First small steps toward free GSM firmware

[Michael Spacefalcon]

Ian Stirling <openmoko at mauve.plus.com> wrote:

> However, once anyone has used your work to change the IMSI of their 
> phone

I assume you meant IMEI.  Phones don't have IMSIs, those are numbers
stored in SIM cards.

> and you are aware of this,

Yes, I will most likely be aware of it, as I will gladly hand-hold any
criminal or want-to-be-criminal through the process of changing their
IMEI.

Just as an FYI - if you use the competing OsmocomBB software (which is
much more readily accepted by this community), transmitting whatever
IMEI you like toward the GSM network is even easier: because OsmocomBB
doesn't know how to parse TI's FFS (flash file system) format and to
extract the IMEI (or the RF calibration values) from it, there is no
IMEI "changing" with OsmocomBB per se.  With OsmocomBB you *always*
have to enter your own IMEI manually in their CLI, and the software
has no psychic powers to tell whether or not the number you've entered
matches what's printed on the sticker inside the battery compartment.

So if all you are after is transmitting a "false" IMEI toward GSM
networks, a very easy way to do so has been available through
OsmocomBB for many years before my recent work.  Changing the IMEI in
FFS (where either the phone's original firmware or my illegally-free
replacement will read and use it) is necessary only if you want to not
only transmit a "false" IMEI, but also retain the full functionality
of the phone - OsmocomBB lacks the latter.

> if you do not stop distribution,

Of course I won't stop distribution, I don't bow down to any f***ing
governments.

> you are liable to conviction
> and a term of imprisonment not to exceed 5 years.
> http://www.legislation.gov.uk/ukpga/2002/31/section/2

UK laws don't apply to me as I have no plans of ever setting foot on
UK soil.

> This is a poorly drawn bit of legislation, and in principle could also 
> cover the operator of any
> website hosting such code, once the operator becomes aware that they are 
> facilitating this.

Yet another reason why I don't use any servers other than my very own:
I would not want to entrust the distribution of my software to some
cowardly "law-abiding" webhost who would take my ware down out of fear
of being sued or prosecuted or whatever.

> In principle, this could lead to an EU arrest warrant,

I have no plans of setting foot on EU soil either.

> or even a request for extradition.

This one is truly laughable - I am the sovereign of my own micronation.
What are they gonna do, send a diplomat to the Micronation of Falconia
asking me to extradite myself?

Paul Wise <pabs3 at bonedaddy.net> wrote:

> > There are separate issues around the IP that you do not have permission to
> > use.
>
> This is the illegality that he is referring to, not any potential
> spectrum/GSM/IMEI issues.

Correct.

> I guess he would ignore the latter as well as the former though.

Also correct.

VLR,
SF