Hello everyone!
I've just bought my 1+6 and I really don't want to lose it.
Is there a way for protecting the phone against theft? I mean, against a thief trying to flash the ROM.
I was thinking in installing Cerberus but it won't survive as a system app.
Is there some tutorial for making Cerberus beneath ROM ? Is there a way for preventing and blocking flash?
I know for example that Xiaomi Redmi 4 Pro had the bootloader locked and the only way for flashing was by login in xiaomi site and unlock the bootloader.
What can we do for protecting OnePlus 6 ?
Thank you all!
cmlssr said:
Hello everyone!
I've just bought my 1+6 and I really don't want to lose it.
Is there a way for protecting the phone against theft? I mean, against a thief trying to flash the ROM.
I was thinking in installing Cerberus but it won't survive as a system app.
Is there some tutorial for making Cerberus beneath ROM ? Is there a way for preventing and blocking flash?
I know for example that Xiaomi Redmi 4 Pro had the bootloader locked and the only way for flashing was by login in xiaomi site and unlock the bootloader.
What can we do for protecting OnePlus 6 ?
Thank you all!
Click to expand...
Click to collapse
It is encrypted to begin with and you cannot access any data without the password/pin/pattern, if you have either set. If you unlock bootloader, it will erase everything in the phone, including internal storage.
Recovery mode
I protected my phone with FTP (my phone was already assigned to my gmail account and encrypted) so I tried to test it what would happen if anyone steals me.
I entered the recovery mode and hit recover and then Forget Password and only by doing that I did a hard reset on my phone! How can I prevent this from happening ? It’s a big flaw that I can do this without password. I know that after this I must enter with the previous gmail account.. But still.. I’m sure there is a workaround.
mikex8593 said:
It is encrypted to begin with and you cannot access any data without the password/pin/pattern, if you have either set. If you unlock bootloader, it will erase everything in the phone, including internal storage.
Click to expand...
Click to collapse
android.com/find
just leave data and GPS on - you can always locate your phone, and wipe it remotely if needed.
virtyx said:
android.com/find
just leave data and GPS on - you can always locate your phone, and wipe it remotely if needed.
Click to expand...
Click to collapse
The thing is, you can swipe down for notification bar and turn on airplane mode directly from lockscreen. GPS and location will not work afterward :silly:
elrosid said:
The thing is, you can swipe down for notification bar and turn on airplane mode directly from lockscreen. GPS and location will not work afterward :silly:
Click to expand...
Click to collapse
silly google
should prevent people from turning ap mode on and disabling any settings set before screen lock - similar to how google pay needs you to unlock screen to use it, same thing should be set for the settings in the status bar,
elrosid said:
The thing is, you can swipe down for notification bar and turn on airplane mode directly from lockscreen. GPS and location will not work afterward :silly:
Click to expand...
Click to collapse
Thanks for that heads up...
I've just removed mine with the editor so it doesn't show. That makes my access to airplane mode a couple of more steps but probably worth it.
I'm interested too in how to protect against theft, I just got mine stolen.
About the status bar, even if he cannot put airplane mode, he can still switch off the phone and take out the Sim card.
If you don't unlock the bootloader they cannot use the phone but it doesn't mean that you'll get it back.
If you install cerberus as a system app, you have to unlock the bootloader, isn't it possible to relock the bootloader after install cerberus and keep it as system app?
Sent from my H8324 using Tapatalk
Related
I've just encrypted my Nexus 5 under Android 5.0 and I was hoping I could set a decryption PIN just for the startup boot process, and not every time I unlock my phone. I haven't managed to find a way to do this, though: it's possible to enable a startup PIN if you enable the lock screen PIN, but I don't see a way to simply enable a startup PIN.
My goal is simple: to secure my phone when it's powered off, while making it comfortable to use when it's powered on. Can this be done?
Thank you!
Not by standard. Not sure what affects using apps that turn the secure lock on and off will have. You can test them.
rootSU said:
Not by standard. Not sure what affects using apps that turn the secure lock on and off will have. You can test them.
Click to expand...
Click to collapse
OK, I will, thank you for your response.
jpabloae said:
My goal is simple: to secure my phone when it's powered off
Click to expand...
Click to collapse
When its off its already secure since no electrons flow through it...
jpabloae said:
I've just encrypted my Nexus 5 under Android 5.0 and I was hoping I could set a decryption PIN just for the startup boot process, and not every time I unlock my phone. I haven't managed to find a way to do this, though: it's possible to enable a startup PIN if you enable the lock screen PIN, but I don't see a way to simply enable a startup PIN.
My goal is simple: to secure my phone when it's powered off, while making it comfortable to use when it's powered on. Can this be done?
Thank you!
Click to expand...
Click to collapse
i'd say you want your phone to boot if you loose it (so you can track it), don't you think?
kenshin33 said:
i'd say you want your phone to boot if you loose it (so you can track it), don't you think?
Click to expand...
Click to collapse
That's reasonable in most cases. But there are situations and circumstances in which the data privacy has a higher priority than the ability to track the phone. Anyway the question can be considered independently from its motivations: can I separate the encryption key from the lock screen key? According to issue 29468 and this discussion, it seems it's still not possible.
jpabloae said:
That's reasonable in most cases. But there are situations and circumstances in which the data privacy has a higher priority than the ability to track the phone. Anyway the question can be considered independently from its motivations: can I separate the encryption key from the lock screen key? According to issue 29468 and this discussion, it seems it's still not possible.
Click to expand...
Click to collapse
according to this:
http://source.android.com/devices/tech/encryption/
out of the box, no because the lock screen password/PIN/ is used to encrypt the actual encryption key (randomly generated)
thank you very much b/c indirectly you answered the question I had (the reason I was browsing this thread), namely the boot password thinggy (as I said I'd like the phone to boot, baring an exploit, it's well protected: bootloader relocked, long password, impossible to flash anything without wiping - I sign my builds cm-12 with my own keys, and I crippled the recovery to allow only signed zips-, and no adb -even in recovery- connection outside my own computer, I installed cerberus in the system partition without a backup script, the only way to get rid of it is to explicitly format the system partition, and above all I don't trust the phone ).
that said, it should be possible may be to fiddle with vold's sources to make it so (separate passwords, it shouldn't be too hard ) the only problem in the absence of an "official" solution (be it in AOSP or the flavor du jour Android) the user is backed into a corner : build his own ROM from sources.
I have version 5.0.1 with pattern lock, with the apps Lockwatch & Smart Lockscreen Protector.
But it's useless when anyone can just access the quick settings from the lockscreen and switching off Wifi/Data or turning on airplane mod..
There is any way to block access to this toggles? Or even to the whole Quick Settings?
I can live without access to the flashlight in lockscreen if that a problem..
RonAmihai said:
I have version 5.0.1 with pattern lock, with the apps Lockwatch & Smart Lockscreen Protector.
But it's useless when anyone can just access the quick settings from the lockscreen and switching off Wifi/Data or turning on airplane mod..
There is any way to block access to this toggles? Or even to the whole Quick Settings?
I can live without access to the flashlight in lockscreen if that a problem..
Click to expand...
Click to collapse
Wrong section bro, post in Q&A, by the way, why would you bother someone disconnecting your wifi and Bluetooth, they can't turn on 4g and all that things which cost money in monthly plan.
One scenario comes in mind. When you lose your phone and want to use device manager to find the phone. If someone stole your phone, can easily put it in airplane mode so you can't locate it
Wonder why Google can miss this. Just like screen still turn on when on pocket with ambient display ON.
If you unlocked, you can try Cataclysm or N5X. Both has option to disabled it. Hope this help.
Slimlp also has this. Stock, no
Im unlocked, but "clean" rooted (stock rom+recovery+kernel with cf-auto root).
Since google added SELinux at enfoce mod by default in Lollipop (which avoids OTA installing at any state of Root), i'm considring to install a custom room.
But if to be honest, I really don't want to (I hate to mess around with all that thanks the crappy Galaxy S3 I had.. I bought the Nexus 5 in thought I could stay with stock+OTA and enjoy "clean" root+Xposed.. Apparently Google had other plans )
So if someone have an idea to avoid access to wifi/data/aiplane mod toggles from lockscreen, I will be happy to hear.
RonAmihai said:
Im unlocked, but "clean" rooted (stock rom+recovery+kernel with cf-auto root).
Since google added SELinux at enfoce mod by default in Lollipop (which avoids OTA installing at any state of Root), i'm considring to install a custom room.
But if to be honest, I really don't want to (I hate to mess around with all that thanks the crappy Galaxy S3 I had.. I bought the Nexus 5 in thought I could stay with stock+OTA and enjoy "clean" root+Xposed.. Apparently Google had other plans )
So if someone have an idea to avoid access to wifi/data/aiplane mod toggles from lockscreen, I will be happy to hear.
Click to expand...
Click to collapse
As already stated, only with custom ROM. There is no other answer.
By the way, I had an s3. This phone is completely different. Don't let the s3 put you off flashing on the n5
what
RonAmihai said:
I have version 5.0.1 with pattern lock, with the apps Lockwatch & Smart Lockscreen Protector.
But it's useless when anyone can just access the quick settings from the lockscreen and switching off Wifi/Data or turning on airplane mod..
There is any way to block access to this toggles? Or even to the whole Quick Settings?
I can live without access to the flashlight in lockscreen if that a problem..
Click to expand...
Click to collapse
Anyone can press the power button on your phone too.
Quick access to the radios is useful.
Until 4.2/4.2.2 anyone could just connect a cable to your phone and use ADB to pull everything off.
Don't give your phone to strangers or place in unsafe places.
whatnoway said:
Anyone can press the power button on your phone too.
Quick access to the radios is useful.
Until 4.2/4.2.2 anyone could just connect a cable to your phone and use ADB to pull everything off.
Don't give your phone to strangers or place in unsafe places.
Click to expand...
Click to collapse
None of this is possible with a locked screen. Accessing the radios on a locked screen can prevent you tracking it. Sure, like you say, it can be turned off not another issue is accessing the guest account and installing malicious apps and making calls. Bit of a security hole if you ask me.
RonAmihai said:
I have version 5.0.1 with pattern lock, with the apps Lockwatch & Smart Lockscreen Protector.
But it's useless when anyone can just access the quick settings from the lockscreen and switching off Wifi/Data or turning on airplane mod..
There is any way to block access to this toggles? Or even to the whole Quick Settings?
I can live without access to the flashlight in lockscreen if that a problem..
Click to expand...
Click to collapse
That really don't matter. I wanna steal ur phone I'm booting recovery and wiping then pattern lock won't matter or quick settings menu.
Sent from my Nexus 5 using XDA Free mobile app
31ken31 said:
That really don't matter. I wanna steal ur phone I'm booting recovery and wiping then pattern lock won't matter or quick settings menu.
Sent from my Nexus 5 using XDA Free mobile app
Click to expand...
Click to collapse
Not with a recovery lock and locked bootloader. At least my data is safe. Whats wrong with wanting a safe phone? Why have a lock at all if it can be semi-bypassed by quick settings.
You're right though, would be nice of TWRP also had recovery lock. At least we still have philz for now.
But yeah, I can get YOUR data no matter what you do, even after factory reset, but doesn't mean everyone can.
Its kind of like say "dont bother locking your doors because we can break your windows". We all still lock our doors.
I also think that this is a very serious issue.
When I lock my phone I want it to be locked completely not partially.
Have anyone figured how to disable quick access on locked screen (locked with password, pin or pattern)?
And also to remove camera icon?
The only thing i want on my lock screen is to enter my password and see notifications (this is something I am able to do alredy =))
Thank you!
I am hoping on an xposed module :angel:
kurci2 said:
I also think that this is a very serious issue.
When I lock my phone I want it to be locked completely not partially.
Click to expand...
Click to collapse
The 'Quick settings' menu can be edited - when the phone is unlocked open quick settings panel and tap and hold any of its icons, you will be allowed to remove or add some functionalities. Just remove 'airplane mode' and 'mobile data'. This way when the phone is locked no one can disable its connectivity.
The drawback is that you can't switch the airplane mode easily even when the phone is unlocked.
Hi, I am trying improve the security on my phone, There has been a recent report about a guy who was forced to enter his unlock screen password to border officials at the airport (although he didn't comply). This is a HUGE abuse of power and an even bigger violation of privacy.
I hope never to be in that situation, but if i am i want an easy way out so i am looking for the following solutions:
Entering a secret code / Pattern on the lockscreen that would trigger a factory reset
And / Or
A secret code / Pattern on the lockscreen that would load a "dummy" home Lanucher
as far as i can tell neither exist. Any help/Advice would be great, thanks
Just enter into the guest mode?
HOW??
aniketpatil87 said:
Just enter into the guest mode?
Click to expand...
Click to collapse
How? I mean suppose that official is infront of you , how will you switch to gusest mode wihout letting him know .... i mean in power off option ?? or any other way?
What you are describing is similar to the plausible deniability mode of Truecrypt. However Android doesn't have this function natively, and I don't see how you can implement it without doing some major modification to the system.
What about bringing a secondary phone as a distraction instead?
There is already one major bug in Google Play services 7.0.97 reported by Android Police which alllows attackers to unlock the phone without any password since it takes around 15 ~ 20 seconds to re-apply the lock. Another hole seems that attackers could steal your phone if your phone just gets into the standby mode with disabled sceen. There are general known attacks with such smart-lock enabled function which allows to bypass the pin.
not sure if this is relevant , but on any phone i've owned with a 'swipe-down-status-bar' when phone is showing lock screen all i have to do is swipe the status bar down and can click on any icon to bypass lockscreen then back out of that setting , i.e. settings , apps , wifi , etc. and will be on home screen.
"all I can really do , is stay out of my own way and let the will of heaven be done"
mrrocketdog said:
not sure if this is relevant , but on any phone i've owned with a 'swipe-down-status-bar' when phone is showing lock screen all i have to do is swipe the status bar down and can click on any icon to bypass lockscreen then back out of that setting , i.e. settings , apps , wifi , etc. and will be on home screen.
"all I can really do , is stay out of my own way and let the will of heaven be done"
Click to expand...
Click to collapse
That only works if you didn't set any password lock.
I have es file manager, and i zip and password protect files or folders wich i need but dont want people finding if my phone ever gets stolen. you can check that out.
Maybe there's gonna be something I oversee, but you could (easily) do this with Tasker.
You could use tasker to make an 'app' to login with a different profile on your android. By opening that app, you go into a self-defined stealth-mode, where you disable everything you want to hide and where you open a minimal homescreen.
Tasker + Secure Settings should have all the tools you need to set it up without destroying your real security.
Maybe dual booting to an empty ROM with sdcard access removed and only a small amount of fake information down on the device?
Would not help if they decided to copy your entire devices info for a close exam but should fool most guards into thinking you don't use your phone much.
Just reboot into that ROM at any time you think anyone would ever check.
Hello all. I have a problem. I can not, for the life of me, figure out how to set my lock screen to 'None'. I've tried:
Disabling fingerprints and fingerprint unlock,
Disabling smart unlock and any trusted agents
Disabling and uninstalling Android Pay and Android Wallet,
Disabling NFC,
I have no VPNs
I have no administrators enabled,
I have cleared my credential storage,
powered off my phone and powered it back on
I do not have any encryption enabled
and still 'None' is grayed out with the "Disabled by Administrator, encryption policy, or credential storage" message.
I just can't think of anything else to try in order to disable the lockscreen. Can anyone please help me?:crying: Thank you for anyone help anyone can offer. I'm desparate!
You seem to have tried everything. Only thing else I can think of is I know sometimes if apps are allowed draw over others, the phone can block some security settings.
Just a suggestion, but if you go into your apps in settings and change it there, maybe it'll work
All I can suggest then is a factory reset unfortunately, I cannot think of anything else to change
Sorry I couldn't be of more help
Draw over other apps
Should I disable Draw over other apps for every app in the list or any one in particular?
Schuettais said:
Should I disable Draw over other apps for every app in the list or any one in particular?
Click to expand...
Click to collapse
I have exactly the same problem,after factory reset it s ok,but after instalation couples of apps and other stufs again is the same...i dont know where is problem...is anybody resolve this without factory reseting phone?
We have this issue on our Honor 8. It's my son's phone so I can't test possible solutions. One I read was to remove all credentials. Since I don't have the phone, I have no idea where credentials are. Another I read said to create a pattern lock and a pin emergency lock. Use the WRONG pattern 5 times or until it requires the back-up pin. Enter back-up pin then the "none" choice returned. It will be a few more weeks before I have access to the phone. If either works, please report back.
Sent from my Nexus 5X using Tapatalk
ritchea said:
We have this issue on our Honor 8. It's my son's phone so I can't test possible solutions. One I read was to remove all credentials. Since I don't have the phone, I have no idea where credentials are. Another I read said to create a pattern lock and a pin emergency lock. Use the WRONG pattern 5 times or until it requires the back-up pin. Enter back-up pin then the "none" choice returned. It will be a few more weeks before I have access to the phone. If either works, please report back.
Sent from my Nexus 5X using Tapatalk
Click to expand...
Click to collapse
I once had that problem. This is what I did and it worked for me.
Ihaveatattoo said:
I once had that problem. This is what I did and it worked for me.
Click to expand...
Click to collapse
Thanks.
Sent from my Nexus 5X using Tapatalk
1 app can help u out here ( Gravity Screen ) better if have the purchased one . will never neet un unlock ur device any more =)
GD Luck .
Romiui said:
1 app can help u out here ( Gravity Screen ) better if have the purchased one . will never neet un unlock ur device any more =)
GD Luck .
Click to expand...
Click to collapse
He's talking about removing the lock screen, and he's fixed it... ?
jkccl9 said:
He's talking about removing the lock screen, and he's fixed it...
Click to expand...
Click to collapse
Try The app then Decide if any thing u done by removing is better than this app ( Try To download payed app ) .
Romiui said:
Try The app then Decide if any thing u done by removing is better than this app ( Try To download payed app ) .
Click to expand...
Click to collapse
U need to read the OP again... That isn't his problem
My last phone you couldn't turn off, reboot, or change network settings while the phone is locked. This is a very useful feature as if your phone "walks away" tracking cannot be disabled so as long as your battery is not dead you have full tracking abilities.
I did notice this feature seems to work with GPS. If you try to toggle, it will prompt for a password but that alone isn't enough to track it. I need to lock mobile data as well. I could probly just remove it from my notification tray but that is an inconvenience as I do use that toggle.
Any Ideas?
Username5.2 said:
My last phone you couldn't turn off, reboot, or change network settings while the phone is locked. This is a very useful feature as if your phone "walks away" tracking cannot be disabled so as long as your battery is not dead you have full tracking abilities.
I did notice this feature seems to work with GPS. If you try to toggle, it will prompt for a password but that alone isn't enough to track it. I need to lock mobile data as well. I could probly just remove it from my notification tray but that is an inconvenience as I do use that toggle.
Any Ideas?
Click to expand...
Click to collapse
Not all devices have added those as all it takes to beat them is removing the sim card and all android devices will reboot if the power button is held for an extended time.
Well I thought about the reboot and it will boot back up so I didn't see that as a problem. Didn't think about the sim card though. Well lets just hope if someone gets a hold of my phone they won't think about it either. Anything I can do to make it harder is still worth it.
Oh well. If someone has a way to make this happen please share. I don't even know if its something I can make happen with an app or by editing anything in the android system. I will keep looking in the mean time.
Username5.2 said:
Well I thought about the reboot and it will boot back up so I didn't see that as a problem. Didn't think about the sim card though. Well lets just hope if someone gets a hold of my phone they won't think about it either. Anything I can do to make it harder is still worth it.
Oh well. If someone has a way to make this happen please share. I don't even know if its something I can make happen with an app or by editing anything in the android system. I will keep looking in the mean time.
Click to expand...
Click to collapse
I can tell you that there are 3 steps when a device is stolen and the first one is remove the battery and the second is remove the sim card so no one can call it. the 3rd step is resetting it.
You will need a custom rom to get those options.
If you care about security too much, I would say never unlock your bootloader.
Its so easy to keep pressing the power button and reboot to bootloader and flash stuff to access your memory (With unlocked bootloader of course)
But with locked BL, they have to erase the storage in order to unlock it and do stuff. So, if security is a big concern to you, its good to always keep it locked.