This was something I was thinking about while I was at work earlier today. While setting a screen lock and using an app protector app will protect my phone from unauthorized access while it is on, there is currently nothing that I am aware of that can keep a thief who is in the know about rooting and flashing ROMs from booting my phone into recovery resetting it, and modding it to his liking. My question is, is there a way to encrypt my recovery image (I use TWRP) to make it accessible only after a passcode is entered? Or is there a recovery out there somewhere that has this built in?
Sent from my Galaxy Nexus using Tapatalk 2
Even if you were to password protect your recovery, if you're worried about a tech-savvy thief they'd just have to toolkit flash (or adb if they had a brain) a factory build and poof.
063_XOBX said:
Even if you were to password protect your recovery, if you're worried about a tech-savvy thief they'd just have to toolkit flash (or adb if they had a brain) a factory build and poof.
Click to expand...
Click to collapse
Which brings up another issue I was pondering. Encrypting the bootloader, or possibly flashing one that can't run adb commands without a password.
Sent from my Galaxy Nexus using Tapatalk 2
Use bootunlocker for nexus devices (on play store) to lock your bootloader and unlock it when you want to flash something. If you do that plus flash the stock recovery and turn off USB debugging, your device will be secure. If someone can't unlock your phone and run bootunlocker, they will have to fastboot oem unlock in order to do anything, which will wipe your data from the phone. It adds more steps if you like to flash and modify things, but it leaves Android's security intact.
Sent from my Nexus 7 using xda premium
mwalt2 said:
Use bootunlocker for nexus devices (on play store) to lock your bootloader and unlock it when you want to flash something. If you do that plus flash the stock recovery and turn off USB debugging, your device will be secure. If someone can't unlock your phone and run bootunlocker, they will have to fastboot oem unlock in order to do anything, which will wipe your data from the phone. It adds more steps if you like to flash and modify things, but it leaves Android's security intact.
Sent from my Nexus 7 using xda premium
Click to expand...
Click to collapse
Stock recovery? So does this mean that the only way I can prevent a tech savvy thief from accessing recovery and flashing a new ROM is by not being rooted?
Sent from my Galaxy Nexus using Tapatalk 2
tattedupboy said:
Stock recovery? So does this mean that the only way I can prevent a tech savvy thief from accessing recovery and flashing a new ROM is by not being rooted?
Sent from my Galaxy Nexus using Tapatalk 2
Click to expand...
Click to collapse
Pretty much. That's why a lot of companies require encryption and unrooted devices for Exchange purposes.
tattedupboy said:
Stock recovery? So does this mean that the only way I can prevent a tech savvy thief from accessing recovery and flashing a new ROM is by not being rooted?
Sent from my Galaxy Nexus using Tapatalk 2
Click to expand...
Click to collapse
You can still be rooted (assuming you use the literal definition of superuser). With the bootunlocker app, you can unlock the boot loader, reboot bootloader, flash custom recovery, flash ROM/mod in recovery, reboot boot loader, flash stock recovery, and relock bootloader again with the app. Unless someone knows your password or pattern, they won't be able to do that. They can only erase the entire phone to gain access.
Sent from my Galaxy Nexus using xda premium
Ok, here's another question. How do I flash the stock recovery?
Sent from my Galaxy Nexus using Tapatalk 2
Related
Im returning my Gnex as I want it on Sim Free. 500mb data is just not enough.
How do I go about relocking the bootloader and unrooting the phone?
Im on OS X and I rooted and unlocked it with Pauls Superboot
For the moment, you don't.
Can't you just remove the Superuser apk's and then run "fastboot oem lock" (or relock not sure)!
I have never tried this and don't have a device so better wait for someone knowledgeable to post!
Check the Nexus S forums, should be in Dev section on how to re-lock bootloader. It's either relock or lock or re-lock. As for Superuser, download Titanium backup and use it to remove it.
fastboot lock/relock should not work unless it's an engineering device/some exploit is used.
Not sure about removing root, but I can confirm that the following command works fine:
fastboot oem lock
wilskywalker said:
Not sure about removing root, but I can confirm that the following command works fine:
fastboot oem lock
Click to expand...
Click to collapse
Cheers. I thought that might work. Now to unroot it and remove the evidence..
Sent from my Galaxy Nexus using Tapatalk
Evostance said:
Cheers. I thought that might work. Now to unroot it and remove the evidence..
Sent from my Galaxy Nexus using Tapatalk
Click to expand...
Click to collapse
I would think a factory reset should return you to stock, if not, I'm sure someone will have the original boot.img and you can flash that via fastboot. Then factory reset again afterwards to be on the safe side. Finally fastboot oem lock and you're ready to go buddy!
Does fastboot oem lock remove the unlocked padlock image on boot?
Yes
Sent from my Galaxy Nexus using xda premium
I'm having a hard time finding a tutorial to unlock the root the GNex, Verizon version.
Everything I seem to search for leads me back to the toolkit which I rather not use, so if someone can point me towards another way to unlock the boot loader, root, and flash recovery, I'd appreciate it.
Thanks.
Sent from my Galaxy Nexus using Tapatalk 2
Adb reboot bootloader
Fastboot OEM unlock
This factory resets once done
Adb reboot bootloader
Fastboot flash recovery name of recovery.img
Boot into recovery flash custom rom or su.zip
Sent From My Sprint Galaxy Nexus
Try http://droidmodderx.com/galaxynexus/manually-unlock-and-root-the-galaxy-nexus-requires-adb.
All you really need to do is make sure you have all the proper pre-rooting tools. Then you boot into boot loader, type in "fastboot oem unlock" then follow some on screen instructions. Then you flash a temporary recovery, flash superuser or su.zip from that recovery, then delete a file to make it permanent recovery and you're set to flash roms/kernels/etc. Su.zip should be super easy to find too.
---
Agh UBER beat me to it.
Uh...stickied above.
Or linked in my sig.
This is the manual way to do it, as requested.
ÜBER™ said:
Adb reboot bootloader
Fastboot OEM unlock
This factory resets once done
Adb reboot bootloader
Fastboot flash recovery name of recovery.img
Boot into recovery flash custom rom or su.zip
Sent From My Sprint Galaxy Nexus
Click to expand...
Click to collapse
Oh wow, that easy?
And if I did miss something easily, sorry, been around the block so I know how annoying repetitive threads can be.
Sent from my Galaxy Nexus using Tapatalk 2
I Am Marino said:
Oh wow, that easy?
Sent from my Galaxy Nexus using Tapatalk 2
Click to expand...
Click to collapse
Yup but OEM unlock cleans the phone completely data and all so backup. Also take a look at the sticky the other person said for actual links and files.
Sent From My Sprint Galaxy Nexus
I just got thrown off by all the toolkit links.
EDIT: Double post, sorry.
Sent from my Galaxy Nexus using Tapatalk 2
I got familiar with fastboot because the Rezound needed it all too.
Sorry for all the multiple posts, my Tapatalk is freaking out.
Sent from my Galaxy Nexus using Tapatalk 2
Is the file that I can't remember the name of not in /system anymore where you have to delete it in order to maintain your first recovery that you flashed (otherwise it'll bring it back to original recovery)? In other words, there's no such thing as a temporary recovery for the GNex?
My Verizon nexus is stuck in boot loop. My volume up button does not work so i cant get into fast boot. Is there any other way that i can get into recovery to nandroid? Or any odin methods i can use to get it back without erasing internal storage preferably? If there is no way possible then i assume i will have to flash stock images.
-Thanks much
Take a look at this... It may give you some guidance.
http://forum.xda-developers.com/showthread.php?t=1827685
Sent from my Galaxy Nexus using xda app-developers app
wisefreakz said:
Take a look at this... It may give you some guidance.
http://forum.xda-developers.com/showthread.php?t=1827685
Sent from my Galaxy Nexus using xda app-developers app
Click to expand...
Click to collapse
why would you suggest an unsupported tool to reflash/update a fw, of a Nexus? just because it's made by samsung, doesnt mean that samsung supports it, and the flashing through odin.
OP, use FASTBOOT, it's the tool Google INSTRUCTS you to use to recover a Nexus device to factory status.
http://forum.xda-developers.com/showthread.php?t=1626895
bk201doesntexist said:
why would you suggest an unsupported tool to reflash/update a fw, of a Nexus? just because it's made by samsung, doesnt mean that samsung supports it, and the flashing through odin.
OP, use FASTBOOT, it's the tool Google INSTRUCTS you to use to recover a Nexus device to factory status.
http://forum.xda-developers.com/showthread.php?t=1626895
Click to expand...
Click to collapse
Really?? Can you read well??
1) his vol up is not working... So no ADB for fastboot commands.
2) i used the word GUIDANCE... Way different from YOU HAVE TO or MANDATORY.
Giz...
Sent from my Galaxy Nexus using xda app-developers app
Weel, in order to reach the recovery is quite simple. If i'm not wrong, you just have to install correctly adb driver in your pc and, once installed the driver and plugged in the device, you just have to open cmd or terminal or whatelse depending on your os and write "adb reboot bootloader" without "
Or even easier (but you need root), install rom toolbox (both free or pay, your choice) and inside there's an option to choose where to reboot, bootloader, recovery or simple reboot.
EDIT: @wisefreakz: fastboot it's necessary only for fastboot command, for adb command the device could be running (ie when you get a bootloop you're not in fastboot but, instead of pulling off the battery it's better to prompt a good adb reboot), isn't it?
Thanks much. I used the link provided. Since I'm back on cna I can boot from the power menus. Appreciate your time
Sent from my Galaxy Nexus using xda app-developers app
I'm new to this forum and was wondering if I update my nexus 7 (2013)to android 4.4.2 without a unlocked bootloader, custom recovery, and not rooted, would I be able to root, get a custom recovery, and unlock the bootloader after I update?
Sure
sure you can root, get CWM and install custom roms .
D4V3Y said:
I'm new to this forum and was wondering if I update my nexus 7 (2013)to android 4.4.2 without a unlocked bootloader, custom recovery, and not rooted, would I be able to root, get a custom recovery, and unlock the bootloader after I update?
Click to expand...
Click to collapse
Yes, you can do it at anytime. Just remember that unlocking the bootloader will wipe your device including wiping whatever is in your storage. Just like doing a factory reset it wipes Everything! AFTER you get a custom recovery you can do a factory reset from inside of recovery without wiping your storage.
Is there a utility on xda
Sent from my SCH-I545 using Tapatalk
D4V3Y said:
Is there a utility on xda
Sent from my SCH-I545 using Tapatalk
Click to expand...
Click to collapse
Toolkits? Yes, the only one I can think of off hand is wugs, or something like that, either here or in the Nexus 5 forum. I've never used toolkits, have you given any thought to learning adb? It's not that hard, the fact that I can use it proves my point!
How To Setup ADB
Wug's Nexus Root Toolkit v1.7.9
Hi guys
Noob here, but with a somewhat decent understanding of flashing and I'm kinda riddled by my current situation.
The current state of my phone is:
Locked bootloader.
Access to TWRP (2.8). Access to MTP and install function within TWRP.
OEM unlocking NOT allowed (since I can't boot into the OS).
So the logical thing to do (and as req'ed in dozens of threads with the same problem) would be to flash a custom ROM via TWRP's Install function, boot into it, enable OEM unlocking, unlock the bootloader and do whatever I want from there.
Except ... that all the ROMs I flash are stuck in bootloop. They go through the flashing process, TWRP shows success and then ... an endless android (or custom) loop when I reboot. I tried flashing PureNexus, Cataclysm and Chroma.
Any idea on what might be going wrong here (I thought of the vendor.img I have on right now being a wrong one, but I have no idea how to flash the good one without access to the vendor partition) ?
Any help would be appreciated, I saw that I could go through the LG flashtool/TOT unbricking method but I don't have i. a PC (I'm on a Mac) or ii. an original Nexus USB cable so that would put me back a few days.
Cheers
You can't flash a custom ROM with a locked bootloader....
---------- Post added at 11:20 PM ---------- Previous post was at 11:19 PM ----------
You need to flash all the original stock images via ADB and restart from there
TW1ST3D1NS4N3 said:
You can't flash a custom ROM with a locked bootloader....
---------- Post added at 11:20 PM ---------- Previous post was at 11:19 PM ----------
You need to flash all the original stock images via ADB and restart from there
Click to expand...
Click to collapse
Yes, you can in recovery ...
Apparently not. Let me rephrase. You cannot flash a custom ROM with your bootloader locked and your phone work properly.... reflash all stock images through ADB. Take the advice or don't.
How did you get in this sh!tuation? Did you OEM lock with TWRP installed?
Anyway, the TOT method is most likely the only way to get it going again. I wouldn't waste my time doing anything else. Ask a friend/family member to borrow a computer with windows on it.
PiousInquisitor said:
How did you get in this sh!tuation? Did you OEM lock with TWRP installed?
Anyway, the TOT method is most likely the only way to get it going again. I wouldn't waste my time doing anything else. Ask a friend/family member to borrow a computer with windows on it.
Click to expand...
Click to collapse
Not sure how I ended up here. :silly:
Is it true you absolutely need original Nexus USB cable for it to work ?
chafouin said:
Not sure how I ended up here. :silly:
Is it true you absolutely need original Nexus USB cable for it to work ?
Click to expand...
Click to collapse
No. Likely any USB A to C will work.
Sent from my DROID RAZR HD using Tapatalk
TW1ST3D1NS4N3 said:
Apparently not. Let me rephrase. You cannot flash a custom ROM with your bootloader locked and your phone work properly.... reflash all stock images through ADB. Take the advice or don't.
Click to expand...
Click to collapse
I'm thankful for any help, sorry if I was dissmisive. I'm not aware of flashing through ADB, just sideloading.
I can flash via fastboot, but can't right now because of my locked bootloader.
Presently I can sideload via ADB in recovery (which amounts to the same as flashing from recovery if I understand correctly ?) but any other flashing/thinkering via fastboot/ADB is verboten because my bootloader is locked.
If you're thinking of something else I'd be glad if you could detail your thinkings and the steps I'd need to make
@chafouin you just reminded me that Google is posting full OTAs. At least for the Android N developer previews. So theoretically you could factory reset from recovery and sideload an OTA. OTAs don't require an unlocked bootloader.
Sent from my DROID RAZR HD using Tapatalk
Just download the latest Rom from google site and run flashall file. Simple.
Sent from my Nexus 5X using Tapatalk
milan187 said:
Just download the latest Rom from google site and run flashall file. Simple.
Sent from my Nexus 5X using Tapatalk
Click to expand...
Click to collapse
How do you propose he do that with a locked bootloader?
Sent from my DROID RAZR HD using Tapatalk
PiousInquisitor said:
How do you propose he do that with a locked bootloader?
Sent from my DROID RAZR HD using Tapatalk
Click to expand...
Click to collapse
The stock rom? Why is that a problem? Put the device in fastboot and load. Locked bootloader does not allow custom roms. It allows stock.
Sent from my Nexus 5X using Tapatalk
milan187 said:
The stock rom? Why is that a problem? Put the device in fastboot and load. Locked bootloader does not allow custom roms. It allows stock.
Click to expand...
Click to collapse
In my experience *on the 5x* locked bootloader doesn't allow you to flash factory images.
I haven't tested with latest bootloader, but that has been he case with past bootloaders.
Other manufacturers and phone models handle things differently.
You can however now flash stock using the FULL OTA provided on the same factory image site. In that case you would use adb sideload, not fastboot.
sfhub said:
In my experience *on the 5x* locked bootloader doesn't allow you to flash factory images.
I haven't tested with latest bootloader, but that has been he case with past bootloaders.
Other manufacturers and phone models handle things differently.
You can however now flash stock using the FULL OTA provided on the same factory image site. In that case you would use adb sideload, not fastboot.
Click to expand...
Click to collapse
Hmm I flashed mine without unlocking bootloader...
Sent from my Nexus 5X using Tapatalk
chafouin said:
Hi guys
Noob here, but with a somewhat decent understanding of flashing and I'm kinda riddled by my current situation.
The current state of my phone is:
Locked bootloader.
Access to TWRP (2.8). Access to MTP and install function within TWRP.
OEM unlocking NOT allowed (since I can't boot into the OS).
So the logical thing to do (and as req'ed in dozens of threads with the same problem) would be to flash a custom ROM via TWRP's Install function, boot into it, enable OEM unlocking, unlock the bootloader and do whatever I want from there.
Except ... that all the ROMs I flash are stuck in bootloop. They go through the flashing process, TWRP shows success and then ... an endless android (or custom) loop when I reboot. I tried flashing PureNexus, Cataclysm and Chroma.
Any idea on what might be going wrong here (I thought of the vendor.img I have on right now being a wrong one, but I have no idea how to flash the good one without access to the vendor partition) ?
Any help would be appreciated, I saw that I could go through the LG flashtool/TOT unbricking method but I don't have i. a PC (I'm on a Mac) or ii. an original Nexus USB cable so that would put me back a few days.
Cheers
Click to expand...
Click to collapse
Have you tried factory reset from TWRP?
If I were you I wouldn't try to flash to stock unless as last resort. Locked bootloader with TWRP installed is better diagnostic situation that locked bootloader with stock recovery installed. If you try to flash to stock it is too easy to overwrite your TWRP with stock recovery (it happens behind the scenes)
That is ok, if you are out of options, but I would exhaust all other options first.
milan187 said:
The stock rom? Why is that a problem? Put the device in fastboot and load. Locked bootloader does not allow custom roms. It allows stock.
Sent from my Nexus 5X using Tapatalk
Click to expand...
Click to collapse
You cannot flash the factory images with a locked bootloader. Google it. Look at Google's own documentation.
Sent from my Nexus 5X using Tapatalk
PiousInquisitor said:
You cannot flash the factory images with a locked bootloader. Google it. Look at Google's own documentation.
Sent from my Nexus 5X using Tapatalk
Click to expand...
Click to collapse
Sorry, my mistake. Mine must have been unlocked. This is my first Nexus so I'm used to the fact that factory images can be loaded with locked bootloader.
Sent from my Nexus 5X using Tapatalk
milan187 said:
Sorry, my mistake. Mine must have been unlocked. This is my first Nexus so I'm used to the fact that factory images can be loaded with locked bootloader.
Sent from my Nexus 5X using Tapatalk
Click to expand...
Click to collapse
On what phone? I've never heard of that.
Sent from my Nexus 5X using Tapatalk
PiousInquisitor said:
On what phone? I've never heard of that.
Sent from my Nexus 5X using Tapatalk
Click to expand...
Click to collapse
I've done it recently on LG G4 and BlackBerry PRIV where I used flashall command.
Neither has a possibility for bootloader unlock.
Sent from my Nexus 5X using Tapatalk
I've had other phones that allow flash if things are signed (which factory images are on those phones).