Anyone with easy access to Linux want to run the latest NC CM 7.1 stable through THIS to see if it works? I think it would be useful to be able to control access to data directly vice random permission blocking. I think it would be VERY useful to be able to not have apps not work because of access that you chose to block which is what this claims to do.
Edit: CM7.1 stable from racks11479 in post 5 - http://forum.xda-developers.com/showpost.php?p=20923834&postcount=5
Edit(s): Latest Mirage from gumnaam.sur usually found near the bottom
tonydl said:
Another nice advantage is that we won't need an IMEI Generator with this app anymore - as PDroid can generate a random/fixed value here
Click to expand...
Click to collapse
Is there a patch available for Nook
Not sure I see the necessary Nook patch for install.
Thomas Droid said:
Not sure I see the necessary Nook patch for install.
Click to expand...
Click to collapse
I think that JJ was asking for someone to run the auto-patcher script to create a Nook-specific patch.
I'm running Pdroid on my Evo and it is a really sweet app. Would love to have it on the Nook as well, but I don't have access to a Linux machine to run the script.
PDroid
Heck yea.. I use it too on my EVO CM7. Incredible how these apps try to get more their fair share of us. Got alot of apps to run on full block.
You requested and I had a minute so here you go. This is patched for the latest stable for CM7.1 for the Nook Color of course.
**As usual the disclaimers of me not being responsible for what happens to your devices is stated! Whatever you do, just don't blame it on me, go ahead and "blame it on the rain" if you want! **
PDroid Patch for Nook Color-CyanogenMod 7.1:
PDroid-v1.27-update-cm-7.1.0-encore-signed.zip
MD5: b0fe3b81d045f2ee291bdd7ed25fd187
Click to expand...
Click to collapse
PDroid Restore Patch for Nook Color-CyanogenMod 7.1:
PDroid-RESTORE-update-cm-7.1.0-encore-signed.zip
MD5: b5d326969a4f2b52717c4bb3c4130d93
Click to expand...
Click to collapse
Enjoy!
-Racks
Great to finally have this.
For what it is worth, I initially installed the pdroid patch on the mirage 7.2 kang, but no dice. pdroid runs, but the battery icon and many settings are scrambled and/or unusable.
Back to cm7 stable it is. Pdroid is that great.
Many thanks to the Dev and the script runner.
Yea I tried too but put my Nook into SOD . I read elsewhere the suggestion to clear dalvik cache?..
I clear davlik with every flash just be sure. I can't say for sure that it would cause SOD just because Orbison so common with 7.1. I had eliminated the problem by upgrading to the Mirage kang with the SOD patch, but rolled back to 7.1 specifically to apply the patch for pdroid.
I am one of those paranoiacs that guards their info super jealously. It is a burden.
With the large number of people rolling up to MiRaGe though, I am hoping to stumble across a patch so I can permanently run that ROM until ICS comes out. I have burned the card for racks cm7.2/9 nightly dual boot, but haven't installed it yet. I will do so, but probably wont stick with it full time until I find a pdroid patch for the 7.2 kang at least.
If any of you kind souls has already made one, please let me know.
My Patch
Here's my patch for the MiRaGe Kang Build CM-7.2-RC0, build date 01-13-2012.
I made the patch on Ubuntu 11.x 32bit.
It works perfectly for me. The only time I get SOD, is when I keep WIFI on all the time, and the nook goes to deep sleep. But that SOD is regardless of whether I have pdroid installed or not. So I am sure pdroid has nothing to do with that SOD.
When WIFI off is set to 'never when charging' then I don't get any SOD.
Hope some of you can find this patch useful. and if so, please click 'THANKS'.
Paranoia is a very healthy thing
I wish I could thank you twice. I have been running tests with Droidwall, Shark for Root and Sharkreader among other apps, and you literally would not believe the amount of data that gets sent from your tablet, no matter how you try limiting permissions. I have found LBE to simply not stop it. Uninstalled two previously trusted apps just this morning after discovering they were sending packets to ad sites. I may share that info, after some more confirmation, but for now I am just glad I can control/block their information through PDroid.
If I have data sent out, I at least want to control its quality. Seriously, I don't have a PC where I am at, so I am relying on the kindness of strangers like you to keep me from chewing the walls.
Update: Atfter I applied tis patch, everything seems to work with Pdroid, but my battery icon reads as if it is charging when it is not plugged in, and has phone data bars instead if any battery indicator when the charger is attached. I had a similar problem when I tried the 7.1 stable patch on the mirage kang in the first place, although far more drastic that time. This is livable as is, although since I applied mirage's theme, i can't just replace the icon, or can I? Anyone know a fix?
Edit 2: changed the battery from icon to percentage in settings. No pictoral representation, but who cares, the info is there. Thanks again for posting that patch!
so this does work for Phiremod 7.1
I can verify it.
Well the 1st link works for it obviously, because it is 7.1 not 7.2
Patch for Mirage Kang build 7.2-RC0 build 0126
Here are the patches for the latest Kang build 7.2.
I installed them directly on top of the kang build, w/o having to reboot in between.
i.e. in CWM , wipe cache/dalvic-cache, then install kang build, then install pdroid patch, then reboot and enjoy.
Hit 'Thanks' if you found these useful.
My man! Every new build its a hard choice to either go without Pdroid or stay with older build. Until i can run thebpatcher through my nook itself, I will be relying on the largesse of the forum members ifbibwant to update. Luckily for me and others like me, XDA consistently takes care of its own.
Thanks again to you and the ones before you. This is shaping up to be a nice companion thread to the ROM thread. I'm going to link to your post in that thread, so more people can find it.
Thanks for your work, gumnaam.sur!
I use your patch with the 01132012 Kang build, no problems so far (I didn't have even the battery icon problem reported by mateorod - though I use the special transparency theme).
patches Kang Build 02012012
Patches for the latest Kang Build (02012012).
Stay paranoid
Thanks a lot for building and sharing these files gumnaam.sur!
Another nice advantage is that we won't need an IMEI Generator with this app anymore - as PDroid can generate a random/fixed value here
I ran this and just can't see the advantage in running it unless I'm really paranoid about the what I do getting into strange hands. I don't do banking or anything other that I'm really concerned about others getting info about. Is there something I should be concerned about?
I am a little paranoid which is why I don't do banking and such from any android device. It even drives me nuts knowing my wife does some banking from her non-rooted droid incredible phone. It just seems to me that overall android is not secure enough to use for anything private. Am I missing something?
Sent from my NookColor running CM7.2 -RC0 MiRaGe -
KANG 02012012 using TapaTalk
I use Pdroid in conjunction with several other apps which gives me a pretty good idea of what is sending data from my phone. Any app I don't think needs to communicate with the internet for functionality, I block with the firewall and use the log to do discovery on any blocked packets. I have caught several apps (market, no less) attempting to send packets to bogus http sites (most likely keystroke captures) and also to group ad sites that presumably disburse to the developers by the visit.
Any app I feel does need internet access, I pair Pdroid with Shark for root and Shark Reader, and use a winnowing process to analyse any suspect traffic.
I have found very few market apps that are involved with much more than unethical ad traffic, which while irritating and scummy, is a little less than dangerous. I just believe in stymying the efforts of unscrupulous developers ad publicizing any results I find. Last week I found that the trending market app Cartoon Wars was using its permissions to register users info with KRNIC, which is the National Internet Registry of south Korea. I, personally, like to know when my info is being sold to foreign intelligence commissions, info related to permissions as varied as network location and imei(good luck on the nook, right?) to incoming phone numbers (HA!)
I use Pdroid to compromise the integrity of the data should anything fall through the cracks. The more unnecessary permissions I find, the more attention I pay. Good developers explain theirir permissions, and avoid asking for unnecessary ones. I should feel comfortable buying cables on amazon, and Pdroid helps me get there.
Wow! You've definitely got security. I'm just not as worried I guess, but I'm glad there are people like you that are keeping an eye out. I just can't see using so much time spying on the spies.
You have convinced me into looking into this further though. So thank you.
Sent from my NookColor running CM7.2 -RC0 MiRaGe -
KANG 02012012 using TapaTalk
Yeah, I I have trust issues.
I tried many different proxy apps in the Market that claim to force all apps to use the proxy via iptables configuration but they just don't work on my Nook Color CM 7.2-RC0.
So, what I want to do is this:
Use SSH to connect to a remote host instructing SSH to provide 127.0.0.1:58080 as a SOCKS proxy running. Using regular old SSH on Unix this is done by doing a "ssh -D58080 [email protected]"
Set up iptables to redirect all outgoing ports to use SOCKS on 127.0.0.1:58080.
My question is: While many people have done this in Android, has anyone successfully set up their Cyanogenmod 7.1 or newer to use a global SOCKS proxy on the Nook Color tablet using iptables in this way?
I suspect that these apps really do work for many systems but the syntax and/or API is not compatible or the system calls are not available on CM7.1 and newer. Indeed when running iptables I did get a "Please implement XXX" message from the kernel.
Thanks!!
Did you try autoproxy? It made the leap to the Market. You can try the free version first. Maybe it would be better to approach the author of that one, he has a thread here.
Homer
Looking for some opinions/advice regarding my security/privacy needs:
A way to prevent MITM attacks when using public wifi points.
A way to prevent Android from phoning home with who knows what kind of info about me.
A way to prevent apps from stealing my info / tracking my movements and usage.
With regards to #1 I think I can do that by using a VPN. Question is which is better - flashing a rom like CYM 9 which has OpenVPN pre-installed - or I believe Entropy's kernel will allow us to use the OpenVPN app that is on the Market???
#2 - I originally thought that a VPN would work here too - Android still phone's home but with a fake IP. Problem is that Android will auto-connect before the VPN does. If we had a firewall app with profiles we could solve that problem but no luck so far. Next, I'm thinking that the PDroid app might solve this problem now that we have deodexed roms that will allow us to use PDroid. Possible issue here is that from what I can tell there are sometimes many Android parts grouped together into one ID so when you turn off network access for one you turn it off for all?? Last I'm wondering (I have never used custom ROM's before) if ROM's such as CYM 9 have already gotten rid of all the "phone Home" problems and therefore we don't need to worry about it at all if we use one of these ROM's???
#3 I think a combination of PDroid and a firewall will solve this issue.
Your help would be greatly appreciated!!
I'm looking to run a VPN server on my Android device so that I can set up a virtual network adapter on my PC to connect to the same network as my Android's wifi. I've seen plenty of Android VPN clients, but no server software.
Is there any software out there to run a VPN server on an android device?
I've heard OpenSSH runs an L2/L3 VPN, but I everything I can find on getting OpenSSH running on Android is all about ftp, and they usually wind up running an alternative. Is there a release of OpenSSH I can use on android for the purpose stated?
Thanks for your patience and support,
Serrath
Bumping the thread.
serrath said:
Bumping the thread.
Click to expand...
Click to collapse
I've ssh into my droid phone without a problem using SSHDroid. I'm also looking for how to setup a vpn server(vpnd) on the same droid phone. It might make it simpler for some work I do that requires access to the static ip address I have at home.
I may go with the following solution instead. blog.gidley.co.uk/2009/03/tunnelling-ssh-over-socks-proxy.html
If you're still looking, we just released Servers Ultimate from which the latest update (today) allows you also to run a VPN Server!
Have a look at the thread and let me know what you think of it! You do need a rooted ARM device to get it working (most devices are arm and if you think about a vpn server you're probably also rooted )
http://forum.xda-developers.com/showthread.php?t=1829334
Themuzz said:
If you're still looking, we just released Servers Ultimate from which the latest update (today) allows you also to run a VPN Server!
Have a look at the thread and let me know what you think of it! You do need a rooted ARM device to get it working (most devices are arm and if you think about a vpn server you're probably also rooted )
http://forum.xda-developers.com/showthread.php?t=1829334
Click to expand...
Click to collapse
i want some help in building an adblock app. I need to intercept all requests using vpn to local a vpn server.
Hi all
We use a few rugged android devices at work as glorified GPS and mapping units. They work great however today I found out that our main data collection service is updating their android application to use TLSv1.2. From my research it looks like all android devices beyond API level 16 (Jellybean) CAN support TLSv1.2, however it is not turned on by default (whatever that means) before API level 20/21 (KitKat wearable/Lollipop). We have devices running 4.1.1, 4.2.1 and 4.4.4.
There is literally zero chance of getting these devices upgraded to Lollipop. They are made by Getac and Aspera - both small companies. Anyone that uses rugged devices knows that you trade in your access to updates and custom roms etc when you opt for one. They are too much of a niche product to attract developers and the manufactures just want a stable device, not the latest and greatest. They also generally run lower end specifications, so updating to newer OS is not always desired. We have a Getac z710 (http://us.getac.com/tablets/Z710/features.html), one Aspera R5 (http://asperamobile.com/products/aspera-r5/) and three Aspera R6s (http://asperamobile.com/products/aspera-r6/). I am not even sure if they have root solutions available for them...
So does anyone out there with a kind heart and some knowledge want to help see if there is anything that can be done on my end to turn on support for TLSv1.2? Here is some stuff I found so far, but most of it seems like it needs to be done on the server side, not client side.
http://stackoverflow.com/questions/24357863/making-sslengine-use-tlsv1-2-on-android-4-4-2
http://www.jordanrejaud.com/android/2015/09/19/android-tls-ssl-engine.html
None of these devices are rooted, so everything needs to be done via adb, or i need a root solution...
bump...
Did you ever find a solution for this? I'm trying looking into this myself but haven't found anything that would modify it for the whole OS, only something that would require modifying the source code for an app.
I have the same problem/question:
GetBackersBH said:
Did you ever find a solution for this? I'm trying looking into this myself but haven't found anything that would modify it for the whole OS, only something that would require modifying the source code for an app.
Click to expand...
Click to collapse
Is there a known solution that would modify the whole OS, not just an app through a code? I would need TLS 1.2 permanently enabled on Android 4.4.2 KitKat. The phone is rooted, BTW.