1. Home
  2. iOS

How To Fix iOS 7 SSL / TLS Security Bug Without Upgrading To 7.0.6

Before the start of the previous weekend, the blogosphere woke up to the news of Apple releasing iOS 7.0.6 with a brief release note mentioning bug-fixes for an SSL-related exploit. Nothing to be scared about, right? Well, no. As it turns out, the exploit leaves your device wide open to malicious ‘man-in-the-middle’ attacks on public WiFi networks.

ios 7 patch ssl tls exploit under 7.0.6 2

I became aware of this fact on the day iOS 7.0.6 was released, but I chose not to update my iPhone 4S for two reasons: 1) if it hasn’t affected me so far – considering the exploit has been there since 2012 – it probably won’t affect me in the near future, and 2) updating to iOS 7.0.6 would require me to re-jailbreak my device, and install all jailbreak-only tweaks and apps again.

Well, my laziness paid off! A few hours ago, respected jailbreak apps and tweaks developer Ryan Petrich released SSLPatch on his repository. Installing the tweak patches the SSL exploit on earlier versions of iOS 7!

Petrich open-source’d SSLPatch so developers can ensure it effectively patches said exploit. No one has complained about its authenticity yet, and it is Ryan Petrich we are talking about here, so you can install it, and cease worrying about hacker-types gaining access to sensitive data.

ios 7 patch ssl tls exploit under 7.0.6

We tested SSLPatch on an iPhone 4S jailbroken on iOS 7.0.4. It worked as expected: gotofail.com – a web service for checking if your device is protected against Apple’s SSL exploit – said my device was safe after I installed SSLPatch, as can be seen in the screenshot above.

SSLPatch is available for free, but you will first need to add Ryan Petrich’s repo to Cydia. Launch Cydia, and add ‘https://rpetri.ch/repo’ under Manage > Sources > Edit > Add. After installation, you will need to reboot your device.

Be sure to let us know what you think of SSLPatch by leaving a comment in the comments section below.

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.