Related
I've been trying for the last couple of days to solve an issue (it's not really a problem) that has been irritating me for a while. The issue is that everytime i flash a new rom i have to spent a coupe of hours after configuring everything again. Now, I use the 6.5.x tree of NRGZ28's energy rom series, specifically the standard variant and i want to create some scripts that will automatically setup things like my exchange server, hotmail, opera user-agent string and wifi. I already have a script that is supposed to work for exchange (not tested it yet) and one for the wifi. The wifi one just doesn't work but i've just done some reading and i think i know why (More on that in a mo). So, i was wondering, has anyone tried this already? If so do you have the scripts that are needed or know where i can find them?
Now, back to the wifi script. The reason i believe it doesn't work is because it would appear that the wifi has to be on for the WLAN driver to accept the new configuration. Now when you install a new rom, as most of you will know, the wifi is turned off and those of you familiar with the energy rom series will know that xda_uc runs right after first boot allowing no time for the wifi to be enabled manually. So, i was thinking, is it possible to write some code that will enable the wifi at first boot so the configuration script will successfully modify the wifi configuration?
Thanks for your thoughts in advance guys and girls.
Have a look in the FAQ for the ROM and there is post for sample scripts. I used them last night and got hotmail and exchange working. Here's the link:
http://forum.xda-developers.com/showpost.php?p=7333558&postcount=19477
Check the FAQ - each time I re-read it I figure something else out.
lol and there was me thinking it would be a lot harder. i always skip past the faq because 9 times out of 10 they are always filled with things like "How do i flash a rom" etc but i do still have a feeling it's not going to cover all my questions, things like can i write some code to enable the wifi at first boot or some other things i haven't meantioned like can i write a script that will automatically configure omarket with my login details.
I want to go all out on this and have it set up so i have to do as little manual configuration as possible so some code samples and/or further pointer would be really handy.
Just had another look at the faq and found i already had the xml generator listed in the energy addons page. One small problem... I have no idea what the hotmail server configuration is. Any clues? if not i will google it later.
Got my hotmail script. No idea if it works, guess i'll have to test it at some point.
I'm still looking for info on how to enable the wifi at first boot. Although at this point i am open to suggestions on different methods that could be used.
I am also a little disappointed. i thought this one had more legs to it. oh well, you can't always get everything you want i guess.
Just a litlle update. I got the wifi to take the settings without turning it on. Well i say i did it when really it just seemed to work. i think it might have somethig to do with some new drivers that were cooked into the rom i use.
I dropped the hotmail script because i do actually use windows live fair often and i ended up with 2 hotmail email accounts in the email tab but with a couple of tweaks i did get my exchange settings script to work like a dream.
I'm now looking into setting the phone identity using a reg file. I gave it a go using a script i picked up but instead of doing what it was supposed to it just stopped the windows and HTC sms clients from working correctly and i can't figure out why (it caused the phone to create several undeleteable sms messages). I'll post the code at the bottom. I'm also wondering if it is possbile to have a script that will copy files (ringtones specifically) to the right location. I think XDA_UC will do this if you create the directory structure in a folder in the XDA_UC folder on the sd card (hope you followed that one). Can anyone confirm that? I also created a script to configure quickgps but that didn't seem to work, i'll post the code for that too.
I'm still wondering if it would be possible to configure the opera user agent string using some form of script or reg file and it would be really nice if i could something similar with BSB tweaks, agps, HTC location service and pretty much everything else tbh. So if anyone has any scripts, reg files or cab files they wanna share i will certainly welcome them and i'm sure that many others will too.
Anyway, to posting those reg files:
Code:
[HKEY_LOCAL_MACHINE\Ident]
"Name"="Lucifer"
"Desc"="HTC HD2"
"OrigName"="Lucifer"
Code:
[HKEY_LOCAL_MACHINE\Software\HTC\QuickGPS]
"auto"=dword:00000001
"actSync"=dword:00000001
"ExpiredTime"=dword:00002760
"remind"=dword:00000001
Check this out for reference [XDA_UC][UC][SASHIMI][S4X] S4X_Auto & S4X_Backup [AUG.10.2010] XDA_UC Mods & Answers
id some looking up on the device name thing and found this: http://msdn.microsoft.com/en-us/library/aa924188.aspx seems my reg key was a little wrong.
I've also managed to create a cab file that will install my ringtones and then setthem with all related options as the defaults. I know it's not very impressive but it's a step in the right direction. I think i may have a look at exporting the bsb tweaks settings later and see how that goes.
Oh one question: i have been looking for an .reg to xml converter but my google results all seem a little vague and i don;t know if can trust the programs i'm finding. Has anyone got any suggestions?
M3PH said:
Oh one question: i have been looking for an .reg to xml converter but my google results all seem a little vague and i don;t know if can trust the programs i'm finding. Has anyone got any suggestions?
Click to expand...
Click to collapse
I don't think you need to convert reg to xml. Just leave the .reg files in the XDA_UC directory and it should run automatically.
darkblak said:
I don't think you need to convert reg to xml. Just leave the .reg files in the XDA_UC directory and it should run automatically.
Click to expand...
Click to collapse
No, you're right. I have no idea what i was thinking.
Another little update. I have working reg files for opera ua string and quickgps. I've decided not to bother with bsb tweaks because it's so easy to setup but being able to preconfigure windows live would be cool. Also being able to preconfigure agps would be nice
Someone mentioned this in another thread, but this is a topic that should have it's own separate thread.
Some of you may have already read the news: Michigan: Police Search Cell Phones During Traffic Stops
Don't assume it won't come to your town.
I can't say I plan to do anything that would warrant police suspicion, yet I don't like the idea of anyone being able to easily pull data from my device. And we know cops won't be the only ones with these devices. So I've been wondering, how can we protect our Android devices from the CelleBrite UFED?
Check out this video that shows some of the features it has, keep in mind it does much more and can even extract DELETED data.
See the company's product page here: http://www.cellebrite.com/forensic-products/ufed-physical-pro.html
This research paper talks about the CelleBrite UFED and other extraction methods. (CelleBrite UFED is talked about starting on page 9.) I doubt there's a means to prevent all of those methods given some involve long term handling of the device, but CelleBrite UFED can extract data when a device is retained by the CelleBrite UFED user for a short period of time. It looks like HTC Android type devices can only be extracted from via the (micro)USB Port and it requires USB Storage and USB Debugging turned on. The CelleBrite UFED has to gain Root Access. It can get by screen passwords and root even a device that was not yet rooted.
There's another thread where someone was requesting a ROM that would not work with the CelleBrite UFED. I'm not sure how to make a ROM or anything else that would not work with the CelleBrite UFED without limiting certain features we all may use from time to time.
Over on Slashdot, someone said they hacked their device (Nexus One) to not do USB client mode. This is another option that would limit some features many of us may use.
So, how can we protect our privacy and our data? Does it mean sacrificing some features like USB storage mode?
The biggest problem is what's missing from Android itself. Meego might be protected but not Android.
You would need an encrypted boot loader that retains root for some users.
A kernel and os files that support different users so the default user is not root like Linux and a prompt with a password for superusers not just an Allow like now for Android.
Encryption libraries that would support truecrypt encryption of both internal and external (SD card) encryption in toto not just individual files.
A true trash system that overwrites files like srm in linux and sswap for wiping the swap file after every system reboot.
Ultimately I don't see it happening. In theory if you were running Ubuntu on your phone then yes cellbrite would just crap out not knowing what to do with your phone. Same possibly with meego. But then no real app support, no navigation and driver support is crap even for ROMs using the same os let alone a different OS like true linux.
It's amazing how many don't even bother deleting thumbnails hanging around on their computers or securely wiping files on their computer. Same with swap files retaining passwords or even website cookies that have the same password as their computer.
Best thing to do, don't keep anything that could be bad on your phone. Use a cloud system or home server sync that requires a seperate login every time and keeps no local files. Or as I do, encrypt the hell out of anything you find valuable, which currently is only my complete backups...
Sent from my Xoom the way it should be, rooted and with SD card.
This is where that cheap Boost Mobile phone comes in, or any other prepay phone. Just hand the officer that one. Store your personal data on your smartphone.
chbennett said:
Best thing to do, don't keep anything that could be bad on your phone. Use a cloud system or home server sync that requires a seperate login every time and keeps no local files. Or as I do, encrypt the hell out of anything you find valuable, which currently is only my complete backups...
Sent from my Xoom the way it should be, rooted and with SD card.
Click to expand...
Click to collapse
Hello, All. This is my first post at xda-developers!
Since I'm new to Android, data security has concerned me. Climbing the learning curve of rooting and tweaking my SGH-T989, I've focused on control, security, and privacy. So far pretty good, thanks largely to members' posts at this site. Thank you very much!
Then this thread crushed me. Visions of "1984", "THX 1138", "Terminator", etc.
I considered the suggestions here. Thoughts about the OS seem right to me, but that's beyond my abilities. I did try following chbennett's advice: I enabled encryption in my backups and moved them to the internal SD.
But I don't yet know how to do the 'home server / log in on demand' scheme for contacts and calendar. I will appreciate any help with that.
Meanwhile, I looked for a way to make a 'panic button' that would let me wipe my phone immediately. What I chose was making a contact whose phone number is the USSD code for Factory data reset.
Maybe Tasker, etc. could streamline this approach; but my trials showed that, unlike MMI codes (e.g., to toggle caller ID blocking), USSD codes cannot be submitted to the OS indirectly. So swiping a contact, direct dial shortcut, etc. did not work. On my phone, all that worked was either 1. manually dialing the code, or 2. dialing the contact name, then tapping the contact.
So the routine to use this 'panic button' is:
1. launch Dialer
2. dial the contact name
3. tap the contact name in the search results
4. tap "Format USB storage" in the "Factory data reset" dialog
5. tap "Reset phone" button in the "Factory data reset" dialog.
It sounds clunky, but it's actually pretty quick. I named the panic button contact "XXX" to avoid confusability when dialing (it needs only "XX" for a unique match.)
If you can suggest improvements to this scheme, or think it is misguided, please let me know. Thanks.
Any updates on this? I'm curious as to how to guard against ufed.
I think an instant hard brick option would be better so theres nothing to recover as i dont believe the factory reset is a secure wipe
Possibly a voice activated secret phrase or keypress u could say/do super fast in a tricky situation that autoflashes a corrupt/incompatible bootloader and recovery to device after secure superwipe that should stump them for awhile
im still interested in this i disabled usb debugging on my phone but unsure if the UFED can still access anything on my ICS full encrypted passworded evo3d im assuming they could dump the data at most but i highly doubt they could access the decrypted data unless you used an insecure pass
If you have encryption enabled for your data partition, then all you need to do is to turn off your phone when you see a cop. If they take it from you, they can turn it on and hook up their device, but they will only be able to snarf the system partition, which does them no good. They'd need your password to mount the data partition.
If you look around on this forum, you can find the steps necessary to switch the lock screen back to a simple pattern lock while leaving the disk encryption enabled.
Are you sure Cellebrite and UFED or w/e can't access encrypted data partion? I know it can take an image of the phone "hard drive". They then can run password tools against image to unlock it no?
dardack said:
Are you sure Cellebrite and UFED or w/e can't access encrypted data partion? I know it can take an image of the phone "hard drive". They then can run password tools against image to unlock it no?
Click to expand...
Click to collapse
I'd like to know about this too. I am about to set up encryption on my device and I'd like to know more about what type of attacks it can beat.
Edit to add: I assume brute force attack protection is like any other type of encryption.....dependent on the strength of your password. But, assuming we all know that already, I'm still curious about this.
If the question is how to protect your device when you think someone would scan your phone, you'd have to have some sort of inclination that a scan is about to happen. I'm assuming this is many people's concern as they're considering wiping their device through a quick process. In that scenario, just turn off your device. Unless you warrant suspicion of something fairly bad, they wouldn't be confiscating your cell phone.
smokeydriver said:
...Unless you warrant suspicion of something fairly bad, they wouldn't be confiscating your cell phone.
Click to expand...
Click to collapse
We all wish all law enforcement was just and honest, but so far in world history that has not been the case. Even a pretty woman may have her phone scanned by a curious cop snooping for pics.
Sent from my HTC One using Tapatalk 2
I would still like to know if there is an answer here...
So I recently had some dealing with assisting in a Cellbrite search. We initiated and enlisted the help of law enforcement for an employee who was doing some illegal activity which is not relevant to this discussion other than the person used an iphone. Anyway, the investigator came in and wanted to know if I can enable the bypass for the automatic screen lock in 5 minutes because when it locked, it disabled the Cellbrite copy.
Now, couple things here, he was only doing what he was "allowed' to do in the local municipality, and he did say they sell a more expensive Cellbrite device which would be able to crack it. I did find it interesting that the simple corporate Activesync policy I have set up was actually having this effect. Anyway I removed the policy and it worked. Funny thing is he could have done it himself had he known anything about that kind of thing. He was presented to us as an expert but I guess that mainly covered a basic Cellbrite expertise.
So, I do think encryption would be a great answer as the partition would be hard to bust in to. Nothing is impossible but I would rather not smash my phone on the highway next time I get pulled over so I would like to know definitively that this is the right approach. This is definitely not paranoia as there are at least 3 states where it looks like it happens regularly.
Time to look at a 2600 group for stuff like this I guess. I am early in my investigation
Later
Hi Guys,
So, I've been Googling and forum-browsing for about two weeks now trying to find a solution to my problem but haven't been able to find, specifically, what I wanted so I thought I'd try my luck here to see if anyone else has experienced this:
For about a month, give or take, my SGS2 no longer uses 'mobile' versions of websites and I can't work out why (as in, what's changed) – because it used to before.
In case there's any confusion, what I mean is when I go to www[dot]google[dot]com for example, it loads the normal google homepage, not the smaller, optimised mobile google home page. This applies to Facebook, Wikipedia and a bunch of other, unrelated, websites that I browse on my phone that no longer auto-detect my phone and switch me to the mobile site. Which is what I want it to do (switch me to the mobile version of the site, that is).
Anyone else experiencing this and know of a solution?
My SGS2 is unlocked/unbadged, and I am running a custom ROM (Litening 2.2) although I was on 2.2, and previous versions of Litening, without this happening - so I don't think it's the ROM (plus I've searched it's thread).
I've also tried other, non-stock browsers (such as opera and FF) and they have the same issue. I've also tried clearing caches.
I've checked just about every damn setting on the phone that I can find, and Ive even removed almost every non-stock app but nothing seems to fix the issue.
Any help would be appreciated.
they probably forced the useragent of the internet app.
try to tape : about:useragent in the adress bar.
for opera and FF , if i remember, you can manage this in the settings.
Ok it was set to Custom and the code was:
Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10_5_7; en-us)
AppleWebKit/530.17 (KHTML, like Gecko)
Version/4.0
Safari/530.17
No idea what that is or what it means, but it seams odd to have so many references to Mac. Anyways I changed it to 'Galaxy S' and now it's working again! Thank you so much!
if i remember, there is a thread in the "theme and apps" section, about managing the useragent to be sure it won't revert to the "default" useragent(the mac one in your custom rom case ^^ ) after closing the app or rebooting the phone .
just in case it reverts again to the Mac one after a reboot
[edit] my bad it was in the android original dev section
http://forum.xda-developers.com/showthread.php?t=1126826&highlight=browser
that's probably how he modifies it, so it will revert to the mac one after a boot :/ (modified framework-res.apk, so you will need to learn to use apk manager if you want a "stock" behaviour).
Or just never reboot! (jokes )
Thanks for your diligence mate, very much appreciated
Not sure where I am going wrong here.
Had my phone just fine using some variant of PE9. I like to have both my work and personal profiles 'merged' on the device so that I can select between them using the profile image top right in google apps. Also merging personal and private contact lists which I keep separated. I have a vague memory a long time back when setting up the phone or adding the work account there was a question similar to 'is this your device or supplied by your organisation' and when you said it was yours you could refuse a work profile ?? I should also point out I am the organisation admin and can change any organisation wide settings for the device policy etc for the work / org profile.
Did a reset (to the PE9 IIRC ROM), and it demanded I encrypt the partition, did so, added my personal profile but adding the work profile demanded I again encrypt.. This also came with the annoying PIN on boot. I have since updated TWRP and did a full reset and think this has gone but mentioning it. This resulted in the outcome or a work profile and a personal profile and an inability to 'in app switch' them. This is the result I dont want.
I have since done an update to PE10 Plus (same outcome) and a factory reset trying multiple ways (personal account first, corp account first) and none of them result in the setup I desire.
I dont know if this is a PE issue, an Android Q issue, a corporate device policy setting I need to change, or an on device setting.
Whatever it is its annoying the hell out of me.
Any ideas ??
Not sure 1) if this is the right place to ask or 2) where I am going wrong here.
Had my phone (poco F1) just fine using some variant of PE9. I like to have both my work and personal profiles 'merged' on the device so that I can select between them using the profile image top right in google apps. Also merging personal and private contact lists which I keep separated. I have a vague memory a long time back when setting up the phone or adding the work account there was a question similar to 'is this your device or supplied by your organisation' and when you said it was yours you could refuse a work profile ?? I should also point out I am the organisation admin and can change any organisation wide settings for the device policy etc for the work / org profile.
Due to some creeping odd issues I did a factory reset (to the PE9 IIRC ROM), and it demanded I encrypt the partition, did so, added my personal profile but adding the work profile demanded I again encrypt.. This also came with the annoying PIN on boot. I have since updated TWRP and did a full factory reset and think this encryption has gone but maybe worth mentioning it. This resulted in the outcome of a work profile and a personal profile and an inability to 'in app switch' them. This is the result I dont want !!
I have since done an update to PE10 Plus (same outcome) and a factory reset trying multiple ways (personal account first, corp account first) and none of them result in the setup I desire.
I dont know if this is a PE issue, an Android Q issue, a corporate device policy setting I need to change, or an on device setting. Whatever it is its annoying the hell out of me.
Why is it so hard to simply let me decide what account I want to use in which app ??