Solving the Authentication Key Problem - KIN Two Software Development

Hi everyone!
DISCLAIMER
I have no f* idea of what this does, or if it's legal, common, natural, whatever wherever you live. So if this does magic or can't be posted, tell me so i know .
So IF VERIZON blames you for entering there... i don't care. My relationship with V ends when the logo goes off, but your case may be normal usage... or so.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
WARNING!! As stated by some users, this may affect/disable your calling and messaging capabilities. You have been prevented, test this only if you'r curious under your OWN RESPONSABILITY.
This is a summary of the issues and solving procedure from Zero2duo (thanks ):
calls out to ppl, i hear this "welcome to verizon, but we're sorry, we cannot authenticate your phone right now".
calls coming in, ppl calling go straight to voicemail...and i get a miss call on my end
just had a 20-30 min chat with verizon....got it sorted out, phone works again
turns out there system saw my old and new phones "active", so system was like "this phone number shows up twice" and then just put a block on the number
after the guy refreshed the system, phone works again
Click to expand...
Click to collapse
Intro
As i could read many times, there is a submenu inside the ##PROGRAMNITT menu from the phone called "AUTHENTICATION KEY".
Ok,so you need some code that you dont have hum....let's play a bit.
note: this does nothing and doesn't let you hack the device or make coffee for you, it's a crappy result.
Mmm well, to start, you need a *unknown* length password, which you don't know, and also other values that you can't get from the phone itself, but you can fetch with tools. The download list goes as:
- RevSkills
- A-Key Calculator (http://www.superbank.ru/sms/)
- From the old times, the QualcommDIAG (old driver) or the SPST usb driver, so we get a COM port for the device. Both can be found on the forum itself. The best option is the bitpim guide, so you can know how to set the com port and yak yak yak.
Walkthrough
- Enter the ##PROGRAMNITT submenu and then activate the serial class mode within the "OTHER" submenu.
- Plug the kin
- Open revskills and set the port dropdown menu with your current phone com port (probably COM3)
- Go to the tab on this image, and press the "Read" button:
Write the ESN value (red square) / keep this window open.
- Open the A-key calculator, and input (write as is) the ESN value on the textbox (Note that it's a 8 hex char value, so put 0's on the left if doesnt). The right value will be updated while you type your ESN.
The result looks like this:
- Enter the "AUTHENTICATION KEY" submenu and type the updated value from A-key calculator & press "OK" button.
- Enjoy the... well does nothing for me so... who knows what's this for? unlocking the kin?
Note that i shadowed my values for security reasons... for the verizon customer, i guess, i dont use any of them .

Looks interesting. From what you've explained, you are not on a Verizon network (out of the country) and do not have an activated phone, correct?
I'm going to play with this later tonight, unless someone else beats me to it and convinces me not to.

klamation said:
From what you've explained, you are not on a Verizon network (out of the country) and do not have an activated phone, correct?
Click to expand...
Click to collapse
Outta the verizon network, outta the country. I'm from Europe. That's why i got some delay on the posts... rofl.
I knew i couldnt use it, I just bought the first kin for the lulz. I thought i was going to be able to hack it through IE bugs... meh, life shows you that things are not always as expected....

Anyone tested this yet on the Verizon Network? I know it sounds dangerous but it's worth a try. I believe I've bricked mine so I'll attempt it when I get it back to a serviceable state.
Here's to hoping.

Heratiki said:
Anyone tested this yet on the Verizon Network? I know it sounds dangerous but it's worth a try. I believe I've bricked mine so I'll attempt it when I get it back to a serviceable state.
Here's to hoping.
Click to expand...
Click to collapse
Was gonna try it until you reminded me of a brick possibility. Eh, my kin is only 2 weeks old, I'll try it tonight.

Eh, no brick here. I tried it on my 2m. Calculated the hex key, entered it into the phone, it said stored and that it required a reboot. I exited the ##programnitt menu, then phone rebooted.
Nothing appears different. Bitpim still has access to the same folders.
On a side note, RevSkills is a crazy program! John, have you used any of these other tools? on a kin or other phone?

GrandSportX said:
Eh, no brick here. I tried it on my 2m. Calculated the hex key, entered it into the phone, it said stored and that it required a reboot. I exited the ##programnitt menu, then phone rebooted.
Nothing appears different. Bitpim still has access to the same folders.
On a side note, RevSkills is a crazy program! John, have you used any of these other tools? on a kin or other phone?
Click to expand...
Click to collapse
seconded, just got my authentication key and entered it, and phone still works. Now if only it actually triggered/done something in our favor.

GrandSportX said:
On a side note, RevSkills is a crazy program! John, have you used any of these other tools? on a kin or other phone?
Click to expand...
Click to collapse
I tested all the tools, all the programs i could run on a virtual and normal machine long time before developping KinO.
"Nothing to see here" is always the answer. The phone memory couldnt be readed with this programs, and nothing access the phone, apart the cdma data, which is like meh for me (no cdma usage for the settings). As even SPST uses MTP driver for firmware (not the COM port driver), i guess all feasible with com ports is just cdma settings.
Also you can write something that mess your phone and that things....
Maybe other users from this forum (whole xda) know what's this for in cdma phones. I got any comunications knowledge, apart the network software needed for me.

me= noob post
heyyo so i tried this but rev skills keeps crashing when i tell it to read ( i set it com3 which is where bitpim and my compy say the phone is) and sad face taht it doesnt change anything has anyone looked at the logs after entering the key?

edit nm my compy worked the kin screen needs to be on

so i entered the key last night and somehowmy phone can send or receive messages or calls... so i restored it adn now it works. also a red light appeared where the light sensor is...

ishbar said:
also a red light appeared where the light sensor is...
Click to expand...
Click to collapse
That was always there for me during boot time. It just flashes for a little time, anyway.
It's extrange that only 1 reported it. If it's a common issue, i will change the advice to a bigger one, so you could know before messing things up.

ishbar said:
so i entered the key last night and somehowmy phone can send or receive messages or calls... so i restored it adn now it works. also a red light appeared where the light sensor is...
Click to expand...
Click to collapse
Did you mean that "you cannot make phone calls or receive them when you entered the key"?
Weird thing (pretty sure it isn't because I entered the Authentication Key), my bro activated his HTC Thunderbolt yesterday and when I try calling him, after 2 rings, I then hear a voice that says "welcome to verizon, but the number you are dialing cannot be reached". My calls to him don't go through, but he can call me. I am thinking it is because I had blocked all the data services (thru My Verizon except for the Pic/Txt MMS) and since the Thunderbolt is a smartphone, I cannot make calls to it.
So I unchecked "blocked all data", and will try to call my bro's phone again once I officially get an email from verizon stating that my features that been updated. I will also call up Verizon later today and ask them what's up.

zero2duo said:
my bro activated his HTC Thunderbolt yesterday and when I try calling him, after 2 rings, I then hear a voice that says "welcome to verizon, but the number you are dialing cannot be reached". My calls to him don't go through, but he can call me. I am thinking it is because I had blocked all the data services (thru My Verizon except for the Pic/Txt MMS) and since the Thunderbolt is a smartphone, I cannot make calls to it.
Click to expand...
Click to collapse
If it was both things, i would really think about the Auth change, but receiving/calling separately OK is pretty much weird.
I would call to a home number or another number, if any. Dunno how 3g/cdma works to call another phone and if it's data or normal usage.

johnkussack said:
If it was both things, i would really think about the Auth change, but receiving/calling separately OK is pretty much weird.
I would call to a home number or another number, if any. Dunno how 3g/cdma works to call another phone and if it's data or normal usage.
Click to expand...
Click to collapse
Just tried calling other family members cells and house number, and I still get the "welcome to verizon, but we're sorry, we cannot authenticate your phone right now".
So I think it's safe to say that entering the A-Key did this. I went back to the hidden menu, and tried to "disable" the Authentication Key, but it just asks me to enter it and nothing more.
Any ideas to "disable" the Authentication Key? Besides this
Clear Storage memory (reset phone)
* Hold C+B+ Power
* Prints a Phone image (and reboots)
Hate to have to re-enter my contacts again.
Update: did the Clear command, tried calling, and still get that "welcome to verizon, but we're sorry, we cannot authenticate your phone right now" msg. Gonna call verizon; hopefully it's an easy fix on their end and I won't need to get a new phone.

I updated the first post, so the user knows what could happen. I don't see the point of the authentication then. Unless it dissengages you from verizon, but receiving must be done withing a mobile network, so all it's pretty much weird.
zero2duo said:
Any ideas to "disable" the Authentication Key? Besides this
Clear Storage memory (reset phone)
* Hold C+B+ Power
* Prints a Phone image (and reboots)
Click to expand...
Click to collapse
Try to export your contacts from the submenu, so you can download the xml and, at least have the ones you had previously to a CB operation. You can try to reupload it with kino and try to import after rebooting. Nothing is assured but worths a try (at least the export part is feasible).
I'm sorry about the CB requirement, but that's expected when playing with unknown things in a production phone.
As this could change things, and i dont loose anything, i will check what the changes are in the logs files (like "skipping verizon connection" messages).

OK just called verizon (20-25 min chat), after the 1st rep couldn't fix it, she found a tech who could. Basically, he said that their billing system saw two instances of my number (they were saying maybe when I activated my Kin, that I had my old phone on and that caused the problem...we know what caused it though), so he refreshed the system. Then had me re-activate my Kin via *228. Then after rebooting phone, outgoing and incoming calls work...also txt msg does too.
Before doing the Clearing button command, exported contacts to my laptop. Then after phone was working again, tried importing it back in but got this error msg "can't import contacts right now because there is non-compliant XML in the contacts file". Guess I will just go to a verizon store and get it transferred from the old phone.
Here's a little summary of everything john (if you wanna put this info in the 1st post):
calls out to ppl, i hear this "welcome to verizon, but we're sorry, we cannot authenticate your phone right now".
calls coming in, ppl calling go straight to voicemail...and i get a miss call on my end
just had a 20-30 min chat with verizon....got it sorted out, phone works again
turns out there system saw my old and new phones "active", so system was like "this phone number shows up twice" and then just put a block on the number
after the guy refreshed the system, phone works again

Great to hear about the solving procedure being done. Then the menu and the option would probably be a manual introduction into the verizon network, as you would do for entering the company from others (Sprint maybe?). I guess that's done auto on their side, but this menu allows you to do it too.
I dunno why you all get the contacts error. As i just imported the xml from klamation ok.Maybe yours has more data than "name, phone number" values.
i will export my full one and see what happens, when i'm a little ... less bored so i can reboot several times hehehe.
PS: quoted on first post.

johnkussack said:
I dunno why you all get the contacts error. As i just imported the xml from klamation ok.Maybe yours has more data than "name, phone number" values.
i will export my full one and see what happens, when i'm a little ... less bored so i can reboot several times hehehe.
Click to expand...
Click to collapse
I was able to successfully upload the contact file from klamation (got 215 of those BOB contacts). Then I renamed my "contacts.export" file to "cellebrite.contacts.xml", also removed my own name/contact from it, and still get the error when trying to import. It could be the case that I have extra junk for some contacts (have some work and home numbers, also maybe added some values in the "notes" field/tag. What I will try tonight, edit my contacts file so that its just the Name and Mobile tags that are present and retry importing that.

zero2duo said:
I was able to successfully upload the contact file from klamation (got 215 of those BOB contacts). Then I renamed my "contacts.export" file to "cellebrite.contacts.xml", also removed my own name/contact from it, and still get the error when trying to import. It could be the case that I have extra junk for some contacts (have some work and home numbers, also maybe added some values in the "notes" field/tag. What I will try tonight, edit my contacts file so that its just the Name and Mobile tags that are present and retry importing that.
Click to expand...
Click to collapse
After many trial and error attempts at importing my contact list, it finally worked once I gave a LastName tag and value for the contacts that I previously only had FirstName (some of my contacts, I only had first names since a last name wasn't necessary for me to remember them).
So from my testing, you need both FirstName and LastName tags, and at least one character for a valid value and then the import will work.

Related

Somebody can use your Phone Edition without your notice!

When I started to make programs with some SMS and phone features, soon I noticed that I can send SMS in hidden mode and dial phone too.
Even without user's attentions at all (no notification).
Without screen backlight turned on.
Without log of activities (no items on phone log and Sent folder).
We know that in MS Smarphone OS this is blocked in the program's "privilege". But on Phone Edition devices this is opened.
Just imagine:
- somebody (everybody?) can write the application like the game or popular PIM and put inside the hidden SMS. First, it can read your contacts, numbers, anything... and then send by SMS without your knowledge or just notification.
- another situation: some program can send SMS all night every minute and charge your cellular network account quickly and seriously.
Are you sure, you don't have such a kind of application inside your device right now?
I'm not.
I'm looking for solution. In panic!
Ok. I can turn-off the phone service and I'm sure nothing will go outside.
But of course in the same time nothing will come in too.
PPC2002 and WM2003 do not give any options to turn off only outgoing services, or to turn off SMS service only (with phone runs continuously).
My propose is:
- block all outgoing SMS except the original Inbox/New dialog
- block all outgoing Calls except the original Phone dialog
In most cases it should be an enough protection.
Of course, this is one side. Another one is: I want to occasionally use another software to send SMS and make a Call. So, the application should allows me to mark which other programs can send SMS or dial Call. These programs I must know as "trust". And this is my risk I unlock them. The example is MY|MESSAGE where I can quickly reply to last SMS just from Today Screen, without Inbox dialog opened.
Please share your opinions.
- is it a serious problem?
- is my solution is enough?
- is it necessary to mark another applications to use SMS?
- mark permanently or maybe temporary only?
Or maybe you have another solution?
===============================================
Below are screenshots of my proposition.
I think I will realize the personal version as freeware.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
The application runs as "service proccess". You don't have to put it on Startup folder and (IMPORTANT) it does not take the running tasks limit on XDA. Additionally, just for "eye-catching" convenience I added the small icon on TodayScreen, to be sure it runs. The icon can be hidden. it does nothing.
1. Does it make a log file or show a message on block?
2. How much space does it take?
3. What about making a usual firewall - make all programs ask before they can use any of the wireless services (GSM, SMS, GPRS)?
In case there really will be a firewall (maybe as a plugin only) it should block unauthorized access from the internet. :idea:
in current status of developing:
11kB of service
20kB of settings dialog
(most) applications with GPRS features you can decide when you "connect"
so I focus on SMS and dialling
But if you can use phone
quote:
Even without user's attentions at all (no notification).
Without screen backlight turned on.
Without log of activities (no items on phone log and Sent folder)
you can probably use GPRS, too. Further more, if the program goes off while I'm sleeping, I can't stop it! :?
And what about the usual firewall?
PS: Are you planning to post it?
the firewall does not block SMS (or I dont know)
I mean a program, that would block all unauthorized access: phone, sms and both incoming and outgoing internet connections.
If any application wants to use one of things mentioned, user would see a message on screen and could customize apps that have free access.
I mean a program, that would block all unauthorized access: phone, sms and both incoming and outgoing internet connections.
If any application wants to use one of things mentioned, user would see a message on screen and could customize apps that have free access.
JGUI, this looks cool...
but you make me little nervous, if this is possible...
Good work, keep on going...
Thanks.
Journal bar managed to initiate a gprs call without me knowing last month on a daily basis and i didnt notice until it had used 16 meg of data updating itself every day for a week, this cost me £34 which i wasnt happy about, there doesnt seem to be any way of locking or passwording the gprs connection?, i've had other programs use the connection when i connected to check my email and cost me money when i didnt want them to use it
Hi JGUI,
perfect! When do you expect release, please?
buzz
Ultra Paranoid mode on:
Who garantees your application doesn't do exactly what it say's it should prevent ?
1] Create a program that calls high-rate servicephonenumbers
2] make people scared about automaticly calling phones
3] offer a 'solution' and give the program for free....
4] get rich real fast...
Ok, i'm joking, but it could be just as real....
jpiek: absolute right
this is a very serious problem for me:
how to protect my application "solution" from that somebody can hack it and post the zip or setup file with the name of my application but with some hidden service inside.
Ok.
I can sign my setup with my PGP key, but... how many "mobile users" know and use PGP?
another way: if I post thie application as freeware there will be many web sites where they copy the file and give it away, this is the way where some hacked copies should appear. if I lock the freeware, and give away only a commercial setup, even with small price a few dollars, it should stop the above problem. becasue I decide where this setup will stay official, and users have not to ask me: "I downloaded your program from xxxx is it a good/latest copy?"
The problem in fact is also a feature
I can use a PC connection dialing my ISP provider, connecting to my MDA via bluetooth. On my MDA i see no notification at all that the modem is working (I do not use the Wireless Modem app, but simply use the MDA as a bluetooth modem)
"spb gprs monitor" controls your gprs connection and procesing
Have you considered releasing your app as donationware? (if that exists?)
Just let people download it and use it for free but ask for a small donation from people that use it regularly,
I'm not sure if this idea would work as it relies on trust, but maybe people would appreciate this method of release and it may sidestep the problem of cracked software?, not sure
JGUI said:
jpiek: absolute right
this is a very serious problem for me:
how to protect my application "solution" from that somebody can hack it and post the zip or setup file with the name of my application but with some hidden service inside.
<cut>
Click to expand...
Click to collapse
Have you thought about a free registration online ? You could do a CRC check or whatever before handing out a free registratoncode. Then you can be shure the org. code of your application isn't changed...
Even signing with PGP/GPG is problematic; how do people verify that the key is yours? Application signing (like the process mandatory for smartphone apps) "solves" that by having "trusted" CA keys in the device; but I doubt it even displays who signed an app. And if it did, would people notice that it was signed by Joe Bob, and not JGUI?
And even if it IS signed by JGUI, that doesn't tell me anything either. Perhaps his key was stolen, maybe his development pc was infected with a virus that ended up in the executable, perhaps even JGUI himself is a nasty hacker, there's simply no way to know..
Of course, something is better than nothing, but a simple SHA1 hash of the setup file on the author's website isn't that much worse than the whole PKI thing. That would mean a hacker would have to hack both the application AND the website, at least for those who check that sort of thing.
Smartphone code signing in practice: http://www.msmobiles.com/article.php/52.html
i think i should hit the panic button, i think the best way is for this SW to track such services, so say i installed it & it cought a program trying to do that it reports it to me telling me SW so & So was trying to call or send SMS or soforth, in this case we avoid these programs all together
I'm sure, I will not sleep tonight... (I see myself sitting in the dark and dialing customer service all night just to have my account balance)
do not make (at least) your own life harder!! :lol:
ym

Extra Security

How can I prevent my phone from being answered and displayed, unless a password is provided?
The current security, only prevents you from using the device, but if there is an incoming phone call, you are able to SEE it and ANSWER it.
Thanks
switch it off in comm manager then lock your device
LOL that would be a solution but i prefer to have the phone on.

			
				
By the time you put in your password, the caller will have been directed to voicemail.
You can try "slide 2 unlock"
http://forum.xda-developers.com/showthread.php?t=353008
It is showing your incoming calls too but you can set it to use the slider to answer this call.
You can still answer the phone with S2U on. Why would you want to do this anyway?
As one of the contributors has said, by the time you had entered a password to answer the phone the caller would have dropped off. Boyfriend/girfriend trouble perhaps?
WB
You Guys are incorrect about the call going to voicemail before entering the password. My Motorola Razor, has this type of security built in.
You cant view the caller, answer it or do anything with the phone until you put in the password. I put my phone down alot and people have a habit of answering my phone.
I got a question also about the security
I ONLY want to lock my sms/email/mms with a pass..
Most phones can do that but windows mobile not..
Help?
i guess no one knows how to do this
have you googled?
this one may fit the bill, I especially like the hard reset option, loads of fun to be had by finding ya mates device entering the password incorrectly a few times and then forcing a hard reset
http://www.totalpocketpc.com/PS_4.0_Website/default.html
http://classic.pocketgear.com/software_detail.asp?id=18993&associateid=17
All Hardware Buttons Become ‘Disabled’ While Device is Locked.
that program is no good, it still allows incoming phone calls to be displayed and answered while device is locked
is there any kind of help out there
Did you try the magical "SILENCE" function ? activated it, then no one will know when your phone is Ringing or new SMS are coming EVEN you left the phone at the meeting room . And the BEST of it, YOU CAN LEFT THE PHONE ON !!! ( Like I do when I'm sleep or at the gym).
i want to hear the phone but if i chose not to pick up, then i wont. The whole point of security is soo OTHERS cant get to your phone.
always put your phone in your pockets
ughhhh someone got to know
Hmmm ... sounds like what you're seeking is a very personal enhancement that nobody using a WM device has needed until now. If nobody has offered a usable suggestion, and you can't find anything with an Internet search, then, as I see it, you have only two options:
1) Go get that Razr
2) Take advantage of WM's extensibility, and write your own cutomized app. You can do it in PPL or MS C++ ... maybe a few other languages. If you do a good job, you might even be able to make a few bucks on it
-pvs
pvs said:
Hmmm ... sounds like what you're seeking is a very personal enhancement that nobody using a WM device has needed until now. If nobody has offered a usable suggestion, and you can't find anything with an Internet search, then, as I see it, you have only two options:
1) Go get that Razr
2) Take advantage of WM's extensibility, and write your own cutomized app. You can do it in PPL or MS C++ ... maybe a few other languages. If you do a good job, you might even be able to make a few bucks on it
-pvs
Click to expand...
Click to collapse
1)
2) Amen !!!

Perfect update. Few questions and help. Thanks.

So, I managed to upgrade to Kavana 6.1 on my own (yeeeaaah). I got a couple of questions though.
I followed the update with pics thread. Apart from the fact that it should state (for newbies like me) that you need to unzip the chosen ROM and run THAT RUU but anyway... at the end on the thread, it shows how to configure various things like wi-fi, texts etc... My question is, is it possible that mine did that all on its own? Because I did not get those images asking me what setup to get and the keymap/keyboard works fine, the wifi works, so far everything works, it even picked up T-Mobile on its own. Anything I should know? Second of all, the quote below... does not make sense in the English language. Please be more specific because I can't seem to get active sync to work. Thank you.
To Get ACTIVE SYNC to work after this:
Do this with the USB cord DISCONNECTED from the computer.
Scroll down or up to the settings panel.
Select
Scroll right or left to USB to PC.
Select
UNCHECK the first option.
Connect the USB cord after you click on ok.
Click to expand...
Click to collapse
Settings\USBtoPC untick advanced network functionality, do you get data if not then Connection Setup needs to be run.
Also if you want predictive off FN+SPACE in a text input box ABC.
That's it all done
well on your sliding panels homescrren the very last pabel is settings scroll over till you see the usb to pc panel cick on it and uncheck the first box.
lol sorry stlez gues we responded at the same time lol
1Airborne1 said:
lol sorry stlez gues we responded at the same time lol
Click to expand...
Click to collapse
No need to be sorry lol
Got it. It wasen't clear that it had to be done on the cell itself.
So, is it possible that all the settings have been setup all fine on their own?
What about Tegic multi languages, I tried it on WM6 and it did not have the et9 for Italian for example and the mapping was all wrong. Does it work only for WM6.1?
Thanks.
What is the up and down sign next to E? I guess its the jogger thing?
I love 6.1 so far.
Anyone?
So far the ROM is really good, but I got a couple of questions.
1) I think I solved the issue by deleting a draft text I had, but at times the phone would just vibrate without me getting a text or missed call, etc. Is this something that has occurred to others? Or you think it was just the draft text?
2) I was wondering if the et9Tegic with 14 languages works solely on WM6.1, reason I ask is because I installed it on WM6 and it did not have the et9 for say Italian. Maybe it was conflicting with Tegic-US?
3) I went on wifi, connected to my own connection that I have home, went on skyfire, and after a bit, the phone went sort of crazy on me. It would just click and move on its own. I had to turn off the phone in order to restore it to normal. Anyone know the answer to this? Should I worry? Is it frequent? I re-went online when I restarted it and it was fine, but I wonder if anyone had this issue.
4) To setup a background image, is 320X240 the whole screen, or does it cutoff the menu bar? If so, what is the actual visible size of the image?
5) I didn't have to go through the whole setup and was wondering if its normal that it setup sms, mms, wifi and everything else on its own.
Thanks.
Capitan Totti said:
Anyone?
So far the ROM is really good, but I got a couple of questions.
1) I think I solved the issue by deleting a draft text I had, but at times the phone would just vibrate without me getting a text or missed call, etc. Is this something that has occurred to others? Or you think it was just the draft text?
2) I was wondering if the et9Tegic with 14 languages works solely on WM6.1, reason I ask is because I installed it on WM6 and it did not have the et9 for say Italian. Maybe it was conflicting with Tegic-US?
3) I went on wifi, connected to my own connection that I have home, went on skyfire, and after a bit, the phone went sort of crazy on me. It would just click and move on its own. I had to turn off the phone in order to restore it to normal. Anyone know the answer to this? Should I worry? Is it frequent? I re-went online when I restarted it and it was fine, but I wonder if anyone had this issue.
4) To setup a background image, is 320X240 the whole screen, or does it cutoff the menu bar? If so, what is the actual visible size of the image?
5) I didn't have to go through the whole setup and was wondering if its normal that it setup sms, mms, wifi and everything else on its own.
Thanks.
Click to expand...
Click to collapse
We're you using the jogger to scroll when it went all crazy on you? That happened to me a while back , when I was using the jogger to scroll , it would not stop scrolling up or down. What worked for me was to set the jogger to use only for speaker volume and and for the wmp.
The backgrounds will use the whole screen at 320x240 size. I do all my images at 320x240 and they display perfect.
You shouldn't have to do anything on sms,and mms, other than connection setup, for your country and carrier, unless you get the mms problem that some people get.
For wifi, it should work right away,but to be able to connect, you have to set up your wireless network if you're at home or work, by searching with the phone's wifi and connecting and then providing the usual, (network type,authentification,data encription,network key) .
stylez said:
No need to be sorry lol
Click to expand...
Click to collapse
alright next time i won t be
roloracer said:
We're you using the jogger to scroll when it went all crazy on you? That happened to me a while back , when I was using the jogger to scroll , it would not stop scrolling up or down. What worked for me was to set the jogger to use only for speaker volume and and for the wmp.
The backgrounds will use the whole screen at 320x240 size. I do all my images at 320x240 and they display perfect.
You shouldn't have to do anything on sms,and mms, other than connection setup, for your country and carrier, unless you get the mms problem that some people get.
For wifi, it should work right away,but to be able to connect, you have to set up your wireless network if you're at home or work, by searching with the phone's wifi and connecting and then providing the usual, (network type,authentification,data encription,network key) .
Click to expand...
Click to collapse
I wasen't using the jogger but I might have touched it involuntarily. Once I tried it again I know I did not touch it and it was fine. I guess I will also set it up like you suggested.
I didn't have to setup anything as far as SMS are concerned and I haven't tried to send or receive MMS yet, but once I completed the RUU the phone went on cold booting on its own and restart it fine all on its own. Wifi same thing, no need for me to do anything, I just connect fine anywhere.
Another thing it does, if I use the jogger or not, it pops up something telling me that dimlight should be kept at something like -t instead of -m? How do I get rid of that thing?
I got a bigger problem now. The phone at times just vibrates on its own without getting any sms or mms or missed call... What is it?
Thank you.
The -t and -m thing refers to the LowLight program. By default it's activated by tapping/touching the jogger 3 time within 10 seconds.
I was playing with it, after a new upgrade, last night.
Apparently you *are* touching the jogger...probably without realizing it.
Chuck
chuckknight said:
The -t and -m thing refers to the LowLight program. By default it's activated by tapping/touching the jogger 3 time within 10 seconds.
I was playing with it, after a new upgrade, last night.
Apparently you *are* touching the jogger...probably without realizing it.
Chuck
Click to expand...
Click to collapse
Lord knows THAT is easy enough to do, lol!
When I first bought my Dash, it had WM 5 on it, and there was a setting for JOGGER sensitivity. Not one of the "cooked" ROMS I have used here have such a setting, thus even breathing on the JOGGER can set it scrolling/clicking madly.
How about it Kavana, NRG, Rickywatts? Is there a way to adjust the sensitivity of the JOGGER?
Ghost of Jaco said:
Lord knows THAT is easy enough to do, lol!
When I first bought my Dash, it had WM 5 on it, and there was a setting for JOGGER sensitivity. Not one of the "cooked" ROMS I have used here have such a setting, thus even breathing on the JOGGER can set it scrolling/clicking madly.
How about it Kavana, NRG, Rickywatts? Is there a way to adjust the sensitivity of the JOGGER?
Click to expand...
Click to collapse
The only way that I know to adjust any type of sensitivity on the jogger is the speed of it. The faster you set it , the more sensitive it will be to the touch, and viceversa.
So, I think I figured the vibration. I was closing the Texts when I saw it pop up in the conversation, you know 6.1 has threaded texting, so I thought it would send it once it popped in, but I noticed that you still got to wait for the OK Info to come up to confirm the message has been sent. So far all good and no more vibration. So far...
Joggr don't matter. I set it to adjust volume only since I use the keys to scroll up and down.
1) What about the fact that I didn't have to setup anything (WiFi etc)? Is the setting up something that only non-USA resident have to do? Or...?
2) And does anyone have an MSN Messenger (or something close to it) that works on TEXTS and NOT data? I looked everywhere but nothing! Thank you.
3) I tried to look up here on xda and on Google, key mapping... kmap... notepad kmap... etc, but nothing. What I would like is et9 that has the USA Dash keyboard layout (keeping the t for CeleTasks of course) but also et9 for US English and Italian. I installed the et9TegicFull but the keyboard layout is UK English. I modified the .txt files in the et9 folder but the tab and symbol keys do not work except for writing 0 and going to the camera. Anyone?
4) When I restart the phone, the options on the media sliding panel on the home screen work fine. If I click on images, it goes to images, if I click on profiles, it goes to profiles. However, I noticed that the wifi one works fine at first, but after 3 times or so that I use it/click it, it stops working and to get on wifi I have to go to Start>CommManager and click on wifi icon. Even when I click on the right soft key (when on the media sliding panel home screen) which is connection settings, and I click on commmanager there with the center key... nothing. It clicks, but doesn't go anywhere. Why?
Thank you.
Anyone please?
1) If your router is not encrypted then it would just connect, if it is encrypted you must have put in a key.
The rest if set up don't worry generally have to run connection steup.
2) You want OZ Messanger think only jdog & Mikey know how to set up?, You could set up Yahoo on home computer and when people sent message will come to phone and can reply via text.
3) Not sure what you mean does nothing work?
4) Sounds like a hard-reset needed bruv as never had probs with Commanager on Kavana's
stylez said:
1) If your router is not encrypted then it would just connect, if it is encrypted you must have put in a key.
The rest if set up don't worry generally have to run connection steup.
2) You want OZ Messanger think only jdog & Mikey know how to set up?, You could set up Yahoo on home computer and when people sent message will come to phone and can reply via text.
3) Not sure what you mean does nothing work?
4) Sounds like a hard-reset needed bruv as never had probs with Commanager on Kavana's
Click to expand...
Click to collapse
1) I mentioned wifi just to make an example. I didn't have to setup anything like carrier sms mms etc but I see in the guides that some people do? Mine just restarted fine.
2) I have unlimited texts. I have T-Mobile OZ Messenger and it works. I have AIM, ICQ and Yahoo. I was wondering if someone has an MSN program that works on texts. Also, I noticed that when I open the .cab file for the oz messenger on my desktop, it has an MSN file. I was wondering how to make that one show instead of ICQ. Maybe it will work?
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
See how you can read MSN in there?
3) I never said nothing works... I asked to have a US Dash keyboard layout and et9 for English and Italian.
4) Sorry but what is bruv? What I am saying is, when you go down the last panel on the Home screen, you can choose from profiles to taskmanager to jogger settings and also wifi enabling. So, if I were to click on wifi, I would get a panel when I can click on/off. Ok? It works fine for the first 3 times I use, but then... when I click on the wireless manager on the home screen again, it doesn't go anywhere. Why? For it to work again I have to reboot the phone.
See...
This is Wireless manager...
When I reboot my phone, if I go to it and click on it... I get this...
But after a while, both this
and this (CommManager after I right clicked on connection settings, as you can see in the image)
when I click on them with the silver center button, do not work. Got it? Send To Phone
Send To Phone
Capitan Totti said:
1) I mentioned wifi just to make an example. I didn't have to setup anything like carrier sms mms etc but I see in the guides that some people do? Mine just restarted fine.
2) I have unlimited texts. I have T-Mobile OZ Messenger and it works. I have AIM, ICQ and Yahoo. I was wondering if someone has an MSN program that works on texts. Also, I noticed that when I open the .cab file for the oz messenger on my desktop, it has an MSN file. I was wondering how to make that one show instead of ICQ. Maybe it will work?
3) I never said nothing works... I asked to have a US Dash keyboard layout and et9 for English and Italian.
4) Sorry but what is bruv? What I am saying is, when you go down the last panel on the Home screen, you can choose from profiles to taskmanager to jogger settings and also wifi enabling. So, if I were to click on wifi, I would get a panel when I can click on/off. Ok? It works fine for the first 3 times I use, but then... when I click on the wireless manager on the home screen again, it doesn't go anywhere. Why? For it to work again I have to reboot the phone.
Click to expand...
Click to collapse
1) Yes thats why the second sentence
2) Just use OZ if you got set up, MSN messanger does not do text.
3) I needed clarification don't think possible as can't have Tegic & T9full, Tegic English is US eT9 English is UK
4) You have something wrong if you cannot always access commanager, to which is why say hard-reset. "not normal behaviour" lol no need for pictures i'm not a noob
I know you are not. But maybe I was not clear.
1) Reason I ask if its cool that everything worked at once on its owns is because I was wondering if maybe later on I will encounter issues. Wanted to get them out of the way now.
2) So, there is no MSN Messenger or other program for WinMo that works on texts? Wow.
3) I could simply install the et9 Tegic Full with 14 languages and remap the notepad files. I did so, but I can't get the tab to work as a tab, it just types 0, and the symbol button just works for activating the camera or it writes an e'. I was wondering if I can change something in the notepad files to make those two work because other than that I fixed the problem. Anyone?
4) Alright, I will try hard reset. Will this delete everything or no? Anything I should watch out for? Thanks.
Capitan Totti , bruv is the same as brother, bro, broham, (bruv) . I'm in the US and know what he means.

Dump Your Phone Memory

Follow these steps to dump all of your phone's memory. What use is this? It can be used to locate your MSL code if other methods fail. This method should work even if your phone is "bricked". This could potentially be used to retrieve lost information. At the very least it contains all your texts.
I am also currently exploring a possible security fail on the part of android/google. My phone dump contains my google account password in plain text....not just once. It has my password in plain text over 120 times. I am investigating how this could be. My google password is unique to that one account, and it is paired with my google login in the phone dump. I have not input the password in any other place outside of when I first setup my phone. I have not input that password in any app or browser. You may want to check if your login credentials are also being mishandled and possibly logged.
Phone Dump: (portions of this were taken from the PRL guide)
Connect your phone to your computer using a USB cable.
Open Device Manager.
Ports > LGE Android Platform USB Serial Port > Properties > Port Settings > Advanced > COM port number
Make a note of your COM port number.
Download and install QPST v2.7.
Open "QPST Configuration".
In the "Ports" tab, if your com port isn't listed, select "Add New Port" and write in your com port as "COM#" (# being the number you noted in step 4). Verify that your com port is listed.
Make sure your phone appears in the the "Active Phones" tab.
Run the "Memory Debug" program from QPST.
With your phone connected via USB and selected via the "Browse" button, press "Get Regions".
This will reboot your phone into "Download mode". You will most likely lose the connection to your phone because download mode uses different drivers and possible a different port. Go into device manager -> Ports (COM & LPT) and find your phone's new COM port.
Go into the QPST configuration and setup the new port.
Go back to the "Memory Debug" program, browse for your phone again, and select "Get Regions" again.
This time it will show you a bunch of options. Leave them all checked and select "SaveTo" and pick an empty folder to dump your phone memory to. This will take up a little over 500 megs.
It will take a good amount of time to finish (possibly 30 min to an hour).
When you are done, you will have the following files:
Code:
adsp_rama.bin, adsp_ramb.bin, adsp_ramc.bin, adsp_rami.bin, mdsp_rama.bin, mdsp_ramb.bin, mdsp_ramc.bin, mdsp_regs.bin, load.cmm, ebi_cs0.bin, and ebi_cs1.bin
If you want your MSL code, open ebi_cs0.bin with a hex editor. Look at the following HEX addresses:
Code:
0162ABCE
01BA6BDC
Both should contain your 6 digit MSL code in plain text.
If you want to find your ESN:
Code:
0104B5C2
What is more interesting is when you search in both ASCII and Unicode for your google account password in ebi_cs0.bin and ebi_cs1.bin. This is a raw dump of your phone memory. It will contain your contact list and other person information, but I see no reason for your account password to be logged in plain text. Another user has already reported finding his password using this technique. Please search for yourself and report back what you find. My guess is that this is not unique to the Optimus V.
Update:
I changed my account password. My phone then prompted for my new password. I entered it in. I then synced my contacts, rebooted, and then dumped the contents of my phone. My new password was in there in plain text twice. The old password was still there too. Something is logging my internet traffic or my keyboard inputs.
I can confirm my email address and password are together in plain text in multiple locations. I don't know much about mem dumps, but it appears to indicate it is google's sync service:
ebi_cs1.bin
0D565490 .... 8 NOOP..TCH 48(
0D5654A0 .... UID FLAGS)...."p
0D5654B0 .... assword"........
All other instances were preceded by imap or smtp.
JerryScript said:
I can confirm my email address and password are together in plain text in multiple locations. I don't know much about mem dumps, but it appears to indicate it is google's sync service:
ebi_cs1.bin
0D565490 .... 8 NOOP..TCH 48(
0D5654A0 .... UID FLAGS)...."p
0D5654B0 .... assword"........
All other instances were preceded by imap or smtp.
Click to expand...
Click to collapse
Thanks! With you that makes 3 of us to experience this. The address for the password(s) are different for me which is expected. Where as the MSL code would be located in a certain unchanged portion of the phone, this mysterious log would constantly be changing and could even be fragmented over the flash drive. I don't have (UID FLAGS) anywhere in either file.
What I also have is many Groove IP references with my Groove IP related google login and password. This looks like it is capturing it as internet traffic. I don't see why Google or Groove IP would log a password they both have encrypted access to.
mmarz said:
Something is logging my internet traffic or my keyboard inputs.
Click to expand...
Click to collapse
It's the keyboard. The OS isn't logging your passwords, at least as far as I can tell. If you select a different keyboard than the default, you will see a security warning popup which says that the keyboard can log everything, including your passwords. Well, this is normal, because softkeyboards need to be able to store words you enter into their dictionary/history to enhance their spelling and prediction. This is why your old password is still there after you changed it, and why they are stored in plaintext (because dictionaries are never thought to be encrypted).
Whether or not the softkeyboard is storing "words" that your entered in password fields in plaintext is not an Android security hole, it's the keyboard's, so complaints and/or advisories should be directed to them. They should at least give us the option of marking password fields as something not to store, and if we do want them remembered, for jimminey cricket's sake store them in a separate encrypted dictionary.
obijohn said:
It's the keyboard. The OS isn't logging your passwords, at least as far as I can tell. If you select a different keyboard than the default, you will see a security warning popup which says that the keyboard can log everything, including your passwords. Well, this is normal, because softkeyboards need to be able to store words you enter into their dictionary/history to enhance their spelling and prediction. This is why your old password is still there after you changed it, and why they are stored in plaintext (because dictionaries are never thought to be encrypted).
Whether or not the softkeyboard is storing "words" that your entered in password fields in plaintext is not an Android security hole, it's the keyboard's, so complaints and/or advisories should be directed to them. They should at least give us the option of marking password fields as something not to store, and if we do want them remembered, for jimminey cricket's sake store them in a separate encrypted dictionary.
Click to expand...
Click to collapse
There are a few reasons I don't buy this as being the cause.
Where would this unencrypted keyboard log be? I have data2ext going. My password was found on my internal phone partition. Whatever is doing this has permission to modify files outside of the data folder.
My password was present repeatedly. Even when I changed my password, it appeared twice even though I had only entered it once.
You have to manually select when you want to add words to the dictionary, otherwise all your misspelled tweets would be added. In password fields, this is not possible because only a single letter is inputted at any given time. No word is ever developed.
My other passwords are not in this log file. For example, my titanium backup password that I have to constantly use when I restore backups is not in here. Also my internet search phrases and other relevant items that I have typed in.
Update:
I just got this from KSmithInNY:
http://androidcentral.com/android-passwords-rooted-clear-text
Any app with root access has the ability to get your google credentials because android stores them in plain text. Wonderful!
mmarz said:
I just got this from KSmithInNY:
http://androidcentral.com/android-passwords-rooted-clear-text
Any app with root access has the ability to get your google credentials because android stores them in plain text. Wonderful!
Click to expand...
Click to collapse
Use the 2-step verification for your Gmail account and also set up an application specific password for your android device.
http://www.youtube.com/watch?v=zMabEyrtPRg
csrow said:
Use the 2-step verification for your Gmail account and also set up an application specific password for your android device.
http://www.youtube.com/watch?v=zMabEyrtPRg
Click to expand...
Click to collapse
Wouldn't this mean that you have to enter a verification code when entering your normal password, but if malware were to steal your application specific password that you created just for your phone, they could access your account using it and bypass the verification process?
Application specific password will only work on that phone. If you lose your phone, you can revoke that password for that phone which will block the access.
csrow said:
Application specific password will only work on that phone. If you lose your phone, you can revoke that password for that phone which will block the access.
Click to expand...
Click to collapse
No, they work on any device. There is no way for google to know what device is using it. You personally assign them for that phone, but if the password were to be stolen, then it can be used on any device. Also, if your account were to be compromised, you wouldn't know which password was stolen. With each application password you create, you are allowing another passcode that can be used to access your account. This seems very unsafe.
Update: I just tested this and I am right. I can use the same application specific password on all my apps and phones. So if this password were to be stolen, anyone could use it to login to my account. This is a major fail on the part of google....again.
Update2: Application specific passwords can be used to create login tokens. That means you can use a program like trillian to log into your gtalk using it, and then use the login token it produces to get access to your main google account through a web interface.
Well, that completely defeats the purpose of 2-part authentication. Oh well.
I hope you've reported this security hole... because obviously the intent is to be more secure than it actually is.
Which hole are you referring to? How google's two step verification is worthless because of one step passwords they force you handout to automated login apps? How Android's own password storage system keeps passwords in plain text and protects it by setting the file permissions to "please don't read this"? Or are you taking about how putting all these issues aside, I can still see my password in plain text in some sort of data capturing log that I found in a data dump of my phone's internal memory?
If you are talking about the last one, I'm still trying to find out exactly where the password is being stored in the dump and by what process. I've been searching through my phone's internal memory while it is on, but I can't seem to find it. I also want to rule out malware or something stupid that I might be doing before I start yelling about the sky falling. If more of you guys try this out, maybe we can rule out malware since all of us can't have the same bug. It really can't hurt your phone to dump it. It only takes 40 mins of your time.
(The more I learn about this stuff, the angrier I get.)
so after 3 tries i was able to dump the memory and after hours of searching i cant find my mn_aaa or mn_ha shared secrets,does anyone know the location of these? i have tried qxdm and after sending the spc i send
requestnvitemread ds_mip_ss_user_prof
and i get
22:53:26.203DIAG RX item:
22:53:26.203requestnvitemread - Error response received from target.
or is there another way to find them?
ummkiper said:
so after 3 tries i was able to dump the memory and after hours of searching i cant find my mn_aaa or mn_ha shared secrets,does anyone know the location of these? i have tried qxdm and after sending the spc i send
requestnvitemread ds_mip_ss_user_prof
and i get
22:53:26.203DIAG RX item:
22:53:26.203requestnvitemread - Error response received from target.
or is there another way to find them?
Click to expand...
Click to collapse
Any luck? I have the same issue with the Optimus V, e.g. I used another phone and reading the NV item was no issue. Seems to be specific to the LG.
srmuc69 said:
Any luck? I have the same issue with the Optimus V, e.g. I used another phone and reading the NV item was no issue. Seems to be specific to the LG.
Click to expand...
Click to collapse
well i think ive gotten further with qpst i opened service programming and put in my spc read the phone then saved to file. i double clicked the file and a viewer opened and i viewed it in text format i seen alot of nv items there but have yet to figure out which ones they are.
ummkiper said:
well i think ive gotten further with qpst i opened service programming and put in my spc read the phone then saved to file. i double clicked the file and a viewer opened and i viewed it in text format i seen alot of nv items there but have yet to figure out which ones they are.
Click to expand...
Click to collapse
Any luck? I did the same thing but as I have read in many other blogs the LG Optimus V times out in qpst, so did mine too.
I still have information in the file and I found the NV_ITEM_ARRARY in the file. What I do not know is how that array is built, e.g. is there a developer guide for CDMA phone where they detail the information. I was looking for the 1192 nv item and it should start wit the length like 0A for 10 digits of the AA Password. No luck so far without knowing what the bytes are and from just locking for 0A you get tons of hits.
What are you guys trying to accomplish? What is that code used for?
The dump should contain everything that is in the phone's memory. If the code is not encrypted or compressed in any way, it should be in there. The problem is that if you don't know the code, then you can't look up its location. Kind of a catch 22.
mmarz said:
What are you guys trying to accomplish? What is that code used for?
The dump should contain everything that is in the phone's memory. If the code is not encrypted or compressed in any way, it should be in there. The problem is that if you don't know the code, then you can't look up its location. Kind of a catch 22.
Click to expand...
Click to collapse
I'm trying to get the NV_ITEM 1192 and 466 from the LG Optimus V which is on Virgin Mobile. When I do that with CDMA Workshop it says access denied once you save the file. Now I'm tyring to find what these values are on my LG Optimus V. Do you think the dump will have this and how would I go to find the NV ITEMs, e.g. in which file are they and at what hex position?
srmuc69 said:
I'm trying to get the NV_ITEM 1192 and 466 from the LG Optimus V which is on Virgin Mobile. When I do that with CDMA Workshop it says access denied once you save the file. Now I'm tyring to find what these values are on my LG Optimus V. Do you think the dump will have this and how would I go to find the NV ITEMs, e.g. in which file are they and at what hex position?
Click to expand...
Click to collapse
yeah the dump should have all nv items.the hard part is figuring which ones are which.
mmarz said:
What are you guys trying to accomplish? What is that code used for?
The dump should contain everything that is in the phone's memory. If the code is not encrypted or compressed in any way, it should be in there. The problem is that if you don't know the code, then you can't look up its location. Kind of a catch 22.
Click to expand...
Click to collapse
well the mnha and mn aa are paswords needed to get your data working when you want to use a different phone ie the Samsung Epic on virgin mobile.you can clone all info from the optimus v to the epic but with out those password data will not work.i may not be inclined to do this anymore since the motorola triumph is coming out.meaning i wont need to find a better phone and clone this one.

Investigating Magic SMS commands to ring/lock WP7 devices

I was toying today with the My Phone service here (https://www.windowsphone.com/en-US/my) while my sim card was in an android device.
After trying the "ring my phone" option, I received an SMS from Microsoft that contains some string encoded as a base64 message it seems. I have then send the same SMS to my number with the sim card on my Omnia 7 and it actually made the phone ring, I have tried this process multiple times and it seems to work even when the phone has no data connection.
I have noticed that all the SMS commands sent to the phone has the same magic header, which if you even try to send it to yourself, will still be interpreted as a command. Also, once an SMS command is received, it doesn't trigger the phone anymore (the phone appears to remember the old commands).
What is left to do now is:
1. identify how the commands are encoded (and eventually generate them)
2. and if the commands are generic and work on any phone or are generated per user account.
The second point could be verified easily, as I can provide some of the SMS commands I have for anyone who wishes to test (please notice that the commands only make the phone ring).
Please leave me a message if you want to test the commands, I would also be happy to hear any thoughts about this if some of you have already investigated it before.
[Update 03/05]
After some testing it appears that the commands are not generic enough to work on all models. The commands of my Omnia 7 do not affect an HTC 7 Pro for example, but we do not know yet if they are model specific, or user/defice specific.
If you have an Omnia 7 please let me know so that we can test if it's model specific.
Those who have access to a non Windows phone can also generate SMS commands by sending a ring command from here to their number (with the sim card on another phone). It would come clear after we gather few SMS commands for several models what is and what is not specified in these commands.
I've not investigated this (though I'd thought about it before), but I'd be happy to do so (just don't send me the "wipe your phone" command!). There must be *some* degree of security, of course. I assumed that the SMS commands also couldn't be sent from the messaging UI, although with native code access it should now be possible to send them through the raw SMS API...
I don't have an Android phone to test with, though.
Cool
Sounds cool if you provide me with a sms code to ring my phone or something I would love to try it out
Not sure if it is related, but I did investigate the whole provisioning over sms stuff a while back, and the result was very disappointing. The driver that accepts the sms in the first place is in TCB, so that was promising, but it then impersonates a low-privileged account to the real provisioning. Some file-access and registry-access was possible, but nothing really important.
Good luck,
Heathcliff74
I can certainly try this. HTC 7 Pro/Arrive on Sprint.
atm153 said:
I can certainly try this. HTC 7 Pro/Arrive on Sprint.
Click to expand...
Click to collapse
tried on mine it doesnt seem to work
this is kind of interesting, but, i can't use that feature in indonesia
---
btw, can you provide all the commands here? including the "wipe your phone" command
---
eehem, we can troll other wp users if we can get that sms code
aramadsanar said:
this is kind of interesting, but, i can't use that feature in indonesia
---
btw, can you provide all the commands here? including the "wipe your phone" command
---
eehem, we can troll other wp users if we can get that sms code
Click to expand...
Click to collapse
And that, my friend, is why it should not be disclosed hehe.
The world isn't ready for a troll level that high just yet
juzz86 said:
And that, my friend, is why it should not be disclosed hehe.
The world isn't ready for a troll level that high just yet
Click to expand...
Click to collapse
and, seriously, i'm curious about this code, and i definitely won't troll other wp users. i need this for my own purposes
As per the first post edit, I've got an Omnia 7.
No secondary phone though, gave that one away to my sister.
Look what I did today:
http://youtu.be/SSFc41ZvaIo
djtonka said:
Look what I did today:
http://youtu.be/SSFc41ZvaIo
Click to expand...
Click to collapse
r u a real dj
djtonka said:
Look what I did today:
http://youtu.be/SSFc41ZvaIo
Click to expand...
Click to collapse
Could you please share the code?
Code is working only once and only with specific model as Nokia L800 or HTC HD7 from Your list on website.
SkYxAAAxAR626k5CsLvsLiv3PK2cNAxlBoTWMh9ln6uVY87rPTVmRRxGRJKLRC9E8S8R+6Z4g==
Click to expand...
Click to collapse
I am intrested in this idea.
Can you provide me more information?
Maybe I can help you
I wonder if that is the string that is on the computer you sync with in the certificate store... it says "Zune-Tuner:xxxxx" and a random looking value (NOT keys or part of the cert, but in the name)
Heathcliff74 said:
Not sure if it is related, but I did investigate the whole provisioning over sms stuff a while back, and the result was very disappointing. The driver that accepts the sms in the first place is in TCB, so that was promising, but it then impersonates a low-privileged account to the real provisioning. Some file-access and registry-access was possible, but nothing really important.
Good luck,
Heathcliff74
Click to expand...
Click to collapse
This is worth paying attention since for the erase command it surely should grant TCB privileges ... also for 'find my phone'.
Anyway ring command for OMNIA7 is:
SkY#AAAxBuTZmZCZ9DWZYBvARGyQ0auHQcVvMv2c/HqXv1zQccwcQHAC9ErEZ2nuGgy5Wq5FQg==
and for Focus:
SkY#AAAxAzZCeRmCnBJKls6/h1WIZUTNgcipqDPTax0qeiSaDqnXd441bv2JaiixMH8tzjvZUQ==
I have no clue how what code is this but the SkY#AA is the header in all messages and every ring command SMS is unique . Funny, if I send the FOCUS ring command to an Omnia7 it gets delivered( network delivery confirmation) but it doesn't show up in messages, nor does the phone react in any way so it must have an model identifier inside.
Who's good @ decryption here?
Maybe we should gather more commands to try and guess some vallues from inside.
htc9420 said:
This is worth paying attention since for the erase command it surely should grant TCB privileges ... also for 'find my phone'.
Anyway ring command for OMNIA7 is:
SkY#AAAxBuTZmZCZ9DWZYBvARGyQ0auHQcVvMv2c/HqXv1zQccwcQHAC9ErEZ2nuGgy5Wq5FQg==
and for Focus:
SkY#AAAxAzZCeRmCnBJKls6/h1WIZUTNgcipqDPTax0qeiSaDqnXd441bv2JaiixMH8tzjvZUQ==
I have no clue how what code is this but the SkY#AA is the header in all messages and every ring command SMS is unique . Funny, if I send the FOCUS ring command to an Omnia7 it gets delivered( network delivery confirmation) but it doesn't show up in messages, nor does the phone react in any way so it must have an model identifier inside.
Who's good @ decryption here?
Maybe we should gather more commands to try and guess some vallues from inside.
Click to expand...
Click to collapse
Also, note that the phone, upon receipt of the magic SMS would reply back to the short code indicating success or failure, which would ripple back to the website with the status-I stuck a prepaid SIM into a spare phone to capture the ring and wipe requests-in both cases the website said something to the effect of "we couldn't do it right now" (and in the case of the erase, asked if you wanted to keep trying until successful).
speaking of this, did the OP post what short code was being used? I wonder if it's the same between carriers?
There doesnt appear to be one code for Focus and One for HTC whatever etc...
My wife and I both have lumia 900's. I did this first with My SIM, then her's and back to mine. I got 3 different values. So both phones were different and even the same phone was different on two seperate occasions.
It looks like the value the MS messaging system negotiates with their server. Check out the messaging SDK sample projects.

Categories

Resources