Database Info

Cheesecake from computer

I've seen people talk about this and the general consensus is that it is not possible, but Iwas wondering what would be involved in possibly getting it to work. I know a lot of people (including myself) are not checking cheesecake as much as they should be to find leaks, but it would be much faster and easier if we could do it automatically from a computer. Does anyone have any idea on how to get this to work?

I'm not aware of the full process of how the phone gets information about an update, although it sounds possible although pretty hard.
But you're right; it would be really nice if we could get something like that to work. I think the first step would be to make an Android application that automatically goes through all the servers, checks for an update, and downloads it to the sdcard using its own methods. If that can be accomplished then it would be relatively easy to make a java application that does the same thing... another plus to this would be that we could check multiple times on the same server, acting like a different firmware each time.
Someone please correct me if I'm talking nonsense

It is not possible, unless you can figure out how to tell the servers that you are an atrix2 and send the proper code, and the imei and serial of your phone to the servers in question.
That is how they tell what upgrade you get, remember cheesecake works on ANY Moto phone, and the way the servers can tell which upgrade files to send you, is based on the information above, there is a little java script on the server applet, that checks that, and cheesecake, was a conduit to allow that to access that data on the phone, while making the proper connection to the serve-let that was requested.
This has been attempted many times without success.
You can use and android scheduler, an automaton app in android to do all the work for you, and then send you an e-mail if it finds something. I use the automaton app called tasker from the market.
Tasker:
https://play.google.com/store/apps/details?id=net.dinglisch.android.taskerm&hl=en

jimbridgman said:
It is not possible, unless you can figure out how to tell the servers that you are an atrix2 and send the proper code, and the imei and serial of your phone to the servers in question.
That is how they tell what upgrade you get, remember cheesecake works on ANY Moto phone, and the way the servers can tell which upgrade files to send you, is based on the information above, there is a little java script on the server applet, that checks that, and cheesecake, was a conduit to allow that to access that data on the phone, while making the proper connection to the serve-let that was requested.
This has been attempted many times without success.
You can use and android scheduler, an automaton app in android to do all the work for you, and then send you an e-mail if it finds something. I use the automaton app called tasker from the market.
Tasker:
https://play.google.com/store/apps/details?id=net.dinglisch.android.taskerm&hl=en
Click to expand...
Click to collapse
Thanks for the info jim . Sad to hear it. Are you sure that the only data sent to the servers is the IMEI and serial of the phone? When I updated some of the international firmwares, I just flashed the firmware and choose to download the update like I would normally :\.
But you're saying that it's theoretically possible to do it if you can send the correct data to the servers? Do you think it would be hard for a user to type in all the data unique to his/her A2?

jimbridgman said:
It is not possible, unless you can figure out how to tell the servers that you are an atrix2 and send the proper code, and the imei and serial of your phone to the servers in question.
That is how they tell what upgrade you get, remember cheesecake works on ANY Moto phone, and the way the servers can tell which upgrade files to send you, is based on the information above, there is a little java script on the server applet, that checks that, and cheesecake, was a conduit to allow that to access that data on the phone, while making the proper connection to the serve-let that was requested.
This has been attempted many times without success.
You can use and android scheduler, an automaton app in android to do all the work for you, and then send you an e-mail if it finds something. I use the automaton app called tasker from the market.
Tasker:
https://play.google.com/store/apps/details?id=net.dinglisch.android.taskerm&hl=en
Click to expand...
Click to collapse
I love tasker. great idea there. never would have thought of that one.
Sent from my MB865 using XDA

cogeary said:
Thanks for the info jim . Sad to hear it. Are you sure that the only data sent to the servers is the IMEI and serial of the phone? When I updated some of the international firmwares, I just flashed the firmware and choose to download the update like I would normally :\.
But you're saying that it's theoretically possible to do it if you can send the correct data to the servers? Do you think it would be hard for a user to type in all the data unique to his/her A2?
Click to expand...
Click to collapse
You would have to have an app that can accept data from adb, and have your phone connected.... otherwise it would not be something I would recommend for the everyday user.
Again with the international firmware, you still sent your imei and serial to verify to the server applet that you were on an atrix2. It does not care what region your phone is technically from, just a certain part of the serial and imei.

I thought this thread was about cake seriously
Sent from my SAMSUNG-SGH-T989 using XDA

jimbridgman said:
You would have to have an app that can accept data from adb, and have your phone connected.... otherwise it would not be something I would recommend for the everyday user.
Again with the international firmware, you still sent your imei and serial to verify to the server applet that you were on an atrix2. It does not care what region your phone is technically from, just a certain part of the serial and imei.
Click to expand...
Click to collapse
Yes I agree that it really isn't for the everyday user... and it might be too much of a hassle to make an app like that anyway. What exactly is in a phone's "serial?" Does it change depending on the ROM a phone is on?
Lol sorry for being slow . Hopefully we won't be relying as heavily on cheesecake soon

Most secure Android ROM

Dear XDA users,
I am looking to find a really secure rom. I dont want to run OEM corrupted roms which do gods knows what. I have googled for a good bit and I have found some areas which are interesting from a security perspective. However, there does not seem to be a holy grail when it comes to a secure rom at the moment. Paranoid Rom sounded oh so promising but has no additional security related features. Cyanogenmod is a nice custom rom with root disabled by default, which is a great improvement and makes it interesting as a secured non-OEM rom. You also have the NSA developed SE Android rom which you need to compile yourself but comes with a great list of additional features.
Can anyone recommend me a rom which is build to be secure?
Also lets have a discussion on features which you would like to have in a secure rom:
Hidden-TrueCrypt partition on SD card.
Fully encrypted memory
Password protected recovery
Tor network enabler with apps for the various anon services on onion networks (such as torchat, onionmail, etc.)
Location scrambler
Strict firewall with easy enable/disable mode
Remote lock-down

First question. Why?! Are you a spy or something?! There's nothing wrong with standard ROMs. There are antitheft apps available that can remote wipe the entire device including SD card if its ever lost or stolen. I can't think of any reason why you need that level of security on your device.

I believe a truecrypt partition can be mounted on the SDcard. As far as hiding it goes, I'm not sure.
As far as password protecting recovery, there's no tweak/hack for it. I understand the security concern with someone meddling with your phone and flashing a rom but it's called 'recovery' for a reason.
I believe tor is available for Android.
You can spoof your location with several apps. Wouldn't hurt to google it.
Cerberus can remotely lock-down your phone, retrieve contacts/call logs from a sim, etc...
Try compiling your own rom and cater it to your needs.

Whoa, why would you need that much security? I do suggest creation of your own Rom as mentioned this way all you're security needs can be met.
Sent from my Sensation Z710e using xda premium

privacy
Thanks for all the replies. I am not a spy rather i just want to be secure. I just don't like the idea of my information being used for reasons i do not choice it to be used for. I don't want my carrier to see which websites i visit on my phone, which locations i visit, which people i contact. I just want my carrier to provide me access to the net and ensure that i am available for calls.
Currently i run ARHD with the following options/apps:
sim card password protected (3 login chances)
memory and SD card password protected (8 login chances)
TOR network connection
Orweb
I would like to have a password protected recovery, truecrypt based security (with hidden partition if possible), root disabled, firewall, full GPS enable disable, spoofing options, and more cool stuff. I don't think i would like to compile my own roms. If someone wants to jump on this and help me create a hardened android ROM it would be awesome.

My name is Bond. James Bond.
To answer your question no you cannot have that kinda ROM here. Root disabled?? pretty much every ROM here has it enabled. GPS can be disabled with one click. I'd suggest SIM lock through phones security settings, face lock for apps pro from the market and a nice cold beer to make you less paranoid. No offence but not even presidents want that much security.. Its a phone..

hjfkuiper said:
I would like to have a password protected recovery, truecrypt based security (with hidden partition if possible), root disabled, firewall, full GPS enable disable, spoofing options, and more cool stuff. I don't think i would like to compile my own roms. If someone wants to jump on this and help me create a hardened android ROM it would be awesome.
Click to expand...
Click to collapse
Your network provider is never going to know you use recovery or that you can gain access to your system partitions. They're not going to know you use root apps or that you have root access either. firewall you can obtain via the avast antivirus app in the market.
And I don't think you'll ever be able to cover your tracks when it comes to hiding who you call and text. The network company holds records of all calls and texts for billing purposes and only relase these in case of police investigations, with your permission. You can turn off your GPS, but you can still be located using the cell towers, which you need for reception, so you can't hide yourself completely. If you want internet access with out this just use wifi with a vpn or other such ip hider/rerouter and remove the sim card all together.
There is genuinely no need for this level of security on your phone. Like I said in my last post, if your phone is lost or stolen, you can always remote wipe your device so no one will know what you had on it, it'll just be a shiny brick.

hjfkuiper said:
Thanks for all the replies. I am not a spy rather i just want to be secure. I just don't like the idea of my information being used for reasons i do not choice it to be used for. I don't want my carrier to see which websites i visit on my phone, which locations i visit, which people i contact. I just want my carrier to provide me access to the net and ensure that i am available for calls.
Currently i run ARHD with the following options/apps:
sim card password protected (3 login chances)
memory and SD card password protected (8 login chances)
TOR network connection
Orweb
I would like to have a password protected recovery, truecrypt based security (with hidden partition if possible), root disabled, firewall, full GPS enable disable, spoofing options, and more cool stuff. I don't think i would like to compile my own roms. If someone wants to jump on this and help me create a hardened android ROM it would be awesome.
Click to expand...
Click to collapse
what you seem to be talking about is Carrier IQ? that was disabled last year in an earlyish htc sense RUU leak and has not appeared since.
Sent from my YP-G50 using xda premium

Jonny said:
what you seem to be talking about is Carrier IQ? that was disabled last year in an earlyish htc sense RUU leak and has not appeared since.
Sent from my YP-G50 using xda premium
Click to expand...
Click to collapse
And Carrier IQ is not in any custom roms, and even if it was it can be easily deleted.
Cyanogen most certainly does NOT have root access disabled by default. Half the features on it wouldnt work without root access.
If you really need that kind of security the best answer is to not do whatever you need that kind of security for on your phone. Use another device.
Also, invest in a high quality tin foil hat.
Sent from my HTC Sensation using xda app-developers app

Hi,
First, not even 1% care about security and privacy in thiers phones. People just having fun not knowing what data is being leaked from thier phones.
I know what you mean, if you want to have secure ROM, use CyanogenMod and patch it with autopatcher - PDroid2.0, then block almost all permission to all apps (including system) and this will give you the best privacy. Also don't use gaps and remove bluetooth if you don't use it.
Use K-Mail with APG to encrypt your emails, use Ostel to make anonymous calls, use Tor as a browser.
I think CyanogenMod9 for Sensation has already Pdroid patch merged. I suggest it over CM10 as is more stable and faster.
Below are links that may be useful for you.
PDROID:
http://forum.xda-developers.com/showthread.php?t=1923576
Autopatcher:
http://forum.xda-developers.com/showthread.php?t=1719408
Guardian Project:
http://forum.xda-developers.com/showthread.php?t=1840929
Hardening Android Guide
http://forum.xda-developers.com/showthread.php?t=1954513
Have fun
THE_GENIUS

Any simple system app can access your ALL data. Yes, without any permission.
Sent from my GT-I9000 using xda app-developers app

burakgon said:
Any simple system app can access your ALL data. Yes, without any permission.
Sent from my GT-I9000 using xda app-developers app
Click to expand...
Click to collapse
Dun Dun Duuuuuuuuunnnnnnnnnnnn!! (sorry, couldnt resist ) :silly:

burakgon said:
Any simple system app can access your ALL data. Yes, without any permission.
Sent from my GT-I9000 using xda app-developers app
Click to expand...
Click to collapse
Without DroidWall - yes, anything can leak, but with - no chance.

Thank you! This is the only helpful reply in a thread full of morons.

I'm in the same boat
I would like something similar. I know we have remote wipe, etc. However I would like to know that if I loose my device, the only thing I am loosing would be the device. Currently I am using ARHD 50.0. I can not get the local storage to encrypt. The Micro SD however can be encyrpted. So I am working to try and install all the apps I need, then move them to the microSD and force them to write data there instead of the default location.
It is a bit strange that this seems to not work well at all.

Android is rather secure. Every non-system runs in its own sandbox.
Follow these steps to get you phone really secure:
1. Encrypt internal storage as well as sdcard.
2. Go S-ON. Relock your device.
3. Remove custom recovery after ROM installation. Otherwise encryption can be broken. Especially if you're scared of NSA.
4. Use superuser to remove all apps you don't need, then disable superuser.
5. Disable ADB. Both USB and wireless.
Any "trusted" ROM capable of this is secure.
Happy to help.

Far_SighT said:
1. Encrypt internal storage as well as sdcard.
Click to expand...
Click to collapse
Hi!
I'm interested in encrypting sdcard. Do you have a hint how to achieve this with the HTC Sensation?
Thanks!

imma gonna get ma tinfoil hat

bastei said:
Hi!
I'm interested in encrypting sdcard. Do you have a hint how to achieve this with the HTC Sensation?
Thanks!
Click to expand...
Click to collapse
You need to use a ROM that supports it. I use ViperS 5.1.0 (Vipers 4 also supports this).
Not that because SD card encryption, other cards that you put into your phone will be read only until you decrypt external storage

Hi guys & girls,
I have a Desire HD, not a sensation smartphone, however maybe I can add helpful Info here.
I am just exploring the activity on all smartphones, so I can discover which devices have the most developers, people and support now =D
Which Smartphones have the most Developers and Users now, by the way? Thanks
Well, the Best Secure Rom, I think is only the Guardian Rom.
That Rom is develloped just with the propose to be most secure, emphatize on just security as a priority, after all the NSA & government & Intelligency Agencies Surveillance.
Era Post-Edward Snowden =D
I think the name of the great Developer is "x942".
The problem is, He is just one Develloper working on that, so not so fast developing and very few devices are supported.
(I think only Galaxy Nexus, Nexus 4 and Galaxy S2, not certain)
He has other security projects also, like "Secdroid" and his hardened kernel.
Second to "Guardian ROM" maybe:
BlackPhone
(But i think for while not so worth because all software and apps is just 3rd party apps opensource that we can install too on our smartphone. And not worth spend 600 euros/dollars i think. But is very good and opensource hardware).
CryptoPhone is a security project on Germany/EU too, based on era Post-Snowden.
But just a smartphone based on Galaxy S2 with software we can install by our methods too =)
I think the best and most secure but simultaneous with very strong developing/support/updates for future proof is really CyanogenMod.
But we need to deposit our trust on them still, even now that they are now a Company, not anymore opensource community like on old early days, when Cyanogen started =)
The best is Guardian ROM.
However just one great develloper can not support many devices and long and faster develloping like CyanogenMod as a fact.
About software and apps we have many:
But the popular/best are:
All apps of "TheGuardianProject" site like:
Orbot; Orweb; GPG; ChatSecure (Gibberbot); Ostel; Pixlknot; Obscura Cam; and so on...
Whisper Security apps:
RedPhone; TextSecure (WhisperPush on Cyanogen);
SilentCircle apps se can trust but i think are Paid.
Tor (orbot) , I2P, and MacChanger (MacMan, etc...) apps for Anonymity.
SecDroid as i said.
PDroid (but with kitkat i think se do not need anymore).
AfWall+ (Sucessor and total opensource of DroidWall, linux iptables firewall).
WiFi Protector (by Gurkedev, opensource wireless that protect us from Arp poisoning, MITM attacks like droidsheep, faceniff, other sniffers and packets captures...)
AdAway (opensource blockers of adware, spyware ads and popups)
Virustotal app =D
KeePassDroid (Password manager protected with encryption data base).
K-9 Mail with APG (opensource email with open PGP implementation).
And for TrueCrypt similar encryption and containers i think exist many apps already on market, but do not know which is the best yet.
EncFS is good also.
One great market just with opensource apps and a must have is
F-Droid.
If you want use your data connection with a VPN (Virtual Private Network) on my researches i discover and read some of the best are:
Free - > SpotFlux; HotSpot Shield; CyberGhost; SecurityKiss; HideMan; ...
Now the Best ones are Paid.
Some of the best ones:
MullVad
iVPN
NordVPN
TorGuard
Proxy.sh
BolehVPN
AirVPN
And the Countries with the Best Privacy Laws and Protection are:
Iceland ; Norway ; Romania ; Serbia ; Sweden ; Swiderland ; Luxenbourg ; Panama ; Seichelles ; Taiwan ; Hong Kong ; Malaysia ; ...
Well, hope I can help with something, and please if anyone know more Info about Security, Privacy & Anonymity tell also, and let all us know more knowledge =)
Cheers, Guys & Girls.

Android custom ROM for security + minimal of Google?

Hi everyone,
can you recommend me some custom Android ROMs with focus on better security? Or isolate of dependence on Google?
Both of them together will be the best.
My phone is Samsung Galaxy S2.
Many thanks

dj.houba said:
Hi everyone,
can you recommend me some custom Android ROMs with focus on better security? Or isolate of dependence on Google?
Both of them together will be the best.
My phone is Samsung Galaxy S2.
Many thanks
Click to expand...
Click to collapse
Cyanogen or GingerBread are some good ROMS for good security, as I know.

D-J Mutant said:
Cyanogen or GingerBread are some good ROMS for good security, as I know.
Click to expand...
Click to collapse
Thanks, yes, I know about Cyanogen.
Oh you mean GingerBread from Google? This is exactly what I don't want. I want to separate from Google, coz we all know about NSA case. So I thought, there will be some developers, who will try to build some custom ROM and try to eliminate "Big brother" and focus mainly on security.

Omnirom is supposed to be security and privacy consious.
Sent from my Nexus 7 using XDA Premium 4 mobile app

Well I'd suggest the cyanogenmod, but without the google apps. They're optional.

In the nexus 4 section there is an aokp that is patched so built in Google analytics are gone. There is a patch that can be applied to other ROMs.

Custom roms, including Cyanogenmod, have a history of BAD security. Many rom developers end up introducing new vulnerabilities. In the past, some hardened Android builds existed, but I know of no current hardened roms.
I personally would stay away from custom roms, and stick to as close to AOSP as possible, signed with your own private keys. (and no Omnirom, AOKP, Cyanogenmod are NOT AOSP in any way shape or form.)

jcase said:
Custom roms, including Cyanogenmod, have a history of BAD security. Many rom developers end up introducing new vulnerabilities. In the past, some hardened Android builds existed, but I know of no current hardened roms.
I personally would stay away from custom roms, and stick to as close to AOSP as possible, signed with your own private keys. (and no Omnirom, AOKP, Cyanogenmod are NOT AOSP in any way shape or form.)
Click to expand...
Click to collapse
Is that so , see from what u saying ,,, the ASOP is better then the other build rite
Sent From GT i9300

jcase said:
Custom roms, including Cyanogenmod, have a history of BAD security. Many rom developers end up introducing new vulnerabilities. In the past, some hardened Android builds existed, but I know of no current hardened roms.
I personally would stay away from custom roms, and stick to as close to AOSP as possible, signed with your own private keys. (and no Omnirom, AOKP, Cyanogenmod are NOT AOSP in any way shape or form.)
Click to expand...
Click to collapse
How do you get your own private key and what does that do? Sorry, I have never heard of this, so I'm sure others are probably also wondering.
Sent from my Nexus 5 using XDA Premium 4 mobile app

Thanks
Thanks, I was trying different ROMs, finally I chose PAC-MAN ROM without Google apps

Hello !
does it mean that any modded stock rom with GApps will be insecure ?
Thx

just youtube some galaxy s2 roms you'll find reviews on some good roms

JamieFL said:
How do you get your own private key and what does that do? Sorry, I have never heard of this, so I'm sure others are probably also wondering.
Sent from my Nexus 5 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
http://www.kandroid.org/online-pdk/guide/release_keys.html
something like this
I think you can skip "make dist" part, just do a regular build as you would normally (CyanogenMod ==> brunch your_device
you can fine the need file under "out/target/product/hammerhead/obj/PACKAGING/target_files_intermediates/cm_hammerhead-target_files-")
for Cyanogenmod Nexus 5 for ex (hammerhead )
source build/envsetup.sh
brunch hammerhead
and you'll fine the target_files zip under
out/target/product/hammerhead/obj/PACKAGING/target_files_intermediates/
that the one you need to feed to build/tools/releasetools/sign_target_files_apks

There are some really exciting Android security projects out there... For instance, one awesome function a-la-Truecrypt involves full disk encryption with plausible deniability. You are able to give out a first-layer passphrase if you are coerced - yet a truly private volume remains secure and disguised within the apparent unused portion of the storage disk.
Yet it's unlikely that any of this is relevant to you, otherwise you wouldn't be asking this sort of thing. When it comes to security leaks, try to barricade off the paths of least resistance from the ground up. For instance, even all of that wouldn't do much good if you had forensic evidence of your phone config on your computer, a lockscreen that could be bypassed, a phone seized whilst still turned with encryptions keys remaining in RAM, etc. Also keep in mind all of the data you are sending out in the clear via your cloud storage, SMS/IM, WiFi, etc.
So in the end, just pick a ROM that runs smoothly and you enjoy. Whatever you end up deciding, make absolutely certain to:
- encrypt with strong passphrase (then use cryptfs app to create a shorter lock screen key)
- disable USB debugging
---------- Post added at 06:06 AM ---------- Previous post was at 05:32 AM ----------
JamieFL said:
How do you get your own private key and what does that do? Sorry, I have never heard of this, so I'm sure others are probably also wondering.
Sent from my Nexus 5 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
This probably isn't exactly spot on, but here's a rough sysnopsis... When a ROM is built from source, the creator "signs" their creation (i.e. the ROM and the apps within). This way you can be sure that you're indeed getting an official ROM built by AOKP (or whomever) and not by some malicious 3rd party. Likewise, the Android OS uses signatures to ID which files are legitimate and given permission to run (i.e. official updates). However, there have been incidents with custom ROMs when this functionality has been exploited. This could allow an otherwise innocuous seeming app to deploy hidden malware and cloak itself as a legitimate app, gaining full rights to the phone.
A self-built ROM with your own private key is presumably safer against such an attack. I don't think most people would need to be concerned about this, but still something to keep in mind. Unfortunately jcase is spot on about custom ROMs almost always creating or exposing more vulnerabilities than stock. For instance, features like ADB or USB-OTG are often enabled by default. If that wasn't bad enough, in the event that your phone is ever lost/stolen/seized, having a custom recovery installed is pretty much handing over your identity with a bow wrapped on top. It makes it easy for anyone to bypass PIN/password/face/gesture-lock or dump off the entire disk image. Not to mention analysis can reveal your account passwords, WiFi keys, SMS, phone records, photos. Most of these vulnerabilities can be safeguarded against with careful consideration, but you certainly won't get there by default.

dj.houba said:
Thanks, yes, I know about Cyanogen.
Oh you mean GingerBread from Google? This is exactly what I don't want. I want to separate from Google, coz we all know about NSA case. So I thought, there will be some developers, who will try to build some custom ROM and try to eliminate "Big brother" and focus mainly on security.
Click to expand...
Click to collapse
The only way to eliminate the ability of a nation-state interfering in your data would be to not generate any. If they're watching you, then stopping them from watching you isn't going to be possible. So it's better to ensure that when they watch you appear innocent.
Granted, I'm not saying you shouldn't take any precautions. But to truly get away from their snooping you're probably better of without a phone.
fadedout said:
There are some really exciting Android security projects out there... For instance, one awesome function a-la-Truecrypt involves full disk encryption with plausible deniability. You are able to give out a first-layer passphrase if you are coerced - yet a truly private volume remains secure and disguised within the apparent unused portion of the storage disk.
Yet it's unlikely that any of this is relevant to you, otherwise you wouldn't be asking this sort of thing. When it comes to security leaks, try to barricade off the paths of least resistance from the ground up. For instance, even all of that wouldn't do much good if you had forensic evidence of your phone config on your computer, a lockscreen that could be bypassed, a phone seized whilst still turned with encryptions keys remaining in RAM, etc. Also keep in mind all of the data you are sending out in the clear via your cloud storage, SMS/IM, WiFi, etc.
So in the end, just pick a ROM that runs smoothly and you enjoy. Whatever you end up deciding, make absolutely certain to:
- encrypt with strong passphrase (then use cryptfs app to create a shorter lock screen key)
- disable USB debugging
---------- Post added at 06:06 AM ---------- Previous post was at 05:32 AM ----------
Click to expand...
Click to collapse
:good: Excellent advice.

I still wonder if AOSP or any of the bigger custom ROMs without Gapps is truly Google free. I have been browsing the forums for a while on that question but cant really find a good answer. Google free meaning: it doesn't communicate in any way on any moment with Google.
Anyone who can verify that? Has there ever been a XDA'er who researched this? For some it seems an assumption and some think since Android is developed by Google they surely try to analyze even AOSP roms or derivatives.

Liberr said:
I still wonder if AOSP or any of the bigger custom ROMs without Gapps is truly Google free. I have been browsing the forums for a while on that question but cant really find a good answer. Google free meaning: it doesn't communicate in any way on any moment with Google.
Anyone who can verify that? Has there ever been a XDA'er who researched this? For some it seems an assumption and some think since Android is developed by Google they surely try to analyze even AOSP roms or derivatives.
Click to expand...
Click to collapse
It only sends version statistics to Google, and there's a build.prop setting that allegedly disables it (ro.config.nocheckin=1) -- haven't tried it because I'd rather show my pride in Gingerbread

smartymcfly said:
There is a patch that can be applied to other ROMs.
Click to expand...
Click to collapse
What and where is this patch?

I would think you could block all of Google's ip address's in your host file on any rom also.
You could edit the host file before flashing it.

Motorola Solutions TC55

Hello,
I have a TC55 from Motorola Solutions (i.e. the enterprise division that does not belong to Google). It is a rugged phone with a big battery (4400 mAh), but certainly not the sleekest design. Not sure if there is much interest in this kind of device, and I am certainly no developer - but in case anyone is investigating the TC55, here are two things I found so far:
It does not come with any Google apps: no Maps, no Gmail, no Play store and so on.
It is easily rooted with Framaroot using the Gandalf exploit.
(I cannot post this info into the Framaroot thread due to my low post count).
Anyway, maybe this helps someone. I will be happy to try to answer any questions about the TC55, but keep in mind I am no pro and I am not keen in messing around in its internals much more than I have done already.

Elanguescence said:
Hello,
I have a TC55 from Motorola Solutions (i.e. the enterprise division that does not belong to Google). It is a rugged phone with a big battery (4400 mAh), but certainly not the sleekest design. Not sure if there is much interest in this kind of device, and I am certainly no developer - but in case anyone is investigating the TC55, here are two things I found so far:
It does not come with any Google apps: no Maps, no Gmail, no Play store and so on.
It is easily rooted with Framaroot using the Gandalf exploit.
(I cannot post this info into the Framaroot thread due to my low post count).
Anyway, maybe this helps someone. I will be happy to try to answer any questions about the TC55, but keep in mind I am no pro and I am not keen in messing around in its internals much more than I have done already.
Click to expand...
Click to collapse
I heard my company is planning to go with these soon for entry level supervisors such as myself. I'm trying to figure out exactly what it is. All the specs and brochures from Motorola keep calling it a mobile computer in a smartphone "form factor" but never actually call it a phone. I didn't see anything in any of the specs to lead me to believe for sure that it was a phone or if it was just an Android computer in a smartphone form factor.
Anyway, I just wanted to confirm, that, you're certain this is a phone, correct?
Thanks.
- Byron

bfollowell said:
Anyway, I just wanted to confirm, that, you're certain this is a phone, correct?
Click to expand...
Click to collapse
Yes, definitely. You can call and get called, and you can send and receive SMS. It also supports wired headsets, and it is supposed to work with Bluetooth headsets, though I do not have any to test.

Elanguescence said:
Yes, definitely. You can call and get called, and you can send and receive SMS. It also supports wired headsets, and it is supposed to work with Bluetooth headsets, though I do not have any to test.
Click to expand...
Click to collapse
Thanks for the info but it looks like mine is going to be crippled.
Sort of a let-down really. Yes, it "can" be a phone. Or without a sim card it can be a really powerful Android based mobile computer. That's what it is going to be for most of us. Only a few supervisors with area management approval are going to get units with the phone features working. Still cool. Just not as cool as I'd thought it was going to be.
- Byron

bfollowell said:
Thanks for the info but it looks like mine is going to be crippled.
Click to expand...
Click to collapse
I see, sorry to hear that. It sounds weird to me to do that, but then again I have no clue about this type of work.
Maybe the crippling could be worked around or undone by people with good Android knowledge - but I suppose it might not be the best idea to go against company policy.

Elanguescence said:
I see, sorry to hear that. It sounds weird to me to do that, but then again I have no clue about this type of work.
Maybe the crippling could be worked around or undone by people with good Android knowledge - but I suppose it might not be the best idea to go against company policy.
Click to expand...
Click to collapse
I don't think they're doing anything all that special to cripple it. They just won't all have sim cards or a cell plan. Pretty much as simple as that.
I won't be doing anything to circumvent that though or rooting it or anything like that. It's not like it's a gift and it belongs to me or anything. After almost 22 years, I've kind of grown to like my job and getting a paycheck every two weeks.I'd kind of like to keep it for another 15 or 20 years. Who knows, maybe my manager will decide that I need cell service with mine.
I work for a large automaker in the U.S. We have over 2.8 million square feet under roof. Personally, I can be anywhere on in the plant, on the roof, in pits & sub-basements underneath or anywhere on or near the 50 acre plant site at any given time. A lot of what I need to do on a daily basis is through our intranet portal. They're putting in something like 500 new wi-fi repeaters/extenders all around the plant as well. They're purchasing these for over 300 first line supervisors at my site alone. I'm pretty sure they're doing this corporate-wide so I hate to think what they're spending on these things as a corporation. I'm sure it would bankrupt many small nations! In addition to giving us portal access away from the desk, these are meant to replace our aging industrial radio system. As expensive as these are, they're still much cheaper than $1.5 to $2k per person for a radio that has no other built-in functionality and these do seem pretty ruggedized.
Still a shame about the phone functionality though.
- Byron

Can you see what browser it comes with? Can you install (untrusted) APKs directly without rooting it?

FYI, in case anyone's wondering, there is a version with Google apps on the way (if it isn't already orderable).
Sent from my Moto X

tfnico said:
Can you see what browser it comes with? Can you install (untrusted) APKs directly without rooting it?
Click to expand...
Click to collapse
Browser is a standard one, which comes with other devices. Name is Browser.apk and version is 1.0.9
It's possible to install unsigned APK's without rooting.

google account
Hi,
I got stucked with trying to get google calendars from my google account to TC55.
I found one solution to setup google account as a corporate one, but it's not available anymore due to change in google policy.
I can setup google mail via email account, but that doesn't bring me my calendars to the device.
I tried to install gapps but without success.
Is there any other way?
Thanks.

Motorola work on google apps for TC55.There is in beta.

Elanguescence said:
... here are two things I found so far:
It does not come with any Google apps: no Maps, no Gmail, no Play store and so on.
It is easily rooted with Framaroot using the Gandalf exploit.
(I cannot post this info into the Framaroot thread due to my low post count).
Anyway, maybe this helps someone. I will be happy to try to answer any questions about the TC55, but keep in mind I am no pro and I am not keen in messing around in its internals much more than I have done already.
Click to expand...
Click to collapse
Obviously u rooted, can u install gapps in it?

RjCode said:
Obviously u rooted, can u install gapps in it?
Click to expand...
Click to collapse
No idea, I haven't tried. As far as I understand gapps are usually installed via flashing a zip from recovery, and the stock recovery of the TC55 does not have that option, it only allows reflashing a whole image, if I understand it correctly. Either way, I have come to appreciate the open source alternatives and do not want to get Google on my phone, so I will not try, sorry.
However, going by this thread over at the Motorola support forum, it seems it won't take long until there is official gapps support:
https://developer.motorolasolutions.com/thread/4989

Motorola has now released a TC55-firmware with Google apps. Here are the release notes:
https://atgsupportcentral.motorolasolutions.com/content/emb/docs/ReleaseNotes/Release%20Notes%20-%20%20TC55_RevAPlus_GMS_01%2074G_v10.htm
According to the support email they sent me, to get the actual release you need to perform the following arcane ritual:
Resolution Type is : Software Download
Resolution Id is  : 95562
Resolution Title is : TC55 Update Image v1.74 with GMS (Google Mobile Service) Release Note & Factory Reset & Enterprise Enabler package
restrictedSW :
T55N0JGMVRUEN17400.zip 321 MB TC55 OS Recovery Update package
T55N0JGMVAUEN17400.apf 321 MB TC55 OS update package file for deployment using MSP
If you require access to OS files for TC55 1.74 GMS then call the local Support Desk and provide following information:
a. Site ID
b. Serial #(s)
c. Phone #
d. Customer name (First and Last)
e. E-mail address
Click to expand...
Click to collapse
Don't ask me what the local support desk number is, or the site ID, or why they have to make this so complicated.

Hi Elanguescence,
I think I screwed up my tc55 by enabling the multiuser function without first creating the white list. Now all the users (with admin rights) does not have access to all the programs, including Applock Administrator and Multiuser administrator.
To cut things short, do you know of a way to reset the device? I don't mind setting it to factory default and start over. I've googled it and some said to launch Rapid Deployment and scan a barcode from there... but my Rapid Deployment just says "Service Not Ready, Please Wait" and get stuck there.
Any help appreciated. Thank you.

Any TC55 users here? Should be getting my unit w/ GMS soon... How do you guys like it?
Is the bootloader locked?
Sent from my Moto X

Hey!
I want to Buy one TC55 for me. Normally i hate Android and the Google stuff on the Phone but some Motorola Salesman told me there is a version with out.
Now i use an Sybian Device. That mean i am "offline" the hole time and when i need Internet the Phone connect the the Internet.
So how about that phone can i work "offline" to?
I will also use an VPN Tunnel to block on my backend all Connnection i dont want. Does all Data trough this VPN Tunnel ?
How about the Barcode Scanning does it work good?
I know for 2D i need to use the Cam but how works it when i am in some other Application?

Nobody?

Ok. I just bought a TC55 from a Friend and I was wondering if someone would post the update to get GSM and the Factory Reset packages. I went to the page and it requires all the information posted above before. Mine is rooted, but i am trying to install GAPS but the recovery is the basic and cannot. I manually installed Google Play and the Google Play Services but Google Play services keep crashing and the Play Store will not connect, any ideas ?

the are 2 versions one with google s... service and the other without.
So i belive you have the first?
(Can i ask you some question about that phone?)

General Custom Rom?????

Hello
whats about custom recovery and custom rom like Pocophone F1--------------- for Z Flip 3 .....release?????
Regards

Zipfelino said:
Hello
whats about custom recovery and custom rom like Pocophone F1--------------- for Z Flip 3 .....release?????
Regards
Click to expand...
Click to collapse
Not sure about a custom recovery, but Samsung has posted the required files to build the source if you want to make a custom ROM.

twistedumbrella said:
Not sure about a custom recovery, but Samsung has posted the required files to build the source if you want to make a custom ROM.
Click to expand...
Click to collapse
TThat,s not polite. If he were a developer he wouldn't ask for one. Zipfelino didnt offend any body. He and me and thousands other members may have the same question. But the brave one had the guts to ask and found a rude answer

luisnica98 said:
TThat,s not polite. If he were a developer he wouldn't ask for one. Zipfelino didnt offend any body. He and me and thousands other members may have the same question. But the brave one had the guts to ask and found a rude answer
Click to expand...
Click to collapse
I suggest you read it again in a casual tone, not the one you used to troll me.
By the way, not every developer fills out the form for a title. It's pretty ignorant to assume someone isn't one because they asked if anyone else had released anything.

Hm... maybe to second the initial request as I understand it, even if it is too early at the moment since the device is merely two months in the market and from what little I understand building e.g. LOS for a new device is a lot of hard work: I am also looking forward (edit: which IMHO includes actively supporting the developer) to see someone more capable of this kind of voodoo than me release a custom ROM for this device before official support will be over
This thing here is the first Android mobile since the Sony XZ1 Compact that I deem "officially trouser pocket compatible" and with a price tag that might become okay for the average user

If you have a USA variant (snapdragon) then I'd suggest not getting your hopes up. Thanks to Verizon (even if they aren't your carrier) the US versions of Samsung phones since the note 8 (I think) haven't been able to be rooted.

d0x360 said:
If you have a USA variant (snapdragon) then I'd suggest not getting your hopes up. Thanks to Verizon (even if they aren't your carrier) the US versions of Samsung phones since the note 8 (I think) haven't been able to be rooted.
Click to expand...
Click to collapse
Yes, I learned this as well when I browsed through the Z Flip 3 section. Even if I don't know the details why it is like that, I think it's really weird that they managed to achieve such crap at all.
Thankfully I live in Germany and have the european version. I would not have bought this phone if I would have found any clue that you might be unable to unlock the bootloader. Been inside the golden cage with the bitten apple, got away, don't want to turn back

FFW said:
Yes, I learned this as well when I browsed through the Z Flip 3 section. Even if I don't know the details why it is like that, I think it's really weird that they managed to achieve such crap at all.
Thankfully I live in Germany and have the european version. I would not have bought this phone if I would have found any clue that you might be unable to unlock the bootloader. Been inside the golden cage with the bitten apple, got away, don't want to turn back
Click to expand...
Click to collapse
Turning back sucks lol. I always had rooted phones. It started with the HTC G1 the first android phone. I stuck with Google phones (Nexus 1 through the Pixel XL) or HTC phones like the HTC One M8.
Then I got a note 9 and soon after found out there was no root method for the snapdragon version. Then for some stupid reason I did it again and bought the note 10+...and again with the z Flip3 lol.
Next time I'm making sure I can root before I buy. Thankfully I can use Adguard (website version not store version) and package disabler to block ads, analytics etc at a system level, plus it can act as a firewall.
Then I'll use package disabler to truly disable the bloat and spyware. I wish I could just uninstall it but this is better than nothing.
One thing I really miss is custom roms and Kernel's. I'd love to be able to get rid of Samsung's horrible battery management system. It kills apps that it shouldn't including the alarm clock. Plus Samsung's apps are all pretty much terrible...sigh

d0x360 said:
Turning back sucks lol. I always had rooted phones. It started with the HTC G1 the first android phone. I stuck with Google phones (Nexus 1 through the Pixel XL) or HTC phones like the HTC One M8.
Then I got a note 9 and soon after found out there was no root method for the snapdragon version. Then for some stupid reason I did it again and bought the note 10+...and again with the z Flip3 lol.
Next time I'm making sure I can root before I buy. Thankfully I can use Adguard (website version not store version) and package disabler to block ads, analytics etc at a system level, plus it can act as a firewall.
Then I'll use package disabler to truly disable the bloat and spyware. I wish I could just uninstall it but this is better than nothing.
One thing I really miss is custom roms and Kernel's. I'd love to be able to get rid of Samsung's horrible battery management system. It kills apps that it shouldn't including the alarm clock. Plus Samsung's apps are all pretty much terrible...sigh
Click to expand...
Click to collapse
Whoa. My first Android was the Xperia XZ1 Compact since I finally decided to kick Apple out now when the first informations about iOS 11 got available. That one served me well, rooted and running Lineage from day one (and still does, big thanks @Flamefire), but the battery has degraded noticeably and Sony obviously built that phone starting with the battery as component no.1 which makes replacing it a royal PITA, which is why I searched for a new pocket compatible daily driver. So here I am...
I see your phone is more or less in the state mine is currently. I had it rooted initially but reset it and decided to try out NetGuard and ADB AppControl and see how far that gets me while keeping the OTA update alive as long as there is no custom ROM available.
Edit: with that nifty guide from @doggydog2 rooting might become more interesting again however, even without a custom ROM. Will need to dig through that one on of the next weekends...

FFW said:
Whoa. My first Android was the Xperia XZ1 Compact since I finally decided to kick Apple out now when the first informations about iOS 11 got available. That one served me well, rooted and running Lineage from day one (and still does, big thanks @Flamefire), but the battery has degraded noticeably and Sony obviously built that phone starting with the battery as component no.1 which makes replacing it a royal PITA.
which is why I searched for a new pocket compatible daily driver, so here I am...
I see your phone is more or less in the state mine is currently. I had it rooted initially but reset it and decided to try out NetGuard and ADB AppControl and see how far that gets me while keeping the OTA update alive as long as there is no custom ROM available.
Click to expand...
Click to collapse
I'm gonna check out adb appcontrol and see if it has any extra features over package disabler. I used to have an app like package disabler that would let me go into an apps services and receivers. Then I could disable specific parts of apps. It was fantastic but I can't remember it's name lol.
I have tried netguard and it's not bad but I definitely like Adguard better. It's better designed, works better, has more features etc... But it's not free. I think I paid $35 for 3 lifetime phone licenses during a sale. I also use Adguard on Windows now instead of adblocking extensions. I didn't pay for that one though, I signed up for a beta key, got one and then I just renew it every year.

d0x360 said:
I'm gonna check out adb appcontrol and see if it has any extra features over package disabler. I used to have an app like package disabler that would let me go into an apps services and receivers. Then I could disable specific parts of apps. It was fantastic but I can't remember it's name lol.
I have tried netguard and it's not bad but I definitely like Adguard better. It's better designed, works better, has more features etc... But it's not free. I think I paid $35 for 3 lifetime phone licenses during a sale. I also use Adguard on Windows now instead of adblocking extensions. I didn't pay for that one though, I signed up for a beta key, got one and then I just renew it every year.
Click to expand...
Click to collapse
No problem with "not free". I usually donate to the developers of my software unless they say they don't want (yes, this happens as well) - either by buying the enhanced version or by simply sending a donation every now and then, such as for every new released patch level of LOS or so.
ADB Appcontrol is quite nice since it is a PC program and also backs up any software you decide to remove.
AFAIK, Adguard is a DNS-based ad blocker comparable to Pi-Hole while Netguard is a firewall as e.g. AfWall+ (or mimicks that behaviour as much as possible as you can without root)? This would mean the logic behind the program would be different, such as being able to track and set what to block differently for each program.
I will take anotrher look at it though

FFW said:
No problem with "not free". I usually donate to the developers of my software unless they say they don't want (yes, this happens as well) - either by buying the enhanced version or by simply sending a donation every now and then, such as for every new released patch level of LOS or so.
ADB Appcontrol is quite nice since it is a PC program and also backs up any software you decide to remove.
AFAIK, Adguard is a DNS-based ad blocker comparable to Pi-Hole while Netguard is a firewall as e.g. AfWall+ (or mimicks that behaviour as much as possible as you can without root)? This would mean the logic behind the program would be different, such as being able to track and set what to block differently for each program.
I will take anotrher look at it though
Click to expand...
Click to collapse
Adguard does have DNS blocking options but it's so much more than that. I'm not sure if there is a free trial period but if there is definitely check it out, I think you will find it really nice. Also anytime you find any kind of issue whether it's a missed overlay on a website or a gap where the ad was you can report it through the app and it's usually fixed in a couple hours. Their response time is insane.
The adblocking options are extensive. It includes all the same filters in ublock origin and then some. You can also disable filters you don't want, make custom filters for literally anything. For example I made a filter that would remove search results for just polygon.com from Google. It also supports custom scripts like the greasemonkey extension.
The firewall aspect is like a genuine firewall. You can fully block an app from net access or set it so it can only use wifi or cell signal or both. There is also a log of every connection (incoming/outgoing) that tells you what app or service is trying to do something and what it's trying to connect to. You can click on an entry in the log and automatically block or whitelist it.
You can even block Google analytics and telemetry for Android itself which is fantastic because they collect tons of info..
In just the last 30 days Adguard has saved me 11.79 gigs of data, blocked 362,763 ads, 17,092 trackers and 2 threats. That's from Android, apps and browsers.
i know I sound like a salesman lol but I genuinely love this app and it has so many options and features that it can do pretty much everything a fully loaded (with necessary extensions) desktop browser can do.
They also have a free vpn that works with the app if you want another layer of privacy and protection.

d0x360 said:
Adguard does have DNS blocking options but it's so much more than that. I'm not sure if there is a free trial period but if there is definitely check it out, I think you will find it really nice. Also anytime you find any kind of issue whether it's a missed overlay on a website or a gap where the ad was you can report it through the app and it's usually fixed in a couple hours. Their response time is insane.
Click to expand...
Click to collapse
Thanks for the detailed answer
d0x360 said:
The adblocking options are extensive. It includes all the same filters in ublock origin and then some. You can also disable filters you don't want, make custom filters for literally anything. For example I made a filter that would remove search results for just polygon.com from Google. It also supports custom scripts like the greasemonkey extension.
Click to expand...
Click to collapse
Hm... Lets compare.... I use my compiled Pi-Hole list (which includes the AdBlock lists and some others btw) for NetGuard as well, so this is covered for me, even if not as comfortable when it comes to whitelisting for just one given domain (never needed that option until now though, but something to keep in mind)
d0x360 said:
The firewall aspect is like a genuine firewall. You can fully block an app from net access or set it so it can only use wifi or cell signal or both. There is also a log of every connection (incoming/outgoing) that tells you what app or service is trying to do something and what it's trying to connect to. You can click on an entry in the log and automatically block or whitelist it.
Click to expand...
Click to collapse
That seems pretty standard for an ad blocker. The question is: can I selectively block or allow a given connection (i.e. URL or IP address) for one single app as I can do with Netguard?
d0x360 said:
You can even block Google analytics and telemetry for Android itself which is fantastic because they collect tons of info..
Click to expand...
Click to collapse
I translate this to "can block system apps". That's the case for Netguard as well.
d0x360 said:
In just the last 30 days Adguard has saved me 11.79 gigs of data, blocked 362,763 ads, 17,092 trackers and 2 threats. That's from Android, apps and browsers.
Click to expand...
Click to collapse
I think that saved amount of data is more than I use at home and mobile in total in the same time
But yes, I use Pi-Hole at home and for any mobile device that uses my VPN, and its shows an awful lot of connections being blocked, so the basic savings should be the same. Additionally, each browser has its own uBlock Origin instance and some other plugins e.g. to block Youtube ads. Using a computer that does not have this is outright painful.
d0x360 said:
i know I sound like a salesman lol but I genuinely love this app and it has so many options and features that it can do pretty much everything a fully loaded (with necessary extensions) desktop browser can do.
They also have a free vpn that works with the app if you want another layer of privacy and protection.
Click to expand...
Click to collapse
That might explain why you get such fast response times in case of issues
Something else, apart from the question above: Can Adguard apply all its filters and then use my private WireGuard VPN Server (not some 3rd party VPN service!) on Android as its only way out into the internet? That is the one obvious downside of not having root at the moment - since Android allows only one VPN being active and Netguard does not interface the WireGuard App, I can only use either my VPN or NetGuard, not both at once as I could with AfWall+ and WireGuard.

Just to add my bucket - I will buy this phone as soon as bootloader unlock, root and custom roms are confirmed (an a working gcam mod). I simply can't imagine using the phone without the benefits of it. I really hope this phone gets support.

eVen123 said:
Just to add my bucket - I will buy this phone as soon as bootloader unlock, root and custom roms are confirmed (an a working gcam mod). I simply can't imagine using the phone without the benefits of it. I really hope this phone gets support.
Click to expand...
Click to collapse
The first two are done as long as you buy the european SM-F711B and not that crippled US version (model no. SM-F711U if I am not mistaken). That leaves a ROM (and the GCam mod you mentioned, but I have to admit I have no clue what that one is about). Let's see what the future brings.
Oh, one more thing: I hereby confirm I would happily contribute significantly to a donation for a developer who in turn wants to take the task of creating and maintaining a custom ROM for this phone that supports the outer display and the flip open/close phone function (maybe LOS or Havoc?) but needs money to buy the phone.