Hi all
I was told that Sony Erisson did not implement the iptables into X10. Hence, DroidWall is not supported. Could anyone sugesst me another alternative.
Thanks.
not sure, there should be some other firewalls for android not sure at all
iptables is more related to a pc besides on a phone no1 would care (or most of the users)about it
sorry if this is not useful
Due to lack of iptables in kernel there is no way to manage network settings, unfortunatelly. Could be solved when we'll have bootloader cracked.
So, the answer is NO - there is no alternative.
Related
Does anyone know a widget that can one-click enable a configured VPN? All widgets I can find only enable VPN's configured in the program itself instead of the VPN's configured on the system, usually those applications also don't support OpenVPN.
The closest I can find (on CM7.1 and the market) is adding a settings-widget that opens the VPN settings. This allready reduces the amount of clicks to two.
Is it technically even possible to make a widget for this?
this app
maybe help you quickvpn (market search)
QuickVPN does not have a one-click widget for my homescreen and doesn't use the internal VPN settings.
Have you tried "1 VPN"?
https://market.android.com/details?id=com.doenter.onevpn
1-VPN is the same story... It uses it's own sources for VPN rather then the android VPN settings.
It isn't possible using the Android SDK, but some manufacturers expose it using their own SDKs (according to this).
It's something I'd like to support with Awesome Widgets, but it might be hard to support all phones satisfactorily. I guess a fallback would be to show the settings if it wasn't possible with a particular phone
All the best,
Ash
Wouldn't it be less of an issue when using a custom rom? (I use CM7.1 on my Desire Z)
Yeah, if you have root access it's probably not too difficult (with a bit of java reflection), but I don't think the majority of users will know anything about custom roms or root access.
They'll feel conned when it doesn't work on their standard device, something I'd like to avoid
I think quick vpn client can help you in this. or else you can check android market for some sort of widgets. I haven't tried it but i am looking to get best paid vpn service and free vpn service for htc chacha...?
Hi
First time poster so I'm sorry if this is the wrong place for this or posted before, as I can't seem to find any info!
I am an an android and c# developer and although possibly not a majorly technical question I am just wondering what the options are:
Can you block or restrict websites on an android mobile?
In windows if I want a simple way to stop someone getting at a website I would just stick it in the hosts file and direct it somewhere else. You can also buy programs that will block certain websites.
What are the options to do something similar on a android mobile? Ideally something that can't be easily detected or uninstalled?
I'm thinking for kids with mobiles.
The home PC would be completely locked down, especially with a developer as a parent, but I don't know how you would lock down the mobiles internet?
Bex
Well.. I'm sorry for the stupid question, but I have just discovered Android does have a hosts file!
I shall be testing that out later to see if it works!
Looking for some opinions/advice regarding my security/privacy needs:
A way to prevent MITM attacks when using public wifi points.
A way to prevent Android from phoning home with who knows what kind of info about me.
A way to prevent apps from stealing my info / tracking my movements and usage.
With regards to #1 I think I can do that by using a VPN. Question is which is better - flashing a rom like CYM 9 which has OpenVPN pre-installed - or I believe Entropy's kernel will allow us to use the OpenVPN app that is on the Market???
#2 - I originally thought that a VPN would work here too - Android still phone's home but with a fake IP. Problem is that Android will auto-connect before the VPN does. If we had a firewall app with profiles we could solve that problem but no luck so far. Next, I'm thinking that the PDroid app might solve this problem now that we have deodexed roms that will allow us to use PDroid. Possible issue here is that from what I can tell there are sometimes many Android parts grouped together into one ID so when you turn off network access for one you turn it off for all?? Last I'm wondering (I have never used custom ROM's before) if ROM's such as CYM 9 have already gotten rid of all the "phone Home" problems and therefore we don't need to worry about it at all if we use one of these ROM's???
#3 I think a combination of PDroid and a firewall will solve this issue.
Your help would be greatly appreciated!!
Say I wanted to have the most secure Sony Xperia Z Ultra possible (without "too much" sacrifice of useability).
In the context of this thread I define security as broadly anything barring network anonymity ie. hiding your device public IP address.
So I want security from network attackers (eg. drive-by download, WiFi attacks), physical device attackers (eg. customs searching devices for IP violations ... no really, that's about to become a thing apparently, GF and/or mistresses) .
How would you do it?
Could you please use sections of
Code:
firmware
phone settings
app settings
behavior
because I want to curate the best answers from users in this post for the good of the forum.
My thoughts so far are:
Firmware:
Root is disabled
Bootloader should be locked.
^^ These I'm not sure about - see if we don't have root then we don't have iptable firewall and hosts level server blocking.
One recovery should be used
Honestly I'm not sure which ROM is more secure than another but I'm assuming the latest and greatest is more secure so that would be MM atm. No idea if Sony is more secure than another flavour of ZU Android.
Phone settings:
Developer options off
Sideload apps off
Do not connect to unknown WiFi
NFC Off by default
Bluetooth Off by default
PIN unlock required
Auto-lock ON
App settings: (this includes apps you should have/not have and their settings)
I figure every additional app that I don't use is a needless attack surface so start with no apps at all - uninstall everything. Only install what you use ... for which you need root unless the ROM is premade like this.
Firewall app (Netguard no-root Firewall, DroidWall if we have root)
Adblock (if we have root)
AV - honestly most mobile AV seems pathetic at being secure and not acting like malware (notifications, popup windows etc) but Avast at least seems to not hog resources.
-Auto update every app
User behaviour:
NEVER:
-install apps from anywhere other than Google Play. Or possibly FDroid
-let another person use your device
I'd like to hear your suggestions, critique and everything else, cheers!
So you're not gonna install from other than google play, then what ad blocker are you going to use? Where is adblocker connecting to?
You're talking about still having a lot of apps connecting through servers that you don't control.
morestupidemailnames said:
You're talking about still having a lot of apps connecting through servers that you don't control.
Click to expand...
Click to collapse
Well if you are worried about connecting to servers that you dont control - isnt that all servers?
At which point you may as well remove all WIFI and Mobile Data capabilities and just stick to 2G
panyan said:
Well if you are worried about connecting to servers that you dont control - isnt that all servers?
At which point you may as well remove all WIFI and Mobile Data capabilities and just stick to 2G
Click to expand...
Click to collapse
Exactly my point.
The op is a long winded question that leaves you with more questions.
Probably why there's been such a landslide of security tips here
Hello, developers!
I'm a student wanting to build an application for android that allows for a non-rooted phone to have a firewall (Such as Netguard), then route to the choice VPN provider (such as OpenVPN).
One thing that everyone is questioning (including myself) is why nobody else made this yet.
So I have come to the forums to ask if there is some Android Kernel reason that is preventing people from making such an app, or if VPN developers and non-root firewall developers just didn't decide to make it?
TLDR:
What is stopping developers from making an app that routes from a non-root firewall to a VPN provider?
The abillity to alter iptables with a non-root device. If you're a first year student you might be done at the end of your study. But then we'll probebly have Android Twix and your software will be useless. I'd place my bet elsewhere.
I'm not worried about the version upon release, I intend for this to be open-source, thus be useful in allowing others to make and use this in the future, so motivation worries asside-
The abillity to alter iptables with a non-root device is what the worry is?
Why could I not, for example, take netguard and modify that to just build in more VPN capabilities?
As far as I am aware, Netguard sets up a VPN on your device, so the idea was to just set the VPS to a choice provider.
Perhaps I just don't understand IP tables well enough, so just let me know if that is the case.