Better Mobile App

[GUIDE] Properly Setting Up Root for Your X10

Okay, so I've noticed that this rooting method is a little unconventional. It works through a compromised Fota.pkg which has setuid on /system/bin/sh as root. This is not a very safe, as any application that runs sh will gain root access to your system. Scary... :S Anyway, in order to fix this we need to take a few steps.
It is important that you do these in order, otherwise you may lose root access
Install a proper SU with whitelist
1. Download http://bit.ly/aWgALL
2. Unzip the system folder.
3.
Code:
adb shell mount -o remount,rw -t yaffs2 /dev/block/mtdblock2 /system
adb push system/bin/su /sdcard/su
adb push system/app/Superuser.apk /sdcard/Superuser.apk
adb shell dd if=/sdcard/su of=/system/bin/su
adb shell dd if=/sdcard/Superuser.apk of=/system/app/Superuser.apk
adb shell chmod 6777 /system/bin/su
adb shell chmod 644 /system/app/Superuser.apk
4. Reboot your phone.
Fix sh to not setuid to root
1.
Code:
adb shell mount -o remount,rw -t yaffs2 /dev/block/mtdblock2 /system
adb shell chmod 0755 /system/bin/sh
Properly install busybox
1. Here, it's easier to look for the busybox installer app from the market and then install from there. If you did everything correctly, then after you hit install in the busybox app a prompt will come up asking you to allow the app to have root. Hit allow.
You're done!

this might be stupid questions, i know. But where should I unzip the system folder that mentioned to? And where to type those command?

chai_archer said:
this might be stupid questions, i know. But where should I unzip the system folder that mentioned to? And where to type those command?
Click to expand...
Click to collapse
If you followed the root guide you can put it in the step 4 folder.
Then hit windows key + r and in the box type CMD
A console window comes up.
in the console window type cd <path.to.your.step.4.folder>
then go from there.

zephyrix said:
Properly install busybox
1. Here, it's easier to look for the busybox app from the market and then install from there. If you did everything correctly, then after you hit install in the busybox app a prompt will come up asking you to allow the app to have root. Hit allow.
You're done!
Click to expand...
Click to collapse
i did everything as mentioned but it dint ask me for permission wen installin busybox is it because i had it installed sometime before runnin this guide?
yea i knw im a noob after all

bcool15 said:
i did everything as mentioned but it dint ask me for permission wen installin busybox is it because i had it installed sometime before runnin this guide?
yea i knw im a noob after all
Click to expand...
Click to collapse
yep.
if you check the superuser app it should already be there.

zephyrix said:
yep.
if you check the superuser app it should already be there.
Click to expand...
Click to collapse
all i see in superuser app is titanium backup pro

that's strange. does busybox report that it's installed?

zephyrix said:
that's strange. does busybox report that it's installed?
Click to expand...
Click to collapse
nope it doesnt

well i tried all this and now i lost my root. Did EXACTLY what's written. Anyway to reverse this and get my root back?

unknown13x said:
well i tried all this and now i lost my root. Did EXACTLY what's written. Anyway to reverse this and get my root back?
Click to expand...
Click to collapse
i think i lost mine too but to reactivate there is command or prolly i just messed up summmwhere n redid my whole root with v3 update

bcool15 said:
i think i lost mine too but to reactivate there is command or prolly i just messed up summmwhere n redid my whole root with v3 update
Click to expand...
Click to collapse
use "su" to get root access... allow when the Superuser Whitelist notification pops up.

it worked for me....followed the steps, after i downloaded the busybox app i opened it and a box popped up "Superuser Request", it had discription of the busybox app and then asked whether to allow or deny the request....i then checked the superuser app and was able to see the busybox app in thr....

can anyone confirm if these steps were added in the new root method? please

bcool15 said:
can anyone confirm if these steps were added in the new root method? please
Click to expand...
Click to collapse
I'd like to know that too, I mean, in 2v2 do we still need to do the whitelist thing?

root in adb
I tried this on the last root (ROOT_F2v2) and I lost root in adb..
I still had regular root
I had to revert it back with "chmod 6777 /system/bin/sh" to get adb do admin task again.. (I use adb regularly)
Does anyone know how to secure sh and still have root in adb?
Regards.

th4r said:
I tried this on the last root (ROOT_F2v2) and I lost root in adb..
I still had regular root
I had to revert it back with "chmod 6777 /system/bin/sh" to get adb do admin task again.. (I use adb regularly)
Does anyone know how to secure sh and still have root in adb?
Regards.
Click to expand...
Click to collapse
adb shell su
And after superuser popup add "unknown application" to the whitelist.

Chillest said:
adb shell su
And after superuser popup add "unknown application" to the whitelist.
Click to expand...
Click to collapse
Yes that give me root in adb shell but adb is still running unprivileged.
I believe it's because we can't patch the bootloader yet, so we still have getprop ro.secure 1. :'(
I did a little script to toggle setuid on /system/bin/sh when I'm doing root stuff from adb
Sent from my rooted X10i

I have installed this to protect the system.
The only concern I have is i cannot run for example my cleaning script.
If i type into cmd ;
"adb shell su" it comes up with a # and freezes. If i type in
"adb shell<enter>
su" it works fine. and i can paste all the commands in line by line.
If i do either in a bat or cmd file it crashes. How do i run scripts as su

Here are the answers....
bcool15 said:
can anyone confirm if these steps were added in the new root method? please
Click to expand...
Click to collapse
No they were not. The reason is that many of the rooting steps rely on a setuid "sh"
gfgodoy said:
I'd like to know that too, I mean, in 2v2 do we still need to do the whitelist thing?
Click to expand...
Click to collapse
Yes
Chillest said:
adb shell su
And after superuser popup add "unknown application" to the whitelist.
Click to expand...
Click to collapse
So what? The uid for the shell application launched after invoking "adb shell" is not going to match any of the installed applications anyways. The thing is that Superuser.apk installs a mechanism by which the user (human) can detect when an application is requesting root access. Based upon the nature of the application you may or may not want to grant root access. That is the whole point.
th4r said:
Yes that give me root in adb shell but adb is still running unprivileged.
I believe it's because we can't patch the bootloader yet, so we still have getprop ro.secure 1. :'(
I did a little script to toggle setuid on /system/bin/sh when I'm doing root stuff from adb
Sent from my rooted X10i
Click to expand...
Click to collapse
Oh yeah? I just use "su" whenever I want root access... and I didnt have to write any scripts to enable/disable it.
k1ckn1ck said:
I have installed this to protect the system.
The only concern I have is i cannot run for example my cleaning script.
If i type into cmd ;
"adb shell su" it comes up with a # and freezes. If i type in
"adb shell<enter>
su" it works fine. and i can paste all the commands in line by line.
If i do either in a bat or cmd file it crashes. How do i run scripts as su
Click to expand...
Click to collapse
Then you shouldn't be rooting in the first place. Take my advice, lay off the rooting. It definitely doesn't have anything that will be of advantage to you.

j4mm3r said:
Then you shouldn't be rooting in the first place. Take my advice, lay off the rooting. It definitely doesn't have anything that will be of advantage to you.
Click to expand...
Click to collapse
easy now, it's a fair question, would be nice to be able to run cleaning scripts on a protected system. no need to be a prick
in answer to the question though, once the batch starts adb shell, it won't continue till that process ends
I did some googling for some comandline tools that might allow sending keystrokes to a process, but nothing easy appeared, looks like your only option is to use a linux friendly notepad to create some shell scripts you can execute from the sdcard. i.e. on device
su
chmod 755 /sdcard/myscript.sh
./sdcard/myscript.sh
easiest way to do scripts on a secured root IMO

New Rooting method for 2.1 | updated for 2.0.2.A.0.24 | 9/01/2011

Here comes the latest rooting method that works with 2.0.2.A.0.24 firmware.
Credits to Scotty2 for his psneuter exploit!
1. Download and unpack rootme.tar.bz2
2. Execute ./rootme (linux) or rootme.bat (windows)
3. Done.
---
You may also want to try SuperOneClickv1.5.5-ShortFuse.zip (modified by batman_112 to use the latest exploit).
Cheers,
z

Stop for me at Point 4)
I got back
./ratc: Permission denied
Click to expand...
Click to collapse

after
./ratc
i get ... permission denided

Wow, actually it seems that copying files with adb push via script messes thing up I corrected the instructions, so now it will work for you, but need to copy the files manually.

zdzihu said:
Wow, actually it seems that copying files with adb push via script messes thing up I corrected the instructions, so now it will work for you, but need to copy the files manually.
Click to expand...
Click to collapse
Your link is broken

Try now, I got rid of installation scripts
EDIT: Now it works flawlessly. I still have no clue why copying files with .bat file messes everything up, but manual copying does the job.

why the superone reach the root sometimes so slow?
your method uses the same exploit, and works at first try

check the files plz: Invalid or Deleted File

can't download the ratc-pack --> Invalid or Deleted File
please reup - THX
EDIT: Link is OK now --> THX

Link is OK. Downloading at the moment.

Tried it manually (as described)...
But same problem... :-(

UserX10 said:
Tried it manually (as described)...
But same problem... :-(
Click to expand...
Click to collapse
I just reflashed my phone and it worked for me at 1st attempt.
Could you please got rid of the old files and retry from the beggining?
Cheers!

meta96 said:
after
./ratc
i get ... permission denided
Click to expand...
Click to collapse
Same thing for me

:-( Same Problem
I flashed my X10 with nordic FW and tried it again Step by Step... but "permission denied"... even if i remove and make the tmp directory as described...

Ok, last thing to try... After you copy the files, go with:
Code:
adb shell
chmod 777 /data/local/tmp/*
I added some screenshots to show how the process works for me.

is this a full root? i mean, is root+shell root?

zdzihu said:
Hi guys, I've noticed some people still can't get their phones rooted with SuperOneClick method. So do I, never managed to get it working Here is a simple method of rooting, using the same exploit (rageagainstthecage - credits to author). This is quick and 100% guaranteed to work but I'd rather recommend it to advanced users.
1. Install Android Terminal Emulator from the market http://bit.ly/9B46Nl
2. Download and unpack http://www.mediafire.com/?s0428zxc7n50i28
3. Plug in the phone (usb debugging mode), copy the following files with adb and change permissions:
Code:
adb push ratc /data/local/tmp/ratc
adb push busybox /data/local/tmp/busybox
adb push su /data/local/tmp/su
adb push rootme /data/local/tmp/rootme
adb push superuser.apk /data/local/tmp/superuser.apk
adb shell
chmod /data/local/tmp/*
4. Start Terminal Emulator on your phone and issue those commands:
Code:
cd /data/local/tmp
./ratc
5. Exit out of Terminal Emulator using BACK button.
6. Start any other application and exit out of it using BACK button.
7. Start Terminal Emulator again - note that you're running it as root (#)
8. Issue those commands:
Code:
cd /data/local/tmp
./rootme
Your phone will reboot - and it's done. I suggest installing Busybox from the Market. Hope it helps.
Cheers!
EDIT: Fixed.
Click to expand...
Click to collapse
Finally I was able to root my phone
just one correction, you got to use chmod 777 /data/local/tmp/*
it was not allowing to root otherwise
i kept breaking my head using the "simple" SuperOneCLick but could not show my rage against the machine
thank you for explaining this process for Root.

zdzihu said:
Ok, last thing to try... After you copy the files, go with:
Code:
adb shell
cd /data/local/tmp
chmod 777 *
I added some screenshots to show how the process works for me.
Click to expand...
Click to collapse
chmod 777 *
did it. thanx. btw like your oldstyle-skills

Just saw this thread and wanted to root my phone also...I downloaded the files provided in the first post and extracted onto my PC. When I tried running the adb application, I only get a command window only for a split second and then it disappears. Am I doing something wrong?

Everything works fine until the final step where I write ./rootme in the emulator.
Before the phone reboots, it says something right after, something about superuser.apk.
Once the phone is back on the emulator goes back to $. As well as not being able to download Busybox.
Appreciate your efforts
EDIT: No worries, I managed to get root using SuperOneClick (finally!). It was rather sketchy, would've preferred your way tbh.

[Q] Trying to Root Thunderbolt

(Copy/Paste the following commands into command window)
adb push busybox /data/local/
adb push psneuter /data/local/
adb push misc.img /data/local/
adb shell chmod 777 /data/local/busybox
adb shell chmod 777 /data/local/psneuter
adb shell /data/local/psneuter
(After you run psneuter ADB is killed but restart itself. This is not a problem.
Copy/Paste into command window)
adb shell /data/local/busybox md5sum /data/local/misc.img
The command window MUST display the following checksum value:
c88dd947eb3b36eec90503a3525ae0de
If it does not match, DO NOT PROCEED! You must redownload the file to your sd card and rename to continue.
(Copy/Paste into command window)
adb shell dd if=/data/local/misc.img of=/dev/block/mmcblk0p17
adb reboot bootloader
Once you do this your phone will reboot into the Bootloader. When your phone loads the Bootloader you can unplug the USB cable from your computer. Leave the command prompt window open, we will need it later.
Bootloader should be highlighted in blue. Press the power button to start. (Don’t hold, just press)
The screen will change and Fastboot will be selected. About 10 seconds later it will continue to the next step.
You should see some files loaded and checked. Don’t worry about the warnings, this is normal. Your screen will eventually clear and you will see “checking pg05img.zip.
did all of the above. Confirmed the check sum was correct. when going into fastboot and checking pg05img.zip it stated no image file. I dont want to re boot my phone in case i mess something up. can someone please help? How do i get the image on there correctly from this point?

this is the same step i am stuck at and i narrowed out that its not a spelling error in the file name. It seems that the pg05img.zip removes itself from my SD card everytime i get into the bootloader thats y i cant get to the next step which is to update. Very frustrating. I am going to try another SD card tomorrow.

Depending on how you have your OS configured, it may not show known file extensions. So if you renamed the file to PG05IMG.zip, it may actually be saved as PG05IMG.zip.zip This will not affect the MD5 sum as they are independent of filename, however the bootloader will not recognize this as a PG05IMG file.
Also, I'm not certain about the TB, but most phones do not charge will in the bootloader, so if you let it stay on too long, do not proceed without a bump charge first.

Are you using the most recent rooting method by jcase? And the 5 files required to root? It doesn't sound like the exploits did what they should. What RUU version are you starting with?

I'm looking at what you've said your doing as far as your method and its not the latest jcase method. That said, just copying and pasting big blocks of commands doesn't work. And if you're not using the latest jcase method, I don't know what downloads you've been using and I don't think older ones would work. There's a number of outdated methods on various dev's own websites that won't work. Looks like that's what you've got here. This is the thread you should be following. http://forum.xda-developers.com/showthread.php?t=996616 jcase and the other dev's who've worked on this can also be found on IRC at chat.andIRC.net channel #thunderbolt for live help.

For Noobs: Titanium Backup with Temp Root on Evo 3D

***Note: this is a "for noobs by noobs" post: meant to guide people step-by step. The only needed info I don't cover is BASIC dos commands like "cd" (the only one you really need for this). I didn't post this in development b/c I've added basically nothing except more thorough instructions for noobs like me. Hope this helps!!!***
If Temp Root was worth messing with at all, IMO it was worth messing with in order to do a titanium backup. That's what I was able to successfully with the method below.
I haven't seen this thread's equal here in the 3D forums, so I figured I would repost. All credit where credit is due! Teamwin and then Joel.bourquard for this write-up/slight modification to teamwin's solution.
SO: basically follow the write-up below exactly. I downloaded Titanium Backup and Superuser directly from the market before beginning. Also, after you've finished his steps you can simply click to open Titanium Backup (no need to fool with Superuser) and it'll recognize root, find all your programs(including system data/programs), etc etc. Works like a charm!
NOTE for NOOBS: Download the attached zip --I've included the needed ADB files as well. Attach your EVO 3D using a USB cord and make sure USB debugging is turned ON (check in Settings-->Applications-->Development) and also make sure you aren't letting your PC access your SD card (go to Settings-->Connect to PC and change default to "Charge Only")
Once you've downloaded and unzipped them, open a command prompt (start menu, type "cmd" and type enter). Once in the command prompt, navigate to wherever you downloaded/extracted the zip. FROM THERE, type in each command in the writeup below EXACTLY AS WRITTEN (with quotation marks and everything). Once you've done the last ste (adb shell "/data/bin/root.sh") you can grab your device and open Titanium Backup and VOILA!
----
THE WRITE-UP
Type these commands AS WRITTEN into your cmd prompt after you've (1) downloaded superuser and Titanium Backup from the market (2) downloaded and extracted the zip and (3) navigated your command prompt to the location where you extracted those files.
adb push fre3vo /data/local/tmp/
adb shell "cd /data/local/tmp ; chmod 755 fre3vo ; ./fre3vo"
adb shell "mkdir /data/bin ; mv /data/local/tmp/fre3vo /data/bin/"
adb push su /data/bin/
adb push root.sh /data/bin/
adb shell "chmod 4555 /data/bin/su ; chmod 755 /data/bin/root.sh"
adb shell "/data/bin/root.sh"
BINGO! Now open Titanium Backup and you're good to go!
For more info, PLEASE see the sources!
http://forum.xda-developers.com/showthread.php?t=1151735
http://therootofallevo.com/forums/viewtopic.php?f=8&t=76

sweet havent gotten it to work for me but ill keep on trying haha guess im a hardcore noob

No worries, me too! As long as you can change directories is dos you should be fine
Sent from my PG86100 using XDA App

panamaniac said:
***Note: this is a "for noobs by noobs" post: meant to guide people step-by step. The only needed info I don't cover is BASIC dos commands like "cd" (the only one you really need for this). I didn't post this in development b/c I've added basically nothing except more thorough instructions for noobs like me. Hope this helps!!!***
If Temp Root was worth messing with at all, IMO it was worth messing with in order to do a titanium backup. That's what I was able to successfully with the method below.
I haven't seen this thread's equal here in the 3D forums, so I figured I would repost. All credit where credit is due! Teamwin and then Joel.bourquard for this write-up/slight modification to teamwin's solution.
SO: basically follow the write-up below exactly. I downloaded Titanium Backup and Superuser directly from the market before beginning. Also, after you've finished his steps you can simply click to open Titanium Backup (no need to fool with Superuser) and it'll recognize root, find all your programs(including system data/programs), etc etc. Works like a charm!
NOTE for NOOBS: Download the attached zip --I've included the needed ADB files as well. Attach your EVO 3D using a USB cord and make sure USB debugging is turned ON (check in Settings-->Applications-->Development) and also make sure you aren't letting your PC access your SD card (go to Settings-->Connect to PC and change default to "Charge Only")
Once you've downloaded and unzipped them, open a command prompt (start menu, type "cmd" and type enter). Once in the command prompt, navigate to wherever you downloaded/extracted the zip. FROM THERE, type in each command in the writeup below EXACTLY AS WRITTEN (with quotation marks and everything). Once you've done the last ste (adb shell "/data/bin/root.sh") you can grab your device and open Titanium Backup and VOILA!
----
THE WRITE-UP
Type these commands AS WRITTEN into your cmd prompt after you've (1) downloaded superuser and Titanium Backup from the market (2) downloaded and extracted the zip and (3) navigated your command prompt to the location where you extracted those files.
adb push fre3vo /data/local/tmp/
adb shell "cd /data/local/tmp ; chmod 755 fre3vo ; ./fre3vo"
adb shell "mkdir /data/bin ; mv /data/local/tmp/fre3vo /data/bin/"
Click to expand...
Click to collapse
Looks great, yet i have a question..... In your instructions.....you make a command which I believe means to create a new folder.... You use "mkdir"........ I have a lot of
Or school DOS commands in my head and it reminds me of the MD make directory command... Is mkdir correct ?

mkdir is the long version of md, IIRC....

at first i wasn't gonna bother with temp root, but one of the things i did need was titanium backup to restore a bunch of data.
this worked absolutely perfect!
thanks for the great write up

[Q] problem when rooting nook tablet

my NT is not working, if you can please click here to help me
anyway, before that - when it was working, i tried to root it by using this method:
http://forum.xda-developers.com/showthread.php?t=1354487
at debloat menu, i chose "extreme" because i want to delete all of B&N content. i just want a normal android tablet, i know i can still read books by using the NOOK app for android.
so i chose extreme mode. and the command prompt window closed right after that.
so my NT was rooted, but not successfully, it was even worse than it was before i rooted.
i open the batch file (NookandZergy.bat) to see what the command lines are to find the reason why it didn't work. and i saw this:
adb shell rm -r /system/app/Accessories.apk
Click to expand...
Click to collapse
i opened command prompt, and typed this. and i got something like "failed because the file is not exist." -> i knew the batch script was wrong in some ways. i was going to unroot and root again with the option "full debloat" (not extreme), but before i do that, i was trying to remove netflix, i wanted to type this to the command line to see what will happen.
adb shell rm -r /system/app/netflix.apk
Click to expand...
Click to collapse
but i accidentally type adb shell rm -r /system/app/, and then it removed everything in /system/app/
i got the error in the nook tablet's screen, i don't remember what the error is, but when i pressed "force close", it kept showing me that error, i tried about 20 times but still not work.
i turned off my NT, and when i boot it, it stuck at "read forever",
that's why i created this thread.
my question is: how do i do "extreme debloat"? i want to remove everything from B&N. can you please give me the correct "command lines" to do this? and how to use that "command lines"?

prepare a sdcard to boot into ClockworkMod (CWM) which is a custom recovery (replaces stock recovery). And from there flash this ROM, for extreme-debloat is easy you can modify the script just to debloat or i can make it for you. First focus in restore your system.
As i said in my last post in your other thread read my FAQ and you will find your what you need there, if you have any question me or any other user will try to help.
PS: here is post i made for a user about how to re-bloat but the thing is that i post the list of all the B&N apps for reference to you so it might be helpfull.
~ Veronica

i have a little knowledge about batch file, so i think i can edit the script
(just edit the wrong file name -> make it become correct file name)
but i don't know what files are inside the folder /system/app/
for example: the file Accessories.apk is not exist, so how should i edit the script

nooktablet said:
i have a little knowledge about batch file, so i think i can edit the script
(just edit the wrong file name -> make it become correct file name)
but i don't know what files are inside the folder /system/app/
for example: the file Accessories.apk is not exist, so how should i edit the script
Click to expand...
Click to collapse
Well you got the error probably 'cause when you ran the script it removed that file so when you typed the same command again it won't remove it because is already gone.
In the link i provided is the list of all the B&N applications that are removed in the extreme debloat option. So you basically have keep that part of the code plus the intro to get in adb shell.
In that post you will also find a link to the complete system/app folder just in case you by "playing around" with adb remove any important system app, so you can push it back.
~ Veronica

lavero.burgos said:
Well you got the error probably 'cause when you ran the script it removed that file so when you typed the same command again it won't remove it because is already gone.
In the link i provided is the list of all the B&N applications that are removed in the extreme debloat option. So you basically have keep that part of the code plus the intro to get in adb shell.
In that post you will also find a link to the complete system/app folder just in case you by "playing around" with adb remove any important system app, so you can push it back.
Click to expand...
Click to collapse
no, when i chose extreme debloat, it closed the command prompt window, before it closed, i saw something "failed...". when i typed the command again it showed "failed...", i'm sure it's exactly what it said before,
and i know after debloat, it should go back and do other command like "thank you for using" (i read the batch file). i also saw B&N apps were still on my NT, debloat didn't work because of the missing file -> the script stopped.
btw, you said i can use adb to push the apps back. so that means i can also use adb to remove apps? can i not debloat when rooting, and after root, i use adb to remove apps later? will adb work at that time?
and can i use adb to explore what files are in the /system/app/ folder? or any other program?

nooktablet said:
no, when i chose extreme debloat, it closed the command prompt window, before it closed, i saw something "failed...". when i typed the command again it showed "failed...", i'm sure it's exactly what it said before,
and i know after debloat, it should go back and do other command like "thank you for using" (i read the batch file). i also saw B&N apps were still on my NT, debloat didn't work because of the missing file -> the script stopped.
btw, you said i can use adb to push the apps back. so that means i can also use adb to remove apps? can i not debloat when rooting, and after root, i use adb to remove apps later? will adb work at that time?
and can i use adb to explore what files are in the /system/app/ folder? or any other program?
Click to expand...
Click to collapse
Yes adb works at anytime even in dockworkers (CWM) .
To know how to use adb go to my FAQ (link below in my signature) and look in the how-to's made by me section for the how to use and install adb.
"adb shell rm -r" is one of the adb commands and is used for remove files.
adb shell = is to get superuser permissions (root/su)to run advanced commands.
rm = remove
-r = recursive
~ Veronica
Sent from my Nook Tablet using xda premium