My fellow hacker friends,
I have recently procured a Samsung Smart Fridge RF265BEAESR/AA that is currently running Tizen OS 3.0 (FHUB2.KM.US.AW1-12.MP 20170424_141153. I have scoured the interwebs for a solution, but to no avail. There is a usb port inside the right door cover. I've heard many great things about KingRoot, but apparently this hasn't been tested out on a fridge. BTW, Tizen also controls the fridge/freezer temps, the damn thing cost 2700 US dollars so I am warry. Please weigh in if you all have any ideas.
Thanks,
Dave
I'd like to get somewhere with this fridge as well.
Had a discussion on Reddit which didn't get very far but I put links to all the info I could find there:
reddit.com r Tizen comments 7ftshm how_to_sideload_apps_on_family_hub_fridge
Samsung actually sent me a link to DL the family hub variant of Tizen. But they have also locked out any kind of developer access to the fridge. I'm thinking the only way (without resorting to hackzzz) would be to dismantle the door and find the serial port connection and try and enable developer mode.
I looked at similar attempts to root Tizen TVs and cameras, I can't see any obvious ways to execute commands but I'm far from an expert with Linux.
Also looking at adding a proxy inline and seeing what traffic is being sent to it.
---------- Post added at 02:28 AM ---------- Previous post was at 02:22 AM ----------
I believe the fridge has the same version of webkit as the vita, so in theory this could work but beyond my skill or time allocation:
https:slashslashblog.xyz.isslash2016slashwebkit-360dot html
A scan with nmap reveals a mongoose 6.6 server on port 17654 and reverse SSL on 47180. The mongoose server give a file structure listing
hehehe
yourFridgeIP:17654/.krate/owner/share/scloud/glazeCameraInfo.txt
So if anyone has experience with reverse SSL and possibly Mongoose server exploits...
rambutan2000 said:
A scan with nmap reveals a mongoose 6.6 server on port 17654 and reverse SSL on 47180. The mongoose server give a file structure listing
hehehe
yourFridgeIP:17654/.krate/owner/share/scloud/glazeCameraInfo.txt
Click to expand...
Click to collapse
Hmm... nice find. There are a few vulnerabilities however my refrigerator has not yet been delivered so I cannot check:
Mongoose Exploit:
express-restify-mongoose is a module to easily create a flexible REST interface for mongoose models. express-restify-mongoose 2.4.2 and earlier and 3.0.X through 3.0.1 allows a malicious user to send a request for `GET /User?distinct=password` and get all the passwords for all the users in the database, despite the field being set to private. This can be used for other private data if the malicious user knew what was set as private for specific routes.
Google CVE-2016-10533
Someone i know asked me how to add apps on their 5000$ samsung family hub smart fridge. After extensive research the OS used on the samsung fridges is a specific version of Tizen developped specifically for the fridges and nothing else. So long story short: you can't access the Tizen store on the fridge because the Tizen version of the fridge is not compatible with them.
TLDR: it's not possible to add applications on the samsung smart fridges. If you have one, sell this **** quicky and buy a regular american fridge with an external fridge camera ( https://store.smarter.am/products/fridgecam ) instead and an ipad connected to it. This will work 1000 times better than a regular samsung smart fridge and cost less money as well.
I was able to enter into DEVELOPER MODE, but is asking for a password. Anyone having an idea what would be?
Has anyone gotten anywhere with this?
Bump? Anything new? With tizen 4.0? It is RIDICULOUS that basically the only apps available is some airplane ticket ordering thing for rich people, some expensive wine shopping app for rich people, amazon junk like Ring and some god damn Nespresso capsule app!! The voice input doesn't even work in my language even English recognition is FAR below android standards. The food expiration / food list is basically useless lol. Bixby is useless. No reason to have family hub, I can't even get my parents to install the family hub app and I can't even have fun with the OS. Cannot set dns server so I have to use Pi-hole to block the goddamn ads everywhere in the apps and browser..
Bump ....this is really frustrating and the biggest tech mistake I've made buying this heap of garbage.
StrongOneX said:
Bump? Anything new? With tizen 4.0? It is RIDICULOUS that basically the only apps available is some airplane ticket ordering thing for rich people, some expensive wine shopping app for rich people, amazon junk like Ring and some god damn Nespresso capsule app!! The voice input doesn't even work in my language even English recognition is FAR below android standards. The food expiration / food list is basically useless lol. Bixby is useless. No reason to have family hub, I can't even get my parents to install the family hub app and I can't even have fun with the OS. Cannot set dns server so I have to use Pi-hole to block the goddamn ads everywhere in the apps and browser..
Click to expand...
Click to collapse
dreamtheater39 said:
Bump ....this is really frustrating and the biggest tech mistake I've made buying this heap of garbage.
Click to expand...
Click to collapse
Why even waste the time and effort? It just isn't worth it at all and could never be useful.
Sent from my SM-S767VL using Tapatalk
At least I got 30% off on it on Black Friday
Hi everyone, I bought that *** fridge from exposition and appears to be locked by PIN. No one from seller to smasung subcontractor is able to reinitialize the frigde (liek reset factory mode -which default one is not accessible in fridge menu due to missing pin code).
any idea how could I solved that myself via engineer mode + usb port pls ?
many thanks
[email protected]
xoolit said:
Hi everyone, I bought that *** fridge from exposition and appears to be locked by PIN. No one from seller to smasung subcontractor is able to reinitialize the frigde (liek reset factory mode -which default one is not accessible in fridge menu due to missing pin code).
any idea how could I solved that myself via engineer mode + usb port pls ?
many thanks
[email protected]
Click to expand...
Click to collapse
Theres a person on Reddit that was able to get into the LCD through a serial connection - "There is an interactive UART console available on an unpopulated connector (CN9) on the bottom of the board on pins 3/4. I connected to the flash chip in-circuit right when the bootloader starts to access it so it gets the proper init sequence. Then I mounted the ext4 partition and changed the root password. Now I have a permanent root shell over serial . Time to put that kernel source to good use and disable SMACK auditing so I can boot my own rootfs." Post was titled "Rooted family Hub screen playing hardware accelerated gstreamer RTSP stream"
This is more headway than I have ever seen. I really hate that this POS cant be updated and its locked down, to boot...
https://www.reddit.com/r/hardwarehacking/comments/dv0nqd/samsung_family_hub_rooted/
Looks like someone was able to get access to the OS and make a complete dump. Anyone brave enough to pop out the panel?
Hannover2k said:
https://www.reddit.com/r/hardwarehacking/comments/dv0nqd/samsung_family_hub_rooted/
Looks like someone was able to get access to the OS and make a complete dump. Anyone brave enough to pop out the panel?
Click to expand...
Click to collapse
lol This is pretty incredible NGL almost want to go buy a new fridge in hopes this gets development.
pieboots said:
lol This is pretty incredible NGL almost want to go buy a new fridge in hopes this gets development.
Click to expand...
Click to collapse
I really don't see the point, what could you possibly do with it that would actually be worthwhile?
Sent from my SM-S767VL using Tapatalk
Droidriven said:
I really don't see the point, what could you possibly do with it that would actually be worthwhile?
Sent from my SM-S767VL using Tapatalk
Click to expand...
Click to collapse
Would be nice to be able to install some of my own apps on there. Not looking to do anything crazy but Samsung only allows licensed apps so they're constantly removing apps and swapping things out. and I wouldn't mind having my Sirius Satallite radio app on there or something other than Pandora. To at least be able to have a choice of apps and not just every crappy samsung app that they feel like adding or removing.
?
Hannover2k said:
Looks like someone was able to get access to the OS and make a complete dump. Anyone brave enough to pop out the panel?
Click to expand...
Click to collapse
I have one!
Same boat
Agreed! Would love to install the xfinity and Netflix apps so this could essentially also be a “Kitchen TV”. We don’t have any Samsung smart TVs (we are Roku/vizio house) so installing these apps on the fridge are kind of our only option ATM. Dying to figure out how to sideload apps. Wonder if the similarities to the smart TVs can be useful here
Related
http://www.engadget.com/2010/07/28/new-licensing-service-replacing-existing-copy-protection-metho/
Looks like pretty soon the days of people copy and pasting apk's all over the place are coming to an end.
I hope this doesn't make theming harder.. We'll see.
From reading that article,
Seems like airplane mode or a firewall would crush all the hopes and dreams of google and app devs.
It seems that every time we open an app it needs to verify that it's been paid for by contacting a "licensing" server and retrieving a response.
I feel like that could slow down launch times, and being unable to use an app when offline would be like UBISOFT hell all over again.
I really hope google puts a lot of thought into this..
I wonder if this if already being done? Every time I try to play that golf game on my EVO on an airplane while the radios are off I get a FC when it starts. As soon as I an on the ground and turn the radios on the game works fine.
Sent from my PC36100 using XDA App
what if you are in an area with no signal or on a plane or something? you cant open any apps???
This is already in place in a number of apps, one is IP Cam Viewer.
I paid the money for it. I transferred all my files to my wife's Evo 4G, and thought "hell I'll see if it works..." Well it didn't. When I try to open the app, it tells me that I have to purchase it from the marketplace.
I'm all for buying apps when they're good, and I understand single user licensing. Guess I was just hoping I wouldn't have to spend double the money for all the apps I use.
simplyphp said:
This is already in place in a number of apps, one is IP Cam Viewer.
I paid the money for it. I transferred all my files to my wife's Evo 4G, and thought "hell I'll see if it works..." Well it didn't. When I try to open the app, it tells me that I have to purchase it from the marketplace.
I'm all for buying apps when they're good, and I understand single user licensing. Guess I was just hoping I wouldn't have to spend double the money for all the apps I use.
Click to expand...
Click to collapse
I've heard of couples sharing the same email as apps get replicated on the two phone
I can confirm that they don't get replicated..
I have two evo's right now under the same email and they're definitely not replicating crap.
cahiatt said:
I wonder if this if already being done? Every time I try to play that golf game on my EVO on an airplane while the radios are off I get a FC when it starts. As soon as I an on the ground and turn the radios on the game works fine.
Sent from my PC36100 using XDA App
Click to expand...
Click to collapse
Now that's a problem I understand about paying for apps but not working when I'm in a place with no signal. I see a law suit brewing up. I paid for the app I should be able to use the app whenever I want to. Class action law suit coming real soon.
Sent from my PC36100 using Tapatalk
Crap....
"A limitation of copy protection is that applications using it can be installed only on compatible devices that provide a secure internal storage environment. For example, a copy-protected application cannot be downloaded from Market to a device that provides root access"
...Seriously???
EDIT - the above quote was misrepresented in the place I copied from...research shows it to be misleading. the actual bit of Google's text is posted over on page to of this thread. disregard my indignation in this post...
This is discouraging, because a lot of people like to try the full before they buy it expecting more than what full has to offer, only to be disappointed later.
willwgp said:
This is discouraging, because a lot of people like to try the full before they buy it expecting more than what full has to offer, only to be disappointed later.
Click to expand...
Click to collapse
You do get a 24 hour refund option when you buy from the market so I'm not worried about trying before you buy. I do worry about not being able to play something when I'm in the bathroom at work because I don't get a signal there.
well how many ppl do actually piracy apps??? oh my bad forgot that this is Android, for a second i though it was apple!!
Just to clarify a couple of things:
There are 2 ways to use the Licensing - one is Strict - you CAN NOT USE THE APP WITHOUT ACCESS TO MARKETPLACE. Personally, screw that.
Option 2, however, is a non-strict policy. Server managed, where the license is 'cached' to storage. You also can programmatically set how long your app can be used without any license check.
That'd be the way i go
josue85 said:
You do get a 24 hour refund option when you buy from the market so I'm not worried about trying before you buy. I do worry about not being able to play something when I'm in the bathroom at work because I don't get a signal there.
Click to expand...
Click to collapse
That'll be up to the developer. I like this approach, as I'd be happy to do say... a 5-7 day turn around on the license check. After 7 days with no data signal, seriously, where the hell are you? LOL
Besides, if you've used a paid app for 7 days, and by that time can't decide if you need it or not - wow.
And of course, as soon as you got signal again, the license check would go through and you can use the app again, no problem.
I'm sure there will be UbiSoft and EA style implementations though - way too damn draconian for my tastes. I don't care to know every single second that someone's using my app. I would just like to know that they haven't 'copied that floppy' as it were LOL
I have no doubts this will be defeated in time, though. All it would really take is mimicking the server license response, which can be extracted from the locally cached license of an actual paid product.
People that pirate software are going to do it, regardless. Don't make the honest people pay the price of draconian DRM.
The best approach I can make as a developer, is give my customers the features they want, in a stable, good performing package, and discourage 'casual' piracy. Beyond that, it's out of the developer's control, and honestly, any more than that usually just pisses off the customer and annoys the pirates for about a day and a half.
Ok...had to read the SDK paperwork as I really wanted to know this...my previous post was incorrect and here is the update...
From Google:
Android Market Licensing is a flexible, secure mechanism for controlling access to your applications. It effectively replaces the copy-protection mechanism offered on Android Market and gives you wider distribution potential for your applications.
A limitation of the legacy copy-protection mechanism on Android Market is that applications using it can be installed only on compatible devices that provide a secure internal storage environment. For example, an application using the copy-protection mechanism cannot be downloaded from Market to a device that provides root access, and the application cannot be installed to a device's SD card.
With Android Market licensing, you can move to a license-based model in which access is not bound to the characteristics of the host device, but to your publisher account on Android Market and the licensing policy that you define. Your application can be installed and controlled on any compatible device on any storage, including SD card.
Click to expand...
Click to collapse
Also...there are options for the Devs to allow for apps to be used a chosen number of times before they need to check in for licenses. Strict has to check in every time....other option allows dev to choose based on times used or time since last check in.
SO...all in all I am much less worried about this now.
topdnbass said:
I can confirm that they don't get replicated..
I have two evo's right now under the same email and they're definitely not replicating crap.
Click to expand...
Click to collapse
With licensing the dev can choose whether an app can be accessed from different phones. It is an option...
(greeked...multiple times)
Question: Does that mean we won't be able to open, modify, and resign apks? Like...to change the appearance (make a widget clear, etc).
More like bad news for paying consumers. That's who always pays for everything. Those of us who actually buy the products.
I plan on speaking with my wallet. I wont buy any app that requires I have an internet connection.
A limitation of the legacy copy-protection mechanism on Android Market is that applications using it can be installed only on compatible devices that provide a secure internal storage environment. For example, an application using the copy-protection mechanism cannot be downloaded from Market to a device that provides root access, and the application cannot be installed to a device's SD card.
Click to expand...
Click to collapse
Wait so according to google us rooted folk couldn't download copy-protected apps before now?
Urrr, i think im missing something
This is actually a nice implementation for both the software developer and the user. Most will implement this where it only has to check-in every week or two. So the odds of getting caught in a spot where there is no connection is low.
At the end of the day, it is a pretty straightforward way to handle copy protection that really shouldn't inconvenience anyone.
Also it will bring more developers to the platform if they know they don't have to worry as much about piracy.
Piracy will still run rampant. People will find ways to circumvent this, that's just how it is. At least it will curb some piracy since copying and pasting an apk file wasn't much of a deterrent.
For those who spend a lot of time looking at a computer, and can't be bothered to look at their phone very often, Sand Studio has introduced AirDroid, an app that allows users to control their Android Phone from a computer via WiFi.
http://www.youtube.com/watch?feature=player_embedded&v=WfNnQxpw7Uw
http://www.youtube.com/watch?v=BfXRhSIm-m0
The great thing about AirDroid is that it works - it's easy to start up, and functions flawlessly (in my experience). The interface is also very polished - mimicking a desktop launcher complete with moveable icons, a task bar, and controls that allow you to do just about anything.
One of the most impressive features is the ability to access SMS messages, manage them, and send messages right from a web browser. Users can also manage contacts, uninstall/backup apps (AirDroid will download your apps as apk files), browse files, access the Android Market, and manage music and ringtones, in addition to the ability to look at phone information from CPU status to battery level and beyond.
Best of all, AirDroid is completely free from the Android Market. With all the powerful features it offers, this app is certainly worth checking out.
ITS FREE
DOWNLOAD
https://play.google.com/store/apps/details?id=com.sand.airdroid&feature=search_result
the market is blocked my country
can someone put mirror please
mehdi.moha said:
the market is blocked my country
can someone put mirror please
Click to expand...
Click to collapse
befarmain
http://www.megaupload.com/?d=AURZDHQ2
wish i could send and recieve whatsapp messages from it...
edit: just installed the app..sometimes the app makes the phone go crazy!! i have to logout fro the browser or turn off wifi for the phone to become normal.
This is without a doubt 'the best' app for controlling your phone from your browser. I've installed and played with many and this one tops the lot in my opinion.
It's clean, easy to use, great interface (both on the phone and PC).
Side note: This thread would probably be much better off in General Android Apps and Themes forum - http://forum.xda-developers.com/forumdisplay.php?f=530. The app isn't specific an LG Optimus.
---------- Post added at 12:31 PM ---------- Previous post was at 12:07 PM ----------
mehdi.moha said:
the market is blocked my country
can someone put mirror please
Click to expand...
Click to collapse
It's also available on the official website: http://www.airdroid.com/apk/airdroid_1127.apk
saw this in a google search, was just about to post in the GNote forum....
Anyone else used this? Am very tempted, but concerned of legitimacy of app (never heard of devs and truly paranoid about security )
Sent from my GT-N7000 using xda premium
SpyderTracks said:
Anyone else used this? Am very tempted, but concerned of legitimacy of app (never heard of devs and truly paranoid about security )
Click to expand...
Click to collapse
I'm a little hesitant to try out apps like this as well but they have nothing but good feedback on the market and a good following on both Facebook and Google+, as well as having their own website, so I was happy to give it ago.
@smackdownn Yeah I am with you on the whatsapp, this app is brilliant.
@Nucleotide & SpyderTracks Seriously? Whats the issue with privacy? Scared these devs are going to email or sms your gf while you are out? Either that or learn to hide your porn somewhere that is not your phone. I have said this before on so many occasions, when you were using a nokia/winmo/other NON android phone, they sneakily NEVER asked for permissions, but you installed apps that could pretty much do anything on your phone anyway
This app is by far the best solution I have tried in this regard, it just works and damn well too
@Cornelha
Lol.... I get what you're saying, but I think it's a little naive... the information we hold on smartphones these days compared to "our old nokias" means security is vital. After years of dodgy torrents, malware and hacked accounts, I've learnt to take it a bit more seriously, albeit probably to the extreme
Sent from my GT-N7000 using xda premium
This app is fantastic. We were the first to review it:
http://www.androidstatic.com/must-have-air-droid-lets-you-control-your-phone-from-your-browser
SpyderTracks said:
Lol.... I get what you're saying, but I think it's a little naive... the information we hold on smartphones these days compared to "our old nokias" means security is vital. After years of dodgy torrents, malware and hacked accounts, I've learnt to take it a bit more seriously, albeit probably to the extreme
Click to expand...
Click to collapse
I agree. I don't have anything I would call "sensitive data" on my phone but I do have a lot of contact information such as names, addresses, email addresses, phone numbers and other information which although not really sensitive, I still don't want other people to have - especially if I don't know about it. Not only that but apps can track your location, the buttons you press on your phone, numbers dialed, text messages sent, websites you visited, and the list goes on.
With that in mind I take caution when installing any app. I check for things like the amount of reviews on the market, the quality of the reviews (good vs. bad), does the developer have a website, a Facebook page with a good following, and so on.
one of the best app i ever know
good job mate
slow files transfers but great app !
have been using it for about 2 days and I have to say it is great...downloading files takes a very long to though
-love the SMS from desktop feature and comes very handy for different ROM users when putting files on devices
Love this app
Sent from my HTC Desire using XDA
i love this app!!!! i wish it would have a feature like an android simulator as well so we can open certain apps like whatsapp via mac/pc...
I have been using Lazy Droid but after using this for couple of days, I have uninstalled Lazy Droid. Nice app. thanks
I love AirDroid!!! It helps me to transfer photos and files from my phone to my PC wirelessly. I don't need to carry my cable anywhere with me. It's a great app. Nice job!
what do you have to install on the PC? if you want to link a PC to smartphone, for example
FASAR said:
what do you have to install on the PC? if you want to link a PC to smartphone, for example
Click to expand...
Click to collapse
You don't need to install on the PC. You just need to open the browser and visit web.airdroid.com to log in. Then you can manage you phone on the web. Easy, right?
So my school just recently said we can use tablets and laptops in class and around the school. They are willing to allow us to connect to the school's WiFi, but we have to give the dean the MAC address for our device.
I'd like to be able to keep some privacy, even though they say we have to waive our right to privacy if we decide to use electronics. I guess I'm looking for a few apps that can help me achieve this. Maybe a browser with an incognito feature like Chrome, or something that can cover what I'm doing online.
I also wanna know if there would be any way for me to access thinks like Facebook, Twitter, Youtube, Google Music, etc. through their respective app if the website is blocked.
If push comes to shove, I guess I could just tether with my GNex, but that would require an extended battery, which I would like to not have to buy.
Have you tried using the incognito tab option on the stock honeycomb browser?
Unless you are using some sort of vpn connection or encryption you have no privacy. I'd suggest remoting into your home desktop using splashtop or teamviewer and doing all your browsing on your desktop if you are worried about privacy that much.
They can see everything you do since it's a shared connection and they have access to the gateway and internet logs.
They are probably running a transparent proxy with logging (I would be if I were the sysadmin), so the incognito tab won't help.
But
Konfuddle said:
Have you tried using the incognito tab option on the stock honeycomb browser?
Click to expand...
Click to collapse
That does not do anything with the connection. It just dont cache anything in your browser. So that noone borrowing your computer can see that you have been watching porn.
But to OP: Get a vpn connection. Only way to get privacy on a wifi system.
SwiftLegend said:
So my school just recently said we can use tablets and laptops in class and around the school. They are willing to allow us to connect to the school's WiFi, but we have to give the dean the MAC address for our device.
I'd like to be able to keep some privacy, even though they say we have to waive our right to privacy if we decide to use electronics. I guess I'm looking for a few apps that can help me achieve this. Maybe a browser with an incognito feature like Chrome, or something that can cover what I'm doing online.
I also wanna know if there would be any way for me to access thinks like Facebook, Twitter, Youtube, Google Music, etc. through their respective app if the website is blocked.
If push comes to shove, I guess I could just tether with my GNex, but that would require an extended battery, which I would like to not have to buy.
Click to expand...
Click to collapse
whoa whoa whoa man... "incognito" has nothing to do with what you transmit online. it only prevents them from seeing what you have already done if they took your device
what you need is a secure VPN like goldenfrog.com, or use a secure proxy server. anything that puts a layer of encryption between you and the server will block out any man in the middle
noobs these days... incognito has NOTHIGN TO DO WITH WHAT YOU TRANSMIT DAMMIT
if you want, use opera and turn on the "turbo" feature. that will create a link to the opera servers and deliver compressed content. meanwhile, it will make it impossible for the school to decrypt anything it intercepts.
chatch15117 said:
if you want, use opera and turn on the "turbo" feature. that will create a link to the opera servers and deliver compressed content. meanwhile, it will make it impossible for the school to decrypt anything it intercepts.
Click to expand...
Click to collapse
Nope, opera turbo is a plaintext connection so still can be viewed, the only option is https for everything or vpn/ssh tunnels
Ok thanks for all the replies. I guess the easiest thing would be to tether with my phone. (Hopefully Verizon doesn't freak )
I guess I can try setting up a VPN (no idea how). I think my friend tried to, since he owns a bunch of servers, but the school blocks almost every port.
Could using a vpn connection be considered
using Proxies, Caching Servers or any others means to circumvent restrictions placed on
the school’s IT network and internet access
Click to expand...
Click to collapse
DroidSheep anyone hahaha
unless websites like Facebook and such are blocked haha
Is there a way to spoof the MAC?
Scribed in blood using XDA Premium
Dan_Brutal said:
Is there a way to spoof the MAC?
Scribed in blood using XDA Premium
Click to expand...
Click to collapse
http://forum.xda-developers.com/showthread.php?t=1385577
Dan_Brutal said:
Is there a way to spoof the MAC?
Scribed in blood using XDA Premium
Click to expand...
Click to collapse
Yes but I would bet the reason why they want the MAC address is for WIFI access. You could spoof someone else's MAC but school's aren't known for having hard facts before disciplining students. If they think it is you, you will get in trouble.
I would recommend using TOR if you want to protect your privacy. Download Orbot from the market.
Cheers!
-M
Xda member since 2007
Considering the schools budgets these days, you probably have nothing to fear as far as privacy goes.
Sure they are logging your wifi usage, but no one is monitoring it! All the logging allows them to do, is to look at where you went and when AFTER they have a reason to start looking.
Unless they hired someone specifically to start monitoring students, no one is ever going to look at your logs.
Sure they could put in alerts to let them know when any user goes to site xyz, but odds are they simply have blocked it.
One of the main reasons they are logging things is if say perhaps a teachers online grades were 'hacked', and the IP was traced back to their own servers, they'd have a way to identify which user was using that connection.
Many ISPs already log your internet access as well, but it's at such a low level that no one looks at it (though there are privacy laws to prevent them from looking directly in those cases).
Bottom line.. is if you're not doing anything illegal (torrenting, sending nude pics of yourself, harassing other students via text/email) then you have nothing to worry about, and odds are you won't even be noticed.
DroidGnome said:
Bottom line.. is if you're not doing anything illegal (torrenting, sending nude pics of yourself, harassing other students via text/email) then you have nothing to worry about, and odds are you won't even be noticed.
Click to expand...
Click to collapse
I partially agree. If you use the schools network for normal stuff you shouldn't have anything to hide.
But Co-students are a great security risk. Both willingly and unwillingly. In these days with loads of malware floating around jumping from computer to computer via security flaws in networked devices. Students may also try to hack your device just for fun.
If you have sensitive data you really should encrypt your traffic in one way or another when connected to a network with unmanaged and unknown devices.
DroidGnome said:
Considering the schools budgets these days, you probably have nothing to fear as far as privacy goes.
Sure they are logging your wifi usage, but no one is monitoring it! All the logging allows them to do, is to look at where you went and when AFTER they have a reason to start looking.
Unless they hired someone specifically to start monitoring students, no one is ever going to look at your logs.
Sure they could put in alerts to let them know when any user goes to site xyz, but odds are they simply have blocked it.
One of the main reasons they are logging things is if say perhaps a teachers online grades were 'hacked', and the IP was traced back to their own servers, they'd have a way to identify which user was using that connection.
Many ISPs already log your internet access as well, but it's at such a low level that no one looks at it (though there are privacy laws to prevent them from looking directly in those cases).
Bottom line.. is if you're not doing anything illegal (torrenting, sending nude pics of yourself, harassing other students via text/email) then you have nothing to worry about, and odds are you won't even be noticed.
Click to expand...
Click to collapse
Bored teachers/faculty get up to practically anything and snooping on students is apparently a great sport. Everywhere that has a computer lab has someone doing IT and just think about that for a minute...someone doing IT at a high school, the personality of that person. You don't have to be doing anything illegal to get into trouble with your school. A casual google will reveal all the lawsuits students have brought against schools for violating their privacy. Do yourself a favour and use Orbot.
Cheers!
-M
Xda member since 2007
dragon_76 said:
Bored teachers/faculty get up to practically anything and snooping on students is apparently a great sport. Everywhere that has a computer lab has someone doing IT and just think about that for a minute...someone doing IT at a high school, the personality of that person. You don't have to be doing anything illegal to get into trouble with your school. A casual google will reveal all the lawsuits students have brought against schools for violating their privacy. Do yourself a favour and use Orbot.
Cheers!
-M
Xda member since 2007
Click to expand...
Click to collapse
it is great fun, but also remember that code of conduct that you and your parents sign at the start of the year states that we do have the right to make sure you are using the internet provided by the school for school purposes only
Can't you use 3G connection from your phone instead of the school WiFi?
As far as getting on facebook if it's blocked....
If you type httpS://facebook.com it will usually let you in. They have blocked several websites at my office, but I can still get into them using this trick. Sometimes, you will have to add the "S" after navigating through the websites, but still will let you get in. So, just use your web browser (not the facebook app), and type s. I believe most people don't block secure websites.
SwiftLegend said:
So my school just recently said we can use tablets and laptops in class and around the school. They are willing to allow us to connect to the school's WiFi, but we have to give the dean the MAC address for our device.
I'd like to be able to keep some privacy, even though they say we have to waive our right to privacy if we decide to use electronics. I guess I'm looking for a few apps that can help me achieve this. Maybe a browser with an incognito feature like Chrome, or something that can cover what I'm doing online.
I also wanna know if there would be any way for me to access thinks like Facebook, Twitter, Youtube, Google Music, etc. through their respective app if the website is blocked.
If push comes to shove, I guess I could just tether with my GNex, but that would require an extended battery, which I would like to not have to buy.
Click to expand...
Click to collapse
lilstevie said:
it is great fun, but also remember that code of conduct that you and your parents sign at the start of the year states that we do have the right to make sure you are using the internet provided by the school for school purposes only
Click to expand...
Click to collapse
The internet provided to the schools by tax payers and/or tuition you mean. You have a wretched problem that is rampant in American schools: you think you own the school's resources. They are owned by the community.
Cheers!
-M
Xda member since 2007
So the administration announced today the final policy and they won't be allowing WiFi access until next September because they want to expand the network. I'll probably just be tethering for the mean time.
Oh yeah, there's only 2 IT guys in my school (lol). One stays in a glass room in the back of the computer lab, and the other comes to classrooms to install projectors and crap.
Started getting this while browsing the web on my pixel. I just contacted Google support who said it's not from them. It's just an ad wanting you to download their anti-virus app. Can't wait to root my phone so I can put an ad blocker back on.
There's BILLIONS of similar scams around to that. The obvious giveaway (I mean besides how obviously fraudulent it is), is the grammar.
You can also recognize it based on the fact that the DOMAIN NAME is some kind of nonsense. Anybody can add whatever subdomain they want to any domain they have control over. For instance, if you own the domain name "stupidscammers.com", you can create a layer of subdomains that look like "www.google.com.google-security.this.is.really.google.i.really.promise.stupidscammers.com"
The only part of that that might be *slightly* convincing for an ABSOLUTE NOOB, is that it was able to identify your operating system as "Android" -- well, that is obtained from an identifier string that your web browser sends out to web servers so that the web servers can generate appropriate content that is compatible with your device. It is called the User-Agent, and it does not contain any identifying details. It just tells the server what KIND of web browser you have.
You should NOT have wasted google's time asking them about obvious scam being obvious, and frankly, it is a waste of time to create a thread about it. Before anybody ever uses the internet, they should already be aware of (and be on the lookout) for this kind of scam. And this was a very UNCONVINCING scam, made by obvious amateurs.
Droid1019 said:
Started getting this while browsing the web on my pixel. I just contacted Google support who said it's not from them. It's just an ad wanting you to download their anti-virus app. Can't wait to root my phone so I can put an ad blocker back on.
Click to expand...
Click to collapse
There are apps that are available without rooting your phone. SEVENAdclear or Adguard will work without rooting your phone.
blanco82 said:
There are apps that are available without rooting your phone. SEVENAdclear or Adguard will work without rooting your phone.
Click to expand...
Click to collapse
Have you used either of these in Chrome on the Pixel?
If you fall for this I have some magic beans for sale
lol, these things have been around for years, dude
mymusicathome said:
If you fall for this I have some magic beans for sale
Click to expand...
Click to collapse
Do they give me magic gas?
I've been using Brave Browser for over a month and love it. Just like Chrome (Chromium based) but no ads. No root needed.
Sent from my Pixel using Tapatalk
Definitely a scam. I've seen it in hijack style redirects
Yea this is nothing new. Completely normal when looking at porn
Alliance shield app bricked my phone...the owner (RRiVEN) banned me for asking about the permissions his app uses and he got butthurt and banned my account and ip address knowing it would soft brick my phone if i factory reset it with all the apps I disabled and now I can't remove the spyware/malware infected app or recover my device back to factory settings...him and his app destroyed my brand new 1200 dollar s21 ultra
Wow. I used this app and I didn't get my phone blocked. Maybe the problem is something else? Re-record everything on your phone.
Maxxx17 said:
Wow. I used this app and I didn't get my phone blocked. Maybe the problem is something else? Re-record everything on your phone.
Click to expand...
Click to collapse
You didnt get you phone hacked using this trash app because you didnt question the owner of the app about the shady invasive malicious permissions it uses ...smh
Also this app proxys all your data and activity thru his server....the required sign up and login for the app to work is the first dead giveaway and a huge red flag
Lol...the owner of this app doesnt even use ssl for his server or app...its all tsl...unencrypted...lol...poor fella has no clue whos monitoring and accessing his server and network now...smh...this app wont be around much longer...i promise ...lol
HELLFISH420 said:
You didnt get you phone hacked using this trash app because you didnt question the owner of the app about the shady invasive malicious permissions it uses ...smh
Click to expand...
Click to collapse
You may be right. Be careful next time.
yeah the owner is in trouble and he dont even know it....he even tried to push a zip file to my phone (script)
HELLFISH420 said:
Lol...the owner of this app doesnt even use ssl for his server or app...its all tsl...unencrypted...lol...poor fella has no clue whos monitoring and accessing his server and network now...smh...this app wont be around much longer...i promise ...lol
Click to expand...
Click to collapse
I can't believe I missed this thread. Such gold in here.
Since you brought it up, you were banned after you made false claims about the Shield. We offered you MANY chances to prove your claims and you never did, just more talk and more claims and never any proof. Which I expect you will do here, can't wait I have my popcorn ready.
My favorite part is where you think SSL is encrypted and TLS isn't. Protip: SSL is insecure and shouldn't be used, ever. But don't take my word for it. Take Cloudflare's, one of the experts on this - https://www.cloudflare.com/learning/ssl/what-is-ssl/
As far as the shield not being around much longer, well that is also wrong, still going strong - never got an email or call from my Samsung rep like you said I would. You sure you were talking to Samsung and they said they were shutting us down?
The dots in Gmail, nothing to do with my script (Android doesn't run scripts, it runs Java FYI) Dots in Gmail don't do anything, once again don't take my word for it take Google's, you know, the owner of Gmail - https://support.google.com/mail/answer/7436150?hl=en
We block dots in Gmail because it gives spammers/scammers unlimited email addresses. [email protected] gets blocked register again with [email protected] same email inbox. That one gets banned, repeat with another .
The claim of a zip file being pushed to a device is flat out false. You made that claim and never produced the zip file, or evidence it came from the Shield.
A quick check will prove the Shield couldn't do it. We don't ask for or want the Storage permissions. Without them we can't access, add, delete, or create any file outside our apps protected folder. Unless you are suggesting we are using a zero day Android exploit to push a zip file to your device (zip files don't execute so why would we do that in the first place?)
The claim that we proxy all of your traffic through my servers is easily debunked. If that were the case you would see every site using HTTPS throw a certificate error, (most apps won't work either) it is why you use HTTPS so you know if your connection is being hijacked.
We are also confused what shady malicious permissions you are talking about. Android defines the permissions and you either request to use them or not. Once requested the user must grant ones that can cause harm to your device, like storage (once again we don't ask for, we don't want it).
If you have made it this far I will tell you our theory why Hellfish is so bent on spreading lies. He/she used the Shield to disable some critical system apps and bricked their device. Mad, which we would also be, they reached out to us where we informed them sorry nothing we can do now, it is bricked. They also disabled safe mode and factory reset. Once again we have warnings stating be careful what you disable and to understand what you are doing.
Enraged they started spreading lies and when called out they doubled down, and tripled down until we banned them. We have our limits.
The best part, and we saved the login logs, is not even a day later Hellfish was logging in to the app on a S21 ultra. Guess you found a way to get it working. When confronted more lies were spread and that account was banned. (We kept finding your alt accounts because you kept having the name Hellfish in them. We figured after the first alt was banned you would figure it out, but you made it too easy to find you. I gave up looking for you after the fourth alt account was banned, if you want to use the app and keep bricking your phone go for it)
If you haven't noticed we don't bow to pressure or are PC. You mess up and blame us we call you on it, you either own up to your mistake or get banned. If that means I have social problem then ok, fine by me, I sleep just fine at night.
Including screenshot of the Shield having no permissions, most games have more permissions than we do.
lmao...80-90% of what you said is straight up lies...you did all sorts of messed up stuff...hell you even hacked my discord and changed my password...then when my team bypassed your malicious app login you sent me emails threatening me and saying i broke laws and all sorts of dumb sh** ...you know what your doing is wrong....alot of other people see and know what your doing...you log passwords...your app has multiple permissions...exodus and other online checkers
riven you wouldnt by any chance be running a bitcoin mining scam would ya? ...lol....you run scripts and exe. files thru chrome remotely...i seen it with my own eyes...stop denying it...you know all bs aside i was actually nice and trying to help but you got butthurt when i showed the true app permissions to the whole world to see...as far as whats already been done is done...mark my words ...your app WILL NOT BE AROUND FOREVER
you couldnt pay me to use your malicious app .....lol...since my run with you ive already compiled and built my own disabler app ...and guess what..it requires no internet connection...no logins ...no permissions of any kind..has no trackers or anayltics ...and its 100% free..unlike your bitcoin mining app/alliance shield app...lmao.
oh yeah one last thing [email protected]
RRiVEN said:
I can't believe I missed this thread. Such gold in here.
Since you brought it up, you were banned after you made false claims about the Shield. We offered you MANY chances to prove your claims and you never did, just more talk and more claims and never any proof. Which I expect you will do here, can't wait I have my popcorn ready.
My favorite part is where you think SSL is encrypted and TLS isn't. Protip: SSL is insecure and shouldn't be used, ever. But don't take my word for it. Take Cloudflare's, one of the experts on this - https://www.cloudflare.com/learning/ssl/what-is-ssl/
As far as the shield not being around much longer, well that is also wrong, still going strong - never got an email or call from my Samsung rep like you said I would. You sure you were talking to Samsung and they said they were shutting us down?
The dots in Gmail, nothing to do with my script (Android doesn't run scripts, it runs Java FYI) Dots in Gmail don't do anything, once again don't take my word for it take Google's, you know, the owner of Gmail - https://support.google.com/mail/answer/7436150?hl=en
We block dots in Gmail because it gives spammers/scammers unlimited email addresses. [email protected] gets blocked register again with [email protected] same email inbox. That one gets banned, repeat with another .
The claim of a zip file being pushed to a device is flat out false. You made that claim and never produced the zip file, or evidence it came from the Shield.
A quick check will prove the Shield couldn't do it. We don't ask for or want the Storage permissions. Without them we can't access, add, delete, or create any file outside our apps protected folder. Unless you are suggesting we are using a zero day Android exploit to push a zip file to your device (zip files don't execute so why would we do that in the first place?)
The claim that we proxy all of your traffic through my servers is easily debunked. If that were the case you would see every site using HTTPS throw a certificate error, (most apps won't work either) it is why you use HTTPS so you know if your connection is being hijacked.
We are also confused what shady malicious permissions you are talking about. Android defines the permissions and you either request to use them or not. Once requested the user must grant ones that can cause harm to your device, like storage (once again we don't ask for, we don't want it).
If you have made it this far I will tell you our theory why Hellfish is so bent on spreading lies. He/she used the Shield to disable some critical system apps and bricked their device. Mad, which we would also be, they reached out to us where we informed them sorry nothing we can do now, it is bricked. They also disabled safe mode and factory reset. Once again we have warnings stating be careful what you disable and to understand what you are doing.
Enraged they started spreading lies and when called out they doubled down, and tripled down until we banned them. We have our limits.
The best part, and we saved the login logs, is not even a day later Hellfish was logging in to the app on a S21 ultra. Guess you found a way to get it working. When confronted more lies were spread and that account was banned. (We kept finding your alt accounts because you kept having the name Hellfish in them. We figured after the first alt was banned you would figure it out, but you made it too easy to find you. I gave up looking for you after the fourth alt account was banned, if you want to use the app and keep bricking your phone go for it)
If you haven't noticed we don't bow to pressure or are PC. You mess up and blame us we call you on it, you either own up to your mistake or get banned. If that means I have social problem then ok, fine by me, I sleep just fine at night.
Including screenshot of the Shield having no permissions, most games have more permissions than we do.
Click to expand...
Click to collapse
one last thing fool...stop putting ip grabber links in the comments...your just asking for trouble ...lmao
HELLFISH420 said:
lmao...80-90% of what you said is straight up lies...you did all sorts of messed up stuff...hell you even hacked my discord and changed my password...then when my team bypassed your malicious app login you sent me emails threatening me and saying i broke laws and all sorts of dumb sh** ...you know what your doing is wrong....alot of other people see and know what your doing...you log passwords...your app has multiple permissions...exodus and other online checkers
Click to expand...
Click to collapse
All I see is more accusations and ZERO proof. Typical Hellfish.
Where is the poof I log passwords? I will happily give you any version of the Shield going back 2 years. Decompile it and show me the password grabber, or exodus, or anything else. You can't so I won't be holding my breath.
It has multiple permissions yes, but most are so the Knox features work. You know what permissions I don't request? Storage.
HELLFISH420 said:
riven you wouldnt by any chance be running a bitcoin mining scam would ya? ...lol....you run scripts and exe. files thru chrome remotely...i seen it with my own eyes...stop denying it...you know all bs aside i was actually nice and trying to help but you got butthurt when i showed the true app permissions to the whole world to see...as far as whats already been done is done...mark my words ...your app WILL NOT BE AROUND FOREVER
Click to expand...
Click to collapse
Once again more accusations and yet zero proof. Same offer still stands, show me the malicious permissions, what ever that means.
Since we banned you for lies it has been half a year. My app is still here. Still waiting for it to be taken down. My guess is another 6 months will pass and we will still be here.
You were nice and we were nice untill we asked for proof about your wild claims, then it changed. Suddenly we were the bad guys. Extraordinary claims require extraordinary evidence.
HELLFISH420 said:
you couldnt pay me to use your malicious app .....lol...since my run with you ive already compiled and built my own disabler app ...and guess what..it requires no internet connection...no logins ...no permissions of any kind..has no trackers or anayltics ...and its 100% free..unlike your bitcoin mining app/alliance shield app...lmao.
Click to expand...
Click to collapse
We are happy for you, really are, no sarcasm, but once again you don't understand why we have the login.
All it takes is reading our website feature list to see why, but hey you compare apples to carrots.
Also you better hope Samsung doesn't find out you are using Knox to disable system apps or your key will be revoked.
If it uses Samsung Knox, then it needs an internet connection, so excuse me If I don't believe you 100%
HELLFISH420 said:
oh yeah one last thing [email protected]
one last thing fool...stop putting ip grabber links in the comments...your just asking for trouble ...lmao
Click to expand...
Click to collapse
What are you even talking about? I really think you need to get help, your infatuation of us is weird and how you think everything we do is hacking you.
Trust me, if I had a zero day (which I don't) I wouldn't use it to hack random people via my legit app we worked 5 years on and almost half a million downloads. I would sell it for $100,000 and then find the next one.
But hey, you think whatever you want.
Edit:
After reading my comment again do you think the Cloudflare or Google link is an ipgrabber? I take it you never heard of Cloudflare or Google, interesting.
Cloudflare has a market cap of 65 Billion and Google 1.99 Trillion, very huge respected tech companies.
Hi Rriven, I just heard about your app and was surprised that it involved using Samsung Knox. That sparked my curiousity, so I did an some analyzing and I have a curious question. Does your connection with the US Military/Army help you create this app. I did see that the DoD (Department of Defense) has approved and worked with Samsung, Knox specifically in creating a phone for the Military. And according to your LinkedIn profile, it shows that you have DoD clearance.
Suprnova84 said:
Hi Rriven, I just heard about your app and was surprised that it involved using Samsung Knox. That sparked my curiousity, so I did an some analyzing and I have a curious question. Does your connection with the US Military/Army help you create this app. I did see that the DoD (Department of Defense) has approved and worked with Samsung, Knox specifically in creating a phone for the Military. And according to your LinkedIn profile, it shows that you have DoD clearance.
Click to expand...
Click to collapse
Any legit company can apply to use Samsung Knox, which I did.
My connection with the Military has nothing to do with the app. The Shieldx was created in my spare time using my company (RRiVEN LLC) that I set up as a College project before I joined the Military.
Knox is a very powerful system that the Shield only scratches the surface of what it can do. I am not surprised that the Military uses it.
This hellfish character is a troll. Shield is a great app and works well. Only I don't stick with it because there is still no way to add large hosts from online sources easily. Once that happens, I'm switching. Until then, adhell3 is the best solution.
Wow that war was awesome to read. Go Alliance Shield X whoo whoo !!! lol
this issue has been resolved....mods please delete this entire post
I'm not related to hellfish or whatever, just saw a recommendation in the internet - app to control running services on Samsung devices, well that was quite an experience.
This is just ridiculous software, probably author is a follower of well known Terry Davis (god bless his soul) with his well known TempleOS. IT IS JUST FREAKING RIDICULOUS! never ever install that crap and stay away... just a complete nonsense beyond imagination, you may get a taste of it just browsing through official website, which was already very much suspicions, but I registered and installed anyways... mother of god...
also author's weak excuses about dot in emails? WHAT ON EARTH???? have you ever seen a single rnd generator... do you have a slightest idea how email works, any understanding of modern spam\antispam techniques? zero, zilch... my god... sheeez....
HELLFISH420 said:
this issue has been resolved....mods please delete this entire post
Click to expand...
Click to collapse
How did you resolved the issue? pls update me about the solution so we can also try..
HELLFISH420 said:
you couldnt pay me to use your malicious app .....lol...since my run with you ive already compiled and built my own disabler app ...and guess what..it requires no internet connection...no logins ...no permissions of any kind..has no trackers or anayltics ...and its 100% free..unlike your bitcoin mining app/alliance shield app...lmao.
Click to expand...
Click to collapse
also how can I get this software of yours? Have you uploaded this in the forum or playstore or somewhere else? Please update me...