Change encryption password / reenable encryption - Moto G5 Questions & Answers

Hello,
I accidentally replaced my encryption password with the default encryption. Does anyone know if I can set my own one again?
I tried out "Macrodroid" with the goal to automatically enable and disable airplane mode and while trying out different things (bound to fingerprint gestures) it asked me for accessibility access which I allowed but then it (the accessibility settings page) asked for my password and said it was needed since accessibility is also related to encryption state or so. But I didn't enter my password and clicked on cancel, I don't know the app that well so I didn't want to give it access over my encryption.
My theory is now that it replaced my encryption password with the default one then because it didn't ask me again for my encryption password when I de- and reactivated accessibility.
I uninstalled the app then and use "Auto Airplane mode" now. I checked with "Sd-maid" for any leftovers and then rebooted and it didn't ask me for my password, I just straight booted into system. (Device is still encrypted but with standard password.)
Booted into twrp and it was able to surpass encryption, went straight to main twrp menu.
Is there any option to manually set the encryption password?
I think if I flash "disable-force-encrypt" again (like I did while installing my phone) I would have to format data, too in order to remove encryption and re-set it in system settings, or not?
My last option before totally reinstalling the ROM would be to restore a nandroid backup from after I installed it the first time.
Greetings,
7080

Related

[Q] Prompted for Device storage encryption password after decryption

I had encrypted enforced through a company policy. Device worked fine no problems. Enter pin at boot and in we go.
This policy was removed and I de-encrypted the device. Still no problems.
The device clearly showed it was not encrypted and I had the option to encrypt - so all good so far.
I rebooted the device and was asked for my device storage password. I entered my old pin and it booted ok. Bit strange I thought but device works so that's good right?
So I did a factory reset. Same thing happened. prompted for a PIN
I re flashed the phone back to the original carrier ROM - same thing. Still being prompted for PIN.
I installed TWRP 2.6 and did a format - same thing.
Does anyone have any idea how to get rid of the encryption? (Well the fact it keeps asking for the de-encryption PIN - as its actually not encrypted)
thanks

How do i check if my phone is encrypted?

With Samsung devices, turning on device encryption force you to use 6 characters password (alphanumeric), which is troublesome if you use your phone often.
What I found out is that after I set such password, complete the device encryption and go back to the Lock Screen setting, I can change the password to 4 digits.
Going back to encryption setting, it said I can now encrypt the device, but must use 6 characters password. But isn't my phone already encrypted? AFAIK, there is no turning off encryption once it's done.
So at this point, is my phone encrypted or not?
lanwarrior said:
With Samsung devices, turning on device encryption force you to use 6 characters password (alphanumeric), which is troublesome if you use your phone often.
What I found out is that after I set such password, complete the device encryption and go back to the Lock Screen setting, I can change the password to 4 digits.
Going back to encryption setting, it said I can now encrypt the device, but must use 6 characters password. But isn't my phone already encrypted? AFAIK, there is no turning off encryption once it's done.
So at this point, is my phone encrypted or not?
Click to expand...
Click to collapse
The phone is encrypted but like you said you cannot permanently decrypt the phone once the process is completed.
DConrad2010 said:
The phone is encrypted but like you said you cannot permanently decrypt the phone once the process is completed.
Click to expand...
Click to collapse
Thanks for the info.
I am curious why initially the device requires alphanumeric passwords (which I created), but once encryption is done, I can go back to the "Lock Screen" and change it to just numeric password. I believe this will NOT remove encryption, but for confirmation, want to check if the encryption is still there.
lanwarrior said:
Thanks for the info.
I am curious why initially the device requires alphanumeric passwords (which I created), but once encryption is done, I can go back to the "Lock Screen" and change it to just numeric password. I believe this will NOT remove encryption, but for confirmation, want to check if the encryption is still there.
Click to expand...
Click to collapse
I had to un-encrypt my phone by unrooting via Oden. Once i Odened then you have to do a factory reset and you are un-encrypted for good.

Advisable to set a screen lock, in case of problems with recovery?

I just rooted my brand new 1+3 and put CM13 on it, with TWRP recovery. I haven't set any sort of screen guard or fingerprint yet, since I'm not sure if that will end up encrypting the disk as well.
I've seen other posts about how people could not use the recovery because it prompted for a password - and typing the PIN didn't work for them. I have already taken a nandroid backup of the original OxygenOS, and saved it elsewhere (i.e. not on the phone). So if I go ahead and set a password, will it cause any problems later, if I have to use the recovery? Is it better to stick to a PIN instead of the pattern lock?
Edit - now when I go into recovery, the log says 'successfully decrypted with default password'. What's this default password? If I set a screen PIN, will it change to the PIN, or is it something else? Will setting the PIN/fingerprint prevent me from mounting data as I can now?

Disable On Boot Password

Hello everyone, I'm a newbie to the OnePlus world.
So my question is: how can I disable the password that is required before android is launched on my OnePlus 3 ?
I've searched accross xda but I found nothing, sorry if this has already been answered.
In the beginning I found it very useful, but once I removed Google Keyboard, I was not able to enter that password.
I want to use a modded google keyboard (with number row), and on the xda thread, the dev ask to remove the defaut Google Keyboard.
Regards.
Go into Settings > Security & fingerprint > Screen lock and remove it (choose None).
Once the device is set to none, go back into Settings >Security & fingerprint > Screen lock and choose PIN. It will ask you here if you want secure boot (enter a PIN to start device) or not use it. Just choose the latter.
EDIT: If you have fingerprint set up, you will lose it during this process
Another option is to just switch between password, pin or pattern. You still get the option of not to set on boot, but this prevents the fingerprints to get deleted as they do when switching to swipe or none.
Thanks guys the problem is now solved, I've selected PIN with NONE as option for boot.
I can't do anything else because would like to remove the google keyboard.
To do so you will need to wipe your /data but its possible through twrp for excample. Simply after hard reset chose not to require password after boot
I'm confused as to why Google Keyboard is required for entering a password. Can't you just set your other keyboard to be the default?

Encrypt device using lock screen password

How does it affect device encryption by enabling or disabling the 'Encrypt using lock screen password' option (in privacy settings)? What is opposite? What password is used for encryption if this turned off?
If this is enabled, then a password is required before running the android.
But when this option was not turned on, the menu showed "encrypted" anyway and the Terminal (termux), after entering 'getprop ro.crypto.state' and 'getprop ro.crypto.type' I received the message 'encrypted' and 'block'. So, the device was encrypt anyway (at least in theory).
The question is what changes the inclusion of this option and is it really worth?
wholegrain said:
... The question is what changes the inclusion of this option and is it really worth?
Click to expand...
Click to collapse
The result will be that Android (and TWRP) will not start until you enter the lockscreen password. If you don't reboot your phone very often, then you may be able to live with the hassle (bootup will be much slower). And you'd better not forget the lockscreen password. But if the bootloader is unlocked, and/or TWRP is installed, nothing stops anyone from formatting the data partition and using the phone for their own purposes.
Does it give you any extra protection over standard encryption + fingerprint or lockscreen password? If your bootloader is locked, then maybe. Is it worth it? That is a matter of opinion - but I personally wouldn't bother with it. The greatest security risk lies in unlocking the bootloader. Once you unlock it, the phone itself is easy to commandeer, even if your data is safe because of encryption.
DarthJabba9 said:
But if the bootloader is unlocked, and/or TWRP is installed, nothing stops anyone from formatting the data partition and using the phone for their own purposes.
Click to expand...
Click to collapse
You mean 'using for their own purposes' with my data or after wiped? Anyway, I enabled this additional authentication. I don't have unlocked bootloader or TWRP. If the phone is turned off, then stranger can wipe (by holding power + volume up) and use it as its own.
I'm interested in what the difference in access to my data by a stranger is when the option is enabled or disabled. When enabled - I understand that when the bootloader is locked and there is no TWRP, the stranger can't access the device's data. When disabled - data supposedly encrypted, but is not the "default" password recoverable too easily?
wholegrain said:
You mean 'using for their own purposes' with my data or after wiped?....
Click to expand...
Click to collapse
Your data cannot exist after the data partition has been formatted. If your bootloader is locked, then you don't need to worry too much - just don't forget your lockscreen password.
As for standard encryption with default password, this enables TWRP to access the encrypted storage without asking for a password. This is what a lot of people expect (and demand). Some people who are very concerned about data security often prefer to have to enter a password, even to start TWRP. It is all down to individual taste.

Categories

Resources