This is not troll baiting or OS Slamming...
Looking for knowledgeable and constructive feedback regarding device security. I'm thinking in terms of an Executive or VP or Network Admin or such loosing the device. a piece of software
1) to do more to control access than a squiggly line
2) to allow for remote GPS tracking and/or device data wiping
3) that is stealthy and/or hard to remove.
I know there are a few "security services" out there but that leads me into "how do i know whose who and who can be trusted in the android segment". I place a great deal of trust in the developer of my ROM. That he/she/they are benevolent and not including by intent or negligence loggers or other malware. then i have a companies like Wave and Norton and Good all angling to get installed on my device. i don't know Wave nor Good and I have no luv for Norton.
The EVO allows for RDC and VNC sessions. It allows for VPN access and has the pwd's to my personal and work email. meebo has me signed into all my chat networks. As a long time Windows person I guess it's just a lil disconcerting when i stop and think on it. this device can easily be configured to hold everything needed to access a secured network. Perhaps this is a reflection on my lack of understanding the system in depth. perhaps i'm not sure how well the opensource community will communicate "problem" apps and developers.
Also, and kinda sorta related. Applications in the marketplace. sometimes you get an application and the types of security access it is asking for seems a bit "off". occasionally in the comments the developer may comment that "i need to access X in order to provide Z". It usually makes sense (whether true or not i cannot say), but is there any nice cross-reference of what types of actions require what access level. or why so many apps need to know the phone state and identity or general location or full network access and what exactly that means to me as the end user. this second paragraph is proving difficult to put to paper..i may come back and edit for clarity.
and lastly, i guess is a question on how to protect from apps like this...
http://www.networkworld.com/news/2010/060210-android-rootkit-is-just-a.html?page=1
http://www.zdnet.com/blog/security/commercial-spying-app-for-android-devices-released/4900
looking for something kinda like this, but useful...
http://www.downloadsquad.com/2010/06/28/understanding-the-android-market-security-system/
Possibly a bit of a dangerous thing to ask about, but I heard about a researcher named Charlie Miller uncovering an exploit through which he could do some fancy hacking on Android phones just by having them scan a NFC tag. I am interested in these hacks, using the old saying "it's not a bug, it's a feature", it could not only be used to perform malicious activities, but also enhance the possibilities of NFC. I seek to use this enhancement. My biggest idea in mind yet is use a tag to make a phone connect to wifi. It may seem like a simple idea, but you need additional software just to make the phone connect to wifi, since giving the command to connect is not standardized. This does impede the potential of NFC a bit, and me being the sort of person who keeps on messing around with his phone ROMs (believe me, my S3's flash count is skyrocketing), computer hardware and Linux distro's because it is never good enough simply can't just leave untweaked hardware and unremoved limitations alone.
There should be a command to turn wifi on? That's the closest you can probably do without installing software
x10man
As far as I know, officially the command has to be launched from an app that has the permissions to do so. As far as I know a bit of hacking is required to do it in another way.
hi,
well i'm against that policy, not able to post at developer threads under 10 posts, else I would have question that directly,...
I've tried several roms and ended at slim beam, first to 4.2.1 which states at stable but also tested the new one 4.2.2 build 2.5
actually i'm fine with the roms, also slim bean but I do have a 3 major issues with all of them which may be related to S3 and asop/cm:
1.) problem using my apple iphone earbuds (yes I'm a iphone user too)
sometimes after mute the microphone, it won't work after de-mute, keep on muted !
microphone not working after re-connecting earbud on a running call, sometimes no audio on earbuds too, sometimes audio even do not work for the whole device -> reboot etc,...
I've found several possible solutions, non of them has worked.
why android doesn't work with that kind of TRRS earbuds, are they incompatible from hardware point of view, do I need special ones which will work on S3.
2.) problem with direct dialing from calendar, not respecting RFC2806
i really need this very often to join conference calls, sometimes the host creates an conf call and including a number with pin as the location.
well almost every mobile os recognizes this and i'm able to direct dial in on selecting the string: iphone, win, even blackberry, but not android.
i know there might be additional apps which can handle this, but it should be implemented into core apps as this is a well known standard and specified in a RFC.
3.) not recognize AP with highest signal strengh within same SSID
it seems that android devices are not able to seamless switch over to different AP within a wifi network with same SSID.
if moving out of range of AP1 and into range of AP2, android devices for some reason are not able to switch to AP2 (with higher signal strengh), therefore it states at AP1 without beeing able to establish any connectivity (because AP1 out of range). as workaround users needs to disable/enable wifi ;-(
this is also something where I have to find a workaround in my current project (creating huge wifi network over europe), because market share of androids is that high and it still have this serious annoying bug.
thanks,
nean
Please read forum rules before posting
Questions and help issues go in Q&A
Thread moved
Thank you for your cooperation
Friendly Neighborhood Moderator
10 post rule is there to protect developers from spam and users not knowing what belongs in a development thread and what belongs in Q&A
1. Headphones > Most likely thats just an issue with roms that are version > 4.1.2. Not all the bugs have been worked out, see if you can replicate it with another pair of headphones.
2. I suspect the same thing is going on here, or you would need some more powerful calendar sort of app.
3. This isnt because it doesnt recognize, its because Android is still connected to the last network and says to itself "no need to scan again, I'm already connected". This has to do with how the OS is implemented, not because its a bug with Android. I'm also fairly sure that most other devices do the same thing
CNexus said:
1. Headphones > Most likely thats just an issue with roms that are version > 4.1.2. Not all the bugs have been worked out, see if you can replicate it with another pair of headphones.
2. I suspect the same thing is going on here, or you would need some more powerful calendar sort of app.
3. This isnt because it doesnt recognize, its because Android is still connected to the last network and says to itself "no need to scan again, I'm already connected". This has to do with how the OS is implemented, not because its a bug with Android. I'm also fairly sure that most other devices do the same thing
Click to expand...
Click to collapse
thanks for the reply.
ad 1,2,3.) hmmm, is this working on googles stock os and eg on nexus?
ad 3.) this is only related to android devices, as tested in the lab with several other handheld devices with different kind of os'es. ios, blackberry, windows mobile, etc, all work and do seamless switchover except android. well the last known network and the new one is actually the same wifi network which is specified due SSID, so if android's rescan logic is related to that kind of info it may be wise to consider acces point strength as well, just like all the other os'ses,....
nean24 said:
ad 3.) this is only related to android devices, as tested in the lab with several other handheld devices with different kind of os'es. ios, blackberry, windows mobile, etc, all work and do seamless switchover except android. well the last known network and the new one is actually the same wifi network which is specified due SSID, so if android's rescan logic is related to that kind of info it may be wise to consider acces point strength as well, just like all the other os'ses,....
Click to expand...
Click to collapse
Did you test using stock os and not a AOSP rom like stated in the OP? You can't blame the OS for a issue if it is moded in any shape or form. Try using straight up stock TW and see if it works. AOSP and CM are not 100% designed to work on this phone flawlessly.
tazfanatic said:
Did you test using stock os and not a AOSP rom like stated in the OP? You can't blame the OS for a issue if it is moded in any shape or form. Try using straight up stock TW and see if it works. AOSP and CM are not 100% designed to work on this phone flawlessly.
Click to expand...
Click to collapse
thats correct, but it doesn't work on galaxy stock os either, that's why I've tried custom roms just to find out if its related to samsung stock rom or if its a general android behavior. well the outcome was that it works on aosp/cm a bit "better" (shorter timeout) but not seamless.
my intention is not about to blame anyone, just like to find out where I can adress this issue, or do I need to get in contact with google?
rgrds
Hello.
I'm looking for an app or any other solution, so that I could view and log Cell IDs of 2G/3G/LTE cells – as many as possible, that means even neighboring cells, even of a foreign networks.
As far as I know, to these days, for Samsung phones there are only:
1. apps, that can log serving Cell IDs, but not neighbor Cell IDs
2. apps, that don't show Cell IDs when in a foreign network
3. apps, that are functioning oddly, eg. they show neighboring Cell IDs, but not serving Cell IDs (and vice versa), or don't show some values (like PCI/PSC).
Above mentioned applies to all apps like G-Mon, G-NetTrack, Netmonster, Parizene Netmonitor. The amount of info provided by these apps is very dependent on Android version and on that whether the ROM is stock or AOSP, but in most cases is insufficient.
4. rather unusable and plain adb radio logs, that are logging serving Cell IDs, but no neighbor Cell IDs on stock ROMs – and vice versa on AOSP ROMs (wtf).
If someone could fix most of these „problems“ and make the phone show and log everything possible Cell ID related, like on good old Symbian Nokias, it would be really great.
I know there are heavy times with API implementation on Samsung phones (some cellinfo functions are completely missing etc.), but on the other side I'm surprised nobody is actually interested in investigating it and making it work better (or at least it looks like that).
B. U. M. P.
I've been using a combination of LineageOS with MicroG and /e/ on my primary and backup OnePlus phones, and frankly, I think you'd be hard pressed to find a better combination of hardware and software. I very much enjoy having a device with minimal bloat and no connection to Google.
Recently, however, the PayPal app stopped working on my phone. This isn't that much of an inconvenience, however, my thinking is that any app could be susceptible to this occurring. This could be potentially catastrophic, for example, if an app that unlocks a charging station for EVs stops functioning or a ticket application for an event (I know, these are worst case scenarios, but I think they are worth having contingency for).
Even before I started messing with custom ROMs again, I had ProtonVPN always on my device (with ads and trackers blocked), as well as using NextDNS to block more that I discovered through DuckDuckGo. Given this, and the fact that I still use YouTube and Google Play Movies on my Roku TV (as well as the fact that I used Google's services prior to commuting to protecting my data privacy), makes me wonder if I'm really getting benefit with custom ROMs. Are the privacy steps I'm already taking sufficient? Should I just disable as many Google apps as possible and call it good? I'm interested in hearing people's thoughts.