Password Protected Recovery - G1 Android Development

Is it possible to implement a password into recovery.img (like cyanogens or JF's) So that not just anyone could wipe the phone if they stole it.

Good question.

I only bring this up because I have had my phone stolen and it was locked so Im sure they wiped and also I am trying to make my phone as secure as possible for this next go-around I have already Moved my apps like "MobileDefense" and "Sim Checker" to "/system/app" Which makes them unable to be uninstalled by any thing other than a wipe. So I figure if the Recovery was locked It would completely solve my issue and I would be able to get my phone back no matter what unless it was broken.

i would like this, i am always parannoid that something bad is gonna happen like i lose my phone or someone steals it. this would mean a wipe would be impossible, and the only way to restart teh phone would be to pull the battery if you don't know the password.
the only issue would be that we would have to have a way to set the password which might be difficult to implement

tubaking182 said:
i would like this, i am always parannoid that something bad is gonna happen like i lose my phone or someone steals it. this would mean a wipe would be impossible, and the only way to restart teh phone would be to pull the battery if you don't know the password.
the only issue would be that we would have to have a way to set the password which might be difficult to implement
Click to expand...
Click to collapse
Yes it might be difficult. There could even be a list of preset passwords to choose from (as I doubt anyone from here will be stealing my phone) It would just make me feel better to have the added security.

This would be nice to have, but also just to give you something to think about, what if you forget that password? maybe they should also implement a master password as well, incase of lost or forgotten paswords.
Lost Password = Enter Master password.
which makes it harder to factory reset, but not impossible if forgotten password

insanedrunk said:
This would be nice to have, but also just to give you something to think about, what if you forget that password? maybe they should also implement a master password as well, incase of lost or forgotten paswords.
Lost Password = Enter Master password.
which makes it harder to factory reset, but not impossible if forgotten password
Click to expand...
Click to collapse
I would say dont for get it lol. But I do like your Idea about the master password.

nicholasbithell said:
Yes it might be difficult. There could even be a list of preset passwords to choose from (as I doubt anyone from here will be stealing my phone) It would just make me feel better to have the added security.
Click to expand...
Click to collapse
I like the idea about having a password but I don't agree with having preset passwords because all the perp has to do is go on here and find them out. Lol.

nicholasbithell said:
I would say dont for get it lol. But I do like your Idea about the master password.
Click to expand...
Click to collapse
Thanks, i had a phone that let me set two passwords before, incase i forgot one, i for sure knew the other one.

preset passwords is a bad idea and so is a master password. i guarantee you that if the person found a G1 or stole it they would run a google search and find XDA. xda is the #1 source for all HTC phones, i found an 8525 and when i needed to learn anything about that i got on google and searched for stuff. 9/10 times this site was the first result. i would think if we were to implement this then we would have to have a walkthrough for people to build their own recovery image and set their own password. this would be a little difficult but it seems to be the only way to do this.

tubaking182 said:
preset passwords is a bad idea and so is a master password. i guarantee you that if the person found a G1 or stole it they would run a google search and find XDA. xda is the #1 source for all HTC phones, i found an 8525 and when i needed to learn anything about that i got on google and searched for stuff. 9/10 times this site was the first result. i would think if we were to implement this then we would have to have a walkthrough for people to build their own recovery image and set their own password. this would be a little difficult but it seems to be the only way to do this.
Click to expand...
Click to collapse
I see your point, but i think i didnt explain myself correctly, the master password can be set by you (the enduser), sorry i misslead you guys.

tubaking182 said:
preset passwords is a bad idea and so is a master password. i guarantee you that if the person found a G1 or stole it they would run a google search and find XDA. xda is the #1 source for all HTC phones, i found an 8525 and when i needed to learn anything about that i got on google and searched for stuff. 9/10 times this site was the first result. i would think if we were to implement this then we would have to have a walkthrough for people to build their own recovery image and set their own password. this would be a little difficult but it seems to be the only way to do this.
Click to expand...
Click to collapse
I suppose that is the only way to go! I hope a Dev can help us out with this!

The problems I can see are that the recovery environment has no place to store files, it's read only. You'd have to build an image with the password hardcoded somewhere. The other issue is that if you have rooted your phone, you probably have installed an SPL that has fastboot, so getting into your device would be trivial.

cyanogen said:
The problems I can see are that the recovery environment has no place to store files, it's read only. You'd have to build an image with the password hardcoded somewhere. The other issue is that if you have rooted your phone, you probably have installed an SPL that has fastboot, so getting into your device would be trivial.
Click to expand...
Click to collapse
I understand but when you say "trivial" I assume you are referring to someone who has and idea of how to Hack the phone, But I assume that the person who steals it is not going to have the smarts to do all that without me first being able to track my phone. I just want alittle extra security.
The other part, the "Hardcoding" I do not really understand, I assume it means built in?

He means the password (or possible passwords) would have to be coded into the recovery.img that is on your phone. Meaning, either you would have to assemble it yourself, or the developers would set the password (or passwords, if given a choice) for you. Which would also mean that anyone would be able to search on here (or other sites) and find the possible choices for passwords for a given recovery image. Thus... security... fail..

daveid said:
He means the password (or possible passwords) would have to be coded into the recovery.img that is on your phone. Meaning, either you would have to assemble it yourself, or the developers would set the password (or passwords, if given a choice) for you. Which would also mean that anyone would be able to search on here (or other sites) and find the possible choices for passwords for a given recovery image. Thus... security... fail..
Click to expand...
Click to collapse
You *could* store it on the data partition, I guess. Would just have to mount it to check for a password file.

put pwd in the recovery partition is better~
we can have a defalut password then we can change it in recovery mode
with google latitude it will be awesome~~~

So... Cyanogen I think I hear donations coming your way for this one... haha jk
That is if your willing to try, Im not assuming you are going to.
But your recovery would be the one I would want it to be on.

i would donate on that

Can you use fastboot to actually get data from the device? I thought it's only there to flash images. I mainly am for the password in recovery to prevent someone from dumping my data to an SD card.

Related

Nandroid Backups For All....

Ive looked through the site and found nothing about this, so i was thinking last time i made a nandroid backup,Could we instead of flashing roms just restore each others nandroids thru recovery and list all the features of the backup and put them up in a post sort of like the rom wiki? Then EVERYONE could definately find a setup they liked....just a thought. I dont have someone else's phone to test it on. Or are the number names on the nandroid backup files system specific? Any answers or info would be greatly appreciated. I think this would be cool if it works because we'd have so many choices of setups if ppl put theirs up,and it would eliminate bootloop,time for flashing roms and any extra addons. Then you can continue adding to or removing from the restored nandroid backup if you wish, or you could just leave it.
this is how the moto droid guys flash their roms. seems like ours would work...
I too have been thinking about this...
Only Problem is that is stores /data
And that is your settings and passwords for any apps you have used or market sign in etc
Also of you had any paid apps you would also not have to have those installed or the other person would get them and that would be considered warez and just flat out suck for the Devs that make them
You would have to nandroid right when you flash the update before you setup any passwords.
Or you could remove the /data part but then more than likely it will FC on multiple apps
Just A Thought.....
I think if we put up a repository for ppl do upload their fav. setups with the following specific information:
1)Rom name and version
2)Kernel if changed
3)Apps and System apps might be alot but nice
that we could all benefit and see some of the things other ppl are doing with THEIR roms. It would give the ppl like me who get flash crazy rather quickly many more options. We could just label them starting with NAN RECOVERY#1, with all the details and then go from there....
you could skip the sign in the beginning and customize and upload, minus paid apps and stuff, that way your contacts and google log in wouldnt be stored. but yea it would work
edit: guess it wont work. haha
zippy-man said:
Only Problem is that is stores /data
And that is your settings and passwords for any apps you have used or market sign in etc
Also of you had any paid apps you would also not have to have those installed or the other person would get them and that would be considered warez and just flat out suck for the Devs that make them
You would have to nandroid right when you flash the update before you setup any passwords.
Or you could remove the /data part but then more than likely it will FC on multiple apps
Click to expand...
Click to collapse
i was just thinking the dev could make a nandroid before they sync anything... restore any warez
MagnusRagnarok said:
I think if we put up a repository for ppl do upload their fav. setups with the following specific information:
1)Rom name and version
2)Kernel if changed
3)Apps and System apps might be alot but nice
that we could all benefit and see some of the things other ppl are doing with THEIR roms. It would give the ppl like me who get flash crazy rather quickly many more options. We could just label them starting with NAN RECOVERY#1, with all the details and then go from there....
Click to expand...
Click to collapse
everytime i try to rename a nandroid backup i cant get the phone to restore it...
This won't work, I've tried it. Ask me how? Well two of my Hero's died on me but thankfully I was still in the 30 day warranty period both times. Anyways everytime I've tried to restore my old settings from my previous phone but it won't take because it's a different serial number. I managed to get around that but once you flash the rom and boot up the phone EVERYTHING force closes on you. Even if you DO NOT have passwords/logins etc... There is your answer go try for yourself if you would like but don't say I didn't tell you.
~Danny
dmc971989 said:
everytime i try to rename a nandroid backup i cant get the phone to restore it...
Click to expand...
Click to collapse
NO spaces. Make sure there's no spaces in your backup name, use dashes or underscores instead
Hmmm.....
zippy-man said:
Only Problem is that is stores /data
And that is your settings and passwords for any apps you have used or market sign in etc
Also of you had any paid apps you would also not have to have those installed or the other person would get them and that would be considered warez and just flat out suck for the Devs that make them
You would have to nandroid right when you flash the update before you setup any passwords.
Or you could remove the /data part but then more than likely it will FC on multiple apps
Click to expand...
Click to collapse
Thanks for the feedback,i did think this through way before posting. I would have become aware of those issues if i had someone else's device to test this theory.maybe if you want to upload you get your setup and set up your apps and then nandroid before you add your paid apps to your own setup. The benefit would still be the same, there are more good free apps that i use than paid anyway. So we would not be using warez and taking money from devs,and then just log into your own google account. That SHOULD work....
danimal_01 said:
This won't work, I've tried it. Ask me how? Well two of my Hero's died on me but thankfully I was still in the 30 day warranty period both times. Anyways everytime I've tried to restore my old settings from my previous phone but it won't take because it's a different serial number. I managed to get around that but once you flash the rom and boot up the phone EVERYTHING force closes on you. Even if you DO NOT have passwords/logins etc... There is your answer go try for yourself if you would like but don't say I didn't tell you.
~Danny
Click to expand...
Click to collapse
you couldnt rename it to the correct seriel number?
If I had another hero i wouldve tested BEFORE posting....
danimal_01 said:
This won't work, I've tried it. Ask me how? Well two of my Hero's died on me but thankfully I was still in the 30 day warranty period both times. Anyways everytime I've tried to restore my old settings from my previous phone but it won't take because it's a different serial number. I managed to get around that but once you flash the rom and boot up the phone EVERYTHING force closes on you. Even if you DO NOT have passwords/logins etc... There is your answer go try for yourself if you would like but don't say I didn't tell you.
~Danny
Click to expand...
Click to collapse
Date them with dashes and it will work, i do it every time to keep track. I still need another hero to test the serial number thing since you actually just named your backups the wrong way. So those results wont work. Because if you had named them the right way your results wouldve been different. Also we wouldnt change the exact backup name, we would title and then link to the file....thanks for reporting your experience
danimal_01 said:
This won't work, I've tried it. Ask me how? Well two of my Hero's died on me but thankfully I was still in the 30 day warranty period both times. Anyways everytime I've tried to restore my old settings from my previous phone but it won't take because it's a different serial number. I managed to get around that but once you flash the rom and boot up the phone EVERYTHING force closes on you. Even if you DO NOT have passwords/logins etc... There is your answer go try for yourself if you would like but don't say I didn't tell you.
~Danny
Click to expand...
Click to collapse
Danny, I too had to swap out my Hero and for the hell of it restored a Nandroid backup from my original phone. However, unlike your experience, I had no problems with force closes. The only thing that happened was that Gmail wouldn't send properly. I fixed that by wiping the Gmail cache. I don't think that issue is specific to restoring a Nandroid from a phone with a different serial number though as I've read others having the same problem on occasion. Also, assuming we'd be sharing backups that don't contain personal info on them, this Gmail issue would be unlikely to happen.
In any case, I like this idea. Perhaps we should be checking out how the Droid folks are doing this (as someone else pointed out). They might've worked out the kinks in this Nandroid sharing plan.
Any One Care To Help Me Test?
If anyone would care to help me test my idea,so to maybe get something going on the site for everyones benefit who like my idea and want to flash these backups, I will test someone elses if anyone is willing to send me one or a link to one;please leave the numbers unchanged for accuracy,or i can send someone one of mine becuase i have many from 1.5 and 2.1 with several different rom and theme setups that i would be willing to share to test out my idea. Anyone interested please just pm me...Thanks
MagnusRagnarok said:
If anyone would care to help me test my idea,so to maybe get something going on the site for everyones benefit who like my idea and want to flash these backups, I will test someone elses if anyone is willing to send me one or a link to one;please leave the numbers unchanged for accuracy,or i can send someone one of mine becuase i have many from 1.5 and 2.1 with several different rom and theme setups that i would be willing to share to test out my idea. Anyone interested please just pm me...Thanks
Click to expand...
Click to collapse
ill try it out (ill be reflashing in a bit anyways)... so if you want to send me a blank nandroid (no contacts,Gmail,etc) then ill give it a shot and report back
I'll test it. just pm me the link. but I already know it works
MagnusRagnarok said:
Thanks for the feedback,i did think this through way before posting. I would have become aware of those issues if i had someone else's device to test this theory.maybe if you want to upload you get your setup and set up your apps and then nandroid before you add your paid apps to your own setup. The benefit would still be the same, there are more good free apps that i use than paid anyway. So we would not be using warez and taking money from devs,and then just log into your own google account. That SHOULD work....
Click to expand...
Click to collapse
That would work and would kind of be cool if it did
But the only problem is that I don't think many people would actually do it.
Oh I forgot too if you want to download apps you gotta sign into the market first
zippy-man said:
Oh I forgot too if you want to download apps you gotta sign into the market first
Click to expand...
Click to collapse
Or you can pull the apps you use on your current ROM and push them back via ADB on the clean ROM. Kind of a hassle though.
ive done it, it works, just save the nandroid backup folder ie. BCDMRS-date-3463, inside the folder ie. /sdcard/nandroid/HT02yourphone/ with the rest of your backups.
then recovery, backup and restore, nand restore and select the backup u saved.
Thanks
phonetec said:
ive done it, it works, just save the nandroid backup folder ie. BCDMRS-date-3463, inside the folder ie. /sdcard/nandroid/HT02yourphone/ with the rest of your backups.
then recovery, backup and restore, nand restore and select the backup u saved.
Click to expand...
Click to collapse
You are awesome. Thanks for the info.

Help regarding SWTOR authenticator.

I tried backing up the swtor authenticator via titanium backup before flashing upgrade for rom..
After upgrade and restore of this app it seems the app crashes inside, deleting data is a no go, need this app restored to its fullest..
Any way it might be the secured partition for critical apps like this to be restored?
If so, how would i restore an older backup of that partition to a newer version.
I might add that im running virtuous 1.3.0 and want to upgrade to the 1.4.0.
Any help would be greatly appreciated.
Sent from my HTC Sensation using xda premium
Out of interest, why not just redownload/install the app after you have upgraded?
sromer said:
Out of interest, why not just redownload/install the app after you have upgraded?
Click to expand...
Click to collapse
Thanks for replying!
Well the thing is that the application is bound to my account on swtor.com and the data stored is neccesary for the application to authenticate correctly, as it contains randomly generated login codes for my account.
Reinstalling the application means i have to bind it to the account once again, and thats not possible if you already have, now the tricky part, if you want to deattach an authenticator you need to contact their customer support (EA), and that can take up to 7 days to get any kind of help.
Now i want to take the easy way of just backing up everything neccesary for the application so that i may upgrade roms without being afraid of loosing the account access..
I don't think you will have any choice but to call EA and get them some help, I have tried this with the Google and Blizzard 2 factor auth apps and I have had to redo it every time, normally though you have special codes you can use in cases like this, google will also send you a text as an alternate way of authenticating.
The same problem here... got new phone and can't use mobile security key on the new one :/
su27 said:
The same problem here... got new phone and can't use mobile security key on the new one :/
Click to expand...
Click to collapse
That's a security thing, if you could it would defeat the entire purpose of having it, download and install it fresh ans set it up again
Psychoticus said:
That's a security thing, if you could it would defeat the entire purpose of having it, download and install it fresh ans set it up again
Click to expand...
Click to collapse
Clearly you haven't worked with Blizzard's version of this concept. They set their app up to allow a special set of codes to be generated just for this purpose, so you could wipe a device, start over, install their app, plug in those codes, and you're golden.
I already went through this nonsense with this app and had to call support to have it removed from my account, at which point they inform you that you will no longer be able to use a security key with your account. This, my friends, is what you call a MAJOR FAIL.
If I had more time to play with it, I would have started searching around on the phone for additional files that might have accompanied the app. I definitely tried the Titanium thing, but to no avail. They have got to be using some sort of key file, like RSA or something, but without knowing the details we won't be able to backup and restore this thing.
My recommendation is this. If you have the time, patience, and ability to search and have an idea of what you are looking for, see if you can solve this problem yourself and share your findings with the community. Otherwise, call support, abandon the app, and give the mental middle-finger to EA for their fail.
dsp4774 said:
Clearly you haven't worked with Blizzard's version of this concept. They set their app up to allow a special set of codes to be generated just for this purpose, so you could wipe a device, start over, install their app, plug in those codes, and you're golden.
I already went through this nonsense with this app and had to call support to have it removed from my account, at which point they inform you that you will no longer be able to use a security key with your account. This, my friends, is what you call a MAJOR FAIL.
If I had more time to play with it, I would have started searching around on the phone for additional files that might have accompanied the app. I definitely tried the Titanium thing, but to no avail. They have got to be using some sort of key file, like RSA or something, but without knowing the details we won't be able to backup and restore this thing.
My recommendation is this. If you have the time, patience, and ability to search and have an idea of what you are looking for, see if you can solve this problem yourself and share your findings with the community. Otherwise, call support, abandon the app, and give the mental middle-finger to EA for their fail.
Click to expand...
Click to collapse
Interestingly enough the same company mad both blizzards and swtors security apps. Personally I wish I knew what I am looking for but I have been unable to find any additional file that will make it work.
Some other things to note is I saved the Serial number and Auth. Code that bioware gave me and after I learned that titanium backup would not work I pulled out my galaxy tab 10.1 and installed the app and reused the info to no avail.
Any help with this would be much appreciated! Thanks!
I read multiple threads at swtor.com and at the moment the only possibility is removing the sercurity key via the phone-customer-support.
So, no news on this front.
Does someone have news regarding this problem? Do we still have to call customer support?
voodoo13 said:
Does someone have news regarding this problem? Do we still have to call customer support?
Click to expand...
Click to collapse
For WoW when I had an issue, Flashed a ROM without realising the world of pain I'd entered. I had to go through Customer Support, they even wanted a photo document (driving License or Passport). Eventually it got removed.
After that I ran the authenticator on my older Android phone.
Your best bet is to nandroid restore to the original, de-link the authenticator, then install the new ROM and authenticator. Then re-link the new authenticator codes.
Eventually I gave up and just removed the authenticator from WoW, life is too short already.
gol_n_dal said:
Your best bet is to nandroid restore to the original, de-link the authenticator, then install the new ROM and authenticator. Then re-link the new authenticator codes.
Click to expand...
Click to collapse
That's the problem, with SWTOR's Security Key you CAN NOT add a new "digitial security key" once you've already had one attached. Their current solution is for you to buy a physical key, once they remove the digital one.
Yesterday i switch to another ROM, and when i reinstall SWTOR Security Key, it asked me for a serial number and activation code. I tried to restore app with Titanium Backup and other similar apps with no luck. Then i opened a ticket to swtor support team, and they respond me that i need to call customer support. After a 12 min conversation, and asking at 2 security questions they remove security key from my account.
After that, in my account i still have the option to attach a security key again. But i will attach it only when they will add a option to remove that security key from account manager.
gol_n_dal said:
For WoW when I had an issue, Flashed a ROM without realising the world of pain I'd entered. I had to go through Customer Support, they even wanted a photo document (driving License or Passport). Eventually it got removed.
After that I ran the authenticator on my older Android phone.
Your best bet is to nandroid restore to the original, de-link the authenticator, then install the new ROM and authenticator. Then re-link the new authenticator codes.
Eventually I gave up and just removed the authenticator from WoW, life is too short already.
Click to expand...
Click to collapse
If you flash roms often you should invest in mauth in the market its like 3$ I think but it lets you back up you wow auth. online and restore it to any android device. also I think you can backup the blizzard one with titanium back up and it will still work.
Delance; on swtor forum said:
before u upgrade, run the Restore feature in the app, you'll get a serial number and a restore code.
Write that down.
Then, when u get the new phone, you can use the restore feature again, enter in the serial # and restore code, and it will work for your account again.
Click to expand...
Click to collapse
solved by this great guy
discussion on SWTOR forum
Viridis Draco said:
solved by this great guy
Click to expand...
Click to collapse
I cannot find the restore feature. I went through every menu and sub-menu and still have not found it. Where is it located? Thanks
kns said:
I cannot find the restore feature. I went through every menu and sub-menu and still have not found it. Where is it located? Thanks
Click to expand...
Click to collapse
after activate it i have the same "issue", i'm investigating
Viridis Draco said:
solved by this great guy
discussion on SWTOR forum
Click to expand...
Click to collapse
There is no solution at that link. Read to the end--there is simply no "restore" feature associated with this app, and the current and only way to handle a ROM switch is to call Customer Support and have them remove it from the account...every single time. If there is something to back up, it's probably an encrypted file that cannot simply be restored, especially if the thing truly is secure. That's the whole point of an authenticator--security.
I just ran into this issue. I'm about to have to call Customer Support to remove it. I'm replying to say that after this B.S. I'm going to get the physical key. I was being cheap, but I preferred the physical key for WoW anyway, due to not having to find my phone, hope it wasn't dead, and deal with the constant crashes on the SWTOR android app. So basically, unlink the key, then buy a physical one if you want a security key still.
Removed!
In this link, if you already log-in, you can remove all security keys:
https://account.swtor.com/user/security-key

Android Rom and Banking Fraud?

Hello to all,
first of all forgive me if i am in the wrong forum. Second I am not an authority with ROMs and developing. I can flash a new ROM and follow guidance easily but that's it. Up to that.
I will tell you my scary experience with a specific rom which i installed a couple of days ago on my S3. First off all this post is not suppose to be rude to anyone or anything. I am telling you my story and I would appreciate your input as you are the experts.
3 days ago I installed the MIUI (http://miuiandroid.com/community) ROM on my S3.
As soon as I turned the phone on to run it for the first time I went to the typical set ups but then I noticed something.
On he top right corner of the status bar the a green phone icon appeared meaning that the phone was automatically set on "Call-diverting" .I dint pay any attention for about 30 mins as I was setting up the phone.
When I decided to see what the icon does to my sock and horror I realised that my phone was pre setted to call diverting automatically to a specific mobile number in the UK.
I quickly disabled the call diverting and dint think anything more. All of that happened around 12:30 in the afternoon (pay real attention to the times here).
about 10 minutes later I was at the office. around 2 hours after that I got a text message from my Bank to call them about a suspicious money transfer.
I called the bank and the told me that a few minutes earlier someone attempted to transfer 2000 pounds from my account. Of course my on-line banking was frozen and I was lucky not to loose the money.
Now, during these two hours my phone never rang just the text message from my bank. The bank security employee told me that it looked suspicious to them because whoever was trying to transfer the money asked for the 4 digit number via the automated bank security system to be diverted to another mobile number. The bank advised me to call my mobile carrier as I did.
The mobile carrier , when i talked to him, confirmed that someone called them and accessed my account by giving them all the right info, and requested that every time my phone was out of coverage all calls to be directed to another mobile!
have you guess what was the other mobile?? It was exactly the same mobile number as the pre-set on the ROM which I had installed 3 hours earlier!
And my bank confirmed that the same mobile was used in order to get the 4 digit pin.
I was shocked to say the least!!
When after a few minutes I managed to talk to my girlfriend , she told me that she was calling me earlier for about an hour. These phone calls never made it to my phone. As the phone was pre-setted to call diverting it was ringing to the diverted phone and not mine.
It is obvious that as I do mobile on-line banking and I access my accounts from my mobile (as many do), somehow they managed to get all the information about me and I am suspecting dodgy applications on my phone. I hope I am wrong but this experience has really shocked me.
I love android phones I love what you developers do but I am after you opinion in this one.
I am not here to offend any developers but to have a genuine answer and a sensible discussion about this issue. I am not a kid I am professional and this experience has really made me think twice about smart phones.
nice.! install only trusted ROMs with a lot of feed back
Sent from my GT-I9100 using Tapatalk 2
jowett69 said:
nice.! install only trusted ROMs with a lot of feed back
Click to expand...
Click to collapse
the miui-rom made by miuiandroid.com is a "trusted rom with a lot of feedback" and has a long history and a community with over 50.000 members.
mtdgr said:
I am suspecting dodgy applications on my phone.
Click to expand...
Click to collapse
i think you're right, it wasn't the rom but some malware-/spyware-app.
assuming your phone was rooted, it would be easy for an app to do all kind of bad stuff once it got root-privileges, eg hiding on your sdcard and spying your data and after that establishing the call-divert to catch the 4digit-pin and the rest would be history.
only thing you could do is think what questionable apps with root privileges you installed in the last days before this happened, try to get a copy of it and have a closer look on it, maybe installing it without a simcard inserted or with a simcard without charge on it, to see what happens...
a big piece of luck would be some kind of log from about 1230h to see what established the call-divert, but if i would do such app i would ensure to delete all logs with traces afterwards, but who knows?
though, all of that are just the ideas that came to my mind as i read your post...
good luck for the investigation, would be interesting to know if you could get any information about what happened, so keep us updated, ok?
greetz,
sUsH
It would be difficult for me to know which custom ROM is safe and which one is not! I am not an expert you see. And the same goes with apps. I don't think anyone can state with certainty that any are safe.
It is just shocking to know how easy it is for your details to "escape" !
I will keep you informed about how this goes.
jowett69 If you can tell me how to get that log you are talking about, that would be great.
In the meantime can anyone advise on a descent mobile data protection application? something which will prevent any sensitive data from leaking from my phone? Payware or freeware I don't mind.
some ideas
mtdgr said:
It would be difficult for me to know which custom ROM is safe and which one is not! I am not an expert you see. And the same goes with apps. I don't think anyone can state with certainty that any are safe.
It is just shocking to know how easy it is for your details to "escape" !
I will keep you informed about how this goes.
jowett69 If you can tell me how to get that log you are talking about, that would be great.
In the meantime can anyone advise on a descent mobile data protection application? something which will prevent any sensitive data from leaking from my phone? Payware or freeware I don't mind.
Click to expand...
Click to collapse
A start might be to check the Superuser app and click on Log and see what apps received su permissions.
Also, from a cmd prompt you can enumerate all the running processes by running:
Code:
adb shell "busybox ps -A > /mnt/sdcard/process.log"
adb pull /mnt/sdcard/process.log
View process.log for anything suspicious, or post it up and I'll have a look.
fluxist
fluxist said:
A start might be to check the Superuser app and click on Log and see what apps received su permissions.
Also, from a cmd prompt you can enumerate all the running processes by running:
Code:
adb shell "busybox ps -A > /mnt/sdcard/process.log"
adb pull /mnt/sdcard/process.log
View process.log for anything suspicious, or post it up and I'll have a look.
fluxist
Click to expand...
Click to collapse
I don't think I could do that my friend. As soon as I suspected that something with that ROM was wrong I performed a full wipe and installed omega 9.1 rom.
My question is this. By performing a full wipe should really erase any malware from the previous installation right? Can anyone advise on a descent antivirus/firewall application which will help me (and others like me) monitor and "block" unusual application behavior?
oh and one more question for my information...sensitive personal data can only be leaked when the device is rooted ? if it is not rooted am I safe?
mtdgr said:
I don't think I could do that my friend. As soon as I suspected that something with that ROM was wrong I performed a full wipe and installed omega 9.1 rom.
My question is this. By performing a full wipe should really erase any malware from the previous installation right? Can anyone advise on a descent antivirus/firewall application which will help me (and others like me) monitor and "block" unusual application behavior?
Click to expand...
Click to collapse
did you wipe your internal and external sdcards too? how did you wipe? cause it depends where the malware was hiding, if it is erased now or not.
a simple, yet powerful firewall is droidwall. you can find it in the market. put it in whitelist-mode and allow only the stuff you know. but droidwall controlls "only" internet-connections (wifi and 3g or such). for full controll over every permission of every app and connection of your phone you sohuld use pdroid, but i don't know if that's really necessary, though i understand your fear. but if someone really wants to harm you and has some knowledge, there are always ways, i think...
mtdgr said:
oh and one more question for my information...sensitive personal data can only be leaked when the device is rooted ? if it is not rooted am I safe?
Click to expand...
Click to collapse
not really, think of those apps you can use to root your device. think a bit further and one could make an app that roots your device and afterwards does the stuff it wants. but seriously, though it is possible, who would do that to you? that's what you should think about...
greetz,
sUsH
ps: cause you did a wipe, there's no possibilty of going through some logs, sry. (though this too depends on the way you wiped and what exactly you wiped...)
I did a full wipe to install the new rom...wipe cache data ...devlink and one more but cant remember it
Sent from my GT-I9300 using xda app-developers app
mtdgr said:
I did a full wipe to install the new rom...wipe cache data ...devlink and one more but cant remember it
Sent from my GT-I9300 using xda app-developers app
Click to expand...
Click to collapse
sry, then your try to get rid of the problem also got rid of possible evidence. just try to forget it and be more careful in future with suspicious apps from questionable sources and similar.
greetz,
sUsH

SMT-700.. Galxy Tab S 8.4... forgoten the password on user. dont want to loose data.

One day i was just opening my tablet and saw that my fingerprint got vanished and its asking me the alternative passwords. I remembered the one on the owner account and opened it and then I changed it to swipe and back to fingerprint... My account was alright then.. it had the fingerprint back in not time. BUT the standard user.. the other one.. i dont remember its password. Ive tried so many, those which i just thought of but did not put them ever in anything.. but it was no use.. if there is one password left, ITS THE ONE BUT I DONT REMEMBER IT.. that account has the most data in it so i cant afford to loose any data.. i wanted to know that if there is some way of removing passwords from the whole Android Device? Or Changing Passwords? Or Administrators for changing the passwords... anything i just want it back... another thing is that after the 5 unsuccessful tries.. it does not say unlock via google maybe because it is standard user... Please tell me how to do it Step-by-Step... please... ull be a lifesaver!
READ ALL OF IT PLEASE.. MAIN THING IN THE END. STEP BY STEP WORK NEEDED... SERIOUS PROBLEM.. MAY SEE THE ATTACHED PHOTO!
Hi, thank you for using XDA Assist. There is a reason you use passwords and that's if someone doesn't know the password they can't get to the data. The only way to reset the password is to wipe the device and lose data. There is a dedicated forum for your device here, http://forum.xda-developers.com/galaxy-tab-s They are the experts on your device and the best place to get your questions answered.

Every time I install a new rom or do a factory reset it looks like I've been hacked

As the title say time I install a new rom or do a factory reset it looks like I've been hacked. As soon as I register and connect my phone to the internet google security activity shows that my phone has been connected from Irland or Germany although I'm connecting from Sweden. How can this be explained if I'm not being hacked? I take all the security measures, changing password etc... But yet this problem doesn't go away. Does this happen to anyone else?
give us more detail
did happen only with one device or more? what do u use for root, wich rom, custom recovery do u install? wich kind of gapps do u use? it happen just when u install the rom/recovery, or when u set up the gapps?
the foreign connection message is inside the gmail account? do u see foreign ip address logged when u are not logged or just foreign ip when u are logged? (this question is because maybe something use a vpn)
I use Viperone rom, but it does't matter what rom I use. As soon as i logg in to my google account it happens, on the google security activity where I can see my devices, it shows that I logged in from Irland or Germany, and after that it goes back to show that I logged in from Sweden. So far I noticed that it only happens on my phone, but in the past it use to happen on my PC too, and it does not show the ip address, it only shows the name of the country. This is how it looks like: http://imgur.com/2A9ZBJy Tyskland is Germany in Swedish and it's not supposed to be there with Irland.
Keomas said:
I use Viperone rom, but it does't matter what rom I use. As soon as i logg in to my google account it happens, on the google security activity where I can see my devices, it shows that I logged in from Irland or Germany, and after that it goes back to show that I logged in from Sweden. So far I noticed that it only happens on my phone, but in the past it use to happen on my PC too, and it does not show the ip address, it only shows the name of the country. This is how it looks like: http://imgur.com/2A9ZBJy Tyskland is Germany in Swedish and it's not supposed to be there with Irland.
Click to expand...
Click to collapse
when u install rom and configure gapps r u using your wifi? because is strange it happens also with your pc, maybe the problem is in your LAN, it happens just after the gapps setup after a fresh install or also later?
do u ose official gapps (and where is the source) or do u use other kind of gapps?
The roms that I use has allready Google apps installed. This time it happened right after I logged in to my phone. In the past it happened a day later.
It's possible that the new rom had it's location history set to those locations.. And Google apps like a good little app is telling where your are...
But it's wrong until it gets a proper location update.
nutpants said:
It's possible that the new rom had it's location history set to those locations.. And Google apps like a good little app is telling where your are...
But it's wrong until it gets a proper location update.
Click to expand...
Click to collapse
No. This happens when i change the password. I changed the password before i installed the new rom.
Google
Yeah sure.google needs update location.
sichuv11 said:
Yeah sure.google needs update location.
Click to expand...
Click to collapse
Nope. I'm definitely being hacked. Everything points towards it. I change my password I format my PC I install the original android to my phone, same **** happens. It was not like this before.
There is a trojan that can not be found by virus, malware and trojan software. This bastard got me. I think it could be the government.
Now it looks like this,I got USA instead of Germay http://imgur.com/uYDxZ1j Am i being hacked or not? 6th februari is the day i changed my password, compare it with the first picture i posted.
make 2 new google account with your pc
wipe your phone and install a rom, than configure it with one new account
use it for a day
than with your pc go in both account and see if are both comprimised or not
Let's assume the worst thing, that I am being hacked. How can I stop this from happening? I already changed password (I'm doing that from time to time), I use 2 step verification and sms verification when I login to my Gmail and I got virus, malware and firewall softwares, what else can I do? How am I being hacked?
Keomas said:
Let's assume the worst thing, that I am being hacked. How can I stop this from happening? I already changed password (I'm doing that from time to time), I use 2 step verification and sms verification when I login to my Gmail and I got virus, malware and firewall softwares, what else can I do? How am I being hacked?
Click to expand...
Click to collapse
if u want help you should try to do what we say and report it
niubboxp said:
if u want help you should try to do what we say and report it
Click to expand...
Click to collapse
Your just asking questions, I don't think you have answers.
Keomas said:
Your just asking questions, I don't think you have answers.
Click to expand...
Click to collapse
and you will never know
niubboxp said:
and you will never know
Click to expand...
Click to collapse
Maybe not on this forum, but there are other forums.
What rom are you using? Where did you get it?
What email app are you using?
Who is your internet provider for your device?
All of these can be factors in you being hacked...
Your rom could have a Trojan on it.
Your email could be not properly storing your password.
(Your not using the factory email app that uses the account your signed info your phone with are you? Please say no)
Is your internet provider known for making a federal case out of every request for information or do they give it out to anyone with a badge?
More information is needed before you can be helped.
First off change roms...
If you are using a oem rom get a custom rom from a popular developer.
Then change email providers
(Unless you are taking Google)
Then dump the two factor crap
Get a third party open source email app or use tor to sign in by web mail.
Change and set your password from a cafe or hotel Wi-Fi that is nowhere where you usually go.
Then see if you think you are being hacked..
If so trash the phone
Get a new one with cash..
Root it secure it
Try again
And if that still looks bad..
User paper and one time pads for encryption and safe drop points.

Categories

Resources