Since I installed the iPhone hack (installer.app) and via it, installed the SSH pieces, I now have full access 

to my iPhone via SSH (command line and FTP). Using an FTP client on the Mac, I SSH’d into the iPhone 

(using the standard root ID and PWD, which have now been changed). 

It takes you right into /private/var/root by default, but you can then explore around. There are a lot of other 

sites that explain in detail the file structure of the iPhone, so I won’t attempt. Google it. However, a few 

things I noticed right away… 

sms.db 

call_history.db 

dynamic-text.dat 

notes.db 

voicemail.db, .amr files 

Here is the directory structure of /var/root/Library/ 

AddressBook –> AddressBook.sqlitedb, AddressBookImages.sqlitedb 

Caches –> Multiple other directories 

Calendar –> Calendar.sqlitedb 

CallHistory –> call_history.db 

Cookies –> Cookies.plist 

DockSwap –> Multiple directories based upon which images downloaded 

iGXP2 –> Courses.plist 

Installer –> Multiple files and a temp dir 

iPong –> File 

Keyboard –> dynamic-text.dat 

Keychains –> keychain-2.db 

LockBackground.jpg –> File 

Lockdown –> Multiple files/directories 

Mail –> Directory for each Mail account setup and Accounts.plist, Accounts.plist.synced 

Maps –> History.plist, Route.plist 

MobileFinder –> Trash directory 

MobileStudio –> com.apple.DemoApp.plist 

MobileToDoList –> todos.dat 

Money –> accounts.mms 

Notes –> notes.db 

Preferences –> 42 files, most of them plist 

Recordings –> Multiple .amr files 

Ringtones –> Multiple Ringtones (custom) 

rSBT –> DisplayOrder.plist.backup 

Safari –> Bookmarks.plist, Bookmarks.plist.anchor.plist, History.plist, SuspendStat.plist 

SMS –> sms.db 

SummerBoard –> Themes directory with multiple sub directories in it 

Voicemail –> voicemail.db, .amr files for any voicemail

 

YouTube –> VideoCache file 

From what I can tell, all the .db files are SQLite based, but can also be opened in a standard text editor for 

general viewing. There is a lot of “garbled” text when viewing with a text editor, but you get the point. 

sms.db shows all of the SMS text detail of every SMS text message you’ve sent. How clean do you keep 

your txt messages? Now anyone can see them should they need to. 

call_history.db shows your call history. 

dynamic-text.dat shows you all the unique words the iPhone will help you spell the next time you type 

them. This one is scary because one could deduct one’s password from examining closely. 

keychain-2.db appears to be like the keychain on a Mac. Wasn’t able to see anything interesting in a text 

editor. Perhaps closer examination might. 

notes.db shows the text from all the entries in the Notes app 

voicemail.db and .amr files shows voicemail history and .amr files are playable in QuickTime for audio. 

 

The curiousness in me in very intrigued by all of the personal data that is now easily accessible. 

The paranoid person in me is frightened by all of the personal data that is now easily accessible. 

 

If you hacked your iPhone and installed the SSH tools, change your default root password. The default root 

password is dottie for those wondering.