Google 2 step verification, custom roms - Samsung Galaxy Nexus

Is anyone using Google's 2 step verification? If so, once you have it set up, is it much of a hassle to keep using it? Also, how does it work with custom roms. If you flash a new rom, do you have to keep entering new passwords for apps that use your google account?

I don't use it myself, but I think this thread will answer most of your questions:
forums.androidcentral.com/general-help-how/198542-using-2-step-authentication-when-youre-rom-flasher.html

I use it. You only need to use a application specific password when you login to your Google account on your phone. Custom rom makes no difference.
Sent from my Galaxy Nexus using Tapatalk 2

i use it. In my opinion, it is a bit of a hassle, but I think that the extra security is worth the inconvenience

kgeissler said:
Is anyone using Google's 2 step verification? If so, once you have it set up, is it much of a hassle to keep using it? Also, how does it work with custom roms. If you flash a new rom, do you have to keep entering new passwords for apps that use your google account?
Click to expand...
Click to collapse
Once you set it up, you just have to authorize applications every 30 days to use your Google Account. With custom ROMs, there are several ways to do things, all of which are inherently insecure. You can backup/restore your Google Authenticator app to Dropbox, you can backup/restore apps, but overall when flashing ROMs the annoying thing to deal with is making application-specific passwords every time you wanna log into a newly flashed ROM.
I recommend that everyone uses 2-step verification. The fact that its a little bit of a hassle just shows that it's more secure.

martonikaj said:
Once you set it up, you just have to authorize applications every 30 days to use your Google Account. With custom ROMs, there are several ways to do things, all of which are inherently insecure. You can backup/restore your Google Authenticator app to Dropbox, you can backup/restore apps, but overall when flashing ROMs the annoying thing to deal with is making application-specific passwords every time you wanna log into a newly flashed ROM.
I recommend that everyone uses 2-step verification. The fact that its a little bit of a hassle just shows that it's more secure.
Click to expand...
Click to collapse
i use the 2 step verification for my lastpass account.
i couldnt even tell you what my google password is at all... all i know its 100 characters long.

martonikaj said:
Once you set it up, you just have to authorize applications every 30 days to use your Google Account. With custom ROMs, there are several ways to do things, all of which are inherently insecure. You can backup/restore your Google Authenticator app to Dropbox, you can backup/restore apps, but overall when flashing ROMs the annoying thing to deal with is making application-specific passwords every time you wanna log into a newly flashed ROM.
I recommend that everyone uses 2-step verification. The fact that its a little bit of a hassle just shows that it's more secure.
Click to expand...
Click to collapse
The 30 day limit is only for webbrowsers. Once you've logged in on your gnex the application password stays valid until you logout or flash a ROM.
Sent from my Galaxy Nexus using Tapatalk 2

Related

[Q] Preparing for 1st root and custom ROM. Need some clarification.

I’m getting ready to root my EVO and load it up with a fancy new custom ROM but before I do that I still have a couple of questions. I’ve found extensive information on how to back up the current data but most of it applies to a device that ALREADY HAS BEEN ROOTED. Is there a “How-to” guide that covers how to back up everything BEFORE the device is rooted? I'd prefer a method that has been testing and will allow me to recover if I need to.
So far, I’ve been able to back up some, but not all, of the applications using Astro Tools. Google contacts will sync with google and my phone contacts are on my Outlook. A side question: Is there a way to move phone contacts to google contacts?
I would also like to ensure that my “contact links”, SMSes, and call history are saved.
What happens to purchased applications? Will “Marketplace” still be able to ID my phone and allow me to re-download these applications?
I also want to ensure that my 4G “keys” are backed up.
My final question is with regard to ROM recommendation. I know, I know, everyone is different, etc. I would like a ROM that is:
1. Stable Froyo based with the latest fixes (no 30 fps limit, good audio streaming over BT)
2. Allows me to remove some of the useless Sprint Apps like NASCAR (I think I should be able to do this with all the ROMs once rooted)
3. Allows me to use a bluetooth keyboard (not sure which ROMs have this capability, I’ve only heard that Cyanogen might)
4. Allows the use of the forward, back, buttons on my bluetooth headset when playing media (same as #3)
5. It would be nice if it allowed me to force roaming. When I’m at work the Spring signal is really bad and it kills the battery very quickly.
Thanks in advance.
I didn't completely read your post, but I'll get in a quick reply to help a brother out. Root with Unrevoked 3.2 and use Titanium. There's no real need to back up before rooting because Unrevoked doesn't wipe your phone.
The Android Market backs up your purchased apps if you are signed into your Google account. Not sure about your Bluetooth questions.
The best Sense rom in my opinion is Fresh 3.3. I would check it out. Cyanogenmod 6 is by far the best rom without Sense, but no 4G.
Your contacts are synced with Google. You can back them up by exporting them to your SD. I'm using the AOSP contacts app, but I think it's the same for the Sense contacts app. Hitting menu should bring up the option.
Sent from my PC36100 using XDA App
Thanks for the quick reply. I'm glad that the purchased apps are tied to the google account and I probably should have thought of that; LOL.
I've heard quite a bit about Fresh and I don't mind Sense at all so I think I'll give that ROM a whirl first, especially if it supports the bluetooth profiles I need. If not, then I guess it's Cyanogenmod for me. Detroit area currently doesn't have 4G so wouldn't be losing anything.
I tried backing up my contacts before but when I ran the restore I found that the "contact links" were either not backed up or not restored. I guess I should restore phone contacts from Outlook or else I'll end up with a ton of duplicates anyway. I probably will have to re-link all the contacts anyway.
Glad to hear that rooting won't corrupt the phone but I'd rather have as much backed up as possible just in case.
I'm not 100% sure on this, but Google should maintain your contact links. As long as Google has backed up your contacts (you can check at google.com/contacts), when you set up your Google account on a new rom, they'll be back, linked as they were before. Some more input would be nice, though, as I'm not completely sure.
Sent from my PC36100 using XDA App

Friendly Reminder About Google Authenticator and Flashing

I recently started using Google's 2-step Authentication app. Well I went and flashed a new ROM via standard protocol of data/cache/dalvik wipe, flashed gapps, went to log in to the play store and guess what... it asks me for an authentication code just like its supposed to. One problem... the app isn't installed on my phone any more. Fortunately this doesn't mean you or I are SOL.
1) You should ALWAYS make an nandroid backup before flashing. This way if you **** something up you can always flash back to a config that worked.
2) When you turned on Google Authenticator in the first place, it should have given you a list of 10 emergency back up verification codes. You should have followed the instructions to write them down or save them someplace safe for facepalm moments like these. Now would be a really good time to use one of them, but you only get 10 so you don't want to burn through one every time you flash a new ROM.
3) You can have your apps backed up to your SD card but you'll need a file manager to do so and the Play Store will be of no use at this point. However, you can get online and search for a downloadable .apk of one. However, if you're going that route, might as well google for a downloadable version of the Authenticator .apk (like here).
4) Probably the easiest hassle free option is to go into your Google settings on a PC that has already been authenticated, look under Security, and turn OFF 2-step verification; there is an option to save your settings to turn them back on later. Then proceed with flashing to you're hearts content after reading #1.
Um, you can just go on-line to your Google account and get a new set of "10 codes to print" whenever you want to - so you don't have to worry about being careful with them or anything. The only catch is that only the most recently requested 10 work - so... just use 10 then request 10 more there is no limit.
Interesting, I'm definitely considering using it.
Sent from my SGH-T999 using Tapatalk 2
Authenticators and phones are not a good mix. For this reason, I use the texting option. Unrecognized computer attempting to login - authentication code sent to my phone.
Pennycake said:
Um, you can just go on-line to your Google account and get a new set of "10 codes to print" whenever you want to - so you don't have to worry about being careful with them or anything. The only catch is that only the most recently requested 10 work - so... just use 10 then request 10 more there is no limit.
Click to expand...
Click to collapse
Yes, at the time I posted I wasn't aware that you could get a new set of 10. Thank you for the correction.
grandtheft_jiujitsu said:
Yes, at the time I posted I wasn't aware that you could get a new set of 10. Thank you for the correction.
Click to expand...
Click to collapse
I only know because the same thing happened to me.
Sent from my SGH-T999 using Tapatalk 2
I always use TB and am able to restore the authenticator app with data. If I need to create an account on my phone before I just get the code texted to my phone.
Sent from my SGH-T999 using Tapatalk 2
Borumha said:
I always use TB and am able to restore the authenticator app with data. If I need to create an account on my phone before I just get the code texted to my phone.
Sent from my SGH-T999 using Tapatalk 2
Click to expand...
Click to collapse
For me, I list my google voice number as the phone number for 2-step verification. Then, I can just click the "don't have your phone" option, choose to send a code to my google voice number, and then access the code via the google voice website. No more worries about getting stuck at the 2-step verification page.
Only issue doing that for me is I often flash my phone during my commute (you mass transit) so don't often have access to a verified pc. But could forward the GV text to my phone and get the code that way as well
Sent from my SGH-T999 using Tapatalk 2

transfer paid apps to new account

so i got an email from google today saying that someone tried to log in to my account from china. Obviously it couldnt be me, so i reported it and immediately changed my password and enabled two step verification. But still, i would rather stay on the safe side and use a completely new account. Normally i would do just that without a seconds though, but i have paid for apps with this account. so i was wondering if it would be possible to transfer those apps to a new account.
TheAtheistOtaku said:
so i got an email from google today saying that someone tried to log in to my account from china. Obviously it couldnt be me, so i reported it and immediately changed my password and enabled two step verification. But still, i would rather stay on the safe side and use a completely new account. Normally i would do just that without a seconds though, but i have paid for apps with this account. so i was wondering if it would be possible to transfer those apps to a new account.
Click to expand...
Click to collapse
You need to email each developer for the paid apps. They will have you verify some things and get you the app on your new account.
Sent from my SGH-M919 using Tapatalk 2
Towle said:
You need to email each developer for the paid apps. They will have you verify some things and get you the app on your new account.
Sent from my SGH-M919 using Tapatalk 2
Click to expand...
Click to collapse
tedious but doable, guess ill start that process in the morning

[Q] "An update is required to access Samsung services"

Keep getting a popup warning every morning when we turn on our Note 8.0 then start the wi-fi that says: "An update is required to access Samsung services". So far we've answered "No" each time the warning is displayed until I find out what they want to update and just how much extra data will be deposited onto the tab if we allow it.
Yeah...I'm paranoid but the fact is, we don't use any Samsung services. I'd really like to turn the Samsung account OFF if that's a safe thing to do.
What do you say Note 8.0/Android community? Should I allow the update or would turning off the Samsung account stop the update notices???
EnzoS
I believe you can turn off the account, as a fact I have mine turned off and whenever I re-flash a new Rom either Stock or Custom I always say No to the Samsung account, but you can remove/delete your Samsung account by going here https://account.samsung.com/membership/service/getServieInfoList.do sign in, profile, remove account.
On your tablet it will still show Samsung account and you will notice that it cannot sync "sync error" when you click that it will try to sync and will fail, after that the Samsung account will be gone or if you do see "remove account" just remove it with that.
I will include a picture of the services that will be stopped.
Hoping this helps
Sent from my SPH-L900 using xda premium
Harjan112 said:
I believe you can turn off the account, as a fact I have mine turned off and whenever I re-flash a new Rom either Stock or Custom I always say No to the Samsung account, but you can remove/delete your Samsung account by going here https://account.samsung.com/membership/service/getServieInfoList.do sign in, profile, remove account.
On your tablet it will still show Samsung account and you will notice that it cannot sync "sync error" when you click that it will try to sync and will fail, after that the Samsung account will be gone or if you do see "remove account" just remove it with that.
I will include a picture of the services that will be stopped.
Hoping this helps
Sent from my SPH-L900 using xda premium
Click to expand...
Click to collapse
Another U break it by disabling it thread... I see this all the time with peeps disabling features in MS Windows.
I use Samsung account to get the latest Samsung updates. Without your updates, your link, OS update, and most of all Miracast sync will not properly function. As there are bug fixes and added features.
I even have Google play store setup to be automated with updates as well. It is the only way to track the 200 or so downloaded apps being fixed and what not. Still waiting for 100% compatibility for Android 4.4.x... which may never be. HA!
Though I use dummy a google email account that are setup with features disabled. Google has buried a lot of user settings, but at least you have them to disable.
@gooberdude you telling us that if you don't setup the Samsung account you will NOT get an OS update? I find that strange cause as I said before I never set it up and still was getting my OS updates when I checked for updates, now of course after I Root the device with either CF-root or "the always mentioned by you" Saferoot, it will say that my device is modified and that there are no updates available.
I really don't see the point of a Samsung account and feel that Samsung is wasting resources/battery with constant syncing in trying to duplicate stuff (calendar, email, app store, etc) by putting an additional and IMHO unnecessary layer into the OS that Google already does.
Sent from my SPH-L900 using xda premium
Harjan112 said:
@gooberdude you telling us that if you don't setup the Samsung account you will NOT get an OS update? I find that strange cause as I said before I never set it up and still was getting my OS updates when I checked for updates, now of course after I Root the device with either CF-root or "the always mentioned by you" Saferoot, it will say that my device is modified and that there are no updates available.
I really don't see the point of a Samsung account and feel that Samsung is wasting resources/battery with constant syncing in trying to duplicate stuff (calendar, email, app store, etc) by putting an additional and IMHO unnecessary layer into the OS that Google already does.
Sent from my SPH-L900 using xda premium
Click to expand...
Click to collapse
I use saferoot and it does not show device is modified, because it is not flashed. Many root options require flashing, saferoot does not. So the flag is left alone.
Now for Samsung apps, you must have an account to use half of them. So if you are not using any Samsung apps, then don't bother with making an account.
I think you can still use the Samsung voice commander without an account... as it is at least 2x faster than Google and works just the same.
Its all up to you on what you want to do for getting updates. For me I get 3% battery drain every 12 hours when in sleep mode with WIFI enabled. Including having updates and email active. That is too small to think about disabling accounts or turning off sync and updates.
It seems too many Android peeps tweak things so much that they are paranoid by not doing enough. I am a minimalist. I do what I can with what I got, and find what is the issue before modifying, adding or removing stuff. I have found that Samsung and Google can interact well with each other to make operation of the tablet quick and stable. Though, Google needs to work more on getting things right with voice search and media player.
At least Samsung has addressed and fixed many wee issues with proper updates since January and March. Just waiting for 4.4.x to be released so I have that available when I want to upgrade.
@gooberdude don't hear me wrong, I am completely with you as far as the paranoia goes, I myself am a firm believer of Stock Rom with minimal tweaks, when it comes to updates I always check manually, I use the tablet mostly for reading my ebooks and occasional web browsing, email and getting good battery life, right now I'm at 2 days and 6 hours with 32% left, of course I enable my wifi when I need it.
I actually did send you a PM a few days ago asking about safe-root, don't know if you have seen or gotten that or not, I would like to start using safe-root to it full potential
Sent from my SPH-L900 using xda premium
Here is the original link it has a step by step guide and has a reply with someone's video as well.
http://forum.xda-developers.com/showthread.php?t=2565758
gooberdude said:
Here is the original link it has a step by step guide and has a reply with someone's video as well.
http://forum.xda-developers.com/showthread.php?t=2565758
Click to expand...
Click to collapse
Thank you, I will give it another try later today
Sent from my SPH-L900 using xda premium
Thanks guys for the comments and recommendations but perhaps I didn't make myself totally clear in the initial posting. I'd simply like to know if I can avoid being bothered to update my account or apps or whatever by turning off the Samsung account on the tablet. I don't have to (nor do I want to) delete the Samsung account entirely. I just want to take it off the tablet (turn it off/disable it) with hopes that the popups warning me that "An update is required to access Samsung services" will go away.
As I stated earlier, we don't use any Samsung services and don't even download any apps from the Samsung apps store. As Harjan112 said: "...Samsung is wasting resources/battery with constant syncing in trying to duplicate stuff (calendar, email, app store, etc) by putting an additional and IMHO unnecessary layer into the OS that Google already does." We also are quite minimalistic and are very happy to run the tab with as little as possible running in the background and only update what we use if absolutely necessary.
Your comments in this regard will be appreciated.
EnzoS
You can remove the account from the tablet without deleting it entirely.
Go to your settings... Accounts... Click Samsung account then on the right side of the screen you will see Accounts with your email address click that, then in the top right corner you should see remove account.
This also should stop the update notice.
Hoping this helps
Sent from my SPH-L900 using xda premium
Harjan112...thank you very much for the detailed information. I needed to be assured that removing the Samsung account from the Note 8.0 was the right way to go and your explanation seems to be right on the money. The tab is my wife's and I don't think she would appreciate it too much if I decided to root the thing and experiment on it in any way (ha).
Now if I could only get an answer to my other problem: the Gallery's data file bloating itself for no apparent reason every time the tab is turned on or rebooted. It's pretty strange that (so far) 118 people have viewed the posting but not one reply...not even a foolish recommendation (ha).
Thank you again. I will definitely give it a try now.
EnzoS
Now if I could only get an answer to my other problem: the Gallery's data file bloating itself for no apparent reason every time the tab is turned on or rebooted. It's pretty strange that (so far) 118 people have viewed the posting but not one reply...not even a foolish recommendation (ha)
Click to expand...
Click to collapse
Lol... where exactly did you ask that question Are you sure it was in this thread
Anywho what do you mean by bloating? As in let say book covers for ebooks or album art for music or web albums?
Sent from my SPH-L900 using xda premium
Thank you for your interest in my "other" problem. I did indeed post my question in the Galaxy Note 8.0 Q&A, Help & Troubleshooting thread as: "GN8 Gallery data eating up drive space" back on the 1st of March. I thought I was fairly clear on the description and I would appreciate it if you would check it out. I'd be more than happy if you had questions for me as I'm baffled by what's happening. Please read my post.
Best regards,
EnzoS
EnzoS. said:
Thank you for your interest in my "other" problem. I did indeed post my question in the Galaxy Note 8.0 Q&A, Help & Troubleshooting thread as: "GN8 Gallery data eating up drive space" back on the 1st of March. I thought I was fairly clear on the description and I would appreciate it if you would check it out. I'd be more than happy if you had questions for me as I'm baffled by what's happening. Please read my post.
Best regards,
EnzoS
Click to expand...
Click to collapse
Ah, well we did not follow your past question... I found with my antivirus app, that I get over 350MB of cached images just with my mp3 ID3 tags having album art.
I found that if you install Xposed framework and add the Wanam Xposed module, you have he ability to disable caching of images. Since disabling, I get zero cache. As for clearing the cache, you will either add a cleaner app or replace your antivirus with one that has built in added utilities.
Though one thing about disabling cache, you will notice slower image redraws with any images that are stored on slow SD cards. I have 633x UHS-1 SD card installed, and do not find images having issues with delayed image redraws from SD.
Hope this helps.

Is it possible to bypass pin/security code in email app on stock rom?

Hi,
I'm trying to bypass the required pin/security code that my company's microsoft exchange email requires on a stock rom.
I installed the exchangen-no-pin hacked app that everyone uses on an AOSP rom, no problems.
But since I have decided that AOSP roms leave me with at least 1/3 less battery life than stock, I want to go back to stock. But I can't seem to get around the pin/security code policy b/c the hacked email apk doesn't work.
Anyone have any ideas?
Is google not working for you? A search with the keywords "exchange bypass" gives this as first result: http://repo.xposed.info/module/org.flacid.exchangebypass
zxz0O0 said:
Is google not working for you? A search with the keywords "exchange bypass" gives this as first result: http://repo.xposed.info/module/org.flacid.exchangebypass
Click to expand...
Click to collapse
I wish people like you would learn to research their answers before being rude to others. This Xposed mod does not work on Stock Rom. Is google not working for you?
lamenramen said:
I'm trying to bypass the required pin/security code that my company's microsoft exchange email requires on a stock rom.
Click to expand...
Click to collapse
Bypassing corporate security policies sounds like a good idea.
Use an email client such as Nine. That will allow you to satisfy the exchange server with an email app pin lock and wipe, instead of a device level admin lock and wipe.
Sent from my SGP512 using Tapatalk
Mailwise is another (free) email client that allows bypass exchange security if you enter a code you have to fetch from their website one time.
Although Nine is probably a better alternative because it does have the app level pin & wipe function rather than completely bypassing exchange security.
I can recommend NINE, it works great and their support is also pretty good, I received a reply almost instantly when I reported a minor bug and it was fixed within a day.
on stock, i don't think so. it is governed by the administrators of your email account. is it an exchange account?

Categories

Resources