Parsi Coders
آیفون و آی پد حرکات شما را زیر نظر دارند - نسخه قابل چاپ

+- Parsi Coders (http://parsicoders.com)
+-- انجمن: Other sections (http://parsicoders.com/forumdisplay.php?fid=71)
+--- انجمن: Science (http://parsicoders.com/forumdisplay.php?fid=73)
+--- موضوع: آیفون و آی پد حرکات شما را زیر نظر دارند (/showthread.php?tid=53)



آیفون و آی پد حرکات شما را زیر نظر دارند - Amin_Mansouri - 04-23-2011

[عکس: 11x04201507n83xs.jpg?1303317384]

امنیت در تلفن های هوشمند نکته مهمی است که توسط اکثر کاربران دست کم گرفته می شود. اما این خبر پر سر و صدا سبب می شود تا کمی جدی تر به آن فکر کنید. ‏

یک تیم تحقیقاتی کشف کرده که دو محصول مشهور اپل یعنی آیفون و آی پد به صورت مخفیانه شما را زیر نظر دارند. در واقع آنها هر جایی که می روید را از ماه ژوئن سال گذشته در یک فایل مخفی ثبت می کنند. این اطلاعات در واقع از زمانی ثبت می شوند که iOS4 را روی دستگاه تان نصب کنید. ‏

این شرکت برای اثبات ادعایش یک ‏ نرم افزار بازمتن کوچک ‏ هم تولید کرده که می توانید آن را روی آیفون تان نصب کرده و با آن به اطلاعات این فایل دسترسی پیدا کنید. فایل حاوی طول و عرض جغرافیایی مکان هایی است که در آنها حضور داشته اید به همراه تاریخ و زمان آنها! چیز دیگری هم لازم دارید؟ ‏



اگر این فایل را نگاه کنید متوجه میشوید که مکان های ثبت شده خیلی دقیق نیست. دلیل اش این است که این فایل بر اساس جی پی اس عمل نمی کند و اطلاعات بر اساس دکل مخابراتی موبایلی که با آن ارتباط دارید ثبت می شود. البته این خودش یک نکته مهم است چرا که به این معنی است که اگر جی پی اس را هم خاموش کرده باشید باز هم اطلاعات مکانی شما ثبت شده است! ‏

در کنار همه اینها ماجرا وقتی بدتر می شود که بدانید این فایل در پشتیبان هایی که از آیفون تان میگیرید هم وجود دارد. بنابراین اگر کسی به آیفون، آی پد و یا حتی کامپیوتر شما هم دسترسی پیدا کند می تواند بفهمد که طی چند ماه گذشته در کجاها بوده اید! ‏

در تصاویر پایین می توانید تست نارنجی را هم بر روی یک آیفون ببینید که مکان های صاحب اش را طی چند ماه گذشته روی نقشه ایران نشان می دهد. ‏
[عکس: Track1-narenji.jpg]
[عکس: track2narenji.jpg]
سوال مهم این است که چرا اپل این اطلاعات را ذخیره می کرده است؟ یک احتمال می تواند این باشد که این شرکت یک امکان جدید را در نظر داشته که برای پیاده سازی اش به این اطلاعات نیاز داشته است. اما این موضوع که اپل جمع آوری این اطلاعات را بدون اطلاع به کاربران انجام می داده به اندازه کافی مشکل آفرین است. در کنار آن هنوز هیچ شواهدی به دست نیامده که آیا از این اطلاعات تا به حال استفاده هم شده است یا نه. ‏

البته ثبت مکان جغرافیایی کاربران کار غیر معمولی نیست و مثلا شرکت های مخابراتی هم می توانند این اطلاعات را از روی تلفن همراه تان ثبت کنند و بر اساس این اطلاعات بدانند که به چه جاهایی رفته اید. اما این اطلاعات در آیفون به صورت رمزنگاری نشده نگه داری میشود و بنابراین اپلیکیشن ها و دیگر نرم افزارهایی که نصب می کنید هم می توانند به آن دسترسی پیدا کنند. ‏

فعلا هنوز اپل واکنشی به این خبر نشان نداده است اما نباید فکر کنید که این موضوع منحصر به آیفون می شود. از هر تلفن هوشمند و هر اپراتوری که استفاده می کنید باید همیشه یک گوشه ذهنتان باشد که چه نکات امنیتی را باید رعایت کنید. ‏


RE: آیفون و آی پد حرکات شما را زیر نظر دارند - Amin_Mansouri - 04-23-2011

iPhone Tracker
This open-source application maps the information that your iPhone is recording about your movements. It doesn't record anything itself, it only displays files that are already hidden on your computer.
Download the application :
http://static.openheatmap.com.s3.amazonaws.com/iPhoneTracker.app.zip
FAQ

How does the application work?
How can I examine the data without running the application?
Does this application share the information with anyone?
What can I do to remove this data?
Why is Apple collecting this information?
Is Apple storing this information elsewhere?
What’s so bad about this?
Why did you open-source this code, won’t that make the problem worse?
Why are some points in places I’ve never visited?
How was it discovered?
What’s your relationship with Apple?
You say no data is shared, but why do I see the web accessed when I run the app?

How does the application work?

If you run it on an OS X machine that you’ve been syncing with an iPhone or an iPad with cellular plan, it will scan through the backup files that are automatically made, looking for the hidden file containing your location. If it finds this file, it will then display the location history on the map.
How can I examine the data without running the application?

It will be stored in a folder inside /Users/<your user name>/Library/Application Support/MobileSync/Backups/. Each time you sync up an iOS device (iPad, iPhone, etc) files will be copied into a new folder here. The names of the folders and the files within them are mostly random strings, but there are some index files like Info.plist and Manifest.mbdb. Find the folder that has the most recent backup by looking at the modified dates of the files. Then, load Info.plist into a text editor to see what device it's for. You should see a 'Device Name' value in the XML, make sure that it matches your iPhone.

The Manifest.mbdb and Manifest.mbdx files contain a listing of the real names of the files represented by random strings in that folder. Luckily, Alasdair found a Python script here that can convert those:

http://stackoverflow.com/questions/3085153/how-to-parse-the-manifest-mbdb-file-in-an-ios-4-0-itunes-backup

If you cd into the folder in the terminal, and run iphonels.py you'll see a listing of all the files with their real names. Now, pipe it through grep to find the file we want, eg:

~/Downloads/iphonels.py | grep "consolidated"

You should see something like this:

-rw-r--r-- 00000000 00000000 28082176 1297319654 1297319654 1282888290 (4096c9ec676f2847dc283405900e284a7c815836)RootDomain::Library/Caches/locationd/consolidated.db

That text in brackets just before 'RootDomain::' is the name of the actual file on disk that holds the location data. Since it's an SQLite database file, you can use any standard SQLite browser, I'm using this Firefox plugin:

https://addons.mozilla.org/en-US/firefox/addon/sqlite-manager/

Open up the file, choose the 'CellLocation' table, and you can browse the tens of thousands of points that it has collected. The most interesting data is the latitude, longitude location and the timestamp. The timestamp shows the time in seconds since January 1st 2001.
Does this application share the information with anyone?

No. All the data stays on your machine. The code behind it has been open-sourced so you can inspect the code and compile it yourself if you’re a developer.
What can I do to remove this data?

This database of your locations is stored on your iPhone as well as in any of the automatic backups that are made when you sync it with iTunes. One thing that will help is choosing encrypted backups, since that will prevent other users or programs on your machine from viewing the data, but there will still be a copy on your device.
Why is Apple collecting this information?

It’s unclear. One guess might be that they have new features in mind that require a history of your location, but that’s pure speculation. The fact that it's transferred across devices when you restore or migrate is evidence the data-gathering isn't accidental.
Is Apple storing this information elsewhere?

There’s no evidence that it’s being transmitted beyond your device and any machines you sync it with.
What’s so bad about this?

The most immediate problem is that this data is stored in an easily-readable form on your machine. Any other program you run or user with access to your machine can look through it.

The more fundamental problem is that Apple are collecting this information at all. Cell-phone providers collect similar data almost inevitably as part of their operations, but it’s kept behind their firewall. It normally requires a court order to gain access to it, whereas this is available to anyone who can get their hands on your phone or computer.

By passively logging your location without your permission, Apple have made it possible for anyone from a jealous spouse to a private investigator to get a detailed picture of your movements.
Why did you open-source this code, won’t that make the problem worse?

We did hesitate over the right thing to do in this case, but when it became clear that "Individuals familiar with iPhone forensic analysis will be quite familiar" with it, as Ryan Neal puts it and that at least one other person had tried to alert the public but apparently failed to make it clear what was going on, a demonstration application seemed the lesser evil.

To make it less useful for snoops, the spatial and temporal accuracy of the data has been artificially reduced. You can only animate week-by-week even though the data is timed to the second, and if you zoom in you’ll see the points are constrained to a grid, so your exact location is not revealed. The underlying database has no such constraints, unfortunately.
Why are some points in places I’ve never visited?

As far as we can tell, the location is determined by triangulating against the nearest cell-phone towers. This isn’t as accurate as GPS, but presumably takes less power. In some cases it can get very confused and temporarily think you’re several miles from your actual location, but these tend to be intermittent glitches.
How was it discovered?

We’ve been collaborating on several location data visualization projects, for example this map of radiation levels in Japan: http://www.guardian.co.uk/science/blog/2011/mar/24/fukushima-radiation-levels

We’d been discussing doing a visualization of mobile data, and while he was researching into what was available, Alasdair discovered this file. At first we weren’t sure how much data was there, but after we dug further and visualized the extracted data, it became clear that there was a scary amount of detail on our movements. It also became obvious that at least some other people knew about it, but it wasn't being publicized.
What’s your relationship with Apple?

Pete worked for Apple for five years, and left three years ago on good terms. He had no contact with anything iPhone related, (he worked on desktop visualization software) and received no help or information from inside the company while researching this problem. We’re both big fans of Apple’s products, and take no pleasure in uncovering this issue.
You say no data is shared, but why do I see the web accessed when I run the app?

The visualization is implemented as a view onto a local web page using the OpenHeatMap jQuery plugin. This means that the following resources are pulled from the web:

OpenStreetMap background tiles

The jQuery main script file hosted on Google

The OpenHeatMap script and CSS files

All of these are just static files that are downloaded from the web, and none of your data ever leaves your machine. We do still recommend inspecting the source code if you're a developer, or even just relying on the directions that allow you to inspect the data using standard database tools.


RE: آیفون و آی پد حرکات شما را زیر نظر دارند - Amin_Mansouri - 04-23-2011

download source code :
http://github.com/petewarden/iPhoneTracker/zipball/master


RE: آیفون و آی پد حرکات شما را زیر نظر دارند - Amin_Mansouri - 04-23-2011

تو قسمت بالا سورس کد و برنامه رو برای اثبات مدرک گذاشتم :-)