[REQUEST] Using Samsung Keyboard bug to uninstall bloatware apps - Galaxy S6 Q&A, Help & Troubleshooting

Hello there!
https://www.youtube.com/watch?v=uvvejToiWrY
So I've recently heard that the Samsung Keyboard used in almost all Galaxy Sx phones runs with system rights, meaning we could use this to actually uninstall the shi..y bloatware preinstalled on our phones.
I'm not sure how this would affect Knox tho, if anyone's better informed about this please tell me here
I hope I'm posting this in the right forum here since it's kind of an Android Development request and not a general question. Depends on how you guys see that tho.
Anyways, just my idea here! Would be great if it doesn't trigger Knox and we could actually achieve something like this without rooting or modifying much on the system.
Thanks for reading!

EpicLPer said:
Hello there!
https://www.youtube.com/watch?v=uvvejToiWrY
So I've recently heard that the Samsung Keyboard used in almost all Galaxy Sx phones runs with system rights, meaning we could use this to actually uninstall the shi..y bloatware preinstalled on our phones.
I'm not sure how this would affect Knox tho, if anyone's better informed about this please tell me here
I hope I'm posting this in the right forum here since it's kind of an Android Development request and not a general question. Depends on how you guys see that tho.
Anyways, just my idea here! Would be great if it doesn't trigger Knox and we could actually achieve something like this without rooting or modifying much on the system.
Thanks for reading!
Click to expand...
Click to collapse
Wrong section mate. Post it in Q And A. It is possible to exploit the vulnerability BUT you should understand what the vulnerability is in the first place. Pre installed Swiftkey keyboard can accept unencrypted updates. This means if the update is spoofed and malicious we may get access to all the permissions the keyboard has and hence retrieve call logs and other data. I don't think it'll have the permission to delete a preinstalled apks.

Siddheshpatil said:
Wrong section mate. Post it in Q And A. It is possible to exploit the vulnerability BUT you should understand what the vulnerability is in the first place. Pre installed Swiftkey keyboard can accept unencrypted updates. This means if the update is spoofed and malicious we may get access to all the permissions the keyboard has and hence retrieve call logs and other data. I don't think it'll have the permission to delete a preinstalled apks.
Click to expand...
Click to collapse
From what I've read the keyboard does run with system rights. And yes I know how the exploit and bug works, I'm just not a programer myself to test it.

Related

[Q] Why there is no uninstall feature in Android?

I have about two weeks experience with Android OS and as a software developer I will be interested to know the technical details behind the Android OS.
I have already noticed this is possible to upgrade applications ported with the handset's ROM i.e. the Market app. This raised the question to me why can't I uninstall applications from the ROM without rooting or risking my handset's warranty to achieve this?
Is my expectation as a user of computers for 20 years unreasonable to think in 2010 with all software development and technological advances the uninstall feature should have been in Android OS from day one?
This is not exactly like Google is the first company in the world developed an OS to just the lack of experience with what users would want. From what I have seen so far in world of Android is that, the first thing users would want to know how to root their handset to remove packages that they have no use for.
My guess is that Google doesn't want users removing Systems apps. I'm assuming that they think that these applications are core and thus don't want you removing them. Remove the market, no more apps... or way to get it back etc.
Applications installed by you can be uninstalled, I'm just thinking it is the same as in windows, you can't uninstall the task manager etc (Bad example but meh =P)
Very simple - to prevent lay users from removing critical components.
Can you imagine the service costs involved in reparing devices that that have been damaged by people trying to remove bloatware?
They still give you the option to restore.
OK DISREGUARD THIS AS I MISSED THE PART ABOUT NEEDING TO ROOT!
They can be removed but its not recommended to do so without know EXACTLY what your removing and weather is vital to your phones operating system.
BUT in order to do so your phone needs root access, and root explorer installed. There are several forums on just about all android support sites that explain how to root, install the manager, and which apps/files NOT to remove.
J_HaX said:
They can be removed but its not recommended to do so without know EXACTLY what your removing and weather is vital to your phones operating system.
BUT in order to do so your phone needs root access, and root explorer installed. There are several forums on just about all android support sites that explain how to root, install the manager, and which apps/files NOT to remove.
Click to expand...
Click to collapse
Ye u can remove almost every stock app but this may affect the stability of your phone, modifying your phone always comes with the option restoring it back to default. If something goes wrong with moding (something really hard and extraordinary rare ) u can restore it. Browsing through Xda might solve many questions, we all didn't wanted stock rom (not because it was bad, because we can have s omething better. This community has VERY VERY good developers.
Androids own!!!
One thing I still don't get is...
How can Google upgrade Market app without the su privilage but the rest of the world has to root their phones to remove bloatware such as 'amazon mp3'?
@ftgg99: How much bloatware in Windows cost Microsoft or PC manufacturers? None in fact they get paid to include them with your hardware. However, I see an issue with mobile devices. You have already paid for the ROM storage, the bigger ROM size is the more expensive your handset would be, then the manufacturer uses your already paid ROM to make even more money by installing bloatware. I would be a fool to think manufacturers would pass on a percentage of the bloatware earnings by reducing the cost of their products to the consumers in this model.
The way I see it, the burden has been put on the communities such as xda. Users wouldn't ask the manufacturers how to root their handsets and this is left to the dedicated individuals to overcome the mess compnies normally leave us with. I'm not going to say the mess is a cost saving measure by companies.
The thing is that there are a lot more people buy and use phones than computers. After someone buys a smart phone with intention to use for calls, text, web and to use some apps, they realize the possibilities of the smart phone, they start digging in to the files, therefore Google blocked the root folder from modifying, otherwise Google would have to repair warrantied phones that didn't have to end up there just because people didn't know or care what they did. But if you got passed ROOTING, you must know what you are doing and from this point you can modify files and apps, but now ROOTING becomes too easy.
Basically just because too many juveniles got their hands on the equipment.
CSharpHeaven said:
One thing I still don't get is...
How can Google upgrade Market app without the su privilage but the rest of the world has to root their phones to remove bloatware such as 'amazon mp3'?
Click to expand...
Click to collapse
I'm also very interested to read the answer for this one!
CSharpHeaven said:
One thing I still don't get is...
How can Google upgrade Market app without the su privilage but the rest of the world has to root their phones to remove bloatware such as 'amazon mp3'?
Click to expand...
Click to collapse
RAMMANN said:
I'm also very interested to read the answer for this one!
Click to expand...
Click to collapse
The answer, from my point of view, is quite simple: they just upgrade the application on /data/app ON TOP of the /system/app default Market version. So, you can always go back to your "default" version just by "uninstalling updates".
Summary: they do not upgrade the Market form ROM, just install the new version on top.
CSharpHeaven said:
I have about two weeks experience with Android OS and as a software developer I will be interested to know the technical details behind the Android OS.
I have already noticed this is possible to upgrade applications ported with the handset's ROM i.e. the Market app. This raised the question to me why can't I uninstall applications from the ROM without rooting or risking my handset's warranty to achieve this?
Is my expectation as a user of computers for 20 years unreasonable to think in 2010 with all software development and technological advances the uninstall feature should have been in Android OS from day one?
This is not exactly like Google is the first company in the world developed an OS to just the lack of experience with what users would want. From what I have seen so far in world of Android is that, the first thing users would want to know how to root their handset to remove packages that they have no use for.
Click to expand...
Click to collapse
Have you tried to work with iPhone(don't know about iPhone 4)? They build fortress around their system and even the apps you install cannot be uninstalled until you gailbrake it and use 3rd party installer to uninstall. And not talking about the "MONOPLY" they run with AT&T.

[Q] Changing RAM values in Apps

Hey you guys, figured this would have to be the best place to have this question answered.
I'm a member of an online game where the admins have been banning people for using rooted phones (luckily not one of those people yet). The most we have been able to get out of the admins in response as to why is this:
Just to clarify, we are not asking people how did they get hold of Cash in Hand : Its basically, some people can manuplate cash-in-hand on weapon / properties screen ( with Rooted phones and a public software ) : We have got hold of all such people and have banned their account
Click to expand...
Click to collapse
My question since no one seems to be able to answer it is what the hell are they talking about and what program can be used to do this?
Thanks!
They're talking ****. I think they don't mean access to RAM, but possibility to mod/hack their app. But:
You don't need root to install modded/hacked application. This isn't an iPhone.
Client side security is never secure - they should now about it and should use server side security instead.
Android: Changing RAM Values in Apps
I thought the same thing but they specifically addressed the RAM topic in the post found below.
Dear Gamers
Rooted phones allow you to change values in RAM : We were reported by a player who was caught under suspicious activity. We started tagging users who were using the rooted phone to abuse the game. So, we got all the people who were sending the tweaked stats to server.
Rooted phones , allow users to have access which is more then regular phones. We understand that people have abused the game , which is against gamers' integrity ; and we have found people who have used the exploit. We have decided to ban their accounts or reset at minimum.
We have gone step ahead to make sure this is fixed and we intend to make sure we do not tolerate cheaters in our games.
Click to expand...
Click to collapse
Has anyone ever heard or used a publicly available program to do such a thing?
I think ints wrong thread but i Found no thread where can i install apps in the sd Card?

[HOW TO] disable OTA updates

Forgive me if this is the wrong section and I know there are some threads on it, but not specific enough in my opinion as to how this device works. I was going to go to General, but I figured this was important regarding possible impending doom to our phones should a critical update be released. I've seen a lot of confusion throughout some threads on disabling updates. While the process is mostly the same for almost any phone, there is still a lot of different information out there so I figured I'd explain it pertaining directly to i337 owners.
Let's get started, shall we?
1. You'll need to be rooted - see the thread on rooting your phone in original development by djrbliss
2. Once rooted, get Titanium Backup (yes I know there are other ways, but this is the most straight forward - feel free to add if you think there is a better way)
3. Once in Titanium Backup, go to the backup/restore tab at the top and find the following three items on the list:
-keychain
-fwupdater
-AT&T software updater
4. Click on each one individually and hit the "freeze" button at the top. I'm not positive that the fwupdater and keychain will need to be blocked along with the software updater, but it certainly wont hurt anything and it is a general prereq on most phones to disable ota updates.
5. As soon as you disable them (specifically the AT&T one), you'll notice that your postponed notification will be gone. If you did the OTA update already, you wont receive them anymore which is probably a good thing until the unlock is released.
I just figured I'd post this here to be safe rather than sorry. I don't claim to be a professional with these devices and am certainly not a developer so don't flame me, but I thought I'd post and try to be as accurate as possible for those questioning these updates.
Always know that when using root to modify system files, you run the risk of bricking your device. If you are willing to accept this risk and know that your device can be rendered unusable, then proceed with caution. See you all on the other side when we are unlocked!
Just an FYI, I posted this yesterday...
OTA Update now available! - Update: Instructions to block if desired
Using a slightly different method... But works all the same.
Moved to general forum, please pay attention to what forum you are posting to
Just found that actually. I'm sorry about that. I guess it doesn't hurt to have two of them, but I didn't mean to take over yours.

[Q] blocking ads in apps

hello all,
i just bought nexus 5.... i am kind of noob when it comes to android.
is there i can block all annoying ads that crops up within apps and browser?
i dont want to risk rooting my phone.
pls suggest me easiest, secure way to do this....
thanks.
You can try opting out from Ads from Google Settings but the only way to get rid of all the ads is to use an app like adaway which needs root. I don't know why you think it's a risk rooting your phone?? You can get back to stock anytime to claim warranty.
vin4yak said:
You can try opting out from Ads from Google Settings but the only way to get rid of all the ads is to use an app like adaway which needs root. I don't know why you think it's a risk rooting your phone?? You can get back to stock anytime to claim warranty.
Click to expand...
Click to collapse
hello
since i am new to android, i dont want to mess up/experiment on my phone. atleast till i get hang of it.
i used play a lot with my N95 before. so, till i get firm grasp on android inner workings, i wouldnt want to do anything with its in built features.
further, rooting is bit too technical for me..... there is no application that can root with just a click like it existed with S60 V3 OS.....
so will wait till such a thing comes up.
Try to find in playstore
lambo98 said:
Try to find in playstore
Click to expand...
Click to collapse
thank u for this grt suggestion.
fyi: all ad blocking apps r removed from playstore. only detectors r whats there.
ags84 said:
further, rooting is bit too technical for me..... there is no application that can root with just a click like it existed with S60 V3 OS.....
so will wait till such a thing comes up.
Click to expand...
Click to collapse
Even though there are tools available to do this (simple search on xda will locate those), you really should take the time to understand the 4-5 (simple) steps involved in rooting. That way, you know exactly what is happening (versus a toolkit that will attempt to do everything for you, and just tell you "all done" - without you having a clue about what really happened). The advantage of understanding these steps is that later, if you want to install an update or want to switch kernels and read a guide that tells you to flash "xyz", or restore from nandroid etc, you will not be clueless. Or if somebody tries to help you with an issue, and asks you to go your recovery, you won't be asking "how do I go to recovery screen"
My suggestion: If you are ever planning to root your Nexus 5, read the first 2 posts at http://forum.xda-developers.com/goo...ide-nexus-5-how-to-unlock-bootloader-t2507905 - especially the parts highlighted in red.
Then, read it again <-- repeat till you understand it. If you have questions, read/search that thread to see if somebody already asked that question - and if not, ask in that thread.
The Nexus is probably the easiest device to root. But don't root till you are comfortable with it, and understand the steps involved.
Since you mentioned in your first post that you didn't want to root, you could try https://adblockplus.org/en/about
I must admit that I tried it once and wasn't able to get it to work right, and so I just installed adaway (that requires root) instead.
jj14 said:
Even though there are tools available to do this (simple search on xda will locate those), you really should take the time to understand the 4-5 (simple) steps involved in rooting. That way, you know exactly what is happening (versus a toolkit that will attempt to do everything for you, and just tell you "all done" - without you having a clue about what really happened). The advantage of understanding these steps is that later, if you want to install an update or want to switch kernels and read a guide that tells you to flash "xyz", or restore from nandroid etc, you will not be clueless. Or if somebody tries to help you with an issue, and asks you to go your recovery, you won't be asking "how do I go to recovery screen"
My suggestion: If you are ever planning to root your Nexus 5, read the first 2 posts at http://forum.xda-developers.com/goo...ide-nexus-5-how-to-unlock-bootloader-t2507905 - especially the parts highlighted in red.
Then, read it again <-- repeat till you understand it. If you have questions, read/search that thread to see if somebody already asked that question - and if not, ask in that thread.
The Nexus is probably the easiest device to root. But don't root till you are comfortable with it, and understand the steps involved.
Since you mentioned in your first post that you didn't want to root, you could try https://adblockplus.org/en/about
I must admit that I tried it once and wasn't able to get it to work right, and so I just installed adaway (that requires root) instead.
Click to expand...
Click to collapse
thank you for the insight.
i am reading it and will root only after i fully understand it.
i did try adblockplus. got it when i searched on google.
as u said, it doesnt work right..... so i thought of asking it here as it is comman problem faced by many android users.
cheers.
ags84 said:
thank you for the insight.
i am reading it and will root only after i fully understand it.
i did try adblockplus. got it when i searched on google.
as u said, it doesnt work right..... so i thought of asking it here as it is comman problem faced by many android users.
cheers.
Click to expand...
Click to collapse
Ad Block Plus got nuked by Google, unfortunately. You need root to do this for all apps and on all connection types.
ags84 said:
i am reading it and will root only after i fully understand it.
Click to expand...
Click to collapse
Good on you to take the time to learn.
Short of rooting your phone and installing an ad-blocker, you would have to pay for "pro" versions of apps you use, which often remove ads from the app as part of the upgrade.
MoaAB hands down is the best add blocker! But u need root...
(Mother of all Add Blockers)
Nothing is going to fully block ads without root. Nope. ?
For unrooted try Andblock (not ABP) http://code.google.com/p/andblock/
You need to import a host file (menu > import), and set Port to 8080
Blocks web ads only
Lord Childe said:
For unrooted try Andblock (not ABD) http://code.google.com/p/andblock/
You need to import a host file (menu > import), and set Port to 8080
Blocks web ads only
Click to expand...
Click to collapse
So just for browsers you mean? If that's the case you can just use AdBlock Plus extensions/addons for your respective browser.
Adblock (unrooted, side load APK) will still work for WiFi just not on a data connection and needs to be setup as a proxy, or is it just for data? Can't remember.
bblzd said:
So just for browsers you mean? If that's the case you can just use Ad Block Plus extensions/addons for your respective browser.
Adblock (unrooted, side load APK) will still work for WiFi just not on a data connection and needs to be setup as a proxy, or is it just for data? Can't remember.
Click to expand...
Click to collapse
It’s plugged as ‘Andblock’, yet the app is named ‘Adblock’ – very confusing. And I’m sure it’s intentional, given the similarities with ABP.
Before I rooted my device I used Andblock (Adblock) – it works with 3g/4g, whereas ABP unrooted only works over wifi. Anyway, standalone ABP for Android is riddled with bugs and inconsistencies – brilliant as a FF addon in Windows, might be good as a browser ext. for Android - but if you're unrooted and use a browser that hasn’t got an ABP ext. then you’re buggered.
A device isn’t completely free of ads even with root - the famed MoaAB doesn't block every app ad.

What are the required apps for samsung boot?

There are a lot of bloatware app lists on the internet but I want to delete everything except the apps required for boot. Where can I find the list of applications required for samsung boot?
Did you use the Search function?
V0latyle said:
Did you use the Search function?
Click to expand...
Click to collapse
I don't want bloatware list, I want required apps list
j9f034 said:
I don't want bloatware list, I want required apps list
Click to expand...
Click to collapse
Apps that are safe to remove are in the bloatware list. Why can't you use that? If you remove a system app that is NOT on the bloatware list, common sense dictates there's a good chance it will cause problems.
Keep in mind that system apps are not the same across all Samsung devices, so the bloatware list is your safest option. If you refuse to use what other people have taken the time to establish, you are on your own, and you are responsible for whatever problems you run into.
so the internet is not as big a place as we think
V0latyle said:
Apps that are safe to remove are in the bloatware list. Why can't you use that? If you remove a system app that is NOT on the bloatware list, common sense dictates there's a good chance it will cause problems.
Keep in mind that system apps are not the same across all Samsung devices, so the bloatware list is your safest option. If you refuse to use what other people have taken the time to establish, you are on your own, and you are responsible for whatever problems you run into.
Click to expand...
Click to collapse
j9f034 said:
so the internet is not as big a place as we think
Click to expand...
Click to collapse
It's certainly big enough to 1. find the answer to your question by searching, 2. find something that can provide your answer by knowing what you CAN remove, and 3. find multiple sources for #2 by simply doing #1.
My point is, your question has been asked before. I provided an answer, with the not so subtle hint that you could have found it yourself - XDA Rule #1:
1. Search before posting.
Use one of our search functions before posting or creating a new thread. Whether you have a question or just something new to share, it's very likely that someone has already asked that question or shared that news.
Click to expand...
Click to collapse
I understand that it may not have been the direct answer you may have wanted, but it's a close second as it gives you a safe guideline to use. I went so far as to point out that what might be required can vary from device to device, so there's no one-size-fits-all answer to your question. If you want a specific answer for your specific device, you should mention which device you're using, and you should post in the relevant device section, not the General section.
I've offered what help I can. If it's not good enough for you, you're on your own.

Categories

Resources