Does anyone know if it would be possible to bake in security like Wave Secure type of thing in to custom ROMs? I've always thought Wave Secure is a bit pointless if a simple factory reset would clear it and therefore leave the phone ready for the thief or new owner to use as they see fit.
Another layer, not perfect, but still another layer that a thief or finder may not be immediately aware of would be to bake in some security features like tracing or locking in to a custom ROM so even a factory reset wouldn't remove it, possibly something in to the boot loader itself?
Has anyone thought of this?
DroidBois said:
Does anyone know if it would be possible to bake in security like Wave Secure type of thing in to custom ROMs? I've always thought Wave Secure is a bit pointless if a simple factory reset would clear it and therefore leave the phone ready for the thief or new owner to use as they see fit.
Another layer, not perfect, but still another layer that a thief or finder may not be immediately aware of would be to bake in some security features like tracing or locking in to a custom ROM so even a factory reset wouldn't remove it, possibly something in to the boot loader itself?
Has anyone thought of this?
Click to expand...
Click to collapse
People do and have bundled things into roms - often dropping them into /system/app directory, though I don't think anyones gone as deep as into the bootloader?
Though, if your phone is rooted, and your installed the app to /system/app, then a thief could in theory just flash your phone faster than if your phone WASNT rooted. They don't even need to root your phone at that point.
An interest aspect of hardening this, might be to compile your on recovery/bootloader that would require a password to get into.
I think what he's saying is to add the wave secure or similar app into the ROM so that if the thief does a quick "reset to factory settings" after lifting the phone, the security app would survive, perhaps long enough to recover it.
Most thieves would just wipe the phone (if that) to flip it and might not take the time to flash a new ROM.
The tough pay as I see it would be everyone would need their own custom ROM.
Sent from my SPH-D700 using XDA App
Xerloq said:
I think what he's saying is to add the wave secure or similar app into the ROM so that if the thief does a quick "reset to factory settings" after lifting the phone, the security app would survive, perhaps long enough to recover it.
Most thieves would just wipe the phone (if that) to flip it and might not take the time to flash a new ROM.
Click to expand...
Click to collapse
Yep, that's it. I'm assuming most thieves would not recognise a custom ROM or know what to do with it. At least buy some time to try and locate and recover the phone. Only time I'd want a front facing camera.
So what happens if they replace the SIM though? Sending SMS's is nice, but only if your number is still working with that phone. A hard baked security system would send an SMS when the SIM was changed at least.
You shouldn't make a ROM to put an apk into /system/app. You can simply push it through ADB or via terminal emulator. That will atleast survive a factory reset. I don't think many thieves actually take the time to flash a new image
So this is all we need to do? Use the ADB method? So I push through WaveSecure, that could survive a factory reset with settings intact?
Something baked in to recovery would be awesome too.
as far as I know when pushing an apk via adb into system/app then only the app itself is stored there, not the settings. the settings are gone after a system wipe. there needs to be some logic in the app to connect to a site and retrieve your settings from there... using your phone's ID or something.
RAMMANN said:
as far as I know when pushing an apk via adb into system/app then only the app itself is stored there, not the settings. the settings are gone after a system wipe. there needs to be some logic in the app to connect to a site and retrieve your settings from there... using your phone's ID or something.
Click to expand...
Click to collapse
The application itself will survive - but wouldn't all it's data, which still resides in /data/data be wiped?
So yes... the app survived... But it no longer knows who you are, or whose phone it is.
I think the just release CDMA/GSM Droid Pro may have the security you are looking for?
tbaker077 said:
I think the just release CDMA/GSM Droid Pro may have the security you are looking for?
Click to expand...
Click to collapse
It's a bit extreme to fork out another $700 on a new phone just for this. The whole point is to avoid spending money in case of theft or loss
Well part of my unspoke point is this is XDA-Developers, I sure there is a ways(one the rom comes out) to port some of those security files to other Android devices.
tbaker077 said:
Well part of my unspoke point is this is XDA-Developers, I sure there is a ways(one the rom comes out) to port some of those security files to other Android devices.
Click to expand...
Click to collapse
Didn't quite understand you, are saying it is possible to bake in some security?
I think once the Droid Pro, which has it baked in, is either rom dumped and extracted, or rooted then I think it could be possible.
tbaker077 said:
I think once the Droid Pro, which has it baked in, is either rom dumped and extracted, or rooted then I think it could be possible.
Click to expand...
Click to collapse
So something *is* possible via software, not requiring special hardware?
Once some gimboid puts in their own SIM you'd think that you can't send an SMS to control the phone although WaveSecure seems to cover that too.
I'd like something as subtle and as invisible as a good virus. Bootloader would be ideal. Theoretically then a full factory wipe wouldn't clear it.
I couldn't tel you. All I know is the Droid Pro is a 3G CDMA. GSM device with some special enterprise security features/software aimed at the BB users.
Doesn't really help us then if that's only available on the Droid Pro.. For the rest of us we still need to work out how to bake in WaveSecure or, ideally, something very subtle. If someone takes my phone I want to nail the little turd, or at least embarrass him when the phone siren goes off or he gets a loud spoken message or something.
Another point, with IMEI numbers, is this of any use if you bought your phone outright? I.e. if my phone is stolen, I can't get the IMEI blocked can I? And can IMEI numbers be changed?
This may meet your needs/requirements. It is called lookout mobile.
https://www.mylookout.com/
I know Paul at Modaco bakes wavesecure into his roms.. not sure if the data would survive a wipe but then whats the point of baking it in system if it doesn't right? Check it out:
Version R9: (requires membership)
http://android.modaco.com/content/h...-rom-for-htc-desire-online-kitchen-2-2-froyo/
R8: (Free for all)
http://android.modaco.com/content/h...for-htc-desire-with-online-kitchen-2-2-froyo/
Okay.. Just found out. This explains everything!
https://www.wavesecure.com/blog/how-to-make-wavesecure-hard-reset-proof.aspx
Phone is a Droid Incredible running the latest stable CM7 (7.0.3)
----------------------------
I recently installed seek droid and a few other applications meant to protect my phone in the event of malware download or the phone is stolen. I noticed though that if someone goes in and removes these devices from the admin group that they can just be uninstalled. I realize the lock screen is there to protect the phone but if they do get in they can very easily uninstall the programs I would be depending on to get my phone back.
Now I know someone could just wipe the device using the factory reset in clockwork mod but yeah ... anyway I am looking to see if there is a way to secure the security settings or the device administrators section with a separate password of some sort? Or maybe there is a program that will do it? I tried Seal but it only seems to do app locks and it doesn't require administrator privileges so it can just be uninstalled anyway.
Thanks for any help. I have been looking around for awhile and come up with nothing so I am not expecting much but figured this would be the place to ask.
There are such tracking apps that require root but will be installed into /system and thus even survive a factory reset.
I think you can install any app to /system through a bit tinkering.
Some allow to change the icon and app name to hide its true purpose.
In the end, if the person knows what he is doing, you can't stop him.
Thanks for the advice. I realize if they know what they are doing they can get it off somehow but would be nice to not have an obvious app sitting in the drwaer called 'seek droid' that can then just be easily uninstalled.
Thanks again.
Hello everyone.
After getting my phone stolen I did a lot of research on the right procedure to prepare an Android for future eventual situations like this one.
I came to the conclusion that it´s better to separate some functions into different accounts. Long story short: one for your data and one for the phone management.
Once the phone is out of reach, one should quickly change the password for the data account, preventing other users to play with it.
However, the phone management account should remain intact so communication with the phone is still possible. This includes un/installing apps, mirroring the actions performed by the phone (calls, SMs, photos...) so you can collect enough data to recover it.
However, the problem comes with this account stating invisible or unremovable by the new user. Any decent thief will delete all the accounts or do a factory reset, de facto dismantling all the data collection strategy.
I have only found one conversation about how to make an account unremovable (on StackOverflow.com) and it was said that it´s not possible unless it´s implemented on firmware level.
I am thinking something along the lines of a "one time wizard" where the original user after flashing the custom ROM enters the data of the account and this can never be changed again (for obvious security reasons) unless re-flashing.
Of course it´s obvious any thief can flash the phone with any other custom ROM but so far I don´t thing they are into that. I would bet they just feel like a Factory Reset is more than enough.
Hence the question:
How difficult would that be to implement?
Cheers,
Jean
PD: This is my first post in these forums. I hope I am using the right one; otherwise someone let me know and point me to the appropriate one.
Hi! My first post.
Is it possible to tweak your phone so Google recognizes your device as totally new? How can I sweep all data from my phone so Google won't recognize it after "cleaning it"?
Is it possible to change Device ID, GUID, Phone Model, Google Advertising ID etc in one "click" or with one tool/app? I know that I need to root my phone...but please recommend me tools/apps I need.
There is Bluestacks Tweaker which does things I named above...
Why I need this:
I was able to make 5 Google accounts WITHOUT PHONE VERIFICATION from each Android phone I have at home (4 phones to be exact) and after making 5 Google accounts without phone verification Google started to ask for phone verification (same for all phones). After that, I did reset to factory settings, but Google still asks for phone verification (obviously Google know my phones).
I know it's not IP issue.
So guys, please let me know your ideas - what I need to do to "hide" myself from Google (if it's even possible)? What data do I need to remove/replace/tweak to make my phone brand new for Google?
All the best!
So I was going to reset my old s7 and wanted to backup the phone before I erased everything. I kept coming across wondershare Dr fone. Seemed fairly simple and since there were no scam alerts to be found just Quickly browsing I thought i'll give it a whirl. Should have not ran it apparently.
So I connected via usb to Windows and started the program - > Phone instantly gone to download mode and apparently the software is trying to root or set some firmware to gather data - > Software doesnt work and phone stuck in endless bootloop - > recovery mode gives no command but starts after hanging a few seconds 10 or so - > Do a factory reset from recovery and Log back into previous Google Account required so I Do it and do a normal reset - > Reset goes in normal but when setting up clean phone it gives me a Security alerts "unauthorized activity noticed" and deviCe Security guides me to restart phone to reset changes.
Really spooky not knowing what the software did! Can you guys please help me figure out? Didnt find anything on web that indicates Dr fone stealing data or hacking, just ripping Off payments.
- How do I know I'm on stock ROM and nothing suspicious was left on the phone?
- Should I flash stock ROM just in case?
- Can my personal data, passwords etc be compromised if I dont use the phone?
- Could the Windows app itself have gathered personal info somehow. Can I check it out from Log or such?
I was hoping to sell the S7 but dont want anyone to get in trouble with the phone. What do you think I should do. I believe this thread Could help others unlucky Dr fone victims As Well.
Tell me if you need photos. Thanks in advance!
Ollie321 said:
- How do I know I'm on stock ROM and nothing suspicious was left on the phone?
- Should I flash stock ROM just in case?
- Can my personal data, passwords etc be compromised if I dont use the phone?
- Could the Windows app itself have gathered personal info somehow. Can I check it out from Log or such?
Tell me if you need photos. Thanks in advance!
Click to expand...
Click to collapse
So I found out Samsungs have an efuse that triggers when attempting to root and obviously dr fone might have triggered it. That would obviously also trigger the security alert. Any idea how it actually works? Does anyone know if this can be fixed somehow? The firmware doesn't seem like a custom but how do I know?
Also the windows app seems to have gathered the logs from the attempt and I have them in AppData. Could anyone help me solve if anything suspicious happened if I provide them?
Status update
Reflashing stock ROM fixed the security alert so it wasn't the knox efuse. Odin mode showed:
Binary Samsung Official
System Custom
Knox warranty void 0x0000
After flashing twice it changed back to normal:
Binary Samsung Official
System Official
Knox 0x0000
How is that even possible. No changes made but still changes made? I believe it started to do something and then crashed before knox went off. I have currently absolutely no reason to believe anything suspicious was going on in windows. Ran pretty much everything to scan in safe mode and all logs seemed completely normal, but this "Unauthorized access" in the custom system after factory reset seems a little shady. Checked all the preinstalled apps and they're the same after flashing stock except custom os had "Game optimization" and the official doesn't. I made the conclusion that something really did find it's way there even though that service might have been legit. That or system changes were made and interrupted and security alert because of that.
Reset passwords and using 2 step authentication so I doubt anything really important was compromised for very long. If you are reading this keep an eye out for this type of crapware!