Hello guys!
Tired of typing your password each time you want to unlock your computer?
After months of work, I have finally launched my project, Remote Fingerprint Unlock, which allows you to remotely wake up and unlock your Windows computer with a single fingerprint tap!
Features:
• Simple, user-friendly UI
• Secure
• Local/Microsoft/Domain** accounts supported
• 3 app themes - Light, Dark, Black (AMOLED)
• Wi-Fi/Bluetooth/Wi-Fi Tethering support
**1.2.0 version of the Windows module required. Usage: when adding an account using the Android app, simply add the full name of the account, including the domain, separated by a slash ( ‘\’ ). For example: test\account.name
PRO features:
• Ads removal
• Unlimited computers and account per computer
• Wake-On-Lan
• Unlock widgets - can be linked to any account, useful if you have more computers that you want to unlock
• Launcher shortcuts - same as widgets, can be used by long-tapping the app icon or can be pinned like any other launcher shortcut
• More planned features
With that being said, here is the link to the app: Google Play or XDA Labs
The Windows module, found at http://bit.ly/2Q4YoUP is required for the app to work. Please be sure to check for updates from time to time as they can contain fixes and add new features. The changelog can be found at the same link.
The app was featured on XDA News, thanks to the guys at XDA! :highfive: So, if you think that you need such a tool, be sure to give it a try!
Lastly, any question that you may have, be it about how the app works, how to use it or if you are just leaving feedback, don't hesitate posting it here! Thanks for taking the time to check the app!
Security
The communication between modules is secured using TLS (SSL). The accounts are stored on your computer as they are required when unlocking. However, they are encrypted using a key that is generated based on your fingerprint. As per this article, the generated key is backed by a Trusted Execution Environment, which prevents an attacker from gaining access to the key even if he had compromised the kernel. In other words, only the enrolled fingerprints on your phone can access the key. If you do uninstall, reset your app or even if you change one of your registered fingerprints, the file where the accounts are stored is lost forever and you will need to reconfigure your accounts.
Lastly, research has been done to ensure that, even locally, your accounts are as safe as possible. No password is stored in-app and everything is done locally (between the app and the Windows module) and I'm not, in any way, shape or form, sending through the Internet or seeing anything that you type in-app.
Basic troubleshooting
If you cannot find you computer in the Scan menu, please check the following:
Be sure that the module is present on your logon screen. For example, on Windows 10, you should see it on the lower left corner of the screen. If you installed the program and it still isn’t present, please leave a reply, send me a PM or an email.
If you have a different firewall than Windows Firewall, please be sure that you have allowed all incoming and outgoing traffic on both TCP and UDP for LogonUI.exe process, found in C:\Windows\System32.
Be sure that both your computer and your smartphone are connected to the same network which assigns IP addresses on the same subnet. For example, both devices should have an IP starting with the same subnet prefix: 192.168.1.
If you have blocked ports on your network, be sure to allow port 4009 on both TCP and UDP for the app to function correctly.
If you added an account but unlocking does not work, please check the following:
If you are using a Microsoft account: if you tried adding an account, used your email address and it does not work, please update the Windows module to at least 1.0.2, which supports logging in a user using the displayed account name on the lockscreen. When adding an account in-app, try again by using the displayed name of that Microsoft account (the First and Last names).
If you are using a local account on Windows Vista or 7, you may have changed your account name in the past. Internally, Windows does not change the username so you need to type in the original username.
If you can’t remember it, just open a Command Prompt and type 'whoami’. The username that will be displayed is the one that the app will need.
You can also check how your personal user folder is called. It can be found in C:\Users.
On Windows 8 and 10, have at least the 1.0.2 version installed and simply add an account using the displayed name on the lockscreen.
Setting up/Testing Wake On Lan (PRO feature)
To enable WoL on your computer, you can follow the steps here. To enable WoL on your computer, follow the first part. After that, you can continue with the same tutorial if you have another computer available, or you can download this app on your Android phone to test it.
To send the WoL signal using the app, simply go to the saved computers, tap on the desired computer, tick Send WoL-Packet and Save. There is no need to configure anything as your MAC address is automatically detected when you add your computer. The wake-up signal will now be sent each time you unlock one of the accounts on that PC.
Take into consideration that on some computers, you may also need to enable WoL in your BIOS settings and that it may work only on certain states like being fully shut down, hibernated or sleeping. There is nothing I can do about it, unfortunately, as it depends on your PC. Thanks for understanding!
So the fingerprint is saved on your server? How can we make sure that it will not be exploited?
scissorscrush said:
So the fingerprint is saved on your server? How can we make sure that it will not be exploited?
Click to expand...
Click to collapse
No! Actually it is not! The fingerprint verification is only done locally using only your phone's secure hardware. This is all that Android Fingerprint API's allow a developer to do: they just report back if a scanned fingerprint is found on a phone's system or not and the unique key that is generated when you first scan your fingerprint can be accessed only if there was a successful fingerprint scan.
So all of this part is done using Android's Fingerprint API. There is no back-end involved in any of this. With the exception of crash logs and ads, the Android app and the Windows module only communicate with each other.
Hope that it clarifies some of the aspects! Feel free to reply back if you have any other questions.
Andrew-X said:
No! Actually it is not! The fingerprint verification is only done locally using only your phone's secure hardware. This is all that Android Fingerprint API's allow a developer to do: they just report back if a scanned fingerprint is found on a phone's system or not and the unique key that is generated when you first scan your fingerprint can be accessed only if there was a successful fingerprint scan.
So all of this part is done using Android's Fingerprint API. There is no back-end involved in any of this. With the exception of crash logs and ads, the Android app and the Windows module only communicate with each other.
Hope that it clarifies some of the aspects! Feel free to reply back if you have any other questions.
Click to expand...
Click to collapse
Good dude. Gonna try it now and will report back ?
Unsuccessful. Could not add the account. Tried both pin and password.
scissorscrush said:
Unsuccessful. Could not add the account. Tried both pin and password.
Click to expand...
Click to collapse
Sorry to hear that. You can't add an account in-app or you can add it but it does not unlock your computer? Also, are you using a Microsoft account or have you changed you account username sometime in the past?
Andrew-X said:
Sorry to hear that. You can't add an account in-app or you can add it but it does not unlock your computer? Also, are you using a Microsoft account or have you changed you account username sometime in the past?
Click to expand...
Click to collapse
Can't add the account in the app. When I fill the details (account and password) it disappears and I get a notification up top that the command is sent, waiting for computer to reply. But nothing appears in the account list within the app. Using a local account (admin) and no changes in the past 2 years.
scissorscrush said:
Can't add the account in the app. When I fill the details (account and password) it disappears and I get a notification up top that the command is sent, waiting for computer to reply. But nothing appears in the account list within the app. Using a local account (admin) and no changes in the past 2 years.
Click to expand...
Click to collapse
Ok, just to be sure. Is your computer locked (not on the desktop, but on the login screen) when you are trying to add an account?
Edit: oh, yeah. That notification does not affect the adding operation, but it should not appear when adding an account. Thanks for helping me discover a little bug, lol
Andrew-X said:
Ok, just to be sure. Is your computer locked (not on the desktop, but on the login screen) when you are trying to add an account?
Edit: oh, yeah. That notification does not affect the adding operation, but it should not appear when adding an account. Thanks for helping me discover a little bug, lol
Click to expand...
Click to collapse
Lol looks like you got some work to do ?
scissorscrush said:
Lol looks like you got some work to do
Click to expand...
Click to collapse
Already solved it But have you managed to add your account? If not, have you added the firewall exceptions for the LogonUI.exe process? (If you are using something else than Windows Firewall)
Andrew-X said:
Already solved it But have you managed to add your account? If not, have you added the firewall exceptions for the LogonUI.exe process? (If you are using something else than Windows Firewall)
Click to expand...
Click to collapse
Sadly no. The firewall exceptions were created properly. The lock screen was on. No Antivirus on either devices. It might not be a firewall issue because the app was able to communicate with the computer.
Can't find my PC windows 10 in scan. No firewall in the computer, should i enable bluetooth in both devices or what??
spring80 said:
Can't find my PC windows 10 in scan. No firewall in the computer, should i enable bluetooth in both devices or what??
Click to expand...
Click to collapse
It only works on local networks (Wi-Fi/Wired) at the moment, so both your Android device and your computer should be on the same network to communicate with each other.
Also, do you have your computer on it's lockscreen when scanning? (not on dekstop)
Andrew-X said:
It only works on local networks (Wi-Fi/Wired) at the moment, so both your Android device and your computer should be on the same network to communicate with each other.
Also, do you have your computer on it's lockscreen when scanning? (not on dekstop)
Click to expand...
Click to collapse
Yes it is on lockscreen when scanning, i have main firewall in our network, so which port should i open in this firewall??
spring80 said:
Yes it is on lockscreen when scanning, i have main firewall in our network, so which port should i open in this firewall??
Click to expand...
Click to collapse
Open up 4009 on both TCP and UDP and also allow both incoming and outgoing traffic. Tell me if it worked.
When i use home wireless network (no main firewall), it is working, but inside my work network which have main firewall, it is not working. I already open port 4009 (tcp/udp),same result
spring80 said:
When i use home wireless network (no main firewall), it is working, but inside my work network which have main firewall, it is not working. I already open port 4009 (tcp/udp),same result
Click to expand...
Click to collapse
Can you please check what IP's are your computer and your given when connected to your work network?
Glad to see this thread here, OP. Will try this out and cover on XDA ?
working here flawlessly ..
For a first version finding an option to activate the dark mode surprised me. Thank you
Andrew-X said:
Can you please check what IP's are your computer and your given when connected to your work network?
Click to expand...
Click to collapse
The both IPs are in same network, my mobile and my pc, problem from my main network firewall, if i use different network (without firewall), it is working. By the way i am using Kerio control as my main network firewall
Related
I have uploaded my first app on to the Android Market and haven't too much interest so far on XDA so I thought I would post a little bit more information about the app.
This is a simple and light weight app that allows you to securely store and easily login to different websites on your phone.
Do you have all your passwords saved into your devices web browser meaning that anyone who has access to your phone can log on to the websites that you’ve accessed. Do you regularly wipe your phone for whatever reason and get annoyed at having to keep typing in your username and password. Then this might be the app for you.
The app will store all the login information that you enter into the app, which include the company name, the web address, username and the password. Each login is listed on the front screen. If you click on the stored login it will load the website and copy the username to the clipboard allowing you to paste into the username field. Also, when you launch the website from the app it will also create a notification. Once you have copied the username you can then click on the notification to copy the password. This way you do not need to switch to and from the app and the browser to copy the login information. Once you have launched the website, the copying of the username and the password is done while the app is running in the background.
All passwords that are stored within the device are encrypted using AES encryption algorithm to ensure your data is safe.
To protect others from accessing the app you can enable a password that needs to be entered before getting access to the app. Also, for added protection you can enable a feature that will automatically reset the app back to first use if the password gets entered incorrectly 3 times.
The app enables you to backup and restore your stored logins to a file on the SD card of your device. Should you need to wipe your phone, or if you get a new device and want to restore the logins onto your new device you can use the file that was generated from the backup in order to restore your data.
Although the App has Internet Access this is only there to enable you to submit bug reports from inside the settings menu and to enabled adverts to support the app development. I promise you, know personal information that you store inside the app is sent over the internet.
The App can be found on the Android Market. There are two versions, one which is a free ad supported version and a donate version which is identical to the free version but doesn't show ads. Please search for Boardies Password Manager.
Thanks
A new update has been released today in order to enable support for Android 2.1 and up. Tests have also been made to ensure that the app works correctly on honeycomb
Hello,
I was wondering if there is a password manager out there which can be stored on a flashdrive so that I can plug it in to log into my PC among other applications and websites?
I have never used a password manager before, and since recent scandals involving password theft, I feel like a lot of people are posting about the benefits of a password manager, so I felt I should try a password manager as well. I want to go the whole nine yards though. I want an immersive experience to REALLY get a feel of whether or not I will use a password manager, so I want to change everything, including my google password and Microsoft password, and let my password manager handle keeping them.
However, my Microsoft password is linked to my PC, so my computer password changes when my Microsoft account password changes. If I change it to some randomly generated strong password I would not remember it and would depend entirely on the password manager, which is why I want to know if there is a portable application that can log into my PC for me as well.
Also, my google account is linked to my phone, and it keeps record of my call history, text messages, and contacts. These are things I want to be retained whenever I get a new phone, factory reset my current phone, or clean install a custom ROM, so is there a password manager that handles this as well? The problem with apps is the fact that we need Google Play Store to download and install them officially, and we need a google account to access Google Play Store. I know that I can sideload an apk from my computer to my phone, but let's say I get a new phone at Best Buy and just CAN'T wait to get home and start using it. When I boot up it'll ask for my Google account so it can restore my contacts at the very least, but I'd be dependent on my password manager and will not be able to login without it. Is there something I can do that will allow me to login immediately upon turning on this shiny new device?
I've tried Dashlane, they don't have a remedy for the things above, and it seems like most password managers do not. On top of Dashlane's android overlay doesn't pop up when adding a google account, whether it just be for gmail or other google services. I am pretty sure that my request is a stretch, and if so, I'll probably just continue to manually type in my own passwords, but I figured I'd ask and see if anyone knew of an app that might do what I want or is migrating in that direction.
Thanks,
Weilun
Hey there XDA
So I was reading this article the other day that pertains to security and encryption on the Android Operating System
http://www.bibliotecapleyades.net/sociopolitica/sociopol_cia38.htm
Basically what is says is that even if you use encryption in apps there's nothing preventing people from accessing your devices mic or camera
But I was thinking what if you encrypt ALL outgoing traffic? Now I'm not the most well versed guy when it comes to technology but I've heard about for example SSH tunnels
So I found this guide on how to setup one on Android: https://www.howtogeek.com/121698/how-to-route-all-your-android-traffic-through-a-secure-tunnel/
Would this effectively encrypt all outgoing data?
Eklondh said:
Hey there XDA
So I was reading this article the other day that pertains to security and encryption on the Android Operating System
http://www.bibliotecapleyades.net/sociopolitica/sociopol_cia38.htm
Basically what is says is that even if you use encryption in apps there's nothing preventing people from accessing your devices mic or camera
But I was thinking what if you encrypt ALL outgoing traffic? Now I'm not the most well versed guy when it comes to technology but I've heard about for example SSH tunnels
So I found this guide on how to setup one on Android: https://www.howtogeek.com/121698/how-to-route-all-your-android-traffic-through-a-secure-tunnel/
Would this effectively encrypt all outgoing data?
Click to expand...
Click to collapse
Not really, setting up an SSH tunnel will only encrypt your traffic between your device and your server, at some point most traffic will have to enter the internet in just as secure manner as it does now so that you can view a website for example, it will add another layer of security, but really only useful for privacy from those on your local network or (if your server is outside your ISP network) from your ISP also (but you'd have to change your DNS servers also or they can get info from there about sites you visit)
Also non of that will stop the issue you mention above about gaining access to your camera, mic, files etc that to beat encryption they just have to gain access to your phone, that could be as simple as sending you a malware link to your email, Whatsapp or whatever, which you visit. Which seems to be what my mum did 2 days ago, there was a well crafted email that appeared to be from Genes Reunited making specific reference to her personal private data & contacts in her account so she clicked the link, now she has no internet access & other issues on tablet, but of course I can't log in to fix from here & she can't follow my instructions over the phone properly! The email password she gave me doesn't work (I wanted to examine the file she clicked on), though there was no confirmation via txt of password changed. So right now I'm not sure as could be related to the TalkTalk hacks.... Or just my mum! Rant over!
So in short no, ssl is not a simple solution
this might help. https://www.torproject.org/
"err on the side of kindness"
IronRoo said:
Not really, setting up an SSH tunnel will only encrypt your traffic between your device and your server, at some point most traffic will have to enter the internet in just as secure manner as it does now so that you can view a website for example, it will add another layer of security, but really only useful for privacy from those on your local network or (if your server is outside your ISP network) from your ISP also (but you'd have to change your DNS servers also or they can get info from there about sites you visit)
Also non of that will stop the issue you mention above about gaining access to your camera, mic, files etc that to beat encryption they just have to gain access to your phone, that could be as simple as sending you a malware link to your email, Whatsapp or whatever, which you visit. Which seems to be what my mum did 2 days ago, there was a well crafted email that appeared to be from Genes Reunited making specific reference to her personal private data & contacts in her account so she clicked the link, now she has no internet access & other issues on tablet, but of course I can't log in to fix from here & she can't follow my instructions over the phone properly! The email password she gave me doesn't work (I wanted to examine the file she clicked on), though there was no confirmation via txt of password changed. So right now I'm not sure as could be related to the TalkTalk hacks.... Or just my mum! Rant over!
So in short no, ssl is not a simple solution
Click to expand...
Click to collapse
Heh, **** man.. Hope she sorts it out
Now I think I've decided to use an SSH tunnel paried with RSA authentication for the time being, it seems good enough for me
mrrocketdog said:
this might help. https://www.torproject.org/
"err on the side of kindness"
Click to expand...
Click to collapse
Tor seems awesome
The proper way to achieve this is using a vpn which permits flexibility on the networking side. I use openvpn server on my home computer and i connect my phones to it. It is set to redirect all traffic through the encrypted tunnel which is forwarded to the internet through my home computer.
Now as noted before the information still goes out to the net at some point and comes back. Encrypting traffic does not help if you click on something malicious out there.
It does help to prevent the directly connected network to snoop on your actual traffic though. Handy when you connect to free wifi etc. Also you can filter traffic by application on the phone or by destination on the other side on the server.
I have saved usernames and passwords for various websites on the desktop (Windows) PC, for my convenience via Google Chrome. I have several android devices (phones) which are able to access these saved passwords since they are linked together. I want to save these passwords to my PC only. And restrict some from my androids, ie. banks, brokerage houses, Amazon and pay-pal. Now, if I have mobile apps associated with these sites, I can block the passwords and usernames. But, a search via google for the website login page (by-passing the app) will display my username and password. Although the password is not visible, it's still there and allows access to my account. I'm not sure if anyone would know what to look for if my cell was lost or stolen, but it's still unnerving to think it could possibly happen. So, I am searching for a way to segregate my PC from my androids, and still be able to use Crome on all. A Google search gets me answers to all imaginable questions, except for the one I ask. Maybe, I just don't know how to form the question to where Google can understand it.
You should be able to sign out on the other devices.
Sent from my HTC_0P6B using Tapatalk
DudeBoy1 said:
I have saved usernames and passwords for various websites on the desktop (Windows) PC, for my convenience via Google Chrome. I have several android devices (phones) which are able to access these saved passwords since they are linked together. I want to save these passwords to my PC only. And restrict some from my androids, ie. banks, brokerage houses, Amazon and pay-pal. Now, if I have mobile apps associated with these sites, I can block the passwords and usernames. But, a search via google for the website login page (by-passing the app) will display my username and password. Although the password is not visible, it's still there and allows access to my account. I'm not sure if anyone would know what to look for if my cell was lost or stolen, but it's still unnerving to think it could possibly happen. So, I am searching for a way to segregate my PC from my androids, and still be able to use Crome on all. A Google search gets me answers to all imaginable questions, except for the one I ask. Maybe, I just don't know how to form the question to where Google can understand it.
Click to expand...
Click to collapse
Create an alternate Gmail address to use on the androids and don't use that Gmail on PC.
Or
Have you tried signing out of chrome browser on the androids and set it to not remember your username and password?
Sent from my SM-S903VL using Tapatalk
well my company decided that company emails will work only under MDM. So today we tested this app on my mobile on BYOD mode as logical container.
https://www.manageengine.com/mobile-device-management/
And I am really not happy to what this app has access and I can't restrict it, because the access is enabled by admin of MDM. Please see attached screenshot.
the app has access to: camera, contacts, location, phone and storage and i can't block this access.
for contacts, phone and storage it looks like it has access only to folders in container (I hope, as i can't access my contact and documents from work profile). However accessing camera and location is not ok for me. Yes the admin of MDM app can see where i am in live and i can't block it. If I root the device the program will stop working, any other way how to prevent access to camera and location? Using oneplus 7T on Oxygen OS 10.0.15. Thinking about removing this app, but work email on the phone is almost must have for me.
wolfyy said:
well my company decided that company emails will work only under MDM. So today we tested this app on my mobile on BYOD mode as logical container.
https://www.manageengine.com/mobile-device-management/
And I am really not happy to what this app has access and I can't restrict it, because the access is enabled by admin of MDM. Please see attached screenshot.
the app has access to: camera, contacts, location, phone and storage and i can't block this access.
for contacts, phone and storage it looks like it has access only to folders in container (I hope, as i can't access my contact and documents from work profile). However accessing camera and location is not ok for me. Yes the admin of MDM app can see where i am in live and i can't block it. If I root the device the program will stop working, any other way how to prevent access to camera and location? Using oneplus 7T on Oxygen OS 10.0.15. Thinking about removing this app, but work email on the phone is almost must have for me.
Click to expand...
Click to collapse
Whenever a device is enrolled with MDM mobile device management solution, you do not have any control over it. Only an IT admin can make any changes to the device.
The IT admins configure the MDM agent on the device via the MDM server. This includes policy configuration, apps, and content push as well as security controls.