[Q] Virus in Mobile Odin Lite? - Galaxy S III Q&A, Help & Troubleshooting

I use my (rooted and reflashed) SGS3 for work, for which it is great. Except our corporate IT folk have caught up, and now insist that I must install their security tools on my phone if I want to maintain mobile access to my corporate email, calendar etc etc. Fair enough ... not ideal, but I can appreciate their point of view.
Except their anti-virus tool (Junos Pulse) has decided that Mobile Odin Lite (which I downloaded from Chainfires post, here, http://forum.xda-developers.com/showthread.php?t=1347899) is infected with Android.Lotoor.c. A bit of Googling finds the following about "Lotoor":
Technical Information (Analysis)
Exploit:Unix/Lotoor is a detection for specially-crafted Android programs that attempt to exploit vulnerabilities in the Android operating system to gain root privilege.
Exploit:Unix/Lotoor is dropped and installed by TrojanSpy:AndroidOS/DroidDream.A. Once installed, the exploit is present as the following names:
rageagainstthecage
exploid
Allows root access
When run, Exploit:Unix/Lotoor allow a remote attacker to gain administrator privilege to the device running Android operation system.
Connects to a remote website
Exploit:Unix/Lotoor decrypts the name of a remote server provided by TrojanSpy:AndroidOS/DroidDream.A such as "184.105.245.17". The server address is used to send user identifiable data from the affected mobile device.
Click to expand...
Click to collapse
Given the nature of Mobile Odin, I can easily imagine this to be a false positive, but at the same time, I'd like a little reassurance - I don't particularly want a backdoor into my phone! Has anyone else seen or heard of this before? Or heard of any comment from Chainfire?

sixedup said:
I use my (rooted and reflashed) SGS3 for work, for which it is great. Except our corporate IT folk have caught up, and now insist that I must install their security tools on my phone if I want to maintain mobile access to my corporate email, calendar etc etc. Fair enough ... not ideal, but I can appreciate their point of view.
Except their anti-virus tool (Junos Pulse) has decided that Mobile Odin Lite (which I downloaded from Chainfires post, here, http://forum.xda-developers.com/showthread.php?t=1347899) is infected with Android.Lotoor.c. A bit of Googling finds the following about "Lotoor":
Given the nature of Mobile Odin, I can easily imagine this to be a false positive, but at the same time, I'd like a little reassurance - I don't particularly want a backdoor into my phone! Has anyone else seen or heard of this before? Or heard of any comment from Chainfire?
Click to expand...
Click to collapse
Android Anti Virus Apps are known to detect bulsh*t from time to time. Also I highly doubt that a very well known developer like Chainfire would include something in his Apps that would do harm to your device.

Its a false positive. Rageagainstthecage is an older root exploit from the Captivate days. I remember it well. You're good to go. Not a problem.

b-eock said:
Its a false positive. Rageagainstthecage is an older root exploit from the Captivate days. I remember it well. You're good to go. Not a problem.
Click to expand...
Click to collapse
Great. That was what I thought (especially given it's Chainfire's creation too). Now I just have to work out how to persuade the corporate security people to be happy about it. That will be a whole different level of problem. I can see a lot of "working around" the corporate AV & security tools in my future

They won't be persuaded. Speaking as a corporate IT guy myself, theres no way I would allow it.

rootSU said:
They won't be persuaded. Speaking as a corporate IT guy myself, theres no way I would allow it.
Click to expand...
Click to collapse
Yeah, I know. It's the classic tension of the BYOD model. My phone, but their data and paranoia. And boy are those guys paranoid - the amount of protection required just so I can access my email and contacts via my mobile (which I used to carry around as printouts and a paper address book) is out of all proportion to their value. I guess they have to prepare processes for the absolute worst case, but honestly ...

I think there's always a step too far though. They can remotely wipe the device, so they should be happy with that.
Its just with root you can bypass exchange requirement for pin / password / pattern lock. Most IT dont like that
Sent from my GT-I9300 using Tapatalk 2

Related

Bluesnarfing

Does anyone know how to do it on the Droid?
Is there a single honorable reason why you would be interested in doing this?
I sure can't think of one.
well as soon as wifi packet injection works on android i am switching.
¿GotJazz? said:
Is there a single honorable reason why you would be interested in doing this?
I sure can't think of one.
Click to expand...
Click to collapse
Vulnerability testing... an auditor who wants to do bluetooth related pen test with his/her phone?
archangelugp said:
Vulnerability testing... an auditor who wants to do bluetooth related pen test with his/her phone?
Click to expand...
Click to collapse
Lets go with that . So I'm guessing theres no way yet?
alienware777 said:
Lets go with that . So I'm guessing theres no way yet?
Click to expand...
Click to collapse
Nope. Not yet.
I don't see why it matters to anyone why someone wants this.
I want this too. I don't have to explain to anyone as to why I want it. Because, it is absolutely none of your business. If you don't know how to implement it, then don't post.
Lol. This is a public forum. Of course you don't have to explain why you want something. Equally, if someone who could help doesn't want to, because they suspect you're up to no good, they don't have to justify their actions either, let alone help you. Blessed be.
cauli said:
Lol. This is a public forum. Of course you don't have to explain why you want something. Equally, if someone who could help doesn't want to, because they suspect you're up to no good, they don't have to justify their actions either, let alone help you. Blessed be.
Click to expand...
Click to collapse
Touché. I'll admit it. The main reason I want this is to mess with my friends. Nothing actually detrimental. Same reason I like sms bombers, and caller id fakers.
But still, this would be great to add on to my list
This would be so awesome..just from a security standpoint to be able to show and explain to friends and family to not there guards down when it comes to cyber theft and to turn off your radios when not in use
I never quite understand answers like this. This forum is for the exchange of information, not personal opinions. People that think their some kind of 'ethics police' need not be on this type of site. This site is for the exploration, hacking and development of our phones. Rooting & custom firmware is frowned upon by security researchers and manufacturers alike, but because your into it, it's morally correct?
supern0va said:
I never quite understand answers like this. This forum is for the exchange of information, not personal opinions. People that think their some kind of 'ethics police' need not be on this type of site. This site is for the exploration, hacking and development of our phones. Rooting & custom firmware is frowned upon by security researchers and manufacturers alike, but because your into it, it's morally correct?
Click to expand...
Click to collapse
Yep, one man's "not needed" is another man's necessity. This is no less needed than say someone thinking they need a ps3 controller (or wiimote) working with their phone, but no one really complains about that.
here's a very legitimate reason for you so if you know how PM me
Hi,
A friend of mine has an older mobile with a broken touchscreen - the phone no longer has a SIM or a RAM card and is in "Music Sync" mode when it connects to a PC via USB.
They are currently in a court case and need to get their old SMS's off the broken phone - all the "forensic" mobile software out there (from $500 up to $5000!!!) require that the phone is in PC-Suite (or PC-Sync) mode. This can't be changed on the phone as the touchscreen doesn't work.
The only way to get to the SMS's is by Bluesnarfing, so if you know of a PC program or a WinMo 6.5 program that will let me access their phone PM me.
Thanks.
Why is there always that one person that offers no assistance, takes up bandwidth questioning your motives...
For those that don't know:
"Bluesnarfing is the theft of information from a wireless device through a Bluetooth connection, often between phones, desktops, laptops, and PDAs. This allows access to a calendar, contact list, emails and text messages. Bluesnarfing is much more serious in relation to Bluejacking, although both exploit others’ Bluetooth connections without their knowledge. Any device with its Bluetooth connection turned on and set to “discoverable” (able to be found by other Bluetooth devices in range) can be attacked. By turning off this feature you can be protected from the possibility of being Bluesnarfed. Since it is an invasion of privacy, Bluesnarfing is illegal in many countries."
Thread closed

[Q] Air-watch, end of rooted phones?

Hello everyone,
Im an IT guy for the company i work for and my boss the exchange admin is looking at some software to secure android phones. (Rooted ones) He found this software called (air-watch). i cannot post the link in here becasue im too new lol. i can email it if google does not work. Can someone smarter them me take a look and see if this means the end for all of us with rooted phones in the company. Im not sure how rooting phones affects how they are seen from exchange but i love my Roms and wifi teather
software can be found at http://www.air-watch.com/platforms/android/index.html click on android on the top
anyone? help pls.... im worried now haha
dont worry about it
I'm familiar with the company and right now they don't have a way to detect rooted phones.
nice. so how does the software work? there is no good info on the website and you are the 1st person ive talked to that has herd of it
sgtagem said:
software can be found at http://www.air-watch.com/platforms/android/index.html click on android on the top
Click to expand...
Click to collapse
Its a way for the company you are working for that supplied your android based phone to control the content and how it operates. It is basically security software. This will not effect your personal phone. Just your company supplied phone.
mistere372002 said:
Its a way for the company you are working for that supplied your android based phone to control the content and how it operates. It is basically security software. This will not effect your personal phone. Just your company supplied phone.
Click to expand...
Click to collapse
So if my phone is rooted right now will this software prevent me from connecting to exchange or will it just force me to use things like a screen lock pin code? I dont mind locking my phone with a password like my old blackberry i just dont want to lose root rights one my phone. free wifi teather overclocking ect is sooo nice
From the sounds of it, you don't own your phone anyway.
I own the phone the company took my plan over to save me some cash. But use it for exchange email so... I will be affected. Thanks for the input everyone
Sent from my Evervolv Droid
AirWatch
The company I work for is getting AirWatch as well. I am also one of the admins, so I will be the one setting ups the system. I am interested to see how of if the root is detected on my EVO 3d.
I will post as our pilot goes on.
Please use the Q&A Forum for questions Thanks
Moving to Q&A
BUMP
Any update on this? Air-watch does detect rooted phones, tested this out.
From their product page:
Define approved Android operating systems and models....
and
Detect Android devices that have been rooted or un-enrolled from the system.
If they decide to approve only stock ROM's, you're out of luck. Plus they have the ability to do a bunch of other stuff I wouldn't want my company doing on my personal phone like seeing what apps are installed, tracking via GPS, encrypting the SD card, and being able to remotely lock and wipe it. If I were you, I'd think about paying my own wireless bill and telling the company to stuff that product.
macellaio said:
From their product page:
Define approved Android operating systems and models....
and
Detect Android devices that have been rooted or un-enrolled from the system.
If they decide to approve only stock ROM's, you're out of luck. Plus they have the ability to do a bunch of other stuff I wouldn't want my company doing on my personal phone like seeing what apps are installed, tracking via GPS, encrypting the SD card, and being able to remotely lock and wipe it. If I were you, I'd think about paying my own wireless bill and telling the company to stuff that product.
Click to expand...
Click to collapse
Alot of companies are doing this and I have to agree with it. Company based info is too sensitive to be trusted to a rooted phone. Mainly with alot of people just installing apps without thinking about the permissions the apps use.
If you want to keep your phone where you have control then take the bill back over and let them issue you a company device.
zelendel said:
Alot of companies are doing this and I have to agree with it. Company based info is too sensitive to be trusted to a rooted phone. Mainly with alot of people just installing apps without thinking about the permissions the apps use.
If you want to keep your phone where you have control then take the bill back over and let them issue you a company device.
Click to expand...
Click to collapse
Yes -- All the big companies are doing it... where the sticker comes in is if the device rooted, is the device more at risk than being normal stock rom? More of a policy question at this point.
What muddies the water even more is if manufacturers are allowing the boot loader to be unlocked, then where is the problem with having a rooted phone.
Need to confirm with AW, will have a call with them later next week to determine how they are checking if the device is 'compromised'.
amryan said:
Yes -- All the big companies are doing it... where the sticker comes in is if the device rooted, is the device more at risk than being normal stock rom? More of a policy question at this point.
What muddies the water even more is if manufacturers are allowing the boot loader to be unlocked, then where is the problem with having a rooted phone.
Need to confirm with AW, will have a call with them later next week to determine how they are checking if the device is 'compromised'.
Click to expand...
Click to collapse
Yes a rooted phone is more at risk as it gives all apps the ability to have admin access. With a stock rom no one has admin rights to your phone.
zelendel said:
Yes a rooted phone is more at risk as it gives all apps the ability to have admin access. With a stock rom no one has admin rights to your phone.
Click to expand...
Click to collapse
You have to grant this access...is it really that much different when you install an app and give it those permissions?
In my eyes no... but there are better ways to protect the data from exfil....
amryan said:
You have to grant this access...is it really that much different when you install an app and give it those permissions?
In my eyes no... but there are better ways to protect the data from exfil....
Click to expand...
Click to collapse
OK but really think about it for a min. It is not that hard to bypass it if a hacker wanted to. That is how the virus apps do it. All then do is wait for the command to pop up and then make the system think you granted it.
Any word on how they detect root and if it can be bypassed?
Airwatch is being deployed at my "friends" company and so far several people have been black-listed from having rooted phones. Supposedly one of them had Super User installed, but there was no prompt from Airwatch saying it wanted root permisions.
How is airwatch detecting that phones have been rooted?
Is is possible to hide the fact that a phone has been rooted? (What I need is a root kit for my rooted phone.)
Modified_Grays said:
Airwatch is being deployed at my "friends" company and so far several people have been black-listed from having rooted phones. Supposedly one of them had Super User installed, but there was no prompt from Airwatch saying it wanted root permisions.
How is airwatch detecting that phones have been rooted?
Is is possible to hide the fact that a phone has been rooted? (What I need is a root kit for my rooted phone.)
Click to expand...
Click to collapse
It's checking for certain files, su, superuser. unrooting might be the only option... you can set the agent to poll whenever you want, so it could check every 5 mins.
http://androidforums.com/droid-x-all-things-root/207397-good-enterprise.html
check that link out... same concept... kind of annoying... I would be interested in a VM solution for my evo 3d and just run airwatch from a separate instance (dont think this exists yet)

Why won't google sell android pre-rooted?

I figure with apple it's a lost cause to begin with. I guess it's just how they want it. they want to limit the people to what they deem is good enough for iOS
but google and AOSP on the other hand...
it's an open enviroment with the source code publicly available.
why won't google allow the devices to come pre rooted?
it's like buying a windows PC, but you can't access the windows folder, or linux with no root access (no sudo)
It makes me think because of possible security breaches and possible lawsuits? but if that's the case, it would have happened with linux and windows machines that allow root access...
just got me curious...
what's the method to the madness here?
Its up to carriers and OEMs. Google has no say in the matter. On Nexus phones it is damn easy to root phones and the Nexus One practically was prerooted.
Google doesnt stop anyone from selling phones prerooted, in fact, I would assume they encourage it.
I've been wondering this for a while now actually.
I think I'd be tempted to punch the poor guy who sold me a windows computer with no admin access..
Why do we (as a culture) not get outraged we aren't suppose to have full access to our phones?
Being totally honest here.. the "you could mess something up" logic doesn't work for me..Try telling any computer user who has had to use admin access for *ANYTHING* that..
Agreed. Google really is a company for their consumers. As stated above I'd assume they'd have pre-rooted phones. Though, I wouldn't think it'd be up to the carrier, more so the manufacturer. The carrier usually has to do with their bloatware. HTC made a statement in May saying their new phones after said statment will have unlocked bootloaders (they haven't kept that by the way). Rooting is easy though, its just cracking though bootloaders that allows custom roms, now that's the issue, especially Motorola devices.
Sent from my LG-P925 using xda premium
perhaps when it's rooted, people will 'customize' it too much, causing too much warranty replacements, and the manuf doesn't wanna deal with it?
I assume they void this risk by making it so that it's hard and pita to root it, and causing void of warranty, so they aren't responsible when the phone is bricked.
but it's not like if I destroy my windows on my computer, dell will come and fix it. (they do provide the tech support though I think? I don't know)
problem is, we're a sue happy country. so... I think that has alot to do with it.
razorseal said:
perhaps when it's rooted, people will 'customize' it too much, causing too much warranty replacements, and the manuf doesn't wanna deal with it?
I assume they void this risk by making it so that it's hard and pita to root it, and causing void of warranty, so they aren't responsible when the phone is bricked.
but it's not like if I destroy my windows on my computer, dell will come and fix it. (they do provide the tech support though I think? I don't know)
problem is, we're a sue happy country. so... I think that has alot to do with it.
Click to expand...
Click to collapse
youve pretty much nailed it. almost.
99% of PHONE users do not mod and do not need/should have access to things that can prevent their phone from working anymore.
Imagine just being some dumb-ass, who 'pocket dials' deleting system apps, or the phone.apk... or is 'deleting the garbage' in download folder.. BUT its NOT the download folder... oops!
but you are no normal dumb-ass, you own a multi-million dollar company, and you cant receive or make time sensitive calls!!!?? because you accidentally deleted important stuff in your pocket... that IS a law suit.
remember this is a PHONE, not a computer.
tabets you have a case...
There should be a option when you first boot (or reflash) more or less like this:
Do you want to root your phone?
Root is used by advanced users and developers. If you don't know what this means, press 'No'.
Yes////// No
Sent using Mini CM7 Pro by Paul
.
Thread moved to Q&A due to it being a question. Would advise you to read forum rules and post in correct section.
The biggest issue lies with the carriers and manufacturers, not Google. The carriers don't want you to use wireless tethering without paying them for it. The manufacturers don't want to replace phones broken by some idiot that doesn't know how to read.
I agree that most users don't know what root is and have no business modifying system files. However, it would be nice if all phones were as easy to root as Nexus phones. Just OEM unlock and be done with it. Unfortunately folks would catch on and tethering would skyrocket. The carriers can't have that.
There's also the issue of malicious apps. On a non-rooted phone, an app can only access so much data and its permissions are laid out in plain text upon install. On a rooted phone, an app without any permissions can access the same data. People are used to always accepting when Windows prompts them for admin access, and they'd do the same when prompted for Superuser access. I wish all of the root methods released, specifically the automated ones, required you to pass a test before rooting. There are too many people rooting their phones and then getting into a jam because they were too lazy to read.
I feel like the number of uneducated root users would drop if carriers and manufacturers would do a few things. If carriers made tethering plans affordable, people wouldn't root just for that reason. If manufacturers made bloatware uninstallable - not stuff like phone.apk or systemui.apk, but the apps that can be downloaded from the market or aren't necessary for the phone to run - then less people would root for that reason. You'd also get less obnoxious reviews on the market saying "omfg like I can't uninstall it you suck I'd give it zero stars if I could" that lower the rating on well developed apps.
Okay, end rant.
Supersonic Evo 4G | MIUI | Tapatalk
plainjane said:
There's also the issue of malicious apps. On a non-rooted phone, an app can only access so much data and its permissions are laid out in plain text upon install. On a rooted phone, an app without any permissions can access the same data. People are used to always accepting when Windows prompts them for admin access, and they'd do the same when prompted for Superuser access.
Click to expand...
Click to collapse
Agreed, with a rooted phone you'll definitely have a less secure system if you don't know how to use it correctly. This point alone makes it not worth to give root access to normal users imo. I'm an app developer and I can say that I manage fine without a rooted phone and I have absolutely no need to root either, so far...
I can add that I don't live in US either so I don't know what kind of limitations you are bypassing there by rooting but that WiFi tethering is no problem for me without root access.

[Q] App "Superuser" containing malware? Possible?

Hello to everyone!
Maybe it's a stupid, noob question, but I googled for this without success.
And even a search in these forums was not helping, so... let's start!
It's saturday morning here and I start my weekend in one of the most disappointing ways...
Some minutes ago, my Galaxy Note showed a red icon in the status bar. I checked it, and it was Zoner antivirus. Hooray!
The malware that it found was exploit.AndroidOS.Lootor.A, and I don't know what it is, but it really sounds bad.
The disappointment went worse when I discovered that the malware (according to this antivirus) was in the latest Superuser update. Something I'm not going to uninstall without thinking twice.
What should I do? I think I'm going to follow my elephant-phone's suggestion and uninstall the update, since it's telling me that I can use "the original version" (at least, in Italian the message I see means literally that).
If you tell me -as I think- that it is just a false positive, I'll be happy to reinstall any update, but anyway I am asking for the opinion of more experienced users.
Thanks in advance!
PS: while I was writing here, there were some evolutions in this problem.
I followed the instructions and uninstalled some update (or at least the phone told me so).
Now it seems that Superuser should be uninstalled because it has inside
exploit.AndroidOS.GingerBreak.A
HELP!
I'm not going to uninstall superuser (I think I couldn't anyway), but I am worrying now!
PPS: ok googling exploit.AndroidOS.Gingerbreak.A I found that it is a false positive, so I assume that also exploit.AndroidOS.Lootor.A is safe... but I still would like some confirmations, I am quite new to Android and this is not the way I want to learn lol.
Virus scanners on android truly are pointless. They will pick up anything that changes the root permissions llike Super user or the root exploit. As long as your not using apks from iffy sites like 4shared or something you will be fine.
So how can we solve that?... I found a couple of apks on APPLANET that lead to a GAME CASINO on real market... Strange but that´s look like a virus to me...
Thank´s in advance.. Cem..
Don't use applanet unless your begging for a virus or to have your phone make calls to long distance numbers and send texts to paid account. Also no one on XDA will help you with any black market app markets.
zelendel said:
Virus scanners on android truly are pointless. They will pick up anything that changes the root permissions llike Super user or the root exploit. As long as your not using apks from iffy sites like 4shared or something you will be fine.
Click to expand...
Click to collapse
I'm not expert enough yet to discuss your point, it just seemed weird to me since it is the very first problem I had with an android anti-malware software. I've run Superuser for something like two months without any warning...
Anyway it's solved now, even if not in the best way. Something messed up in my beloved phone when I rebooted it one moment after my last post... I had to re-synchronize all my accounts and to reinstall most of my apps, it seemed that my phone lost all app data.
Now it's ok (luckily, I've learned enough 'til now to bring it slowly back to normal) but the procedure was painful.
Great lesson here: wether you consider antimalware useful or not, don't rely on it more than on good ol' common sense!
PS: anyway, why are they pointless? Aren't they able to find possible problems? I've recently learned that "possible" problems aren't necessarily problems, but it seems strange to hear that they are useless... just an explanation please.
Always good to have a virus scanner on you're android mobile. Even i've you only downloading wrom the market it can be infected (Very small change). Nothing is secure in this world. Better to have protection one time to much then to have it to late. How more popular android is going to be, how more change you can have for infections. Even its still low. Lookout cost nothing and says nothing about my superuser and other rooting apps. I use it on my tablet and phone and it works great.
Recently read a test and no Antivirus App was able to find more 15% of the Viruses, plus they always slow my phone down.
Best solution for me is being cautious and checking permissions.
Sent from my HTC Desire using XDA App
i think it might be a good idea for all that root their devices to first understand the concept of a false posotive virus scan result
also it may be worth understanding that from anti virus software standpoint any alteration to system safety may be undesirable as its designed for the end user who doesnt even know what root is ..
increasingly android caters for 2 markets, the sort of people who come here and probably own about 30 devices including pcs tablets phones etc and love tech.
and the other market of people who own a pc with xp on it and one phone, only running android because thats what the salesman sold them - and not because they insisted on Android.
terminal 7 said:
i think it might be a good idea for all that root their devices to first understand the concept of a false posotive virus scan result
also it may be worth understanding that from anti virus software standpoint any alteration to system safety may be undesirable as its designed for the end user who doesnt even know what root is ..
increasingly android caters for 2 markets, the sort of people who come here and probably own about 30 devices including pcs tablets phones etc and love tech.
and the other market of people who own a pc with xp on it and one phone, only running android because thats what the salesman sold them - and not because they insisted on Android.
Click to expand...
Click to collapse
Oh I have to agree. Too many people get Android because its cool and then they root because they think its cool. They should understand what they are doing before they make a choice for the OS on their phone.
If you think running Linux is too much trouble to run and keep up on your computer why would you run it on your phone when it takes just as much to keep up?
terminal 7 said:
i think it might be a good idea for all that root their devices to first understand the concept of a false posotive virus scan result
also it may be worth understanding that from anti virus software standpoint any alteration to system safety may be undesirable as its designed for the end user who doesnt even know what root is ..
increasingly android caters for 2 markets, the sort of people who come here and probably own about 30 devices including pcs tablets phones etc and love tech.
and the other market of people who own a pc with xp on it and one phone, only running android because thats what the salesman sold them - and not because they insisted on Android.
Click to expand...
Click to collapse
Yes, but you know, I had the naive hope that an antivirus for Android should check if an app is going to do a bad use of the permissions I give to it.
I.E. : I see a game that requires internet connection for multiplayer. It's ok, isn't it? In a perfect world, an antivirus should check if that game is going to connect to its multiplayer server or to a bad one... (it's just an example, I think that important brands aren't likely to lose their reputation that way)
Anyway, would you suggest me to give Avast a try? At least, I've seen that it has decent anti-theft features...
Max Morden said:
Yes, but you know, I had the naive hope that an antivirus for Android should check if an app is going to do a bad use of the permissions I give to it.
I.E. : I see a game that requires internet connection for multiplayer. It's ok, isn't it? In a perfect world, an antivirus should check if that game is going to connect to its multiplayer server or to a bad one... (it's just an example, I think that important brands aren't likely to lose their reputation that way)
Anyway, would you suggest me to give Avast a try? At least, I've seen that it has decent anti-theft features...
Click to expand...
Click to collapse
Please receive this feedback as intended, respectfully and well meaning...
if your finding yourself having concerns when an anti virus flags up your rooted status and yet you still feel the need for an anti virus package i suggest you un-root and keep to a stock kernel - this way the anti virus software will inform you of any possible intrusion or system change.
if however you must have root i think you need to simply come to understand more about what the anti virus packages can do .. or actually what they are limited to doing - might i suggest spending some time learning about a popular linux distribution too as it will bring about a different frame of mind and then you will realize that the anti virus software flaging SuperUser as a virus is actually neither true or a false posotive .. its just working from a different set of perspectives to that of a confident root enabled computer user .
i hope this makes sense without coming across in the wrong way, i just really think people should learn from XDA and the devices they buy & come to XDA for help with .
Respect the info found at XDA -and its users, we all learn together here
.
No malware in superuser app. Proceed
sent from an HTC sensation on CM7 alpha #10
super user by chainsdd has been around for a long time. and was developed to make being rooted easier, a lot easier. it gives you control over all files on your device. the developer is very trusted. no worries
Sent from my Transformer TF101 using xda premium.
Thanks to every single user that chose to spend some time for this post.
I was kinda sure that Superuser had to be safe, but lack of experience made me fear that somehow I could have downloaded the wrong package, or something...
The weirdest thing, is that Superuser and antivirus have been there together for a while, so I wondered what on earth was happening.
Well, I've done a mistake and now I've learned something... it's ok.
terminal 7 said:
Please receive this feedback as intended, respectfully and well meaning...
if your finding yourself having concerns when an anti virus flags up your rooted status and yet you still feel the need for an anti virus package i suggest you un-root and keep to a stock kernel - this way the anti virus software will inform you of any possible intrusion or system change.
if however you must have root i think you need to simply come to understand more about what the anti virus packages can do .. or actually what they are limited to doing - might i suggest spending some time learning about a popular linux distribution too as it will bring about a different frame of mind and then you will realize that the anti virus software flaging SuperUser as a virus is actually neither true or a false posotive .. its just working from a different set of perspectives to that of a confident root enabled computer user .
i hope this makes sense without coming across in the wrong way, i just really think people should learn from XDA and the devices they buy & come to XDA for help with .
Respect the info found at XDA -and its users, we all learn together here
.
Click to expand...
Click to collapse
This was interesting.
First of all, I am not offended at all and I don't understand how I could.
Well I could probably live without root (except for a couple of useful apps)... but I'm not going to un-root it for now.
I am a sturdy guy and I want to learn everything (everything I am interested into, I mean) about this OS. Trying and trying again, at the cost of some little problems if needed.
As for Linux, almost all my PCs have also it inside (win7 mostly for games), and I have never had a problem worth this name when using it. Never had something like an antivirus there, just some common sense and everything was fine.
I think I should have the same attitude towards Android as many of you have suggested. And I am willing to get some more info about android's antivirus limitations. Just because I'm curious.
Can you suggest some particular post here in xda?
Thanks again!
Please use the Q&A Forum for questions Thanks
Moving to Q&A

[Q] How does one know this is all save and not NSA related?

Hi,
with all media attention related to NSA spy activities.
How does one know this all happening here is not related to NSA activities?
If i'm correct the bloatware a provider installs when you bought it gives nsa access or gives provider unwanted access.
Maybe i'm thinking too much, but even NSA could bring out a rom which looks great and so and you think it's save and not accessing your private details, mic or camera.
Just a thought i had.
(on duckduckgo.com there was this advertising for save internet and cyanomod, thatss how i came here)
Thanks !
Have you been abusing ice or something ?
haha no, just curious that's all. As you know google ain't clean either in terms of privacy. And Android is Google.....
But no, i like what's happening here, it was just a thought.
Alright...
Intelligence agencies can already essentially look at whatever they want whenever they want via direct access to all networks. They can break a lot of encryption. Most operating systems (whether phone/PC/whatever) either have some NSA designed bits (I.E SELinux) or 'backdoors' which enable them to access even the most tightly 'locked up' systems.
I very much doubt they need to release a bit of 'crapware' or an OS of their own given the above. Though I can imagine in certain cases they custom design an exploit for a particular individual or organisation they want keep tabs on, but I can't imagine they'd want to do it to ordinary phone users en masse in the manner you suggested.
They already 'passively' surveil just about everyone (I.E collect all data but tend not to look at it unless they need to), so they don't need to do what you mentioned.
In my view opensource system has an advantage that you can check the source code yourself for a potential backdoor.
Most of the ROMs here are opensource so you can download, check, compile and install.
However you do not have 100% opensource devices - you have for example radio drivers which we just trust they will send data to correct receiver and in correct format...
I don't think it is proven SELINUX introduces backdoor or was it? If yes, I'm very interested to see it.
https://en.wikipedia.org/wiki/Security-Enhanced_Linux. Everything is backdoored.
MistahBungle said:
Alright...
Intelligence agencies can already essentially look at whatever they want whenever they want via direct access to all networks. They can break a lot of encryption. Most operating systems (whether phone/PC/whatever) either have some NSA designed bits (I.E SELinux) or 'backdoors' which enable them to access even the most tightly 'locked up' systems.
I very much doubt they need to release a bit of 'crapware' or an OS of their own given the above. Though I can imagine in certain cases they custom design an exploit for a particular individual or organisation they want keep tabs on, but I can't imagine they'd want to do it to ordinary phone users en masse in the manner you suggested.
They already 'passively' surveil just about everyone (I.E collect all data but tend not to look at it unless they need to), so they don't need to do what you mentioned.
Click to expand...
Click to collapse
yes you're right. it totaaly agree.
thanks a lot for your answer.
MistahBungle said:
Everything is backdoored.
Click to expand...
Click to collapse
I checked Wikipedia SELinux Entry. I remember Linus's nodding, however there is no hint it was with relation of SELinux.
I found another discussion on this topic and I agree with the point that "It would be singularly dumb of them to inject backdoors in their own name."
Time will show.
Anyway - if you do not trust it, you can turn it off completely or use an alternative - AppArmor - which does not come from NSA.

Categories

Resources