Hello,
At my work they asked us to use wechat and i read once it's not safe so If i install it on Guest mode account (CM) and using privacy guard, would be that secure? and block the app from reaching sensitive data or files? if it's not secure to do that what you'd recommend for me as a solution? Thanks.
Waiting for your answers,
Regards,
Related
Hi guys,
I have an idea against access-hungry apps on Android, since Android is so open, why don't we make an access emulation layer, if an trivial app asks for SMS and Contacts access, grant it, but you can feed fake data to it whatever you want, sort like a firewall to malicious apps.
This would involde several API hooks, is this idea plausible?
There is already something similar on iOS Cydia: Protect My Privacy
Not exactly what you invision but check out LBE Privacy Guard or PDroid Privacy Protect in Play Store. They both make fake response to privacy requests from apps such as Phone ID, Contacts, etc...
My employer just opened up Android native email capability (to receive work email, calendar, apps) for my Note i717. Problem is, they won't allow Rooted devices.
I know there's several (6 I think) security certificates that get installed, but I was wondering if there's a way around this no-root rule.
1. If I unroot, get all certificates installed and then re-root will it nullify the certs?
2. Does anyone know enough about certs to answer if they're something that can be backed up and restored if I move to a different ROM in the future?
I've scoured the forum and have found info on bypassing the credential logins, but not pertaining to these questions above. Answers would be greatly appreciated.
It isn't really a rule...depending on your environment
b3furuya said:
My employer just opened up Android native email capability (to receive work email, calendar, apps) for my Note i717. Problem is, they won't allow Rooted devices.
I know there's several (6 I think) security certificates that get installed, but I was wondering if there's a way around this no-root rule.
1. If I unroot, get all certificates installed and then re-root will it nullify the certs?
2. Does anyone know enough about certs to answer if they're something that can be backed up and restored if I move to a different ROM in the future?
I've scoured the forum and have found info on bypassing the credential logins, but not pertaining to these questions above. Answers would be greatly appreciated.
Click to expand...
Click to collapse
Unless your company is using a type of MDM platform (Codeproof, Good, MobileIron, AppSense), they will not be able to detect that you have root access to your phone. Some companies instruct users to install a separate MDM application in order to access their email. Most Exchange servers can be connected to without installing the MDM software. If they don't force an MDM client, they won't know you are rooted.
Depending on the version of Exchange, you can use a 3rd party email app like K-9 to access the email which would also bypass the additional security policies that will be installed if you were using the built-in Exchange support. I use Touchdown, therefore the app is protected by a PIN but not my phone, so I can still unlock the phone without having to type a 6 digit number every, single, time.
The way I see it, the company's data is still protected, and I am not overly inconvenienced, it is a win-win.
Unless your company is using a type of MDM platform (Codeproof, Good, MobileIron, AppSense), they will not be able to detect that you have root access to your phone. Some companies instruct users to install a separate MDM application in order to access their email. Most Exchange servers can be connected to without installing the MDM software. If they don't force an MDM client, they won't know you are rooted.
Depending on the version of Exchange, you can use a 3rd party email app like K-9 to access the email which would also bypass the additional security policies that will be installed if you were using the built-in Exchange support. I use Touchdown, therefore the app is protected by a PIN but not my phone, so I can still unlock the phone without having to type a 6 digit number every, single, time.
The way I see it, the company's data is still protected, and I am not overly inconvenienced, it is a win-win.
Click to expand...
Click to collapse
Apologies, I did forget to mention they instruct to install Mobile-Iron.
Their process is such:
1. Install Mobile-Iron
2. Encrypt Device & set 6 digit pin
3. Install Certificates
4. Email configuration
5. Sync email, calendar, clients to phone
They do note "If your device is rooted, this process will not complete successfully."
Reviewing the steps, it looks like the whole process is done within Mobile-Iron.
No dice so far
Still can't find anything on the net for this. If anyone can help answer this I'd greatly appreciate it.
I'd love to be able to check on emails without having to open and boot my laptop. Also, it would be great to have my calendar sync so I don't miss meetings.
I did some research on internet and most of the articles related to this topic are either outdated or suggests using some kind of another app.
I want to block internet access to apps I've installed without installing any other app or firewall. I was wondering whether there are any inbuilt settings in Lollipop which has this feature?
Basically I am worried that apps like Clean Master, etc. would be snooping around my msgs, contacts lists, pics and sending them to their servers.
Hi,
Thanks for using XDA Assist.
No, there's no built-in feature in Lollipop to block Internet access. That's not a priority for Google
However I do recommend you to use AFWall+ (root required) or NetGuard.
well my company decided that company emails will work only under MDM. So today we tested this app on my mobile on BYOD mode as logical container.
https://www.manageengine.com/mobile-device-management/
And I am really not happy to what this app has access and I can't restrict it, because the access is enabled by admin of MDM. Please see attached screenshot.
the app has access to: camera, contacts, location, phone and storage and i can't block this access.
for contacts, phone and storage it looks like it has access only to folders in container (I hope, as i can't access my contact and documents from work profile). However accessing camera and location is not ok for me. Yes the admin of MDM app can see where i am in live and i can't block it. If I root the device the program will stop working, any other way how to prevent access to camera and location? Using oneplus 7T on Oxygen OS 10.0.15. Thinking about removing this app, but work email on the phone is almost must have for me.
wolfyy said:
well my company decided that company emails will work only under MDM. So today we tested this app on my mobile on BYOD mode as logical container.
https://www.manageengine.com/mobile-device-management/
And I am really not happy to what this app has access and I can't restrict it, because the access is enabled by admin of MDM. Please see attached screenshot.
the app has access to: camera, contacts, location, phone and storage and i can't block this access.
for contacts, phone and storage it looks like it has access only to folders in container (I hope, as i can't access my contact and documents from work profile). However accessing camera and location is not ok for me. Yes the admin of MDM app can see where i am in live and i can't block it. If I root the device the program will stop working, any other way how to prevent access to camera and location? Using oneplus 7T on Oxygen OS 10.0.15. Thinking about removing this app, but work email on the phone is almost must have for me.
Click to expand...
Click to collapse
Whenever a device is enrolled with MDM mobile device management solution, you do not have any control over it. Only an IT admin can make any changes to the device.
The IT admins configure the MDM agent on the device via the MDM server. This includes policy configuration, apps, and content push as well as security controls.
Dears,
I hope all is well,
I am seeking your kind support regarding my inquiry for airdroid privacy
I use the application to log in on my mobile, in order to use an application through my mobile.
My question is, can the operations that I perform in the third application know that I am using the airdroid application?
For more clarification, the scenario for this activity is.
If I log into my mobile remotely via the airdroid application and perform the fingerprint authentication process, can the IT administrator know that this activity that I have done is via airdroid, or will he read this activity that it is through the mobile itself?
Please note that, i disabled the authentication app permissions for all the activities that iam doing through my mobile
Up
Uppppp
Up
Up