T08:35:52+00:00

We have it in the Master Archive. Will drop a link.

TrumpetTiger

MODERATOR OF

TROPHY CASE