[Q] Exchange Device Administrator Security & Jellybread - EVO 4G Q&A, Help & Troubleshooting

Not up to the minimum post count to ask this question in the development forum...not sure if that's the best place anyway. I searched and found some related threads, but nothing within the last few years and nothing that seemed to really address my core issue.
I just went from stock unrooted to Jellybread. When adding my Exchange account, I ran into the notification forcing me to grant administrator privledges to my company's IT department. I already use a lockscreen, so I have no problem with that aspect (even though my emails are in no way sensitive in terms of trade secrets). What I do have a problem with is handing over the ability to wipe my phone or change my PIN. What if I quit or am fired and IT decides to be malicious and wipe my phone that I paid for?
I never had (or noticed) anything like this with the stock unrooted rom.
So my questions are, was this something I was already living with? Should I worry about it? Are there legal restrictions as to how and when IT can wipe my phone? Is it worth using a paid app like Enhanced Email to eliminate IT's ability to wipe my phone?

Well to address one thing at a time. All questions should be asked under the rom thread or in q&a. Do not post questions in the development thread ever which is why there is a post requirement in the development section. If you go into the jellybread thread you will be allowed to ask questions. The development section is for roms and things of that nature not new threads about questions. Not being able to start a new thread has saved you from looking foolish and getting flamed by other users. Also I am not trying to be rude with my reply but only filling you in on how things work here on xda.
Now onto the real issue at hand. Giving admin rights to the exchange server is a normal part of exchange. Tell it yes and go about doing whatever it is you do.
Now to address your paranoid delusions. I suggest seeking professional help for that issue. Lol.
Edit: the following was my misinterpretation of the permission asked and is not correct information. I have left it because I said it. Just remember it is incorrect.
Giving admin rights to exchange does not give the IT department the ability to wipe your phone or change your lock screen password. What it does do is allow the exchange server to keep all your business emails synchronized. If you delete an email from your laptop then the exchange server needs to be able to delete it from your phone. These admin rights you are so concerned about just allows exchange to read, write, and modify the emails from your exchange server.
Edit: the following comment was just me having fun and in no way was intended to be offensive. I am a paranoid type. I refuse to use credit, debit, checks, or anything that can track my spending. I won't even let them scan my drivers license at any store.
Also paranoia is not bad just don't let it control your life or you will end up needing professional help.
Peace,
Love, and
Happiness
Sent from my PC36100 using xda app-developers app

jlmancuso said:
Well to address one thing at a time. All questions should be asked under the rom thread or in q&a. Do not post questions in the development thread ever which is why there is a post requirement in the development section. If you go into the jellybread thread you will be allowed to ask questions. The development section is for roms and things of that nature not new threads about questions. Not being able to start a new thread has saved you from looking foolish and getting flamed by other users. Also I am not trying to be rude with my reply but only filling you in on how things work here on xda.
Click to expand...
Click to collapse
I understand that. I meant that I do not have the post count to post this question in the Jellybread thread on the development forum. Sorry to be unclear.
jlmancuso said:
Giving admin rights to exchange does not give the IT department the ability to wipe your phone or change your lock screen password. What it does do is allow the exchange server to keep all your business emails synchronized. If you delete an email from your laptop then the exchange server needs to be able to delete it from your phone. These admin rights you are so concerned about just allows exchange to read, write, and modify the emails from your exchange server.
Click to expand...
Click to collapse
So what does the first permission on the attached screenshot mean, then?
jlmancuso said:
Now to address your paranoid delusions. I suggest seeking professional help for that issue...
Also paranoia is not bad just don't let it control your life or you will end up needing professional help.
Click to expand...
Click to collapse
Thanks for the warm welcome.

Oh wow that is a first sorry about my reply I will edit it. I have never seen that before. I suggest that you not use your personal phone for that account then. I have no clue why that would not have shown up on the stock rom. Like you said you might not of noticed it last time.
Peace,
Love, and
Happiness

jlmancuso said:
Well to address one thing at a time. All questions should be asked under the rom thread or in q&a. Do not post questions in the development thread ever which is why there is a post requirement in the development section. If you go into the jellybread thread you will be allowed to ask questions. The development section is for roms and things of that nature not new threads about questions. Not being able to start a new thread has saved you from looking foolish and getting flamed by other users. Also I am not trying to be rude with my reply but only filling you in on how things work here on xda.
Now onto the real issue at hand. Giving admin rights to the exchange server is a normal part of exchange. Tell it yes and go about doing whatever it is you do.
Now to address your paranoid delusions. I suggest seeking professional help for that issue. Lol.
Edit: the following was my misinterpretation of the permission asked and is not correct information. I have left it because I said it. Just remember it is incorrect.
Giving admin rights to exchange does not give the IT department the ability to wipe your phone or change your lock screen password. What it does do is allow the exchange server to keep all your business emails synchronized. If you delete an email from your laptop then the exchange server needs to be able to delete it from your phone. These admin rights you are so concerned about just allows exchange to read, write, and modify the emails from your exchange server.
Edit: the following comment was just me having fun and in no way was intended to be offensive. I am a paranoid type. I refuse to use credit, debit, checks, or anything that can track my spending. I won't even let them scan my drivers license at any store.
Also paranoia is not bad just don't let it control your life or you will end up needing professional help.
Peace,
Love, and
Happiness
Sent from my PC36100 using xda app-developers app
Click to expand...
Click to collapse
Holy crap,that was deep,bro,hahahaha.

Related

Hard-SPL email?

If I can't at all get the hardspl on my phone, can I email the link to my phone and open the file from my phone if it supports email?
What are you talking about?
This is a user who seems to like continually starting new threads with varying questions about HardSPL, ignores any advice he recieves and generally does his best to spam the forum. I've tried helping him, but he's now on my mental "ignore" list, which is not easy to get onto
Thread moved to General. Please restate your question because it makes no sense.

[Q] How do I use the wireless tether acess control?

To not allow people to connect?
kys89012345 said:
To not allow people to connect?
Click to expand...
Click to collapse
You can set up wpa on it. Also enable access control. When someone tries to connect it will prompt you to allow or deny.
PS, wrong section. You may get flamed.
XDA is going downhill. 4-5 non-development related threads, at least, each time I load up to see what development has been taking place while I was away.
Might as well just merge all the sub-forums, XDA.
sirmx said:
XDA is going downhill. 4-5 non-development related threads, at least, each time I load up to see what development has been taking place while I was away.
Might as well just merge all the sub-forums, XDA.
Click to expand...
Click to collapse
Personally I think the development forum should be restricted from "New Threads" and have a sub-forum of "Awaiting Approval" where someone can create a NEW thread, if it's development material, a Mod can move it there. There obviously would be the select few who are "developers" and will be allowed to create new threads in the development forum itself...
Just my dream.
Agreed. Making the development section moderated would be wonderful. In fact, I wouldn't even bother moving the unrelated threads into the proper forum. Delete them altogether and let the user figure out why their thread was nuked.
Some of the gibberish I read on here really makes me cringe at the level of literacy. Some examples include no punctuation, run-on sentences, even spelling errors in the subject, or useless subjects such as "Help". Surely these people must be older than 10 yrs old to be able to afford such a device, but show little effort in their request for help.
is it really hard to scroll pass this thread ?
not sure why ppl get so upset when someone posts in the wrong section...simply move on to the next thread
-access control allows who connects to your hotspot, just click to enable the devices u want to have access to the interwebs...
hope that helps.
I think they should open a PISS AND MOAN ABOUT POSTING IN THE WRONG SECTION thread. That's just me though
Sent from my PC36100 using XDA App
I don't really care. BUT I think new users should be quized on the rules before being able to post threads
A drop of Chuck Norris's semen was placed on Android OS. We now have CyanogenMod.
Just in case you didn't know when you enable access control if you don't click on the box of the person who is trying to access your connection it will still show the person that they are connected they just won't have any internet connection. So if you testing it and wondering why your still able to connect on another device just try to go on the internet and you will see that you have been blocked. Ps to all the people getting on the guys case for posting in the wrong section after the first person pointed it out there is no need to elaborate. If your not posting to be helpful then you shouldn't post at all. Just my opinion.
panamakid said:
is it really hard to scroll pass this thread ?
not sure why ppl get so upset when someone posts in the wrong section...simply move on to the next thread
-access control allows who connects to your hotspot, just click to enable the devices u want to have access to the interwebs...
hope that helps.
Click to expand...
Click to collapse
Is it really hard to post in the correct forum. Rules are rules. Follow them unless people are being hurt.
And no, not their feelings, we don't care about those.
Im kinda surprised piss-and-moan-about-wrong-forum rants are allowed in development.
sent from an infected myTouch Evo using xda app
scottspa74 said:
Im kinda surprised piss-and-moan-about-wrong-forum rants are allowed in development.
sent from an infected myTouch Evo using xda app
Click to expand...
Click to collapse
I'm kinda surprised posts like this are allowed in development.
See what I did there? This could go on forever.

[Q] instagram hack

XDA Is not the site where users ask for hacks or warez...Log off and try other places, XDA is NOT the answer....FSM Naddict has approved this message.
Wow, I don't even know where to start with you.
First (and most obvious), settle down with the huge font size. You're not going to get a better answer just because you highlighted and supersized the text. You're just being obnoxious.
Second. This forum is not a place for "hackers," as you're likely thinking it is. Please take a look at the Forum Rules. We are not a bunch of Scipt Kiddies who just want to mess with others privacy and screw around on their accounts. What we are is a group of developers and enthusiasts who want to get the most out of their phone's hardware and software. Posting this type of crap on our forum sullies our good name.
I look forward to when this thread is locked and deleted.
Triniconda said:
Can somone create an instagram hack so you can get someone password or create a way that you can see anyone private photos.
Click to expand...
Click to collapse
Again like I said in your other post. Private photos are made private for a reason. Likewise, xda will not help you hack a password. This community is not about what you ask. Go to your local jail and ask the criminals for help.
Sent from my blue galaxy

Lost all posting privileges on previous account.

Greetings.
I have an account BLueSS that is unable to post even in this forum here.
I can't even view my own profile! I am an infrequent poster, so I doubt I did anything to warrant being banned.
Can a mod/admin take a look please? I get the full warning below when trying to post anything or even view my own profile.
http://forum.xda-developers.com/member.php?u=2872176
BLueSS, you do not have permission to access this page. This could be due to one of several reasons:
•Please Read: New members (those with fewer than 10 posts) are not permitted to post to development-related forums. The developer forums are intended for experienced users and developers to discuss ways to improve technical aspects related to ROMs and Software. While you may be an expert, we ask ALL users to avoid posting questions about using or installing ROMs and software in the Development Forums. To encourage this new Users can read but not post in these forums.
To ask Questions about developing your device, installing ROMs, software and themes you must go to the Q&A or General Forum.
Remember, your question has very likely been asked already, so please search before posting.
•Your user account may not have sufficient privileges to access this page. Are you trying to edit someone else's post, access administrative features or some other privileged system?
•If you are trying to post, the administrator may have disabled your account, or it may be awaiting activation.
Click to expand...
Click to collapse
Rather than create a second account, you should have contacted an admin. I have looked at your account, and have fixed it for you. It should now be working normally.
We only allow users to have 1 account, so would you like to keep your original account and delete this new one?
Please send me a PM with your preference.

Password Reset Spoofing

Hey,
Ive just used the pw reset feature today,
and heck,
I was shocked when I entered my email adress into the input form and it prompted a message that my password reset was send to my email.
A password reset request has been emailed to you. Please follow the instructions in that email.
Click to expand...
Click to collapse
The prompted message should NOT give any detail if the entered email is used in the db, or not!
That needs to be adressed imho asap!
Simply by:
If true:
If this email is associated with an account, the password reset request has been emailed to it. Please follow the instructions in that email.
If not true:
If this email is associated with an account, the password reset request has been emailed to it. Please follow the instructions in that email.
Ty
@MikeChannon @the_scotsman
Gentlemen, for your attention please.
GuestNoOne said:
Hey,
Ive just used the pw reset feature today,
and heck,
I was shocked when I entered my email adress into the input form and it prompted a message that my password reset was send to my email.
The prompted message should NOT give any detail if the entered email is used in the db, or not!
That needs to be adressed imho asap!
Simply by:
If true:
If this email is associated with an account, the password reset request has been emailed to it. Please follow the instructions in that email.
If not true:
If this email is associated with an account, the password reset request has been emailed to it. Please follow the instructions in that email.
Ty
Click to expand...
Click to collapse
Contact Us | XDA Developers
Founded in 2002, XDA is the world’s largest smartphone and electronics community. Looking for the latest tech news and reviews? Want to do more with your Android phone, Windows PC, iPhone, iPad, or MacBook? Look no further than XDA.
www.xda-developers.com
Requests to Moderators and Recommendations for XDA improvements
[All XDA Members] Requests to Moderators and Admins [All XDA Members] Feedback/Recommendations for XDA
forum.xda-developers.com
sd_shadow said:
Contact Us | XDA Developers
Founded in 2002, XDA is the world’s largest smartphone and electronics community. Looking for the latest tech news and reviews? Want to do more with your Android phone, Windows PC, iPhone, iPad, or MacBook? Look no further than XDA.
www.xda-developers.com
Requests to Moderators and Recommendations for XDA improvements
[All XDA Members] Requests to Moderators and Admins [All XDA Members] Feedback/Recommendations for XDA
forum.xda-developers.com
Click to expand...
Click to collapse
What a mess in here... Instead of deleting this thread the mod decided to delete the post I made, after checking your reply, in:
https://forum.xda-developers.com/t/...recommendations-for-xda-improvements.4300729/
... but hey, its actually not a recommendation, its a security flaw and therefor bug report. So maybe the mod was right to leave this thread. Still confused
GuestNoOne said:
Hey,
Ive just used the pw reset feature today,
and heck,
I was shocked when I entered my email adress into the input form and it prompted a message that my password reset was send to my email.
The prompted message should NOT give any detail if the entered email is used in the db, or not!
That needs to be adressed imho asap!
Simply by:
If true:
If this email is associated with an account, the password reset request has been emailed to it. Please follow the instructions in that email.
If not true:
If this email is associated with an account, the password reset request has been emailed to it. Please follow the instructions in that email.
Ty
Click to expand...
Click to collapse
This matter has been referred to those who can officially review and potentially change the way the process works.
Mike
I just fixed this by standardizing verbiage across both situations. Thank you for bringing it to our attention @GuestNoOne !
Lol. Mods thanking each other to gain more likes - while the one who brought it up doesnt get any.
That phenomen got a name and aint healthy...
GuestNoOne said:
Lol. Mods thanking each other to gain more likes - while the one who brought it up doesnt get any.
That phenomen got a name and aint healthy...
Click to expand...
Click to collapse
Do you really expect an answer? Certainly not from me.
GuestNoOne said:
Lol. Mods thanking each other to gain more likes
Click to expand...
Click to collapse
We don't care about likes anymore, this is no longer significant at this point, for moderators at least. We are not chasing them.
GuestNoOne said:
while the one who brought it up doesnt get any.
Click to expand...
Click to collapse
Fixed! You got likes now, thanks!
Yeah that happens, I've seen moderators (myself included) affected by this situation as well, don't worry, e.g. a moderator posts a smart question or an interesting issue and only the other mod who answered got likes! This is not specific to non-moderators, trust me.
GuestNoOne said:
That phenomen got a name and aint healthy...
Click to expand...
Click to collapse
I know for sure there is nothing malicious here. Trust me here too

Categories

Resources