Related
Occasionally I leave my phone laying around or let other people play with it, but it's getting very tedious having to lock it all the time. Anyone up for creating a app that will let me lock certain portions/apps on the phone (ie. SMS, gallery, etc.) using the built in finger print scanner?
I will second this. I recall reading that Moto was going to release the APIs for the print scanner. That should make it considerably easier.
just a bump, I know all you great minds out there are capable of this and want this too =)
+1
+1 yes, yes, yes a needed app
Yes, yes, YES! I've been thinking about requesting something like this for a while now!
I emailed the developer of Widget Locker since he seems to be fiddling with the Finger Print Scanner on the Atrix to see if he's interested in making a separate app for this. I wouldn't mind paying something like $1 for it.
How can we get this thread more attention from developers on XDA?
Keep the thread bumped, add some other keywords such a biometric scanner, fingerprints, fingerprint scanner, etc. (I myself didn't find this when searching), post the same on other forums, that's all you can do really!
PiTT said:
I emailed the developer of Widget Locker since he seems to be fiddling with the Finger Print Scanner on the Atrix to see if he's interested in making a separate app for this.
Click to expand...
Click to collapse
And here I am! (Sorry for taking some time to get back to this)
What I'm doing from WidgetLocker is piggy backing on the system security, so I don't interface with the fingerprint scanner directly. However I have looked into this as it could be interesting for WidgetLocker to be able to use in more ways, and potentially another separate app like discussed here.
I've seen the other thread about the password keeper and this one about an app-lock type thing. The issue with a password keeper is that the passwords should be stored encrypted, otherwise if someone stole your phone they'd just need to root if (if it's not already) and they'd be able to get all your password. But encrypting the passwords with a key that's stored somewhere is really just adding a few extra steps, they're not truly protected. Normally they'd be encrypted with your password, and only decryptable with you typing the password again. But I don't think this could be done for the fingerprint scanner due to what information is available (And how the fingerprint information is stored on disk). I could be wrong however.
As for the app-locker thing, there are also security issues here, but I think app-lockers are more used as a deterrent than as real security. To lock out your friend rather than a thief. But there's a fair amount of non-fingerprint related work to be done for this kind of app as well.
If I do end up doing anything with it I'll post back.
I said this in the development section when it was released lol. So....+1 and good idea!
Atrix4G Rooted!
[email protected] said:
And here I am! (Sorry for taking some time to get back to this)
What I'm doing from WidgetLocker is piggy backing on the system security, so I don't interface with the fingerprint scanner directly. However I have looked into this as it could be interesting for WidgetLocker to be able to use in more ways, and potentially another separate app like discussed here.
I've seen the other thread about the password keeper and this one about an app-lock type thing. The issue with a password keeper is that the passwords should be stored encrypted, otherwise if someone stole your phone they'd just need to root if (if it's not already) and they'd be able to get all your password. But encrypting the passwords with a key that's stored somewhere is really just adding a few extra steps, they're not truly protected. Normally they'd be encrypted with your password, and only decryptable with you typing the password again. But I don't think this could be done for the fingerprint scanner due to what information is available (And how the fingerprint information is stored on disk). I could be wrong however.
As for the app-locker thing, there are also security issues here, but I think app-lockers are more used as a deterrent than as real security. To lock out your friend rather than a thief. But there's a fair amount of non-fingerprint related work to be done for this kind of app as well.
If I do end up doing anything with it I'll post back.
Click to expand...
Click to collapse
my reasoning behind this type of app as you said isn't for REAL security from a thief, more of a deterrent from people around me....such as a nosy friend or girlfriend =)
"such as a nosy"
Well, of course cell phones have had a way to prevent that for what, 20+ years now? You leave it locked, except for "emergency and speed dial" or other restricted calling. No reason that someone has to borrow my cell phone (and deprive me of my phone!) while they're doing whatever with it.
I don't have any guilt about saying "Sure, you can make a call. But I need my phone with me."
PiTT said:
my reasoning behind this type of app as you said isn't for REAL security from a thief, more of a deterrent from people around me....such as a nosy friend or girlfriend =)
Click to expand...
Click to collapse
Well, if you have a friend that would invade your privacy then they are not your friend. And if you have a girlfriend that doesn't trust you enough to respect your privacy then dump her. You can't have a relationship without trust.
There are already apps that let you lock particular applications. I hand my phone over to my 4-year-old all the time so she can play Fruit Ninja, so I keep my work email locked down. I guess it would be kind of cool if the app locking software took advantage of the Atrix's fingerprint scanner.
live4nyy said:
Well, if you have a friend that would invade your privacy then they are not your friend. And if you have a girlfriend that doesn't trust you enough to respect your privacy then dump her. You can't have a relationship without trust.
Click to expand...
Click to collapse
lol, I second this... She's obviously insecure.
And why are we assuming that it's the girlfriend that's untrustworthy? PiTT (no offense, all due respect) is the one with dirty little secrets on his phone.
aquariumdrinker said:
And why are we assuming that it's the girlfriend that's untrustworthy? PiTT (no offense, all due respect) is the one with dirty little secrets on his phone.
Click to expand...
Click to collapse
Thanks =)
you guys are missing the point, it was just an example. Now back to the topic at hand.
I would love to be able to lock my phone using the finger print swype. This can't be to hard, could it?
jange said:
I would love to be able to lock my phone using the finger print swype. This can't be to hard, could it?
Click to expand...
Click to collapse
I don't understand what you are asking here. If you're going to be swiping your finger over the sensor to lock it, wouldn't it be just as simple to just press the button? If you have the sensor lock enabled, it will be locked with access only being granted to your finger swipe.
GEESH!
Clearly some people on this thread don't understand what's going on here. So let me break it down....
It's not about "it's not a real friend if they invade your privacy".
It's not about "why not just lock the phone itself".
Maybe you have a family member, girlfriend, wife, or CHILD you want to be allowed to use your phone. This requires unlocking the phone itself.
Buuuut, you don't want them snooping in your email or for the dense folks who don't get it, you don't want a CHILD deleting your messages accidentally, replying inadvertently to a co-worker via email etc.
Or let's be real, you don't want your GF or wife to see the chic you've been bangin's nude photo in your phone.
So you want to FINGERPRINT LOCK specific apps, like TEXT, EMAIL, SKYPE, TANGO, FRING, ETC! That way your "guest" can use your phone, but can't use any other apps without your finger!
GEESH!
I'd really like to see phones with Windows-like login profiles. So I can have my profile, ADMIN, and my wife can have hers GUEST.
Anyway...I second/triple/quadruple the idea of a fingerprint reader app lock. Right now I use AppProtector, and I'm looking into a new app called simply LOCK or (App) Lock.
"Clearly some people on this thread don't understand what's going on here. So let me break it down....
........you don't want your GF or wife to see the chic you've been bangin's nude photo in your phone."
*grin* The premise of your post made me laugh hard.
On a real note, I think this kind of application would be awesome. I too use appprotector, and I used to use the fingerprint scanner, but it just became bothersome to use everytime I locked my phone and had to unlock it. I don't have anything to hide on my phone, but I do lock my "SU" folder that contains all of my root tools. I have a 12 yo at home, and she could very easily mess something up without knowing it. I think the idea of locking certains apps with the fingerprint scanner is a fantastic idea, and I'd be willing to pay a few bucks for it for sure.
Actually, a whole utility for the fingerprint scanner on the Atrix that allowed you to do multiple things with it would be great.
Like was posted previously, it would be nice to have guest accounts (for wife and child etc), and with a fingerprint swipe, they wouldn't even have to login..swipe and go.
sorry for the cross post
i did some looking around and it seems theres no app to check your account on boost mobile, which is odd considering they have 2 android phones and a whole host of unofficial ones
so i created an quick and dirty javascript/html app that has 4 buttons, boost mobile homepage, my account, reboost, and support
it was made with phonegap build, so when you install it says it needs access to everything(phone, internet, sms, etc) but really its only using data, its just the way phonegap build makes the apps, kinda stupid but it works
try it out, tell me if you think it could be handy, or the most useless thing you have ever seen http://tinyurl.com/myboostmobile
hope it is useful for someone besides me lol
so far i have tried it on the native android browser, and something about the way that boost puts in the dashes where your phone number goes on the my account doesnt fly so well, so if you have problems try out opera mini or opera mobile, they are much superior to the native droid browser anyway
http://pastebin.com/kgtiNX6R
thats the source to the app, just so anyone who is worried about installing based on the installer asking for all permissions can see that its not tracking you or anything
That javascript thing is evil, it doesn't work on the Android
browser or Opera Mobile. The only way I've gotten it to work was to install Skyfire (uses the Android rendering afaik), disable JS, fill in the phone, submit, go back, enable JS, and refresh the page and hope it populates.
-- Starfox
yeah the only luck i had was with opera mobile, i just hit the button to remember my username and password for my account(boostmobile.com) so all i have to do is open the app and hit the my account button, i havnt tried skyfire yet with it, but i will definitely give it a go
thanks for your input back starfox, i much appreciate any feedback given
1 for continued development. Excellent idea!
BoominSVX said:
1 for continued development. Excellent idea!
Click to expand...
Click to collapse
thank you, lol, there wasnt any app for it, which perplexes me, hopefully boost just cancels me out and creates something real instead of my quick and dirty way
appreciate the feedback boominsvx
Get rid of the javascript if possible.
I did not and will not try this. (not with boost)
javascript popup could be replaced with PAGE Maybe...
EDIT: Also, pastebin and similar sites 'own' your code when you paste it on there, not sure about how much or how but I know it's in the terms and conditions somewhere..
ryannathans, i appreciate your input, this is really all just a temporary solution, lol pastebin can own my code all they want its just a few lines at the moment anyways
im working on making this better at the moment, and app that uses boost's login protocol and all their scripts on their server to log in, ie. app comes up, presents you with a login screen, you log in with your boost account details (all of which is sent securely to their server) and bam your logged in to check your minutes and such
im trying to keep sending emails and bothering customer service at boost about this until they just give in and end up creating an app for us, something official that doesnt have to be hackandslashed, so if your on boost and you want an app for checking your balance and so forth keep bothering them too
A lot of people always question why I don't have any security measures in place after swiping my screen. I personally just don't see the benefit of typing in a password every single time I unlock, versus the risk of actually losing my phone.
I also feel that if the worst did happen, I could change my Gmail and Facebook passwords and that would basically cover all bases. In fact, all I'd have to do is revoke two-step authorization for Gmail and that would basically do it too. I don't have any financial information stored to the phone if I think about it (with exception of maybe Fandango).
One time, I found an non-password protected iPhone in a cab. There was no password lock on the phone, and we were able to return the phone to the owner by finding the last person he called. He happened to be with the person who picked up.
How do most people here feel about it?
It's really up to you. If you're comfortable with no password, just have a plan in case you lose it. Which, it sounds like you do. Also think about backing up things like pictures from time to time.
I use the face recognition feature. Works pretty well once you train it. And I have my name on the swipe screen before that, so maybe I'll get it back if someone I know finds it.
And, while I haven't tried it on this phone yet, Seekdroid is another option. Lets you remotely lock and wipe the phone from any web browser.
Sent from my SCH-I535 using Tapatalk
dunderball said:
A lot of people always question why I don't have any security measures in place after swiping my screen. I personally just don't see the benefit of typing in a password every single time I unlock, versus the risk of actually losing my phone.
I also feel that if the worst did happen, I could change my Gmail and Facebook passwords and that would basically cover all bases. In fact, all I'd have to do is revoke two-step authorization for Gmail and that would basically do it too. I don't have any financial information stored to the phone if I think about it (with exception of maybe Fandango).
One time, I found an non-password protected iPhone in a cab. There was no password lock on the phone, and we were able to return the phone to the owner by finding the last person he called. He happened to be with the person who picked up.
How do most people here feel about it?
Click to expand...
Click to collapse
I prefer at-least a simple password. Also, under Security -> Owner information - I have a message for any potential finders of my phone: "If this phone is lost please email ma at [email protected]". That message scrolls across the screen even when locked.
First off,
Sorry moderators If I choose the wrong subforum to post
Today, I was warned by Google about some behavior with my account and suggested to change my pass. I thought was due my 3G experiments and new IP etc.
Later, testing everything was alright I see a Samsung tablet added to my Play account on November 22, 2012, but don't have one. Only had Motorola and all the time.
Then, I saw my Google account was accessed from Russia but also from United States. And I'm not living there, neither two countries. I see US was the first external Country added to my activity report along November, and Russia was added on December.
The strange thing is Gmail not displaying any strange IP, only local IPs from my computers and phone.
Minutes ago, checking what was download from Market I've found lot applications I never installed. Adults and Games applications.
Do you think this can be because some android apps?
I never downloaded from other sources than market but used custom roms form this lovely forum.
Do you think it's some kind of market problem when devices are identified?
I would like to remove that apps not downloaded by me and the device itself. But seems there is no way to do that.
Any ideas will be really appreciated.
First of all, I would recommend you stop experimenting with your IP . Secondly, you can remove the downloaded apps from the Play Store list but it's a time-consuming process.
1. Open Play Store.
2.Press the Menu button and select My Apps(Phone) or click the Download icon(Tablet).
3.Click the All Tab.
4.Next to each app, there should be a cross or some other icon.
5.Click it and the app shall be removed from your download list.
6.Celebrate !
7.Hit thanks if it helped :thumbup:
Sent from my Xperia Pro using xda app-developers app
Hi,
Thanks for the advice about IP. But this should not be a problem.
This probes how stupid become some companies within time. And we accept his stupidity.
How Google allows connections to your account form a different country than the one you're living?
Small companies have this security option by default.
Two steps verification is one option but not the final solution. This is basis 101. Now I know Facebook or Yahoo are a lot safe.
Now the problem is to remove from my account the android device I don't have.
Some friend says Facebook only needs a search engine to kill any players and seems he is right. I'm very disappointed by Google and unfortunately I have to stick with or move away to Apple.
Linuxser said:
Hi,
Thanks for the advice about IP. But this should not be a problem.
This probes how stupid become some companies within time. And we accept his stupidity.
How Google allows connections to your account form a different country than the one you're living?
Small companies have this security option by default.
Two steps verification is one option but not the final solution. This is basis 101. Now I know Facebook or Yahoo are a lot safe.
Now the problem is to remove from my account the android device I don't have.
Some friend says Facebook only needs a search engine to kill any players and seems he is right. I'm very disappointed by Google and unfortunately I have to stick with or move away to Apple.
Click to expand...
Click to collapse
Whoa man! No need to take such quick actions due to some small flaws Google allows the access because you were still using your phone which is synced to your Google account during the process of testing your 3G and changing IP.
Samsung pass doesn't work. What do you guys use I just came from iphone and it has a password manager built in. What free ones are available
1password. Works everywhere and on everything.
Bitwarden has a free account offering and their premium is very cheap.
Bitwarden is free, open source and the premium is literally $10 per year if you wanted it but it's not needed, everything is available for free except the encrypted cloud storage.
I use Bitwarden's $10 a year tier so I can use my YubiKeys with it.
I don't. Google password manager is free and works flawlessly. Anything else is a waste of time.
Brava27 said:
I don't. Google password manager is free and works flawlessly. Anything else is a waste of time.
Click to expand...
Click to collapse
How do you get Google pass to be the default over Samsung pass?
GastonC said:
How do you get Google pass to be the default over Samsung pass?
Click to expand...
Click to collapse
Under passwords and autofill in settings. Then select autofill service.
Bitwarden $10 annual plan. Avoid using LastPass as they have had several security breaches recently.
Brava27 said:
I don't. Google password manager is free and works flawlessly. Anything else is a waste of time.
Click to expand...
Click to collapse
Not true and several reasons why some others are better and why I don't and wouldn't use Google password manager atm. YMMV
evangelionpunk said:
Not true and several reasons why some others are better and why I don't and wouldn't use Google password manager atm. YMMV
Click to expand...
Click to collapse
Your choice. Google has never failed me.
Brava27 said:
I don't. Google password manager is free and works flawlessly. Anything else is a waste of time.
Click to expand...
Click to collapse
Good luck if your Google account ever gets breached. Or if Google one day bans your account like they've been known to do to others for seemingly no reason. I used Google's password manager for years but when this flaw was pointed out to me, I switched to Bitwarden that same day and I haven't looked back.
It's also very easy to breach your Google account and thus all your others if your phone is stolen.
Like iPhone, a stolen Android phone's PIN could be used to change Google account password
A report from The Wall Street Journal last week sounded the alarm on an obvious, but frightening issue on iPhone...
9to5google.com
EtherealRemnant said:
Good luck if your Google account ever gets breached. Or if Google one day bans your account like they've been known to do to others for seemingly no reason. I used Google's password manager for years but when this flaw was pointed out to me, I switched to Bitwarden that same day and I haven't looked back.
It's also very easy to breach your Google account and thus all your others if your phone is stolen.
Like iPhone, a stolen Android phone's PIN could be used to change Google account password
A report from The Wall Street Journal last week sounded the alarm on an obvious, but frightening issue on iPhone...
9to5google.com
Click to expand...
Click to collapse
These are all valid points but chances of happening are very slim.
Brava27 said:
Your choice. Google has never failed me.
Click to expand...
Click to collapse
Google also thanks you for all your data. But in all seriousness don't keep all your eggs in one basket. Using 1 service or company for everything (Like Google does) is a terrible security practice. I'm not saying don't use Google, I'm saying don't use it for everything PLUS (tinfoil hat time) the way things are going with less and less privacy, I expect Google to start using passwords saved in its services in an attempt to provide more services to users but in doing so they have access to everything about you, bank info, cellular carrier login, other email logins, everything and frankly that would frighten me. This is why I self host on bitwarden, everything is in my hard drive AND encrypted on backblaze.
spart0n said:
Google also thanks you for all your data. But in all seriousness don't keep all your eggs in one basket. Using 1 service or company for everything (Like Google does) is a terrible security practice. I'm not saying don't use Google, I'm saying don't use it for everything PLUS (tinfoil hat time) the way things are going with less and less privacy, I expect Google to start using passwords saved in its services in an attempt to provide more services to users but in doing so they have access to everything about you, bank info, cellular carrier login, other email logins, everything and frankly that would frighten me. This is why I self host on bitwarden, everything is in my hard drive AND encrypted on backblaze.
Click to expand...
Click to collapse
I definitely agree. I might just be really lazy and don't care anymore. I could tie tomorrow and all the passwords I had would be irrelevant lol.
Does Google password manager fill in apps?
I second avoiding LastPass. In addition to the semi-annual breaches, their pricing is ridiculous. $50/year to store 100kB of data in the cloud? There has been zero evolution to their app over the last 5 years, so it is not like they have heavy RnD costs.
Brava27 said:
I definitely agree. I might just be really lazy and don't care anymore. I could tie tomorrow and all the passwords I had would be irrelevant lol.
Click to expand...
Click to collapse
Your passwords will matter to family that left after you're gone. I have several people in my life that have a detailed guide on how to access my digital life if/when I'm gone.
Bank info, logins, email stuff, just to make thier lives easier getting things of mine closed etc.
spart0n said:
Your passwords will matter to family that left after you're gone. I have several people in my life that have a detailed guide on how to access my digital life if/when I'm gone.
Bank info, logins, email stuff, just to make thier lives easier getting things of mine closed etc.
Click to expand...
Click to collapse
Yeah that's true. My good friend just passed at 37. His poor wife couldn't access his iPhone and it made things very difficult to process things and get photos etc.... I will do this process for my wife.
Brava27 said:
These are all valid points but chances of happening are very slim.
Click to expand...
Click to collapse
Is it worth the risk for that slim chance? If someone gets ahold of your online identity, they can ruin every part of your life in a matter of minutes, all while you're totally locked out from being able to stop them. My Bitwarden isn't even tied to my Gmail address for the login and I keep my 2FA in Authy separately, with Authy set to not allow multi-device. It would be pretty difficult for anyone to breach me unless they put in a lot of work that my meager net worth wouldn't be worth doing.
Besides, Bitwarden is actually more convenient than Google's password manager in a lot of areas. When enabling the accessibility options, I've noticed that the password popup shows in places that Google's never did which means less having to manually copy and paste.
EtherealRemnant said:
Is it worth the risk for that slim chance? If someone gets ahold of your online identity, they can ruin every part of your life in a matter of minutes, all while you're totally locked out from being able to stop them. My Bitwarden isn't even tied to my Gmail address for the login and I keep my 2FA in Authy separately, with Authy set to not allow multi-device. It would be pretty difficult for anyone to breach me unless they put in a lot of work that my meager net worth wouldn't be worth doing.
Besides, Bitwarden is actually more convenient than Google's password manager in a lot of areas. When enabling the accessibility options, I've noticed that the password popup shows in places that Google's never did which means less having to manually copy and paste.
Click to expand...
Click to collapse
I'll look into bitwarden. Thanks
KeePass Offline; only caveat is that you have to back it up manually (so each time I update it, I copy it to other devices in case the phone dies or is erased or stolen; my password is super long but I only have to remember one password).