Develop Bugs

Advanced phone protections - Questions about securing your data...

With all the talk of police being able to access your phone, I looked in to the options.
I found I could use the following options....
1) unlock password.
bypassed by: if the police dont have your PIN or unlock pattern, Google can be required to provide your email ID/PW to enable unlock
2) encrypted phone
bypassed by: I am unsure how this can be bypassed. If encryption is turned on, I know it breaks CWM, but is there any way to get by it w/o knowing the PIN? Is there any reset besides a wipe of the phone, which would clear any P.I.I. on the phone, wouldn't it?
3) recovery
bypassed by: if you cant get in to the phone, and choose instead to boot into recovery, you can get access to the phones data, but how much access? If you encrypted your data, will this bypass anything? Will the data still be encrypted.
What I would love to see possible, is a PIN for recovery that is a stand alone item with no way to reset it. I know this mean you would have to ODIN if you every forgot it, but if you are more concerned about protecting your data, than data loss, this would be a non-issue, as long as your data is protected
So, is the recovery lock even needed? does encrypting your data and your SD card get the protection needed to prevent access to your phone by authorities, even with Google's help?
I would love to see some security and developers views on this, and on how "safe" you can make your phone if you go all out.

No ideas anyone?
If not.. any ideas where I can go look for answers?

DCRocks said:
No ideas anyone?
If not.. any ideas where I can go look for answers?
Click to expand...
Click to collapse
what would kind of be an example of what your trying to hide from the cops? there is an app or a couple apps that can literally hide your data, and unless they knew the back door functionality of the apps, they would be able to access much data. i use a couple of them.

DCRocks said:
No ideas anyone?
If not.. any ideas where I can go look for answers?
Click to expand...
Click to collapse
k0nane?
Sent from my MIUI V4 Epic 4G via Tapatalk 2 beta 5

LORDFIRE00 said:
what would kind of be an example of what your trying to hide from the cops?
Click to expand...
Click to collapse
It was less about hiding specific data, and more about locking down your phone in general, as in what was possible.
I was interested in how well it could be done, what would need to be put in place, and how secure it really was.

Cyanogen rom & encryption

Hiya,
My phone is a work phone and I've rooted it and installed Cyanogen rom on it, however encryption doesn't work as part of that rom. For me to be able to use the phone as a work device I need to encrypt it. If I tell it to encrypt the phone it never seems to do anything, I get the green android appear and that's it I have left it overnight before and it never seems to complete or give me any kind of progress bar. Any ideas how I can fix this please ?
Regards,
Martin

brayman said:
Hiya,
My phone is a work phone and I've rooted it and installed Cyanogen rom on it, however encryption doesn't work as part of that rom. For me to be able to use the phone as a work device I need to encrypt it. If I tell it to encrypt the phone it never seems to do anything, I get the green android appear and that's it I have left it overnight before and it never seems to complete or give me any kind of progress bar. Any ideas how I can fix this please ?
Regards,
Martin
Click to expand...
Click to collapse
if you want to know something then ask in the rom thread....but where do you tried to encypt it? in the settings or where? and which encrypt do you mean? it should work nicely

I'm assuming here you are trying to add an account as either Exchange or a Google Apps domain controlled by your employer and thus you are getting the security pop-ups telling you to add a PIN and encrypt the storage. What you'll find that really sucks is that once encrypted you can't flash updates to CM through the recovery anymore.
Try this app: Enhanced Email $9.99.
It will let you sync without needing to enable all of the security features on your device. I highly recommend you stick with a PIN code though!

Sorry for the self-advertisement: but encryption does work in my 4.2 AOSP ROM: http://forum.xda-developers.com/showthread.php?t=2013506
Note that you should switch to the 'bigdata' layout in order to avoid any data leakage by an unencrypted sdcard.

One-X-master said:
if you want to know something then ask in the rom thread....but where do you tried to encypt it? in the settings or where? and which encrypt do you mean? it should work nicely
Click to expand...
Click to collapse
I thought I did, ok. Yes if I go to settings and encrypt on the phone that way and it doesn't work.

navalynt said:
I'm assuming here you are trying to add an account as either Exchange or a Google Apps domain controlled by your employer and thus you are getting the security pop-ups telling you to add a PIN and encrypt the storage. What you'll find that really sucks is that once encrypted you can't flash updates to CM through the recovery anymore.
Try this app: Enhanced Email $9.99.
It will let you sync without needing to enable all of the security features on your device. I highly recommend you stick with a PIN code though!
Click to expand...
Click to collapse
Yes that's exactly It, Our work email is on Google now so its the Google apps problem. I don't mind if I cant flash updates as I haven't found any problems with the latest nightlies for a long time. I may try that if there is no other solutions dont really wanna spend my own money getting my work email working .

Bypass(Reset) Lock screen Pattern/Password/PIN/Fingerprint scanning without wipe

Bypass(Reset) Lock screen Pattern/Password/PIN/Fingerprint scanning without wipe
We know it's a big pain when you forget PIN/Passowrd/Pattern and you simply can't afford to wipe device as you don't have backup.
Then What?
You were all the night busy with your new beast and when you wake up in morning and notice that your GF/BF took revenge by registering and locking device by his/her fingerprint
Then what?
Very simple. Flash attached file from recovery.

dr.ketan said:
Bypass(Reset) Lock screen Pattern/Password/PIN/Fingerprint scanning without wipe
We know it's a big pain when you forget PIN/Passowrd/Pattern and you simply can't afford to wipe device as you don't have backup.
Then What?
You were all the night busy with your new beast and when you wake up in morning and notice that your GF/BF took revenge by registering and locking device by his/her fingerprint
Then what?
Very simple. Flash attached file from recovery.
Click to expand...
Click to collapse
Thx. But this not work for me ....
I lost my saved finger scanner sample after a nandroid restor.... and after i flash this zip i always got a google keep fc

I have tested and it reset unlock options to swipe. Still finger print registration remain there. But device will be unlocked
Sent from my SM-N910G using xda premium

Great Stuff...Hats off Dr. Ketan

Need to figure out bypassing roam restrictions in download booster

My company policy makes me enter a 6 digit password. It's just a pain. Can I bypass this restriction? They have made their app as device admin.

does this work on more devices like galaxy s5?

Wait, does this mean that the passkey and fingerprints are not secure since everyone can use this to reset/bypass the lock without wipe?

Obviously. Once your device is rooted / CWM installed, there is always chance to modify your system.

elroy944 said:
does this work on more devices like galaxy s5?
Click to expand...
Click to collapse
Usually samsung device have common storing location for PW PIN etc. SO I believe it should work on S5 too. You can try it, I don't believe it will affect anything else even it fail to reset.

Just like that...?
I take it this needs a custom recovery?
So... all a thief has to do is flash a custom recovery from download mode and then flash this file to get past fingerprint scanner and even a strong alphanumeric password?
DONT KNOW WHETHER TO LAUGH OR CRY!!

ceo.mtcl said:
My company policy makes me enter a 6 digit password. It's just a pain. Can I bypass this restriction? They have made their app as device admin.
Click to expand...
Click to collapse
try the app Nine, its an exchange email app which lets you set the 6 digit on the app as opposed to the phone, so you can unlock the phone as per normal with swipe but when you want to open the email app (Nine) then only do you put your 6 digit code, works like a charm, just an idea cos as far as I know there is no exchange security bypass as yet.

Jostian said:
try the app Nine, its an exchange email app which lets you set the 6 digit on the app as opposed to the phone, so you can unlock the phone as per normal with swipe but when you want to open the email app (Nine) then only do you put your 6 digit code, works like a charm, just an idea cos as far as I know there is no exchange security bypass as yet.
Click to expand...
Click to collapse
I logged in only to thank you on this suggestion. This is one awesome app and my device is finally mine again
I set up pin code on the app + full encryption of the data, so it's very safe, all the draconian admin policies from my organizations admins are now gone, plus my device is now intelligently set to have automatically enable pin when I'm not at home.
If anything I have now double security because when I'm not at home, the device requires PIN and the corporate mail does too + it's all encrypted. Well worth the money.

What about for reactivation lock. Is it secure?And can i flash that zip file with stock recovery. My phone is not rooted.

This does not work on Galaxy S5

Did you use Odin to flash this file? Is so can I get some feedback on how because odin doesnt take .zip files. Since I do not have access to the file system, I can't move the files on to phone. Is there another way to flash this files to the galaxy 4 note. I am from the world of iPhone Jailbreaking and helping out a friend.

stat1124 said:
Did you use Odin to flash this file? Is so can I get some feedback on how because odin doesnt take .zip files. Since I do not have access to the file system, I can't move the files on to phone. Is there another way to flash this files to the galaxy 4 note. I am from the world of iPhone Jailbreaking and helping out a friend.
Click to expand...
Click to collapse
With Odin you flash your custom recovery. Flash attached file from recovery, it's said in OP.
Have fun

I took a nandroid backup with fingerprints registered, when ever i restore, it does not recognise my finger prints and even the backup password says incorrect. I tried flashing the utility but no luck. Any work around for the solution as i had to factory reset from recovery to clear the data

It's known issue. Before making nandroid remove registered finger prints.
Sent from my SM-N910G using xda premium

Can this be used to erase the stored fingerprints and reset them?
i used a nandroid backup and while i'm not locked out of the phone, i am locked out of changing fingerpring settings - and the backup password is corrupt as well.

Samsung A5 - will root remove previous Google account

So an employee had to leave on short notice - he handed phone back but PIN locked and google account still on. Have no way of contacting ex employee.
Tried wiping phone via factory reset in safe mode. On restart it prompts to validate via Google account?
What is best way to root or totally wipe?
Thanks

donerkebab said:
So an employee had to leave on short notice - he handed phone back but PIN locked and google account still on. Have no way of contacting ex employee.
Tried wiping phone via factory reset in safe mode. On restart it prompts to validate via Google account?
What is best way to root or totally wipe?
Thanks
Click to expand...
Click to collapse
You are FRP locked. Only way is to use the right credentials or bypass FRP.

ashyx said:
You are FRP locked. Only way is to use the right credentials or bypass FRP.
Click to expand...
Click to collapse
So any way to bypass FRP on Samsung A5?
Edit Thanks found the link on XDA - just search worked a treat as well

Simple root that won't trip Knox?

Hi, there!
I heard there is a method for the S8+ where you can root your phone without tripping Knox. It isn't the best root method and it has its limitations, but it would do just fine for my needs.
Is there such method for the S9+?
Thanks!

Anyone?

CapBlackShot said:
Anyone?
Click to expand...
Click to collapse
No

*Detection* said:
No
Click to expand...
Click to collapse
And no developers are planning to create one, that we know of? I only need root to make Cerberus a system app. In case the smartphone is stolen and gets hard reset, the app will still be there, hidden. But without root it seems impossible.

CapBlackShot said:
And no developers are planning to create one, that we know of? I only need root to make Cerberus a system app. In case the smartphone is stolen and gets hard reset, the app will still be there, hidden. But without root it seems impossible.
Click to expand...
Click to collapse
KNOX is an e-fuse, once tripped that's it forever, no reversing, nothing devs can do
FRP lock is your hard reset security, unless they know your Google login they cannot access the device anyway
And if they have the knowledge to flash certain firmwares and bypass the lock, your system root app wouldn't be of any use either anyway, so....

*Detection* said:
KNOX is an e-fuse, once tripped that's it forever, no reversing, nothing devs can do
FRP lock is your hard reset security, unless they know your Google login they cannot access the device anyway
And if they have the knowledge to flash certain firmwares and bypass the lock, your system root app wouldn't be of any use either anyway, so....
Click to expand...
Click to collapse
That's very interesting. Can't believe I never heard of this before.
Will the device actually get wiped and then ask for my Google account or will it ask for my Google account before getting wiped? If the first option I mentioned is true, then Cerberus will be gone and I still won't be able to locate my cellphone in case it gets stolen, I'm assuming.

CapBlackShot said:
That's very interesting. Can't believe I never heard of this before.
Will the device actually get wiped and then ask for my Google account or will it ask for my Google account before getting wiped? If the first option I mentioned is true, then Cerberus will be gone and I still won't be able to locate my cellphone in case it gets stolen, I'm assuming.
Click to expand...
Click to collapse
It will get wiped first, it asks for the Google account because it was wiped from recovery and not from inside of Android, meaning anyone could have done it
It will not allow anyone past the Google account request, similar to when iPhones are locked to iCloud, you can wipe it as many times as you like but it will always request the Google account
For example, I steal your phone with Cerberus installed, I cannot access your phone so the most likely thing I`ll try is factory reset from recovery, this will wipe the phone and request your Google account login to access it again, which I do not have
Next thing I would try (If I knew about it) was flash stock firmware over the top, which will wipe again this time removing your Cerberus app, but again it will not prevent the Google login request
Final thing I would try would be FRP bypass to get past your Google account login, and if they manage that they have access to your phone, but it is wiped and Cerberus is gone
End of the day, no mod/app will survive the phone being flashed as the system partition is replaced with stock again, and the wipe will reset the data partition where user apps and data are
Best thing to do is enable the Google security settings for find my phone, lock and erase, and enable it to send GPS of last location when the battery is getting low, that way you can track it online until it is turned off/wiped