Related
Hi there,
my company forces every WM user to activate the WM6 default Device Lock with a cab you have to install, which changes some registry parameters, I guess. But this cab also includes certificates (WLAN and VPN-access) that I really need, so I have to install it.
But I don't want to have my device locked every 15 minutes (especially if using Navigon...). If I try to disable Device Lock in the Settings menu, the field is greyed out. But is there any registry parameter which disables this device lock?!?
Is there another way to disable it?
Thanks in advance!
First enable the box again to untick it:
HKLM\Security\Policies\00001023
0 = Enabled; 1 = Disabled
Then install Zenyee.com Stay Unlock.cab and soft reset your device.
This program will prevent the lock to be activated again.
Great! Works just perfect for me!
This might just be what i'm after Last week I was using an ipaq on wm2003 but since the weekend I've bought myself a Sony E X1 and logged onto the works network this morning and it installed some security polices and then it started locking the phone every 5mins.
Quick search and I find this thread, hope it works, let you all know .
Ta
Update, it has given me the option and I have disabled it rather than setting it to say 24hours and also ran the keep unlocked cab file. See how it goes at work tomorrow.
well i can confirm that no further locks have appeared since logging back onto the work network can see i'm going to enjoy this forum. ta
phoenix3dfx225 said:
well i can confirm that no further locks have appeared since logging back onto the work network can see i'm going to enjoy this forum. ta
Click to expand...
Click to collapse
It works yes, but i found that the app absolutely wiped out my battery which ran very hot. I removed the app and this solved the problem, although unfortunetly device locked appeared once more. Does it wipe out yours?
WM 6.1 VPNLockingmy device
Thanks very much gang!!! I have installed Zenyee.com Unlock cab. It solved the goddamn issue, and allowed me to untick the password request in Setting, Lock.
before Icould not untick it.
now the device is not locking itself every time i turn the screen off
The manual registry cleaning worked very well. Thank you for the tip.
I haven't installed the .cab so we'll see how long it takes until it gets locked again...Maybe it won't I don't have much faith in our IT Group
Not wanting to spoil anyones fun, and i can see why periodic locking of the device is a pain, it is obviously being done for a reason. Bear in mind that it may well be considered a breach of employment contract to circumvent said security measure.
For information i am a BlackBerry Admin and so have a "vested" interest in device security. Just think what "sensitive" detail may be on the device and so open to anyone if it gets lost and this hack is running.
deedee said:
Not wanting to spoil anyones fun, and i can see why periodic locking of the device is a pain, it is obviously being done for a reason. Bear in mind that it may well be considered a breach of employment contract to circumvent said security measure.
For information i am a BlackBerry Admin and so have a "vested" interest in device security. Just think what "sensitive" detail may be on the device and so open to anyone if it gets lost and this hack is running.
Click to expand...
Click to collapse
Very true deedee,
Personally I dont use the hack on my company mobile, but on my personal one which i used to use via exchange, the policy lock is still enforced even after removing server details, which is a proper pain. The only real way is a hard reset in my experience. The app does work but wiped out my battery daily (and breaking the said security policies, which you are correct can end in your p45 in the post!!!)
Great words of wisdom as usual!
Been looking for a way to get ride of the pain in the ass device lock.... And this just made my day... thanks alot....
I agree as well. However, isn't there a possibility (via Mortscript or whatever) to disable the locking when running some application (a navigator as mentioned in this message) and to enable it again after quitting?
This way, you don't have the lock while navigating, and the policy is still upheld (unless of course, your mobile gets nicked out of the car while in navigation mode).
THANK YOU!
omg so nice to get rid of that damn phonelock thanks!!
Circumvent Device Lock in Blackberry Connect for Windows Mobile
---------------------------------------------------------------
Description:
------------
BBC features a security module that, if configured and activated, locks the device after a specific amount of time.
In a corporate environment this is usually set up by a security policy which is pushed to the device via Blackberry Enterprise Server (BES).
If the device is locked the user has to enter a password to unlock the device again.
There are two ways a user can compromise the security implied with the BBC security service.
1) Using a task manager a user can deactivate the BB security service (bbsecurity.dll) which is responsible for enforcing the security policy. The BB service itself is not affected by stopping the security service as long as the device is not rebooted. Thus the security policy is no longer enforced but the user is still able to use all other BB features.
2) The BB security service does not block all user actions during device lock. Only the screen overlay is enforced but applications might still be started using hardware keys. There are several ways to misuse this flaw. One for example is if a voice command software is installed, the user can still send voice commands to the device. If Microsoft Voice Vommand is installed and bound to a hardware key and the device gets lost or stolen a malicious person can press the voice command hardware key and ask for upcoming appointments, dial numbers etc. which leads to information leakage.
Affected:
---------
Blackberry Connect (BBC) for Windows Mobile PocketPC 4.0.0.97 (only version tested, but suspectable all currently available 4.x versions)
Not Affected:
-------------
Blackberry Connect (BBC) for Windows Mobile PocketPC 2.x
Workaround / Fixes:
-------------------
None
Vendor Contacted:
-----------------
14.05.2008
Vendor Response:
----------------
None
How to deactivate it?
Hi,
I am looking for long time how to deactivate this security feature and would be interrested how to schedule with a task scheduler the dll??
Could you please advise how to do this?
Thanks
jsimpson said:
Hi,
I am looking for long time how to deactivate this security feature and would be interrested how to schedule with a task scheduler the dll??
Could you please advise how to do this?
Thanks
Click to expand...
Click to collapse
You cannot deactivate it completely since the policy is enforced after each softreset. As I wrote you can use a task manager to stop the service, but you should under no circumstances stop it permanently because your device will not come up anymore if the service is completely disabled.
So to get back to your question; No, I cannot tell you how to do it with a task scheduler as the only way I know is using a task manager.
One can write a small utility to stop the service and after a softreset one can run this program to avoid using a task manager for that, but AFAIK there is no such program.
mmm After being happy when I put the WWE HTC rom on my TMO Vario IV and after managed to install and initialize Blackberry Connect .103 I got disappointed when the BB security lock came in the first time.
I cannot set the lock-timer higher than 15 min.
Its extremely nasty when I am driving using Tom Tom navigator.....have to type the password every now and then (I have the feeling not exact 15min's!).
I tried the stop-service trick, but that one appears non working with (at least) BBC version .103 and .104 on my device.... Without running BB security service the device wont wake up or soft-reset itself.
Has anyone encountered these new issues with BBC 4 security lock and has anyone found a solution yet???
Was thinking to let the security lock active (preventing my device from locking up or soft-resetting spontaneously) and to build a script that runs in the background checking whether or not the security lock screen is present. And once it is...pastes the security code in the box and pushes OK.
Does this sound do-abe?
edsub said:
Was thinking to let the security lock active (preventing my device from locking up or soft-resetting spontaneously) and to build a script that runs in the background checking whether or not the security lock screen is present. And once it is...pastes the security code in the box and pushes OK.
Does this sound do-abe?
Click to expand...
Click to collapse
Do the same for GOODLINK and you got a deal!
Well I managed to fix this like I mentioned.
Attached are 2 Mortscripts that to run in background from \Program Files\Mortscript
(I have a shortcut in \Windows\StartUp to make sure it is run when my devices is reset, so i do not have to start it myself after every reset, but thats optional)
The 1st script is for general purpose: It just makes sure you will not be bothered again by the BBC security screen
The 2nd script only works when TomTom navigator is active.
You simply choose which script suits your needs best. Both can be run at he same time also I suppose.
The 1st script, BBCUnlock.mscr, simply waits for the security screen, sends the appropriate keystrokes (leftsoftkey, password, leftsoftkey) and restarts itself (to wait for the next security screen popup).
Beware:
1. Enter your own password in the right placxe in the script before using it.
2. Comment-out the last line until you are absolutely sure the script works (remember: 10 wrong passwords deletes all BBC data on your device!!)
It runs in a couple of seconds (which you see happening)
The 2nd script, NoLockTTNVGA.mscr, only works when TomTom Navigator is running: Every 10 minutes it taps the zoom-in and zoom-out hot-spots in TomTom's 3D view (based on VGA resolution!!), before re-launching itself again. This makes the security time-out will never happen as long as TomTom is running.
Update:
The NoLockTTNVGA script works flawlessly, but only fixes the issue when TTN is active
The BBCUnLock script has some glitches. Apparently it locks up my device when
- a reminder 'stays active' for some reason.
- TomTom Navigator is active (but that can be fixed whith the other script!)
The script can be run simultaneously. And when you have TTN: for now they must!
Not sure how to make the BBCUnLock script more stable, any help appreciated.
Hi edsub,
Thanks for your efforts so far. Up to now I have used MemMaid in my startup files so that after a soft reset, I have to firstly unlock the Blackberry and secondly the MemMaid then kicks in and I disable Blackberry Security in Startup Services. This means the security is overridden until my next soft reset as you already know. Therefore, I don't need to install the mortscript for TomTom.
However, I am particularly interested in the other mortscript you have given. I want to be able to simply soft reset my Diamond and then just leave it, without having to (1) input my password and then (2) disable the Blackberry Security in MemMaid.
I think your mortscript is possibly the answer to my prayers.
However, I have installed it to my device and also installed MortScript v4.3.0.2 Beta. I am concerned that (1) I am a beginner & this is too advanced for me and (2) running mortscript will eat up my battery.
I have renamed the extention on your file with .doc and input my password overwriting the appropriate parts) on my desktop and then renamed the extention back to .mscr and then installed in the MortScript folder back on my Diamond.
In MemMaid, I have put the Mortscript and Autorun .exe's into the Startup Items section, so this should run after a soft reset.
However, my Diamond does not unlock itself. What am I doing wrong?
I really appreciate any help you can give me. I am very much a newbie with this program!
I am persevering with this, but cannot get it working. I have put a shortcut for Mortscript.exe and the BBCUnlock.mscr into my Windows Startup folder using MemMaid. I have also tried to change the order of the programs starting on MemMaid, but this does not seem to have any effect on inputting the password. I have obviously changed the word "secret" to "mypassword" in the BBCUnlock.mscr file. I have also tried just putting the BBCUnlock.mscr (without the Mortscript.exe) in the Startup folder.....
I would appreciate your help edsub...
Update:
I have managed to get the BBCUnlock.mscr work during normal operation, but it does not work for the password immediately following a soft reset (it does work thereafter).
This is already a huge improvement as I don't need to then disable the Blackberry Security from MemMaid following a soft reset. However, how can I get it to work for the password immediately following a soft reset?
Please help edsub!!! This is the final ingredient to my perfert Diamond!!!
I think the Mortscript does not run until AFTER the Blackberry Security has been unlocked for the first time following a soft reset. I have tried to change the order of the shortcuts on MemMaid, but haven't managed to succeed. Can anyone offer any help PLEASE???
I have tried some more things too:
Added in a sleep timer of 5 seconds from sensing the "owner information" to pressing the left soft key and also increased the time from pressing the left soft key to inputting the password. It works great in normal mode, but still doesn't work for the single password required immediately following a soft reset.
Also I have tried to put not just a shortcut into the startup folder, but the actual mortscript itself. Plus the shortcut!
I can't believe there aren't more people with this problem. Edsub has certainly created a wonderful mortscript here. It is nearly perfect and I'm sure others would want it if it worked for ALL password inputs required.
Can anyone please help????
I guess Mortscript is not running before the password is given for the first time. I have this behaviour too. So i have to give the password myself right after reset. After that the Mortscript takes good care of it.
edsub said:
I guess Mortscript is not running before the password is given for the first time. I have this behaviour too. So i have to give the password myself right after reset. After that the Mortscript takes good care of it.
Click to expand...
Click to collapse
Hi Edsub, nice to see you back! Thanks for the reply & PM. Your Mortscript programme is still the most important programme on my device! I did try to re-order the start up processes on SK Tools so that the mortscript would start before the Blackberry security, but I couldn't get it to be more important in this way!! Now I have a Diamond 2 and am hoping not to have to soft reset at all. I have another problem now - I can't seem to get BBC working at all on this phone, but that's another story.....
EdSub, as you are my hero for getting the Blackberry security to sort itself out via your Mortscript programme, I wonder if you can write another Mortscript programme for this: http://forum.xda-developers.com/showpost.php?p=4381321&postcount=89?
I would be very grateful!! I think other Blackberry users would be too.
Hi,
Maybe the question is idiot, but reading the first post, I was wondering why not create a small script which would simply deactivate bbsecurity.dll on startup... If I read it well, doing this once would be enough, and have no impact on the BB service itself...
Using a small sleep, it would be easy to put this script directly in the windows startup folder so that the sleep leaves enough time for the dll to start, and then deactivate it...
Isn't this possible?
Thanks
bbdoc said:
Hi,
Maybe the question is idiot, but reading the first post, I was wondering why not create a small script which would simply deactivate bbsecurity.dll on startup... If I read it well, doing this once would be enough, and have no impact on the BB service itself...
Using a small sleep, it would be easy to put this script directly in the windows startup folder so that the sleep leaves enough time for the dll to start, and then deactivate it...
Isn't this possible?
Thanks
Click to expand...
Click to collapse
Edsub already did this with Mortscript. It doesn't de-activate it completely, just senses when the code is required and then enters the code. I would like a script which does what you are suggesting.
mitsi said:
Edsub already did this with Mortscript. It doesn't de-activate it completely, just senses when the code is required and then enters the code. I would like a script which does what you are suggesting.
Click to expand...
Click to collapse
Yes, I know this script, and I'm using it... It's working quite good, even if it sometimes misses the code, don't know why... but I'm a bit worried about battery consumption linked to the fact a script is constantly running only for typing this password every 20 minutes... Deactivating the dll would probably be a more efficient solution, but maybe this is not possible using mortscript...
bbdoc said:
Deactivating the dll would probably be a more efficient solution, but maybe this is not possible using mortscript...
Click to expand...
Click to collapse
You can use the attached program to stop the service. Just execute it and the service will be stopped. However, you have to do this after each softreset. I recommend to wait until the connection is established to the RIM network and then use BBStopSec.exe
Hope this is what you were looking for.
That's indeed what I was looking for... I'm just surprised it's an .exe and not .mscr...
Is it something you compiled yourself? The idea I had with the mortscript was to add a sleep before stopping the service, because this way, I can simply put it in my startup folder and it will launch automatically after a soft reset... As far as the first lock screen will only come after 20 minutes, I could even put a sleep of 10 or 15 minutes before stopping the service and I would never get my screen locked...
Hi all... I have exchange set up with push mail at work (a few if us are testing it instead of using expensive Blackberry licences).
So far it works really well (if a little battery sucking!) apart form the annoying password that constantly pops up after a few minutes. Our IT guy has tried to lengthen this to no avail! None of the Blackberry's do it so why on earth do our WM devices have to do it? I can understand it happening once the phone had been switched off, as if it's knicked then when the thief switches it on they ned apassword, but every fgew minutes? Boy is that tedious!
Any help would be greatly appreciated!
adamelphick said:
Hi all... I have exchange set up with push mail at work (a few if us are testing it instead of using expensive Blackberry licences).
So far it works really well (if a little battery sucking!) apart form the annoying password that constantly pops up after a few minutes. Our IT guy has tried to lengthen this to no avail! None of the Blackberry's do it so why on earth do our WM devices have to do it? I can understand it happening once the phone had been switched off, as if it's knicked then when the thief switches it on they ned apassword, but every fgew minutes? Boy is that tedious!
Any help would be greatly appreciated!
Click to expand...
Click to collapse
I use Direct Push to connect to an Exchange account (both on a TP and on the Diamond). No Rom I have installed on them has had this problem - I only ever put in my password once and it remembers it and never asks for it again. I have also used Direct Push on several previous WM phones (5, 6 and 6.1) and have not had this problem on those, either!
This may be a silly question, but did you tick "save password" when setting up the exchange account on the phone?
The PIN requirements are set on the server side (i.e. Exchange) so you need to have your IT guys look there. It's easy enough to setup. Your 'blow away' device settings are also defined there.
We run about 600 WinMo devices with Direct Push on our private APN and have the password timeout set to 30mins accross the board (as defined by our security policy, auitors would really like 15 mins or less ). This has been running for several years and over many generations of device (inc. several Raphael's now) and the PIN timeout has always worked as expected.
Remember you CAN override the timeout on the device to lower the value (15min lock rather then 30 etc., the server just defines the MAXIMUM time that the device will remain unlocked without requireing the PIN and what the constraints of that PIN are). You configure that like you would expect from the Lock control panel.
You have to use SSL connection
Maybe you need more postage
Thanks, I will talk to IT again as they said 15 was maximum they could do! Even though it didn't seem to reset once set previously.... I think its a silly system anyway though. If I wanted a password I would set one up... if not then I should be able to have my phone set up so that only the email needs that lockout password added so sync not the whole blasted phone!
adamelphick said:
I think its a silly system anyway though. If I wanted a password I would set one up... if not then I should be able to have my phone set up so that only the email needs that lockout password added so sync not the whole blasted phone!
Click to expand...
Click to collapse
I'm sure your IT department have a totally different answer to that!
You're walking round with potentially confidential company information in your pocket. Personally I think it's perfectly reasonable that they insist that you have to password protect your device so that if it is lost or stolen, no-one can get at the sensitive company information that you may have on the device, even if it is only out of your sight for a couple of minutes!
As it is an Operating System on our phones there's no reason MS couldn't have passworded EMAIL separately from other functions - makes sense to me. They give you the option to PW your phone or not (personal choice) but I agree that company information should be safeguarded.
Do blackberry's have this same password stuff that locks the phone completely? I don't see my boss having to type in passwords to unlock his blackberry every five minutes!
adamelphick said:
As it is an Operating System on our phones there's no reason MS couldn't have passworded EMAIL separately from other functions - makes sense to me. They give you the option to PW your phone or not (personal choice) but I agree that company information should be safeguarded.
Do blackberry's have this same password stuff that locks the phone completely? I don't see my boss having to type in passwords to unlock his blackberry every five minutes!
Click to expand...
Click to collapse
Yes, Blackberries do this as well. It depends on your corporate security polcies. We cannot connect iPhones or Nokia mail for exchange phones, as our IT group cannot broadcast the security policy to the device. These security policies are the main reason why BB and WinMo own the enterprise market in the US.
Hello.
I recently got a Sony Ericsson XPERIA X1 (with Windows Mobile 6.1), and I set a password on it.
Sometimes when it would ask me for my password, the shift or fn keys wouldn't work, so I couldn't enter it. I would have to soft reset the device to be able to type in my password.
Frustrated, I decided to disable password protection entirely. I then found that after leaving the device alone for a period of time (while sleeping, for example), it would lock and ask me for a password - but since I no longer had one, I couldn't. I would have to soft reset the device to bypass the password screen.
I searched around, and found that this was a bug in Windows Mobile, and the only solution was to hard reset and never enable password protection. After a while of putting up with it, I flashed my device to use itje's Touch-IT v7, and I performed a hard reset. It was fine for a while, but now it's doing it again: it's asking me for a password when I leave it alone for a period of time, but I don't have one. I never set a password this time.
Is there any real solution to this? It's incredibly frustrating. Thank you in advance.
you mean the security password that is enforced when using exchange email? there is ap app that will enable you to turn it off, but you should read this thread (the app is listed here but you should take heed of the warning from deedee). I leave it up to you.
http://forum.xda-developers.com/showthread.php?t=358695
Try "hard reseting" it
I'm not using Exchange email, and the checkbox to disable password protection isn't greyed out (like it is in that thread). Thanks for the link anyway though, I'll have a look around the registry.
Anyone else know anything about this?
Edit: As I said in my original post, I already tried a hard reset when this problem originally appeared. I hadn't touched the password protection settings at all since my hard reset, but it's happening again.
Does nobody have a solution for this?
are you sure someone isn't messing with your phone and setting a password? I've been using windows mobile for 6 years and never had that problem.
And you said something about a bug.... can you link me to whatever you found?
Thanks for the reply, I appreciate it.
I just tried searching for that again, but unfortunately I can't find it. It was a thread with somebody saying that they have no password set, yet the device asks for one so they can only bypass the screen by soft resetting - and that's the exact problem I'm having now. There was no solution posted so I didn't bookmark it or anything.
I am the only person that has had access to my phone, so nobody has messed with it. The password setting is definitely disabled, and the HKLM\Security\Policies\Policies\00001023 registry value is set to 1 (disabled). My phone doesn't ask me for a password when I first start it (so I can get past it each time via a soft reset), it just seems to happen after 10 hours or so - I'm not exactly sure what triggers it.
Edit: I'm not sure if this is what I read before, but it seems to describe the same thing.
http://forum.xda-developers.com/showthread.php?t=291567
nuclear said:
Thats the question: is it really time for WM6?
So far i believe that the device cannot digest what we have so far of WM6. Too many non-functional things or bugs if you would like to say =_=
Device auto-locks and asks for password and if you dont have a password you cannot get into the device other than by soft reset. Asks password even for activesync! PDAViet has problem with activesync in vista as it disconnects after 5 minutes. WiFi only turns on from Comm center. Hang up's on 25MB free RAM. A lot of memory leak! 10MB to run SPB Time -_-...
Click to expand...
Click to collapse
Edit 2: Here's another one... No real solution posted.
http://social.microsoft.com/Forums/en-US/windowsmobile/thread/88834ba5-b64a-45c3-8dc4-378ffc3a40d6
seckin38 said:
I have recently purchased HTC Touch with WM6. 2 days ago, it suddenly locked. I couldn't unlock because it asks for password. Because I didn't set a password, I couldn't unlock.
Click to expand...
Click to collapse
This is really wierd, i have been using wm since 5 was on the scene and ive never come across your issue. I appreciate that your not using exchange but did you try the zeynee unlock app? It might stop the lock screen, you never know. If it doesnt work then nothing lost huh??
I didn't try it, no. I was concerned about the posts saying the application used up too much battery power, and thought checking the registry would be good enough (since nothing should be changing the value). I'll install it now and see if the problem still occurs. I don't have much hope that this will help though.
Okay, it just happened again. The application didn't help.
Ok, worth a try...
Have yoyu considered flashing to a different rom to see if this works? Is there a new stock Rom available?
Ill have to look more into this, maybe msdn has something on it.
Well, I had this problem with both my original Vodafone ROM and the custom one I'm using now. I'm reluctant to flash it again due to the hassle of reinstalling everything again.
I think it may be related to notifications. It just happened again as I got a text message, and last time it happened just before I received a Skype call. When I'm away and come back to find it locked, there tends to be a new icon in the notification area. It definitely doesn't happen every time I get a notification though...
I am getting a password requested when I boot up my phone.
This has been bothering me over the last several days.
It turns out it is forced by an exchange account I have set to synchronize with my phone.
Is there any way to force this password request to be ignored?
It is not the exchange ID password, rather it is a new password that exchange requires to be entered on phone boot-up in order to enforce security on my phone.
I already use pattern lock, so this is redundant... not to mention annoying.
I don't know if it can be bypassed. I'd like to know too, because although convenient for me, I will not put my work email on my device if I am forced to password protect my screen, as was the case with my Samsung Epix. I'd prefer to be forced to enter my credentials each time I were to check my work email than to enter a pass to unlock my screen.
a_fuegon said:
I don't know if it can be bypassed. I'd like to know too, because although convenient for me, I will not put my work email on my device if I am forced to password protect my screen, as was the case with my Samsung Epix. I'd prefer to be forced to enter my credentials each time I were to check my work email than to enter a pass to unlock my screen.
Click to expand...
Click to collapse
I would think that the pattern lock would satisfy any need for protecting my email from unauthorized use... a 4 digit numeric code is less secure than the pattern lock, which has 9 points and who knows how many possible combinations.
There have been quite a few discussions about this. Lockpicker seems to work but the developer states only for the HTC Sense.
I'm sure IT managers aren't going through any effort to change their security policies and endure all that's involved to change something they feel is currently effective, regardless of the users sentiments. It's up to us the users to find a way to circumvent or deal with it.
a_fuegon said:
There have been quite a few discussions about this. Lockpicker seems to work but the developer states only for the HTC Sense.
I'm sure IT managers aren't going through any effort to change their security policies and endure all that's involved to change something they feel is currently effective, regardless of the users sentiments. It's up to us the users to find a way to circumvent or deal with it.
Click to expand...
Click to collapse
It is frustrating, given the fact that this is a new change. For the longest time I thought it was something i did while modding my phone.
I will try the "get IT to fix it" route, but I have my doubts anything will come of it.
Otherwise, I will need to get someone to look at lockpicker.
Thanks.
joeybear23 said:
I would think that the pattern lock would satisfy any need for protecting my email from unauthorized use... a 4 digit numeric code is less secure than the pattern lock, which has 9 points and who knows how many possible combinations.
Click to expand...
Click to collapse
The problem with the pattern lock is you can almost always figure out the pattern based on the screen smudge left behind by it.
This could be overcome if the lock screen didn't show up the same way every time. Either larger / smaller scale or in a differnt orientation then the last previous time (sometime upside down and sometimes landscape). Then the smudges would overlap / confuse each other a little bit atleast.
If the e-mail account is a business account and is controlled by an IT group that isn't you, they're protecting their business. They don't want devices out there with no password and an open line to their systems. If you want your phone to sync with their e-mail account, then you have to accept their security requirements. I don't know why everyone thinks that they should be able to bypass an IT groups security requirements simply because they're inconvenienced by a passcode. A middle ground would be a passcode just to read that e-mail account, but I don't think any of the mobile devices offer such a feature. The simplest solution is still simply to not sync that e-mail account or check it as an IMAP account if you can.
Remove IT Security.
There is a way to get rid of this prompt but you will need a SQLDB editor like SQLite and Root explorer or something similar.
if you open up root explorer then go to DBDATA\DATABASES and then browse down to com.android.providers.settings then open settings.db
you will see a list of items, if you go under "system" then scroll 3/4 of the way down you will see the section for ITsecurity policy. [this is what the exchange services enforced on your phone.
if you change the section "devicelock_itpolicy_enabled" from a 1 to a 0 this will obviously disable this policy.
once the change is done you will need to restart your phone and you will notice upon the restart that it does not ask you for the password again.
problem with this is that its a remote policy however and the phone WILL be pushed this information again. [probably after only a day or two of use]
someone could probably write a MCR script to take care of this easily.
I've found the best way for me ot make the change is to copy the settings.db to another folder [like on my SD card] then make the change I need there.. and whenever there is a repush of the policy, I just overwrite the one settings.db with the other.
this is a temporary solution.. but it does get rid of the password policy.
another option maybe setting the timeout value listed below that.. some exchange policy will only check for the "password enabled" portion to be checked. but the default timeout maybe adjusted to something crazy..
default for my org is 40 minutes. [IE 2400 seconds] so adjusting it to 4000 minutes may just make me not worry about this value as much
l7777 said:
If the e-mail account is a business account and is controlled by an IT group that isn't you, they're protecting their business. They don't want devices out there with no password and an open line to their systems. If you want your phone to sync with their e-mail account, then you have to accept their security requirements. I don't know why everyone thinks that they should be able to bypass an IT groups security requirements simply because they're inconvenienced by a passcode. A middle ground would be a passcode just to read that e-mail account, but I don't think any of the mobile devices offer such a feature. The simplest solution is still simply to not sync that e-mail account or check it as an IMAP account if you can.
Click to expand...
Click to collapse
You are correct. They are protecting their interests and spend lots of money doing it.
Now, I did sense a bit of anger or frustration in your post. If so, calm down. These companies have every right to ensure that they deliver their info as securely as possible. Seeing as we do live in a free country, if somone decides they want to circumvent some established policies, then so be it. It'll be them that will have to suffer the consequences of their actions, not you. I for one am annoyed by those security features. Hence the absence of my company email from MY device.
If it bothers you, you do have the right to skip this thread and move on to the next one.
a_fuegon said:
You are correct. They are protecting their interests and spend lots of money doing it.
...
Click to expand...
Click to collapse
What is funny is the fact that requiring a 4-digit password at boot up does very little to keep unwanted eyes looking at email on a phone.
How often do thieves steal a powered-off phone... Plus it takes only seconds to hack through that anyway.
It's like gun laws: it only creates another hoop to jump through for the people playing by the rules.
joeybear23 said:
What is funny is the fact that requiring a 4-digit password at boot up does very little to keep unwanted eyes looking at email on a phone.
How often do thieves steal a powered-off phone... Plus it takes only seconds to hack through that anyway.
It's like gun laws: it only creates another hoop to jump through for the people playing by the rules.
Click to expand...
Click to collapse
I disagree - the idea here is to protect data for certain amount of time - it is a barrier, but not made to be foolproof.
Do you leave your house door unlocked? It takes seconds to smash a window or pry a door, so why lock it? You have an alarm? I can turn off the power and cut the phone line from outside - so i just easily circumvented this too. I can shoot or poison the dog, so that is not perfect either.
I like the PIN Lock, and I wish i could add one to my phone. If you lose your phone, you don't want people getting to your stuff before you can wipe it. The PIN does that it, gives you time.
And it is not that easy to bypass unless you keep your phone in USB Debug mode, and even then Android should prompt for the PIN before mounting drives or granting ADB access - if it doesn't then Android has a major security flaw.
The pattern lock is a joke - as mentioned, i can usually see someones pattern. That coupled with the idea, that although there are 9 starting points, the next point is only one of 3 adjacent points, and so on for the next. If it is really complex it becomes hard to remember - unlike numbers which can be many digits long and easy to remember.
I for one am happy to comply with a PIN lock - it keeps people i know from picking up my phone and rooting around.
alphadog00 said:
...
I for one am happy to comply with a PIN lock - it keeps people i know from picking up my phone and rooting around.
Click to expand...
Click to collapse
So you power down your phone after every use?
Because this PIN lock only comes up at boot up...
and the numbers are visible when you type them in.
a_fuegon said:
There have been quite a few discussions about this. Lockpicker seems to work but the developer states only for the HTC Sense.
Click to expand...
Click to collapse
Didn't work on my captivate, and as I understand it, it shouldn't work on any captivate because it changes Sense-specific settings.
I didn't really read through this thread, but if this is indeed a corporate exchange account, then there is no way around it.
joeybear23 said:
So you power down your phone after every use?
Because this PIN lock only comes up at boot up...
and the numbers are visible when you type them in.
Click to expand...
Click to collapse
On my Samsung Captivate it is requiring it everytime the screen goes blank. With HTC WM phone i was able to set this to 24 hours so it would only ask once a day or on power off then back on. If I could make it prompt just a little less I would be fine with it.
mreevimus said:
On my Samsung Captivate it is requiring it everytime the screen goes blank. With HTC WM phone i was able to set this to 24 hours so it would only ask once a day or on power off then back on. If I could make it prompt just a little less I would be fine with it.
Click to expand...
Click to collapse
Same here. Everytime the phone wakes is a big pain. I set my winmo phone for 2 hours.
I also work from a company that does this. Using the standard email app connection to exchange server, it requires the pin unlock when coming out of standby after a certain number of minutes. VERY annoying.
The best way around it will cost you $20. Using Touchdown, the pin unlock is in the app only. It will only prompt you for it when you actually use the app (again after a certain number of minutes).