Had a little fun last night. Enabled syslogd on the iPhone and sent the logs to a splunk instance via UDP/514
Process is hacking your iPhone and install ssh. Enable syslogd by the following method. (Thanks to core on #iphone)
Then edit /etc/syslog.conf and append *.* @loghost
Restart syslogd and you’re set.
Then just set splunk up to listen on 514/UDP and you have iPhone logs.
Interesting bit found? launchd, the service that starts up the daemons on the iPhone just keeps respawning services. The iPhone lacks a standard service control mechanism such as the sysv-compatible init process.
By Mark Cohen