{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
I recieved this Security Certificate for the AdFree company BigTinCan PTY, Ltd. while connecting to my Gmail account from my android tablet.
From a security standpoint this looks like a man-in-the-middle attack with a server hijacking the https session and putting its self between the end user and the gmail account in order to view a decrypted https stream.
My Setup:
Viewsonic Gtablet - GtabComb v2.0 bl1.1
OG-Droid - CyanogenMod 6.1.2
The Gtab was tethered to the OG-Droid using Barnacle when I recieved the certificate warning.
The tablet ROM and the phone ROM have "built-in" add blocking according to their devs.
***QUESTION***
Is there a reason BigTinCan PTY, Ltd. would be running a proxy between a user and https websites? (makes no sense to me!)
or
Is this something that may have been cooked into an 'evil' ROM that is snooping users's emails and information, either on my phone or on my tab? (this is the only thing that seems reasonable to me - as I have some security background)
or
Am I just trippin?
Any thoughts would be appreciated, thank you.
IS THIS POSSIBLY RELATED:
http://forum.xda-developers.com/showthread.php?p=11306796
POST#334
EDIT: Yes, it was related and the problem is solved. Sorry to bother, doh!
Related
I can't turn on facebook chat in settings, couse there's an error during set up. I use pdaimatejam 7.1 rom. Any ideas?
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
I would suggest asking about it on the forum thread for your ROM.
Error 500, assuming that's coming from either the Facebook or Windows Live servers, just means "internal server error" and is about as generic an error message as a webserver can give. Really the only thing it tells you is that either your request was so incorrectly formed that the server experienced an internal exception (or similar) while trying to process it, *or* the server is down for some unrelated reason.
In the second case, it should be back within hours, at worst. In the first case, I'd expect other people with your ROM to have the same problem. I haven't heard of any other cases of that problem, so check around.
Thank you for your answer. The key was the connection of live id and facebook account. I had to do this on my live settings and now it working.
H4nkMoody said:
Thank you for your answer. The key was the connection of live id and facebook account. I had to do this on my live settings and now it working.
Click to expand...
Click to collapse
i did it from the live website its still not working
Hello XDA members,
I'm here to ask for your help to get some feedback for the application introduced below.
Things that need to be tested, especially, is the security of the application as it stores sensitive data(emails, passwords, pins, etc.) and the server resources.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
[Link]: https://play.google.com/store/apps/details?id=com.lionsroyal.passwordreminder​
Password Reminder is an application targeting users that forget their passwords.
Some info about the app:
~Alpha stage, NOT secure enough for main usage!
~All data that user inputs (except the pin to unlonk the app) is synced to a cloud powered by Firebase.
~You can sign up/sign in with your google account or by creating a new account.
~From the side menu 'Settings' and 'Dashboard' are unavailable at this stage.
~There are no Offline Capabilities.
Things that need to be tested:
~Security!
~App Crashes & Bugs.
~Any other thing that may need to be tested and fixed.
Do not hesitate to contact for any questions you may have or for anything that matters.
Thank you in advance!
Thank you for the support and the feedback!
Hello,
I rooted my Samsung J3 2016 phone using an (unofficial) TWRP build and Magisk. I changed the ROM (resurrection remix), and installed Xposed. Then, I installed the JustTrustMe module. I started Charles on my computer (port 8888) and I connected my phone to it. I installed the Charles certificate at chls.pro and moved it to the system ones. After, I enabled SSL proxying for all the domains on Charles. And when I open a browser, the Google suggestions are showing up (when I type something, I see a lot of suggestions and the requests are successful in Charles). But when I click a suggestion, I get the following error:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
And the request is displayed like that on Charles:
Here is also a screenshot of suggestions (as you can see it works)
Does someone know what could the problem be? Thank you
I found something weird. My computer is connected to a wifi network (BOX-2). It has the local IP address 192.168.1.39. But when I go on Charles > Help > SSL Proxying > Install Charles Root Certificate on a Mobile Device, it shows the IP address 192.168.1.64....
Fixed - I used https://github.com/pengwei1024/JustTrustMe/releases/tag/V0.4 instead of https://github.com/Fuzion24/JustTrustMe/releases/tag/v.2... and it worked
I just rooted a Samsoung Galaxy J5 (2016).
Then used the GNU/GPL Tracker Control latest version from here
TrackerControl | F-Droid - Free and Open Source Android App Repository
TrackerControl allows to monitor and control hidden data collection in apps.
f-droid.org
(/!\ There is a fork around, that wants money to be able to see logs in the app. Take only this one above thats called "TC")
I made some basic debloating, getting rid of obvious google and vendor apps.
Set up the TC to get connection logs and then switched on the wifi.
Remember, I just switched on the wifi, did nothing else.
Some hours later I've got this connection logs.
Huge amount of unsollicited connections to all major big tech and others.
Have a look: (the vpn flag is normal as it works through a local proxy/vpn to catch connections)
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Trustful, right ?
No any of these connection was sollicited.
For your information...
Is there a way to bypass it? It's frustrating that I can't update my phone (S23Ultra). I don't have any wifi to connect to, I pay a premium for unlimited 5g so no worries of bandwidth limitations. I can download anything of any size, stream video all day, update all other apps, etc.. but why not the the phone's updates?
Also, is there any phone brand that I can buy/use in the USA that's a flagship like the S23 Ultra that won't block updating the phone over data?
Motorola does that too for OS upgrades. At least they allow security updates over mobile data.
So say "what-if" there was some security flaw that allowed hackers to gain access to your banking app and you get cleaned out and Samsung was the one who didn't allow you to update your phone to the latest updates by blocking the download over your data connection, would they be liable since they blocked you from updating your phone?
Wi-Fi connection is default with Android.
check the settings for updater I am pretty sure there is similar for samsung. maybe samsung user can tell you.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}