The situation:
the device is encrypted
the device is locked with PIN
the encryption password was changed with SnooperStopper to be passphrase
→ everything works
change the screen lock PIN to another PIN and reboot
→ Phone asks for PIN to unlock instead of password, but neither the old nor the new PIN work; and since it doesn't offer full keyboard one cannot enter passphrase
→ but TWRP can still decrypt with the previously set passphrase
Possible fixes:
either change the disk encryption passphrase to be just PIN from inside TWRP so I can get back into android and the try to reset with SnooperStopper; or
change somthing in /system ( or boot?) from inside TWRP so that android offers full keyboard again on boot.
What would you recommend and how would I go about it? How does the system even know (or in this case falsely assume) that I am using PIN and not password? Is this managed through a config file on /system or is this information set directly on the encrypted disk?
Thanks for your suggestions.
[I know I can backup from TWRP and factory reset, but I would like to be able to fix it properly and understand what's going on, in case it happens again]
Probably not so relevant, but for completeness: it's CM13 running on bacon.
Related
Hi. I'm doing a search in my university about android security.
1. is it possible obtain acess the information of the user if the device android has lock? I tought if i has a recovery custom, i do the backup of the rom, and i restore, when the device restart the informations (log calls, sms, photos) will be in the memory and it will be necessary digit the password to unlock device?
2. if i do a wipe (not data), in reboot the password will be necessary? (wipe system maybe)
3. plug the device in a pc with linux, i can acess some information (log calls, sms...)?
if this ideia isn't impossible, exist a way of the obtain some information of user?
thanks
1. If the device has a passworn/pin lock and a stock recovery, you won't be able to access any data. If it has a custom recovery, you can boot into it and do a backup to gain data. If you apply that backup to a new device, it will still have the password lock as all settings and data remain intact.
2. Yes, any setting is in the /data partition.
3. You won't be able to access and data if the phone is locked.
Hi everyone,
I have forgotten my pattern lock, and my moto G is not showing me the option of "forgot pattern" after 5 attempts.
Tried the aroma file manager option, but not able to copy the zip to phone memory. Also not able to install zip form and external USB drive as I could not find any option to mount USB in stock recovery or any way to copy the file to phone memory.
adb not showing my device (when i run "adb devices")
Not able to find any way to get pass this without hard reset as I have not taken any backup of my data.
My moto G is unrooted and on stock recovery and stock rom (5.0.2 updated on 23 Jan 2015).
sahaib said:
Hi everyone,
I have forgotten my pattern lock, and my moto G is not showing me the option of "forgot pattern" after 5 attempts.
Tried the aroma file manager option, but not able to copy the zip to phone memory. Also not able to install zip form and external USB drive as I could not find any option to mount USB in stock recovery or any way to copy the file to phone memory.
adb not showing my device (when i run "adb devices")
Not able to find any way to get pass this without hard reset as I have not taken any backup of my data.
My moto G is unrooted and on stock recovery and stock rom (5.0.2 updated on 23 Jan 2015).
Click to expand...
Click to collapse
There are two ways to solve your problem. But in both is necessary to be root, or at least you must have your bootloader unlocked (then you could flash a TWRP Recovery).
You can check this HERE. It's in spanish, but there are some pictures to help
You can do it if your phone is connected to Internet
Just go to the Motorola support site from another device and sign up there suing same email as that of. Your phone then go to add device and enter IMEI no. of your phone(which you can get it from your phone box or from back of your phone) and also the phone number which is present on your phone.. ......and then try to locate your phone and then lock it remotely from the options given there using a pin type of password...it will overwrite the current password and then you can unlock the phone using that pin which would be now the default lock of the phone...... But it will work only if your moto phone is connected to Internet and it will work on any Motorola device
Hi,
I have installed
- CM12.1 Nightly 20160419
- TWRP 3.0.2-1
from scratch w/o any issues.
After installation finished I enable device encryption in Settings -> Security.
Whenever the device is rebooting, I need to enter the password to decrypt it.
Whenever I reboot into recovery, I need to enter the password to decrypt /data.
Later I upgraded the image to CM12.1 Nightly 20160502 using CyanDelta.
However, since this upgrade the encryption is gone, means I don't need to enter the password anymore although in Settings -> Security this is still displayed (refer to attachment "Screenshot_2016-05-09-16-55-06.png").
When I check log in TWRP when installing the image.zip I can see in the first line that "decyption successfull with standard password" (refer to attachment "Screenshot_2016-05-09-16-59-47.png") although I didn't enter any passord.
Why is the device encryption lost?
THX
please change the language of your screenshot to English.
Hi All,
Today I wanted to install LinageOS on my S7. Before that I wanted to backup my data using Titanium Backup.
To get the full function of Titanium Backup I wanted to root the device before that.
I installed TWRP using heimdall and installed SuperSU from the external SD card.
Then I booted again and during boot the device asked me as usual for my pin (black screen, only pin input and emergency calls possible, NOT the pin input on the lock screen).
But when I entered my pin as usual the device said that the pin is invalid (it is the correct pin).
After several tries I got a message that after 8 more tries my data get will get erased permanently... ;-((
So long story short, does anyone has an idea of how I can decrypt my data on the data partition now???
Things to mention and tried so far:
* During the install of SuperSU the /data partition can not be mounted.
(Also adb shell twrp decrypt your_password does not work because of this I think)
I think this is because TWRP can't decrypt data partitions on Samsung Phones which is a known problem.
But this does not seem to be a problem for SuperSU.
* After I couldn't boot because of the problem the first time I also installed no-verity-opt-encrypt-5.1 in hope for a fix, didn't solve the problem either (But I am not shure if it adds to the problem after reading to a lot of postings today).
* I am not sure if it has to do, that asking for the PIN during boot was enabled in Settings on the device. But there was no hint, that this could be a problem in the instructions I used.
https://wiki.lineageos.org/devices/herolte/install
and
https://forum.xda-developers.com/galaxy-s7/development/recovery-official-twrp-herolte-t3333770
* I am not shure if this all has to do with dm-verity
see: https://twrp.me/devices/samsunggalaxys7.html[/QUOTE]
This device uses dm-verity!
This means that swiping to allow system modifications will prevent you from being able to boot if you are using the stock kernel. In order to bypass dm-verity's boot prevention, you will have to install a kernel that has dm-verity disabled in the fstab.
Click to expand...
Click to collapse
I am also not shure if Dm-verity and Forced Encryption Disabler is already included in SuperSU.
* Versions used:
Buildnumber: NRD90M.G930FXXU1DQEF
Baseband: G930FXXU1DQD7
twrp-3.1.1-0-herolte.img
SR3-SuperSU-v2.82-SR3-20170813133244.zip
no-verity-opt-encrypt-5.1.zip
* I also tried to make a backup of the encrypted partitions but copying of the partitions using TWRP and adb does not work because the phone gets reconnecting ca. every 45 seconds. And it seems it is not possible to decrypt an encrypted android partition on linux or windows even with the correct pin. (right?)
* The only thing I found is this, but I am not shure if this is the way to go, besides I don't know how to get the encrypted partitions of the phone.
http://www.forensicswiki.org/wiki/H...ypting_Samsung_Full_Disk_Encryption_.28FDE.29
I also saw as similar post like that today, but I have a pin and no password and I need to unlock my data partition with the correct pin (right?).
So does anyone has an idea how to decode the data partiton or to access my data in any way?
If I will be able to get my data of the device I could simply flash LinageOS and everything should be fine.
Thanks!
Hi there!
TL;DR: Forgot encryption password, only have 10 tries left before data wipe, how can I backup my phone to get 10 more tries if I don't manage to find the password within 10 tries?
For context:
*ROM: Lineage 14 official build
*Custom recovery: TWRP
*Bootloader: Unlocked
*The phone is not rooted.
*No SD card port.
*The phone is encrypted with a password (not a PIN)
*I don't remember the exact encryption password, so I can't get past the password prompt after booting. But I am sure I can find it if I keep trying. It might take me more than 10 tries to enter all variations though.
*I can't access or mount /data from TWRP (nor can I get past the password promt after booting) without the password.
*After entering the wrong password multiple times, the password prompt says I only have 10 tries left before the data gets wiped, and I must avoid this at all costs. (Since Android 6 or 7, there is a limited number of tries before the phone gets wiped)
My question is: How can I make a backup of the phone in it's current state, so that even if I don't manage to enter the right password after booting the phone 10 times, I can restore the phone in it's current state and still have 10 more tries (and eventually repeat this if I still don't manage to find the password after 20 tries)?
I have found some tutorials that show how to backup /dev/block/mmcblk0, but they require root (I can't install anything in my phone since it's encrypted...). And I am not even sure if it will work to restore the phone in it's "10 tries left".
I also don't have access to /data partition from TWRP without entering the password (it shows "0MB") so I can't backup the /data partition from TWRP.