Windows RT Vivo Questions - Windows RT General

I have a customer that has an Asus Vivo with Windows 8 RT, and somehow he has lost/forgotten his password. I am new to the Windows RT environment, thus I can see why people dislike it. I was wondering if there is anyway to mount the Tablet to a PC to back it up; a way to possibly reset the password with out resetting the whole device to factory defaults; for I am lost and have searched the web for ways to do so, but no one seems to have an answer. Any help or suggestions would be very much appreciated.
Thank You
Jamie

If it was set up using a Windows Live account (or "Microsoft account" as they're now called), just use the standard paswword reset function on the website.
If it was using a local account (possible but not a great idea on RT) then the best bet is Safe Mode (Shift+F8 during bootup; might be possible with a Touch or Type cover but probably easier via USB) and log in as Admin, then force a password reset of the account. Possibly useful info: http://www.howtogeek.com/107511/how-to-boot-into-safe-mode-on-windows-8-the-easy-way/
As a side note, resetting the whole device, if it was using a Microsoft account, is relatively painless; your apps will need to be re-installed but you won't be charged again, your email and such will need to re-download but should already be configured, all in all it's fairly straightforward. Now, if there's documents on the tablet that for whatever reason aren't anywhere else... that's a problem if you reset it. No way to pull the storage and mount it in another PC, either.
What's your beef with RT from what you've seen of it so far (which it sounds like probably consists of nothing but the boot screen and the login screen)? It's only meaningful distinction from full Win8 is the need for ARM-compiled apps and the restriction of third-party code, but the first is a fact of life for any ARM-powered tablet (damn near all of them until quite recently; still most of them) and the second is easy to bypass. From an administrative position (i.e. trying to reset a password) it's identical to Win7.

I appreciate the quick response. Unfortunately this is tablet was not setup with a Microsoft Account, but was setup with a Local User account.
The only way it seems you can get into the options for boot with this tablet is holding the shift key and restarting it while you are at the login screen. I have tried to hold shift and tap f8 at a fresh start-up and the tablet continues to boot to the login screen.
Now when I hold Shift and restart the tablet, it goes right to Choose an Option, then I click Troubleshoot > Advanced Options > and there all I have is Automatic Repair, Command Prompt (Which you can't use without logging in to the local user account), and Startup Settings.. Under Startup Settings the only options it has is: Enable low-resolutions video mode, Enable boot logging, Dissable Automatic Restart on system failure, and Disable early-launch anti-malware protection.. It seems to me that this Asus Tablet with Windows RT does not have safe mode..
Thank You,
Jamie

Windows RT doesn't support safemode. It's possible to get at with some BCD tweaks, but it's not very straightforward.

Actually, pretty easy to get to it just using msconfig (assuming you can boot into Windows first). The downside: no touchscreen drivers, no Touch Cover drivers, no support for many of the peripherals. You'll need a USB keyboard, and probably a USB hub and USB mouse as well. A less "minimal" configuration might work better.
If you think there's a reasonable chance you'll need Safe Mode in the future, I recommend adding a second boot option to the main boot list (just clone the default one) and configuring it for Safe Mode. That's probably the easiest way... but it has to be done proactively.

GoodDayToDie,
Where you say "Actually, pretty easy to get to it just using msconfig (assuming you can boot into Windows first)," what do you mean by "(assuming you can boot into Windows first)?" I can boot into windows, but I cannot login because my customer has forgot his password.
This is a reason why I have an issue with Windows 8 RT, for there is no Safe Mode by default.. Micorshaft seems to be like Apple, thus locking the OS down to where you do not have full capabilities to fix an issue with there OS. It is too bad that you cannot run typical diagnostic tools off of a disc, because of the Hardware that they chose for the tablets... Only if they would keep a traditional chipset for both Linux (android) and Microsoft (Windows 8 RT), you could do all that you could with x86 and 64bit architecture. They need to keep things simple and compatible, instead of using prioritized junk.
Sincerely,
Jamie

I mean "boot into an interactive Windows session". If you can't get past the login screen, *you* aren't really into Windows (the machine might be running it, when I said "you" I meant you, personally). That's as true for RT as for any other OS.
Out of curiosity, what would you do if the client came to you with a BitLocked laptop and said they forgot the password for that? Well, obviously you'd tell them to use the recovery key. But it turns out they ignored the advice of the BitLocker installer and never saved the recovery key anywhere. Not good, right? OK, now what if it was a smartphone, and they forgot the PIN? There's a policy in place from their employer that ten failed PIN attempts in a row will will wipe the device. Now what?
They're screwed. Just like your client is here.
Look, the default configuration of Safe Mode on x86 versions of Windows is a security liability. It's a trivilally exploitable direct-to-admin elevation of privileges... assuming you have physical access to the device. On desktops, and to a lesser extent on laptops, that's not really a concern; the assumption is that if the attacker has physical access, it's already game over. On tablets, that's much less true. Tablets are sealed devices; there's no easy way to get the hard drive (or rather, the flash memory chip) out of one. They're designed to be highly mobile, and to a certain extent are designed to be shared - certainly many of them are used at kiosks and the like. They're also both easy and attractive targets for theft. The threat model is very different.
On x86 versions of Windows, if you're concerned about a local-access attacker, you use BitLocker and you set a strong password on it. You also change the admin password, so even if somebody gets through BitLocker (or they got to your machine while it's running already), they can't trivially gain full control over it. That's because protecting against local attackers is not the expected level of protection needed, so it's not the default configuration.
On tablets, if you're *not* concerned about a local attacker, you might do things like enable Safe Mode (which, from a security perspective, is actually Unsafe Mode), or disable BitLocker key protectors (possible even if an Exchange policy forces you to turn BL on). Similarly, if you weren't worried about forgetting your password, you might use a local account and not bother to create a password reset disk (yeah, that's still possible. Nobody ever does it, but it's possible). That's because the most likely attack, by far, will be somebody who has stolen the whole device and therefore the default configuration is to provide whatever security which can be offered in the face of such a situation.
Apparently, if you are worried about local attackers but *aren't* worried about losing your password, and then you lose your password anyhow, the thing you do is go complain to an IT shop. The IT guy then comes and asks an online forum how to do his job. The forum gives him the help they can. The IT guy then rants about Microsoft when the help offered is "insufficient".
Here, pop quiz for you: Which of the following people is it the fault of that the customer can't access their account?
1) Microsoft, who provide at least five different ways to reset the password (online account, password reset disk, enabling the Admin account for normal login, creating a second Admin account, or enabling a Safe Mode boot option) plus allow you to have the tablet remember the password for you (auto-login) or use no password at all.
2) Myself and the other members of this forum, who are offering what help we can, unpaid, of our own free will, because we care enough about this OS that we'll help people adapt to it and hope for nothing more than a "thanks"?
3) You and any co-workers you might have, who despite doing this for a living, are unfamiliar with the security model of a new OS... but are willing to pile abuse on that OS and its developers when they close a security hole that you expected to find open?
4) Your customer, who ignored Microsoft's advice about using an online account (justifiable, but a nonetheless questionable decision given the intended use of RT) and also ignored or avoided good password management techniques (like using a hard-to-remember password without creating a way to change or reset it, and without writing it down anywhere)?
I'll give you a hint: it's not 1 or 2.
Oh, and you can totally run diagnostic tools. Hell, the tablet comes with a bunch of them built in, but you can also boot off USB. Yeah, they need to be compiled for ARM, but - as I just pointed out - Microsoft ships a suite of them with the tablet. They even include a tool that can solve an unrecoverably lost password: wipe the system and start again. On previous Windows versions, you'd probably to do a full re-install at that point! Think of the time saved. However, "login as admin without any password" (what the default configuration of Safe Mode allows) is *not* a diagnostic tool. It's a gaping security hole.
Also, Safe Mode is totally still available. However, much like logging in *all the time* using the built-in Administrator account (possible by default on XP and before, disabled by default on Vista and later), allowing anybody who wanted to to boot into a full-permission no-password (by default) account was deemed too dangerous on RT. I was suprised when I discovered Safe Mode missing from the RT boot menu as well... for about 5 minutes. Then the obvious reason for it clicked. I went and enabled Safe Mode on my tablet anyhow, because it *is* a potentially useful diagnostic tool... (although, since neither theTouch Cover nor touchscreen work in Safe Mode, it's actually really hard to use) but I also changed the Admin password, so for your use case it wouldn't do any good anyhow. That's OK; I have the ability to reset my own password if needed. Admittedly, MS could have taken care of this themselves by removing the ability to log into disabled accounts when using Safe Mode, instead of disablign the mode by default... but that wouldn't have done you any good either.

I think the tl;dr version of what GoodDayToDie said is as follows:
The fact that you can't get into this tablet isn't microsofts fault at all, its the customers fault for being a complete and utter moron who can't remember a password and completely ignored the fact that the windows 8/RT setup process really wants you to make an online account rather than a local one which if he had done wouldn't have left us in this position.
Safe mode is a total security liability. That's why in my school they have disabled safe mode and also password protected the bios which is setup so you can only boot from the hard disk. There is then a sensor on the case which triggers when the side panel is removed which then causes the bios to prompt for password just after the POST check on next boot. Stupidly they have soldered the screws down on some machines, hilarious watching them trying to get the machines open again, they sit there with dremels trying to cut new slots for another screw driver why they don't just remove the solder with the hot air guns and soldering irons in the workshops is beyond me.

You might be able to edit the bcd to enable safe mode, but I suspect that the tpm will fail checks and refuse to give the bitlocker key if you do that. I know it'll cause integrity checks to fail on x86/x64. If you have the bitlocker key then you can mount it in recovery and back up all the files, but you'll only have that if it's a registered ms account, or the owner went way out of his/her way to get it beforehand.
As ar as MS goes, this isn't their fault. This is your customer's fault and nobody elses. Getting rude and arguing won't solve anything. There is no real need for safe mode on RT, except for security exploits such as what you want.

I did put Safe Mode on my machine... it actually doesn't appear t upset BitLocke to do it, so long as I suspend BitLocker once, reboot, and re-enable it. The check for "has my boot process been messed with?" happens right before where you would get the boot screen. Booting an alternate option from the Windows bootloader doesn't appear to bother it at all.

GoodDayToDie said:
I did put Safe Mode on my machine... it actually doesn't appear t upset BitLocke to do it, so long as I suspend BitLocker once, reboot, and re-enable it. The check for "has my boot process been messed with?" happens right before where you would get the boot screen. Booting an alternate option from the Windows bootloader doesn't appear to bother it at all.
Click to expand...
Click to collapse
Bitlocker checks the state of the BCD before it releases the key. By suspending and restoring it you're saying that the new state is what it should be at. If you didn't suspend it and edited the BCD it should refuse to boot.

Related

cognito software

ok have just been given a xdaII by work but can not get past the cognito software it is running. I have no access to any of its features or even the software. i cannot delete software as it is for work any help would be very apreciated thanks
griz
anybody know this software?
Cognito Mobile Management is a powerful administrator function, enabling user rights to be applied to mobile terminals. Managers are provided with the tools to define parameters for voice and email usage; apply restrictions to Internet browsing; dispatch configurations, software updates, address books and system templates; and remotely retrieve detailed usage analysis. Most importantly all capabilities are executed remotely and discreetly.
Is this the Cognito you mean, grizly, or are you talking about the mobile messaging Cognito which takes over the entire device?
Messaging Cognito I can tell you a bit about - With the Siemens SX-56, the software installed itself from an MMC card. If you took out the MMC card and performed a hard reset it would go into normal Windows Mobile. However, you do lose ALL your messages. I've stopped working with Cognito units now so I couldn't tell you what they did with the XDA2 - though it's a safe bet it's in the Extended ROM. Unfortunately the software is pretty watertight. Early versions had bugs which would cause the phone tones to be heard when you hit the right regions of the screen - and, I think, allowed dialing! - but they probably fixed that (not that there was actually any way into the OS from the phone) so you're pretty much stuffed unless you overwrite the ROM. And then you won't have the Cognito software or data, and you'll be totally screwed.
grizly, I think there is a suggestion that Cognito lets the controller know when attempts have been made to circumvent the system, in fact every single keycode is probably uploaded at intervals. Is it worth trying? There is a reason for the installation of the cognito system, maybe you could buy your own phone and play to your hearts delight.
well i know the software is run from the memory card and it does take over the complete device so nobody actually knows a waay to get round this without losing information?
so can take it there isn't anyway then
You could try removing the memory card if present then doing a reset but as was said they have probably written bespoke software to the extended rom then locked so that even a hard reset will loop back to installation from extended rom which puts you back where you began but minus any data you may have had on the phone. can you say what it is you were hoping to acheive if it was possible to access the functions of the phone, or is it a secret?
The Cognito messaging software is basically a messaging app. Cognito used to use devices which had a 40x4 LCD display and a keyboard - clever little unit, looked quite robust.. but people still managed to **** them up on a regular basis. NTL used to use them as well as the company I worked for. They ultimately turned off the national radio network that the devices worked on - and instead of adapting the existing devices to run on GPRS or GSM, they backed out of the hardware thang and bought COTS devices. To save themselves many problems with support calls, they simply removed the ability to use any Windows functionality. I mean *ANY* Windows functionality. Many of our staff finished up with a laptop, a company mobile AND a PDA-Phone with the software on it. Which was a bit stupid when they could have just had the damn PDA and made calls from that!
grizly - is this the system you mean? With a grey background? There is NO way round it - even if you hacked up the installer etc and managed to create some magic key combination to show the Start menu/Today screen, you'd lose all your data and you'd have to call HQ and ask them to resend everything. And that gets suspicious after the 3rd or 4th time.
.. please don't expect replies within 24 hours every time - I sometimes don't check this board for a week and I'm sure others are the same
madkat said:
Is this the Cognito you mean, grizly, or are you talking about the mobile messaging Cognito which takes over the entire device?
Messaging Cognito I can tell you a bit about - With the Siemens SX-56, the software installed itself from an MMC card. If you took out the MMC card and performed a hard reset it would go into normal Windows Mobile. However, you do lose ALL your messages. I've stopped working with Cognito units now so I couldn't tell you what they did with the XDA2 - though it's a safe bet it's in the Extended ROM. Unfortunately the software is pretty watertight. Early versions had bugs which would cause the phone tones to be heard when you hit the right regions of the screen - and, I think, allowed dialing! - but they probably fixed that (not that there was actually any way into the OS from the phone) so you're pretty much stuffed unless you overwrite the ROM. And then you won't have the Cognito software or data, and you'll be totally screwed.
Click to expand...
Click to collapse
You said that after taking out the mmc and hard reseting the device it goes to normal Window Mobile but it doesnt for my MAgician PM10B. I even tried flashing it but still the Cognito Starts up itself.
Pls Help
just a single hard reset and the device will on with windows mobile logo and qualities

the BEST way to prevent from relocking

HOOTAN SAEIDI
Windows Phone 7 has a little tendency to relock itself, which isn't anything wrong with ChevronWP7-it's just how Microsoft set up their security callbacks. Since it was beginning to be frustrating to continually unlock my device every time it ran a WiFi sync, here's a simple method that will prevent your phone from calling home completely:
Over on XDA Developers, a list of registry edits were posted that would supposedly prevent your device from calling home. Unfortunately, these edits had mixed results among users. A certain post, however, recommends disabling the Zune connection service entirely, which in our experience, has worked flawlessly.
To easily prevent your Windows Phone 7 from relocking, follow these steps. Please note this will require modifying service configurations, which could potentially have undesired effects.
1. Unlock your device with ChevronWP7
2. Sideload any applications you wish to keep on your device.
3. Disconnect your phone
4. Press Start, Run, and type services.msc
5. Find Zune Windows Mobile Connectivity Service on the list.
6. Double-click, and set Startup Type to "Disabled."
7. Press Apply, then OK.
8. Reconnect your phone and open Zune. A message similar to the one shown above should appear. Ignore this, and test out your phone. If sideloaded applications do not display the "revoked" status, you're done.
This will not effect syncing any content with your phone. The only things that will not work are sideloading applications and connecting your device to the development tools. If you need to do either of these things, go back to the services menu and set the Startup Type to Automatic.
this way are working !!!;-)
please for thanks only use thanks button ;-)

Kin (Two) Hotkeys

Hi everyone... as i'm pretty much stuck with my device... i'm gathering all the information we have found on the hotkeys.
Yeah, i'm so bored to try random key combination...
And yeah (2) there are some new key combs... (ha!).Anyone brave enough can help booting with the remaining keys hold.
Tested keys (pair): q , w, r, m, b
Enter APX mode (Nvidia flash)
Hold U+S+B+ Power
Prints nothing, enters APX mode
Enter Ms Pink Bootstrap mode (aka SBL mode)
Hold L+S+ Power
Prints nothing, enters SBL mode
Clear Storage memory (reset phone)
Hold C+B+ Power
Prints a Phone image (and reboots)
Unknown, possibly downgrade the phone to original OS
Hold R+B+ Power
Prints a "reboot" arrow (and reboots)
Was reading up on Fuses, Lock Bits, and idenitified the Samsung moviNAND 8GB is part "KLM8G4DEDD-B101". Using the Samsung's Decoder pdf, found "S3C49VDX01 Controller" so did a google search and found this website
http : / / forum.xda-developers.com/wiki/index.php?title=Samsung_Galaxy_S_Series
There's a few modes on that galaxy phone. The button combinations probably won't work but if you are bored, try them out.
Not so bored but, they dont work. This mobile is a PITA wherever you look at it.
I did the "R+B+power" on my KIN TWOm and i got the reboot screen, then i got a screen saying "Updating modem Please do not remove battery." i got scared and took out the battery. then when i put it back it it said the updating modem thing again and i just let it sit, it finished rebooted then asked me to set up my phone and it was asking me for my windows live email, but it wasnt working so i click setup later. I had the kin studio on my KIM TWOm of course it didnt work but this might help someway.
Interesting, maybe it's a kind of restore hotkey (who knows hehe).
My problem is that it doesnt work removing the battery (removing for a little time) or letting it update (i left it about 2-3 hours updating and autoresetting till the battery died).
Maybe you could connect to verizon and get the OTA update.
If you didnt have the Loop (for kin studio) before, it just mean, as expected, that the kin twom is just a kin two with a software update removing loop and restore-able with this hotkey.
I do not recommend its use though
I now have the original KIN software on my phone using this method. Irritating that it will not sync with my hotmail, most likely because of no cloud server connection. I have lost all of my contacts.(thank god for the facebook phonebook) The spot is convenient. I find it interesting that the phone still retains the original OS.
If the original software is back, can't you use Microsoft Exchange Active Sync to synchronize contacts? Have you lost other stuff, like Zune music, etc?
I have a couple of questions:
Since you now how the original OS on the phone ...
How does it show up on the Verizon network? Is it still being seen as a Kin Twom or the original Kin Two that required data?
Is the Wifi and built in Facebook app working correctly?
Can you forward video through MMS using the Kin Stop?
I just wish there was a way to get some direction from Conflipper. It really did look like he found a way to get deeper into the original OS, even though he said he hadn't found a way to dump the ROM.
amlex said:
I have a couple of questions:
Since you now how the original OS on the phone ...
How does it show up on the Verizon network? Is it still being seen as a Kin Twom or the original Kin Two that required data?
Is the Wifi and built in Facebook app working correctly?
Can you forward video through MMS using the Kin Stop?
I just wish there was a way to get some direction from Conflipper. It really did look like he found a way to get deeper into the original OS, even though he said he hadn't found a way to dump the ROM.
Click to expand...
Click to collapse
Not quite sure of the first question.
The wifi works but the loop does not because I can not finish set up, when trying to sync with my hotmail it displays a message that it cannot connect to windows live.
Yes the Kin Spot works wonderful.
I'd like to add that videos do not work.
Feed Reader will not refresh my feeds.
OTA update does not work almost everything requires a connection to the KIN server that does not exist anymore.
Rebooting Kin ONEm
Update on R+B+Power Button.
1. I performed this on a KIN ONEm, NOT a KIN two. I recommend that the forms be combined as efforts to hack both devices are very similar.
2. To answer a previous question: NO, ACTIVE SYNC DOES NOT WORK WHEN LOADING THE OLD KIN ONE SOFTWARE. HOWEVER, it does not seem to work because an error message pops up and says:
----------------------------------------
NO DATA PLAN
Your plan doesn't support Exchange sync.
----------------------------------------
SO: for people who want it, I would be interested in knowing if anyone with a KIN ONEm does the software reset and then asks Verizon for the plan. It could possibly work.
3. A DISCOVERY: pressing the R+B+Power a second time on boot kicks the software back to the "m" (as in ONEm) mode. I don't know if it's the same for the TWOm... but I bet it is. In any case, if you want to play with the original software, there seems to be a way to get back easily. FYI: It took me a couple times to do it right... and there is a pause before you get the updating modem screen and after you see the return arrow symbol. Be patient and try a couple times.
4. FACEBOOK and TWITTER and WINDOWS LIVE all do not seem to work either, giving various messages about "try again later" or "cannot connect." I wonder why. I expected the facebook address book to work re: an earlier post. I could not get it to work.
FYI: I decided to keep the "m" software as the studio does not exist anymore. For all of us too cheap to buy the data plan, I guess we don't have a big excuse to be too cheap to go to the verizon store to get our contacts synced up once in a while. To do this, I bitpimed my contacts to my old phone and then brought the old phone in. If anyone can figure out how to renable active sync or simply upload contacts - great, but until then, I may have to switch back to my old phone.
Thanks for the info posted above. It's good to know that this hotkey lets you switch and switch back to the old version (well, "m" version).
The only thing i dont like is the "update modem" (or OTA update) need, cause it probably means that you depend on verizon to get things done (like B+R+Power + get OTA).
R+B+power doesnt work on my phone?
When i try the button combination it just brings up the normal message of "Turn off? your phone will turn off now" It doesn't reboot like everyone says it should? one thing i should add is this phone a little different from the first kin twom, i'm not sure how but when i went to verizon to get a warrenty replacement the lady said "we need to send you a kin twom..two" confused i said "this is the second version?" she said "no its newer.. it's hard to explain" the only difference i can tell so far is that on model number there is no longer a hand stamped M after it. It's printed on the sticker. so maybe i'm stuck with an even more locked down phone?
BenDyer said:
When i try the button combination it just brings up the normal message of "Turn off? your phone will turn off now" It doesn't reboot like everyone says it should? one thing i should add is this phone a little different from the first kin twom, i'm not sure how but when i went to verizon to get a warrenty replacement the lady said "we need to send you a kin twom..two" confused i said "this is the second version?" she said "no its newer.. it's hard to explain" the only difference i can tell so far is that on model number there is no longer a hand stamped M after it. It's printed on the sticker. so maybe i'm stuck with an even more locked down phone?
Click to expand...
Click to collapse
You have to turn your phone off and then turn it on using the button combination to reboot.
mooing said:
Update on R+B+Power Button.
3. A DISCOVERY: pressing the R+B+Power a second time on boot kicks the software back to the "m" (as in ONEm) mode. I don't know if it's the same for the TWOm... but I bet it is. In any case, if you want to play with the original software, there seems to be a way to get back easily. FYI: It took me a couple times to do it right... and there is a pause before you get the updating modem screen and after you see the return arrow symbol. Be patient and try a couple times.
Click to expand...
Click to collapse
Hey I'm wondering if you lost your contacts when you booted back into the kin "m" mode. When you went into the original software, you lost your contacts. Now when you booted back into "m" mode, did you lose your contacts as well? Also, did you lose anything else? I want to test this with my kin twom but at the same time, I don't want to lose everything I have. Thanks
corey124 said:
You have to turn your phone off and then turn it on using the button combination to reboot.
Click to expand...
Click to collapse
oh jesus, all that did was do a factory reset. I lost everything, and it's still the twom software.. now i'm confused
BenDyer said:
oh jesus, all that did was do a factory reset. I lost everything, and it's still the twom software.. now i'm confused
Click to expand...
Click to collapse
It should have given you the original kin software?
I guess that doing it just for fun is kinda stupid.
Be ready to lost everything and/or **** the phone testing random things. You were advised.
corey124 said:
It should have given you the original kin software?
Click to expand...
Click to collapse
I've gotten the same error. It didn't give me the original Kin software. It simply did a hard reset and deleted everything off of the device. It showed the arrow however, afterwards it simply booted up into Kin. Nothing came up hat said upgrading or anything. Could there be a KinTwoM - 2 that doesn't even come with the original Kin Two software? If it'd help I'll post a video on what happens.
fazi13 said:
I've gotten the same error. It didn't give me the original Kin software. It simply did a hard reset and deleted everything off of the device. It showed the arrow however, afterwards it simply booted up into Kin. Nothing came up hat said upgrading or anything. Could there be a KinTwoM - 2 that doesn't even come with the original Kin Two software? If it'd help I'll post a video on what happens.
Click to expand...
Click to collapse
It is possible, I've heard of a second generation kin twom. So maybe you have the unfortunate problem of having one, which may exclude you from future hacks.
Well R-B-Power works.....but you lose everything
So curiosity got the best of me last night and I tried the r-b-power method to update the modem and then boot into the original kin os with the kin spot and everything. The only down side is that I lost everything on my phone. Which really, other than a few photos (and the pain of having to add all my contacts again) really isn't that bad. By the way, my Kin is the Kin TWOm with a hand-stamped "m" underneath the battery, so I guess it would be called "first gen Kin twom". It booted back to the normal kin os after I did r-b-power and my phone was still activated. So anyone with a 1st gen Kin twom can try this, just be warned that you lose EVERYTHING.

Custom rom/mod to block CelleBrite UFED from accessing any info from EVO

http://www.thenewspaper.com/news/34/3458.asp
http://www.cellebrite.com/forensic-products/ufed-physical-pro.html
regardless of my reasons behind this this makes all phones inherently tappable if stolen etc or from other corporate espionage attempts
this is a serious flaw and i would like to see if its possible for you custom rom bakers to cook us up some protection
if they want my info they should subpoena my records from sprint or Google not be able to brute force into any and every phone with a device
i and many other would be more then happy to donate for such a solution especially if it wasn't dependent upon only 1 rom
seen this but doesn't yet support the evo
http://www.whispersys.com/whispercore.html
+1 to this for my hd2 too please! or just android
I'll throw in
We should start a Kickstarter for this or something. Either way, count me in to contribute $150+
I could foresee a specific app that launches when plugged into a computer.
If the phone fails to receive user authorization or is plugged into a blacklisted device (say, CelleBrite UFED), then the phone is locked down/wiped.
And/or spoof information, a fake system dump.
tropicalbrit said:
I could foresee a specific app that launches when plugged into a computer.
If the phone fails to receive user authorization or is plugged into a blacklisted device (say, CelleBrite UFED), then the phone is locked down/wiped.
And/or spoof information, a fake system dump.
Click to expand...
Click to collapse
excellent thinking glad im not the only paranoid one at this point
or make it so ur phone gives it a virus or borks the device somehow
{ParanoiA} said:
or make it so ur phone gives it a virus or borks the device somehow
Click to expand...
Click to collapse
Wouldn't want to screw up the device, they ain't cheap. A bit too aggressive
Bumping for continued interest.
im not sure if the fulldisk encryption option in android negates this or not but i believe with ICS if u have full disk encryption enabled should negate what this can do correct me if im wrong
spyngamerman said:
im not sure if the fulldisk encryption option in android negates this or not but i believe with ICS if u have full disk encryption enabled should negate what this can do correct me if im wrong
Click to expand...
Click to collapse
Only if you can manage to power off your device before the cops take it from you. Otherwise, the data partition is already mounted, and they can suck it down into their UFED via the ADB interface.
A question, though: if you have USB debugging disabled, then ADB isn't available over USB, so could the UFED still access your data? The cops would need to turn on USB debugging, wouldn't they? And if you have a pattern/passcode lock, they wouldn't be able to get into the settings to do it.
Anyway, encrypting your data partition and powering off your phone before the cops get to it is the safest option. Use a really long passphrase, though, because they could still grab an image of your encrypted data partition and take it to a lab where they could try to brute-force the passphrase.
whitslack said:
Only if you can manage to power off your device before the cops take it from you. Otherwise, the data partition is already mounted, and they can suck it down into their UFED via the ADB interface.
A question, though: if you have USB debugging disabled, then ADB isn't available over USB, so could the UFED still access your data? The cops would need to turn on USB debugging, wouldn't they? And if you have a pattern/passcode lock, they wouldn't be able to get into the settings to do it.
Anyway, encrypting your data partition and powering off your phone before the cops get to it is the safest option. Use a really long passphrase, though, because they could still grab an image of your encrypted data partition and take it to a lab where they could try to brute-force the passphrase.
Click to expand...
Click to collapse
yes good points
the simplest method i find to protect against this is use Full disc encryption for starters
then use cryptfs to set a long ass password for preboot and keep a short pin for lockscreen that's reasonable and have a nice shortcut for immediate poweroff on lockscreen if concerned about this and then powering off is easy/fast
and ofc keep usb debugging off unless needed
if your really adventurous you can also use yubikey key second slot for partial password for the preboot if you have a microsd adapter for it and your device supports it preboot via OTG etc as input
then
type in a brainpassyouknow+yubikeyslot2
and its 2 factor auth and secure as **** long ass random password combining something you know and something you have
I'm also interested in this project
Let me tell you a little story about a guy (me) who was sitting in a car while his girlfriend was working when an officer approached. I wasn't doing anything wrong but due to a little misfortune I had nowhere I could go and stay so I had to just sit in the car until she was done working. The cop came to the car and asked me what I was doing and why I was sitting in the car on my laptop in a public garage. I told him I had nowhere to go and I was waiting on my girl. I noticed his hand placed on his weapon and I realized very quickly this was not going to be a casual encounter. he asked me to step out of the vehicle and I asked him why. Now I know normally you shouldn't question an officer but something seamed very off about this gentleman. It was when I locked the doors that things started to escelate and my anxiety went through the roof. I told the officer that I did not feel safe with him holding his weapon to me when I had done absolutly nothing wrong. He just became aggitated like a guy on steroids and called in some other officers. Well things wasn't looking good for me but I decided to try and use my phone camera as some added protection so I wouldn't get shot for absolutlly no reason at all. Well the cops did back off, but this is where things got really crazy. a few minutes later, and it couldn't have been more than 5 minutes, my phone went to some screen like when you have emergency dialing only. I tried calling my girlfriends job but nothing worked at all. I got scared so I dialed 911...NOTHING!!! These guys basically turned my phone into a paperweight. I couldn't do anything with it. I didn't know what to do so I called out the window to a crowd of people and told them to call 911 for me. I then noticed the officers leaving in their vehicles and I got out and ran to my girlfriends job where I stayed until she got off of work.
Now in all of this there is two main points that I really feel are extreme issues. One is how is it legal for anyone, even an officer of the law, to take away your ability to use emergency services?? And second why do they need this software that basically can give them an opening to do whatever they want to you without you being able to protect yourself. Law enforcement is becoming more and more alarming to me with all the technology that they have at their disposal. I say if they want to be able to have surveillance on us 24/7 I believe we should get the same respect. We cannot stand by and have our basic human rights violated like this!!!!

Anniversary update trashed touchscreen...

I've a Win Jr LTE phone & the update ran while I was out, despite telling it not to run updates without my express permission - it has now screwed up touchscreen so the phone is entirely unusable. Does anyone have any suggestions?
NB: telling me to "do a hard reset & lose everything" is NOT a suggestion I want to hear, since its not a viable option in this case, since backup on the phone hasn't worked since I got it on multiple cards & via onedrive.
I can't use browser or keyboard, anything with controls at bottom of screen is useless, there (of course) is no obvious way of re calibrating touch screen so the phone is effectively useless.
Apologies if in wrong place but the site doesn't seem to do anything other than lag, or make choices for me I didn't select.
I would strongly recommend NOT installing this (version ends. 67) as it appears as buggy as usual Microsoft efforts and has been bricking some phones completely I have since found out.
Jemma
the issue is known (by now, think it wasnt the prior cause otherwise the device should not have received the update). the problem is somehow the os uses a wrong resolution 540X960 instead of 480X854 which ****s up the touch
two options: opt in into release-preview-ring of the insiderprogram and get the .82. maybe it already fixed the problem. second option: going back...
use external display application on your pc or pair a bluetooth mouse/keyboard if its impossible to reach the insider options (be ware: if you havent signed up as insider before it may take up to 24hrs till you will find new builds)
Yeah, I had guessed it must be something like that, because the touchscreen reacts differently from one side to other and from top to bottom.
It's frustrating though because I can remember screw ups like this from Microsoft 20 years ago and they're still making same elementary mistakes, and it's not as if specs for these phones are hard to find or there's unknown multitudes of windows 10 phones out there, like with Android..
Windows 10 honestly has the potential to be excellent but if someone with 20 years IT engineering experience can't fix it for herself because the tools just aren't there then what hope non technical people? And they are just the people who will give Windows 10 traction.
Has anyone managed to find any files that set environment variables like in android?
PS if someone builds an equivalent of the Nokia E7 running Android or Windows 10 let me know, I'll happily bite their hands off, much prefer a good hardware kbd.
im pretty sure there is no way on the blu devices to interop it and made registry editing possible (should be an easy task to modify the setting for the screen resolution). you could sideloading vcreg after activating dev mode, but im pretty sure it wont be able to write reg values and cant research atm where the value for the resolution is stored
vcreg works only on Lumia
I've tried the feedback and the insider updates and I can't get to either of them because of the screen. Is it possible someone could put this up on feedback for me as I'm sure I'm not the only person with this issue.. Microsoft would only have to release a very small patch fix to solve this issue..
Thanks in advance

Categories

Resources