[Q] Air-watch, end of rooted phones? - Android Q&A, Help & Troubleshooting

Hello everyone,
Im an IT guy for the company i work for and my boss the exchange admin is looking at some software to secure android phones. (Rooted ones) He found this software called (air-watch). i cannot post the link in here becasue im too new lol. i can email it if google does not work. Can someone smarter them me take a look and see if this means the end for all of us with rooted phones in the company. Im not sure how rooting phones affects how they are seen from exchange but i love my Roms and wifi teather

software can be found at http://www.air-watch.com/platforms/android/index.html click on android on the top

anyone? help pls.... im worried now haha

dont worry about it
I'm familiar with the company and right now they don't have a way to detect rooted phones.

nice. so how does the software work? there is no good info on the website and you are the 1st person ive talked to that has herd of it

sgtagem said:
software can be found at http://www.air-watch.com/platforms/android/index.html click on android on the top
Click to expand...
Click to collapse
Its a way for the company you are working for that supplied your android based phone to control the content and how it operates. It is basically security software. This will not effect your personal phone. Just your company supplied phone.

mistere372002 said:
Its a way for the company you are working for that supplied your android based phone to control the content and how it operates. It is basically security software. This will not effect your personal phone. Just your company supplied phone.
Click to expand...
Click to collapse
So if my phone is rooted right now will this software prevent me from connecting to exchange or will it just force me to use things like a screen lock pin code? I dont mind locking my phone with a password like my old blackberry i just dont want to lose root rights one my phone. free wifi teather overclocking ect is sooo nice

From the sounds of it, you don't own your phone anyway.

I own the phone the company took my plan over to save me some cash. But use it for exchange email so... I will be affected. Thanks for the input everyone
Sent from my Evervolv Droid

AirWatch
The company I work for is getting AirWatch as well. I am also one of the admins, so I will be the one setting ups the system. I am interested to see how of if the root is detected on my EVO 3d.
I will post as our pilot goes on.

Please use the Q&A Forum for questions Thanks
Moving to Q&A

BUMP
Any update on this? Air-watch does detect rooted phones, tested this out.

From their product page:
Define approved Android operating systems and models....
and
Detect Android devices that have been rooted or un-enrolled from the system.
If they decide to approve only stock ROM's, you're out of luck. Plus they have the ability to do a bunch of other stuff I wouldn't want my company doing on my personal phone like seeing what apps are installed, tracking via GPS, encrypting the SD card, and being able to remotely lock and wipe it. If I were you, I'd think about paying my own wireless bill and telling the company to stuff that product.

macellaio said:
From their product page:
Define approved Android operating systems and models....
and
Detect Android devices that have been rooted or un-enrolled from the system.
If they decide to approve only stock ROM's, you're out of luck. Plus they have the ability to do a bunch of other stuff I wouldn't want my company doing on my personal phone like seeing what apps are installed, tracking via GPS, encrypting the SD card, and being able to remotely lock and wipe it. If I were you, I'd think about paying my own wireless bill and telling the company to stuff that product.
Click to expand...
Click to collapse
Alot of companies are doing this and I have to agree with it. Company based info is too sensitive to be trusted to a rooted phone. Mainly with alot of people just installing apps without thinking about the permissions the apps use.
If you want to keep your phone where you have control then take the bill back over and let them issue you a company device.

zelendel said:
Alot of companies are doing this and I have to agree with it. Company based info is too sensitive to be trusted to a rooted phone. Mainly with alot of people just installing apps without thinking about the permissions the apps use.
If you want to keep your phone where you have control then take the bill back over and let them issue you a company device.
Click to expand...
Click to collapse
Yes -- All the big companies are doing it... where the sticker comes in is if the device rooted, is the device more at risk than being normal stock rom? More of a policy question at this point.
What muddies the water even more is if manufacturers are allowing the boot loader to be unlocked, then where is the problem with having a rooted phone.
Need to confirm with AW, will have a call with them later next week to determine how they are checking if the device is 'compromised'.

amryan said:
Yes -- All the big companies are doing it... where the sticker comes in is if the device rooted, is the device more at risk than being normal stock rom? More of a policy question at this point.
What muddies the water even more is if manufacturers are allowing the boot loader to be unlocked, then where is the problem with having a rooted phone.
Need to confirm with AW, will have a call with them later next week to determine how they are checking if the device is 'compromised'.
Click to expand...
Click to collapse
Yes a rooted phone is more at risk as it gives all apps the ability to have admin access. With a stock rom no one has admin rights to your phone.

zelendel said:
Yes a rooted phone is more at risk as it gives all apps the ability to have admin access. With a stock rom no one has admin rights to your phone.
Click to expand...
Click to collapse
You have to grant this access...is it really that much different when you install an app and give it those permissions?
In my eyes no... but there are better ways to protect the data from exfil....

amryan said:
You have to grant this access...is it really that much different when you install an app and give it those permissions?
In my eyes no... but there are better ways to protect the data from exfil....
Click to expand...
Click to collapse
OK but really think about it for a min. It is not that hard to bypass it if a hacker wanted to. That is how the virus apps do it. All then do is wait for the command to pop up and then make the system think you granted it.

Any word on how they detect root and if it can be bypassed?
Airwatch is being deployed at my "friends" company and so far several people have been black-listed from having rooted phones. Supposedly one of them had Super User installed, but there was no prompt from Airwatch saying it wanted root permisions.
How is airwatch detecting that phones have been rooted?
Is is possible to hide the fact that a phone has been rooted? (What I need is a root kit for my rooted phone.)

Modified_Grays said:
Airwatch is being deployed at my "friends" company and so far several people have been black-listed from having rooted phones. Supposedly one of them had Super User installed, but there was no prompt from Airwatch saying it wanted root permisions.
How is airwatch detecting that phones have been rooted?
Is is possible to hide the fact that a phone has been rooted? (What I need is a root kit for my rooted phone.)
Click to expand...
Click to collapse
It's checking for certain files, su, superuser. unrooting might be the only option... you can set the agent to poll whenever you want, so it could check every 5 mins.
http://androidforums.com/droid-x-all-things-root/207397-good-enterprise.html
check that link out... same concept... kind of annoying... I would be interested in a VM solution for my evo 3d and just run airwatch from a separate instance (dont think this exists yet)

Related

Why is the Eris so hard to root?

The Evo already got it, and im sure the incredible is almost there. Whats wrong with the Eris? And what Hboot are those two devices running?
Nikolai2.1 said:
The Evo already got it, and im sure the incredible is almost there. Whats wrong with the Eris? And what Hboot are those two devices running?
Click to expand...
Click to collapse
uuuummm what r u talkin about ? im confused , the eris is already rooted ,atleast if u have 1.5 u can root it or the 2.1 ota i belie ve u can too
tazzpatriot said:
uuuummm what r u talkin about ? im confused , the eris is already rooted ,atleast if u have 1.5 u can root it or the 2.1 ota i belie ve u can too
Click to expand...
Click to collapse
I thought it would be obvious that im talking about the leaked versions
it's just attention has been diverted that's all. if all the devs were working on rooting those leaks I have no doubt in my mind it would have already been, or very close to being rooted, but as it stands, most devs already have root on their phones so they arent as focused to rooting anymore, just providing more things already rooted phones. I'm sure there are some more devso ut there trying everyday to root it, but without as many, or as much work into it, it's going to be quite a while to get there.
I was looking into it myself, until my trackball stopped working and I got a replacement phone, so I guess I could be to blame as well for this.
Lemcott said:
it's just attention has been diverted that's all. if all the devs were working on rooting those leaks I have no doubt in my mind it would have already been, or very close to being rooted, but as it stands, most devs already have root on their phones so they arent as focused to rooting anymore, just providing more things already rooted phones. I'm sure there are some more devso ut there trying everyday to root it, but without as many, or as much work into it, it's going to be quite a while to get there.
I was looking into it myself, until my trackball stopped working and I got a replacement phone, so I guess I could be to blame as well for this.
Click to expand...
Click to collapse
devs are def. working on the issue. problem is, it's a no paying job.
I dont get the whole point in calling Android open source software if they have to lock our phones so we cant do anything. if we screw it up thats our fault so i dont see the problem
cornbreadfarts said:
devs are def. working on the issue. problem is, it's a no paying job.
Click to expand...
Click to collapse
Yes, I recognized that some are still working on it, I just said that attention has been diverted greatly. do you think releasing an ad blocker, various roms, overclocking, froyo, live wallpapers, aosp/jit support they were busy trying to root at the same time? of course not, you can only do so much at once, and attention to rooting has shifted greatly. have they forgot about it completely? hell no! they just put it on the backburners.
Nikolai2.1 said:
I dont get the whole point in calling Android open source software if they have to lock our phones so we cant do anything. if we screw it up thats our fault so i dont see the problem
Click to expand...
Click to collapse
google and android being open source has nothing to do with it. it's the carriers who prefer to lock down the phones.
A to keep the general public out of things that could hurt. could you imagine any old lady picking up an android phone and overclocking and the SU app, and all the other tools were there? it'd either destroy her phone when she messes with it, or left alone entirely because she doesnt know what they do. eitherway? they become pointless to have on the phone.
B to keep users out of things that cost more money. did you know you have to actually pay verizon an extra addition on your bill to unlock tethering on the phones they allow tethering on? by having root, we can tether without them knowing on phones that don't usually have tethering and we can do it without paying for it. it's not exactly something they want going on, so they lock the phones down.
C safety. Having root access on our phone gives apps a lot more things to control, and with such, if anything malicious gets on our phone, it can do more damage on a root user then a locked down phone.
so take the nexus one for instance, if you bought that through google, not a wireless provider, it still has root on it for the first and last reasons I mentioned. to keep the general public out of things they don't need to be getting into/understand how to control. and with the safety lockdown, the average person who goes "oh what's this?" *click* on a malicious app doesnt get that chance.
it's not about keeping us out, it's about making the service providers happy, and keeping the general public safe.
google has put into android a very simple way to get root access for us all, it's the phone hardware (and their custom software additions) and the service providers that make it harder and harder to get into the system.
makes sense, but safe from what? its a phone... it wont kill you
buttttt how would you go about getting a pre rooted nexus one even if you dont have t mobile and just want the phone?
Nikolai2.1 said:
makes sense, but safe from what? its a phone... it wont kill you
buttttt how would you go about getting a pre rooted nexus one even if you dont have t mobile and just want the phone?
Click to expand...
Click to collapse
No the phone wont hurt you, just your pocket when the average person, who knows zip about what they are doing with a rooted phone totally bricks the phone and has to buy a new one, at full retail price. Or perhaps they load up a app that causes major issues with the phone, causing it to lock up/fail. again hurting the pocket book by having to buy a new phone at retail price.
I'm not trying to be a **** here but I'm fairly certain that when any of us load anything onto the phone we're aware of the risks it could bring, I would hope you went into this with the same mentality.
that is what we are saying, anying who can make an account on XDA, actually, anyone who has even HEARD of xda is probably smart enough to not do any brick-inducing stupid moves.
I'm talking about the average person who doesnt know the difference between RAM and ROM here, it's locked down to protect them from their own dumb moves.
frankspin said:
I'm not trying to be a **** here but I'm fairly certain that when any of us load anything onto the phone we're aware of the risks it could bring, I would hope you went into this with the same mentality.
Click to expand...
Click to collapse
thats exactly what im trying to say. if we screw up our phones that our own fault so i dont see why we should worry about others who brick their phones and end up buying new ones. thats their fault and they can deal with it
(now because i said that if im ever able to root ill probably brick my phone trying) karma sucks...
but still.

Why won't google sell android pre-rooted?

I figure with apple it's a lost cause to begin with. I guess it's just how they want it. they want to limit the people to what they deem is good enough for iOS
but google and AOSP on the other hand...
it's an open enviroment with the source code publicly available.
why won't google allow the devices to come pre rooted?
it's like buying a windows PC, but you can't access the windows folder, or linux with no root access (no sudo)
It makes me think because of possible security breaches and possible lawsuits? but if that's the case, it would have happened with linux and windows machines that allow root access...
just got me curious...
what's the method to the madness here?
Its up to carriers and OEMs. Google has no say in the matter. On Nexus phones it is damn easy to root phones and the Nexus One practically was prerooted.
Google doesnt stop anyone from selling phones prerooted, in fact, I would assume they encourage it.
I've been wondering this for a while now actually.
I think I'd be tempted to punch the poor guy who sold me a windows computer with no admin access..
Why do we (as a culture) not get outraged we aren't suppose to have full access to our phones?
Being totally honest here.. the "you could mess something up" logic doesn't work for me..Try telling any computer user who has had to use admin access for *ANYTHING* that..
Agreed. Google really is a company for their consumers. As stated above I'd assume they'd have pre-rooted phones. Though, I wouldn't think it'd be up to the carrier, more so the manufacturer. The carrier usually has to do with their bloatware. HTC made a statement in May saying their new phones after said statment will have unlocked bootloaders (they haven't kept that by the way). Rooting is easy though, its just cracking though bootloaders that allows custom roms, now that's the issue, especially Motorola devices.
Sent from my LG-P925 using xda premium
perhaps when it's rooted, people will 'customize' it too much, causing too much warranty replacements, and the manuf doesn't wanna deal with it?
I assume they void this risk by making it so that it's hard and pita to root it, and causing void of warranty, so they aren't responsible when the phone is bricked.
but it's not like if I destroy my windows on my computer, dell will come and fix it. (they do provide the tech support though I think? I don't know)
problem is, we're a sue happy country. so... I think that has alot to do with it.
razorseal said:
perhaps when it's rooted, people will 'customize' it too much, causing too much warranty replacements, and the manuf doesn't wanna deal with it?
I assume they void this risk by making it so that it's hard and pita to root it, and causing void of warranty, so they aren't responsible when the phone is bricked.
but it's not like if I destroy my windows on my computer, dell will come and fix it. (they do provide the tech support though I think? I don't know)
problem is, we're a sue happy country. so... I think that has alot to do with it.
Click to expand...
Click to collapse
youve pretty much nailed it. almost.
99% of PHONE users do not mod and do not need/should have access to things that can prevent their phone from working anymore.
Imagine just being some dumb-ass, who 'pocket dials' deleting system apps, or the phone.apk... or is 'deleting the garbage' in download folder.. BUT its NOT the download folder... oops!
but you are no normal dumb-ass, you own a multi-million dollar company, and you cant receive or make time sensitive calls!!!?? because you accidentally deleted important stuff in your pocket... that IS a law suit.
remember this is a PHONE, not a computer.
tabets you have a case...
There should be a option when you first boot (or reflash) more or less like this:
Do you want to root your phone?
Root is used by advanced users and developers. If you don't know what this means, press 'No'.
Yes////// No
Sent using Mini CM7 Pro by Paul
.
Thread moved to Q&A due to it being a question. Would advise you to read forum rules and post in correct section.
The biggest issue lies with the carriers and manufacturers, not Google. The carriers don't want you to use wireless tethering without paying them for it. The manufacturers don't want to replace phones broken by some idiot that doesn't know how to read.
I agree that most users don't know what root is and have no business modifying system files. However, it would be nice if all phones were as easy to root as Nexus phones. Just OEM unlock and be done with it. Unfortunately folks would catch on and tethering would skyrocket. The carriers can't have that.
There's also the issue of malicious apps. On a non-rooted phone, an app can only access so much data and its permissions are laid out in plain text upon install. On a rooted phone, an app without any permissions can access the same data. People are used to always accepting when Windows prompts them for admin access, and they'd do the same when prompted for Superuser access. I wish all of the root methods released, specifically the automated ones, required you to pass a test before rooting. There are too many people rooting their phones and then getting into a jam because they were too lazy to read.
I feel like the number of uneducated root users would drop if carriers and manufacturers would do a few things. If carriers made tethering plans affordable, people wouldn't root just for that reason. If manufacturers made bloatware uninstallable - not stuff like phone.apk or systemui.apk, but the apps that can be downloaded from the market or aren't necessary for the phone to run - then less people would root for that reason. You'd also get less obnoxious reviews on the market saying "omfg like I can't uninstall it you suck I'd give it zero stars if I could" that lower the rating on well developed apps.
Okay, end rant.
Supersonic Evo 4G | MIUI | Tapatalk
plainjane said:
There's also the issue of malicious apps. On a non-rooted phone, an app can only access so much data and its permissions are laid out in plain text upon install. On a rooted phone, an app without any permissions can access the same data. People are used to always accepting when Windows prompts them for admin access, and they'd do the same when prompted for Superuser access.
Click to expand...
Click to collapse
Agreed, with a rooted phone you'll definitely have a less secure system if you don't know how to use it correctly. This point alone makes it not worth to give root access to normal users imo. I'm an app developer and I can say that I manage fine without a rooted phone and I have absolutely no need to root either, so far...
I can add that I don't live in US either so I don't know what kind of limitations you are bypassing there by rooting but that WiFi tethering is no problem for me without root access.

[Q] App "Superuser" containing malware? Possible?

Hello to everyone!
Maybe it's a stupid, noob question, but I googled for this without success.
And even a search in these forums was not helping, so... let's start!
It's saturday morning here and I start my weekend in one of the most disappointing ways...
Some minutes ago, my Galaxy Note showed a red icon in the status bar. I checked it, and it was Zoner antivirus. Hooray!
The malware that it found was exploit.AndroidOS.Lootor.A, and I don't know what it is, but it really sounds bad.
The disappointment went worse when I discovered that the malware (according to this antivirus) was in the latest Superuser update. Something I'm not going to uninstall without thinking twice.
What should I do? I think I'm going to follow my elephant-phone's suggestion and uninstall the update, since it's telling me that I can use "the original version" (at least, in Italian the message I see means literally that).
If you tell me -as I think- that it is just a false positive, I'll be happy to reinstall any update, but anyway I am asking for the opinion of more experienced users.
Thanks in advance!
PS: while I was writing here, there were some evolutions in this problem.
I followed the instructions and uninstalled some update (or at least the phone told me so).
Now it seems that Superuser should be uninstalled because it has inside
exploit.AndroidOS.GingerBreak.A
HELP!
I'm not going to uninstall superuser (I think I couldn't anyway), but I am worrying now!
PPS: ok googling exploit.AndroidOS.Gingerbreak.A I found that it is a false positive, so I assume that also exploit.AndroidOS.Lootor.A is safe... but I still would like some confirmations, I am quite new to Android and this is not the way I want to learn lol.
Virus scanners on android truly are pointless. They will pick up anything that changes the root permissions llike Super user or the root exploit. As long as your not using apks from iffy sites like 4shared or something you will be fine.
So how can we solve that?... I found a couple of apks on APPLANET that lead to a GAME CASINO on real market... Strange but that´s look like a virus to me...
Thank´s in advance.. Cem..
Don't use applanet unless your begging for a virus or to have your phone make calls to long distance numbers and send texts to paid account. Also no one on XDA will help you with any black market app markets.
zelendel said:
Virus scanners on android truly are pointless. They will pick up anything that changes the root permissions llike Super user or the root exploit. As long as your not using apks from iffy sites like 4shared or something you will be fine.
Click to expand...
Click to collapse
I'm not expert enough yet to discuss your point, it just seemed weird to me since it is the very first problem I had with an android anti-malware software. I've run Superuser for something like two months without any warning...
Anyway it's solved now, even if not in the best way. Something messed up in my beloved phone when I rebooted it one moment after my last post... I had to re-synchronize all my accounts and to reinstall most of my apps, it seemed that my phone lost all app data.
Now it's ok (luckily, I've learned enough 'til now to bring it slowly back to normal) but the procedure was painful.
Great lesson here: wether you consider antimalware useful or not, don't rely on it more than on good ol' common sense!
PS: anyway, why are they pointless? Aren't they able to find possible problems? I've recently learned that "possible" problems aren't necessarily problems, but it seems strange to hear that they are useless... just an explanation please.
Always good to have a virus scanner on you're android mobile. Even i've you only downloading wrom the market it can be infected (Very small change). Nothing is secure in this world. Better to have protection one time to much then to have it to late. How more popular android is going to be, how more change you can have for infections. Even its still low. Lookout cost nothing and says nothing about my superuser and other rooting apps. I use it on my tablet and phone and it works great.
Recently read a test and no Antivirus App was able to find more 15% of the Viruses, plus they always slow my phone down.
Best solution for me is being cautious and checking permissions.
Sent from my HTC Desire using XDA App
i think it might be a good idea for all that root their devices to first understand the concept of a false posotive virus scan result
also it may be worth understanding that from anti virus software standpoint any alteration to system safety may be undesirable as its designed for the end user who doesnt even know what root is ..
increasingly android caters for 2 markets, the sort of people who come here and probably own about 30 devices including pcs tablets phones etc and love tech.
and the other market of people who own a pc with xp on it and one phone, only running android because thats what the salesman sold them - and not because they insisted on Android.
terminal 7 said:
i think it might be a good idea for all that root their devices to first understand the concept of a false posotive virus scan result
also it may be worth understanding that from anti virus software standpoint any alteration to system safety may be undesirable as its designed for the end user who doesnt even know what root is ..
increasingly android caters for 2 markets, the sort of people who come here and probably own about 30 devices including pcs tablets phones etc and love tech.
and the other market of people who own a pc with xp on it and one phone, only running android because thats what the salesman sold them - and not because they insisted on Android.
Click to expand...
Click to collapse
Oh I have to agree. Too many people get Android because its cool and then they root because they think its cool. They should understand what they are doing before they make a choice for the OS on their phone.
If you think running Linux is too much trouble to run and keep up on your computer why would you run it on your phone when it takes just as much to keep up?
terminal 7 said:
i think it might be a good idea for all that root their devices to first understand the concept of a false posotive virus scan result
also it may be worth understanding that from anti virus software standpoint any alteration to system safety may be undesirable as its designed for the end user who doesnt even know what root is ..
increasingly android caters for 2 markets, the sort of people who come here and probably own about 30 devices including pcs tablets phones etc and love tech.
and the other market of people who own a pc with xp on it and one phone, only running android because thats what the salesman sold them - and not because they insisted on Android.
Click to expand...
Click to collapse
Yes, but you know, I had the naive hope that an antivirus for Android should check if an app is going to do a bad use of the permissions I give to it.
I.E. : I see a game that requires internet connection for multiplayer. It's ok, isn't it? In a perfect world, an antivirus should check if that game is going to connect to its multiplayer server or to a bad one... (it's just an example, I think that important brands aren't likely to lose their reputation that way)
Anyway, would you suggest me to give Avast a try? At least, I've seen that it has decent anti-theft features...
Max Morden said:
Yes, but you know, I had the naive hope that an antivirus for Android should check if an app is going to do a bad use of the permissions I give to it.
I.E. : I see a game that requires internet connection for multiplayer. It's ok, isn't it? In a perfect world, an antivirus should check if that game is going to connect to its multiplayer server or to a bad one... (it's just an example, I think that important brands aren't likely to lose their reputation that way)
Anyway, would you suggest me to give Avast a try? At least, I've seen that it has decent anti-theft features...
Click to expand...
Click to collapse
Please receive this feedback as intended, respectfully and well meaning...
if your finding yourself having concerns when an anti virus flags up your rooted status and yet you still feel the need for an anti virus package i suggest you un-root and keep to a stock kernel - this way the anti virus software will inform you of any possible intrusion or system change.
if however you must have root i think you need to simply come to understand more about what the anti virus packages can do .. or actually what they are limited to doing - might i suggest spending some time learning about a popular linux distribution too as it will bring about a different frame of mind and then you will realize that the anti virus software flaging SuperUser as a virus is actually neither true or a false posotive .. its just working from a different set of perspectives to that of a confident root enabled computer user .
i hope this makes sense without coming across in the wrong way, i just really think people should learn from XDA and the devices they buy & come to XDA for help with .
Respect the info found at XDA -and its users, we all learn together here
.
No malware in superuser app. Proceed
sent from an HTC sensation on CM7 alpha #10
super user by chainsdd has been around for a long time. and was developed to make being rooted easier, a lot easier. it gives you control over all files on your device. the developer is very trusted. no worries
Sent from my Transformer TF101 using xda premium.
Thanks to every single user that chose to spend some time for this post.
I was kinda sure that Superuser had to be safe, but lack of experience made me fear that somehow I could have downloaded the wrong package, or something...
The weirdest thing, is that Superuser and antivirus have been there together for a while, so I wondered what on earth was happening.
Well, I've done a mistake and now I've learned something... it's ok.
terminal 7 said:
Please receive this feedback as intended, respectfully and well meaning...
if your finding yourself having concerns when an anti virus flags up your rooted status and yet you still feel the need for an anti virus package i suggest you un-root and keep to a stock kernel - this way the anti virus software will inform you of any possible intrusion or system change.
if however you must have root i think you need to simply come to understand more about what the anti virus packages can do .. or actually what they are limited to doing - might i suggest spending some time learning about a popular linux distribution too as it will bring about a different frame of mind and then you will realize that the anti virus software flaging SuperUser as a virus is actually neither true or a false posotive .. its just working from a different set of perspectives to that of a confident root enabled computer user .
i hope this makes sense without coming across in the wrong way, i just really think people should learn from XDA and the devices they buy & come to XDA for help with .
Respect the info found at XDA -and its users, we all learn together here
.
Click to expand...
Click to collapse
This was interesting.
First of all, I am not offended at all and I don't understand how I could.
Well I could probably live without root (except for a couple of useful apps)... but I'm not going to un-root it for now.
I am a sturdy guy and I want to learn everything (everything I am interested into, I mean) about this OS. Trying and trying again, at the cost of some little problems if needed.
As for Linux, almost all my PCs have also it inside (win7 mostly for games), and I have never had a problem worth this name when using it. Never had something like an antivirus there, just some common sense and everything was fine.
I think I should have the same attitude towards Android as many of you have suggested. And I am willing to get some more info about android's antivirus limitations. Just because I'm curious.
Can you suggest some particular post here in xda?
Thanks again!
Please use the Q&A Forum for questions Thanks
Moving to Q&A

[Q] Virus in Mobile Odin Lite?

I use my (rooted and reflashed) SGS3 for work, for which it is great. Except our corporate IT folk have caught up, and now insist that I must install their security tools on my phone if I want to maintain mobile access to my corporate email, calendar etc etc. Fair enough ... not ideal, but I can appreciate their point of view.
Except their anti-virus tool (Junos Pulse) has decided that Mobile Odin Lite (which I downloaded from Chainfires post, here, http://forum.xda-developers.com/showthread.php?t=1347899) is infected with Android.Lotoor.c. A bit of Googling finds the following about "Lotoor":
Technical Information (Analysis)
Exploit:Unix/Lotoor is a detection for specially-crafted Android programs that attempt to exploit vulnerabilities in the Android operating system to gain root privilege.
Exploit:Unix/Lotoor is dropped and installed by TrojanSpy:AndroidOS/DroidDream.A. Once installed, the exploit is present as the following names:
rageagainstthecage
exploid
Allows root access
When run, Exploit:Unix/Lotoor allow a remote attacker to gain administrator privilege to the device running Android operation system.
Connects to a remote website
Exploit:Unix/Lotoor decrypts the name of a remote server provided by TrojanSpy:AndroidOS/DroidDream.A such as "184.105.245.17". The server address is used to send user identifiable data from the affected mobile device.
Click to expand...
Click to collapse
Given the nature of Mobile Odin, I can easily imagine this to be a false positive, but at the same time, I'd like a little reassurance - I don't particularly want a backdoor into my phone! Has anyone else seen or heard of this before? Or heard of any comment from Chainfire?
sixedup said:
I use my (rooted and reflashed) SGS3 for work, for which it is great. Except our corporate IT folk have caught up, and now insist that I must install their security tools on my phone if I want to maintain mobile access to my corporate email, calendar etc etc. Fair enough ... not ideal, but I can appreciate their point of view.
Except their anti-virus tool (Junos Pulse) has decided that Mobile Odin Lite (which I downloaded from Chainfires post, here, http://forum.xda-developers.com/showthread.php?t=1347899) is infected with Android.Lotoor.c. A bit of Googling finds the following about "Lotoor":
Given the nature of Mobile Odin, I can easily imagine this to be a false positive, but at the same time, I'd like a little reassurance - I don't particularly want a backdoor into my phone! Has anyone else seen or heard of this before? Or heard of any comment from Chainfire?
Click to expand...
Click to collapse
Android Anti Virus Apps are known to detect bulsh*t from time to time. Also I highly doubt that a very well known developer like Chainfire would include something in his Apps that would do harm to your device.
Its a false positive. Rageagainstthecage is an older root exploit from the Captivate days. I remember it well. You're good to go. Not a problem.
b-eock said:
Its a false positive. Rageagainstthecage is an older root exploit from the Captivate days. I remember it well. You're good to go. Not a problem.
Click to expand...
Click to collapse
Great. That was what I thought (especially given it's Chainfire's creation too). Now I just have to work out how to persuade the corporate security people to be happy about it. That will be a whole different level of problem. I can see a lot of "working around" the corporate AV & security tools in my future
They won't be persuaded. Speaking as a corporate IT guy myself, theres no way I would allow it.
rootSU said:
They won't be persuaded. Speaking as a corporate IT guy myself, theres no way I would allow it.
Click to expand...
Click to collapse
Yeah, I know. It's the classic tension of the BYOD model. My phone, but their data and paranoia. And boy are those guys paranoid - the amount of protection required just so I can access my email and contacts via my mobile (which I used to carry around as printouts and a paper address book) is out of all proportion to their value. I guess they have to prepare processes for the absolute worst case, but honestly ...
I think there's always a step too far though. They can remotely wipe the device, so they should be happy with that.
Its just with root you can bypass exchange requirement for pin / password / pattern lock. Most IT dont like that
Sent from my GT-I9300 using Tapatalk 2

[Q] Why is rooting a phone forbidden?

Can someone explain to me why root on a phone is forbidden?
I ask this because certain apps do not run when a phone is rooted.
But if you run something equal on Windows or Linux it's allright if you have administrator or even Enterprise rights...
I do not understand this...
Regards,
Phoenix007
well if they had the choice and foresight they probably would have created a restricted account for you even on a PC... but it's like oh shucks.... we give them full access to the OS well now let's not do it for mobile phones.
there are many reasons why rooting is restricted
-- reasons justified by the the manufacturer.
is that rooting changes their propriety apps and other information on the phone to the extent that modifying the system could hose the phone completely and therefore is a basis of denying warranty
-certain financial apps and other apps actually have code built into them that look for rooting and will stop working if the phone is rooted with the message that they will not work with rooted phone. there are workarounds in terms of fooling those apps that the phone is not rooted
-rooting gives user full access and if he does not know what is doing that can completely brick the phone which is in many cases is a v valid reason.... search for bricked phone threads on this forum and you see so many of them... though not all of them come from rooting the phone
now the real reason from user perspective
--a lot of Chinese phone manufacturers or even otherwise keep low level system apps running that collect your personal information
if you root a phone you have complete control of disabling any kind of app that's out there that you don't feel is working in your interest and you can basically throw away all those garbage apps that you don't feel have any value but the phone manufacturer wants to keep them
glaring example is Knox in Samsung phones. that app keeps running all the time and most of the time people don't need it.
-if you root a phone you can completely wipe out the stock OS supplied by the manufacturer and put in any kind of OS you want that is compatible
- phone manufacturer like Samsung has tied up with your carrier example t mobile and many a times business model needs that phone should work only with those certain carriers and not with any other carrier or outside that region so it becomes necessary to limit your access to the phone
-it's like the phone company is telling you you pay the cost of the phone and you rented from me. how much is the monthly rent ? $0 pm.... but you still rent it.... phone is not yours (=rooted )
Sent from my Moto G4 Plus using Tapatalk

Categories

Resources