Related
Is there a way to see WI-FI passwords after they are entered i went into manage networks and when i edit one i cannot see the password. So now i can't share with friends by simply looking at my phone
bnag0 said:
Is there a way to see WI-FI passwords after they are entered i went into manage networks and when i edit one i cannot see the password. So now i can't share with friends by simply looking at my phone
Click to expand...
Click to collapse
Sense i am rooted i was able to download this : WiFi Key Recovery
It gave me all the passwords to any secure network i ever connected to.
Case closed.
So I'm trying to do some research in the server requests and responses of some apps I work with, and for various reasons need a hotspot because of incompatibility with a corporate proxy.
Are there any apps that can decode/record web traffic as it's passed to AP clients through Wi-Fi tether?
I certainly recognize the possibility for espionage / inherent security concerns, but they have similar apps for desktops like "Charles proxy" or "fiddler" to do research in packet analysis.
I googled a little, but most examples were from the 2.2-2.3 days, and didn't seem updated at all.
Thanks!
Hi,
Maybe SandroProxy will help you out.
https://play.google.com/store/apps/details?id=org.sandroproxy
Not sure about working on wifi thether...
Mix3d said:
So I'm trying to do some research in the server requests and responses of some apps I work with, and for various reasons need a hotspot because of incompatibility with a corporate proxy.
Are there any apps that can decode/record web traffic as it's passed to AP clients through Wi-Fi tether?
I certainly recognize the possibility for espionage / inherent security concerns, but they have similar apps for desktops like "Charles proxy" or "fiddler" to do research in packet analysis.
I googled a little, but most examples were from the 2.2-2.3 days, and didn't seem updated at all.
Thanks!
Click to expand...
Click to collapse
SandroBSupp said:
Hi,
Maybe SandroProxy will help you out.
https://play.google.com/store/apps/details?id=org.sandroproxy
Not sure about working on wifi thether...
Click to expand...
Click to collapse
Yeah, that's the wrong type of proxy. I need the *phone* to act as the proxy, or at least decrypt ssl traffic between the phone and tethered device; this one is more of a "hide my traffic" proxy between the phone and the internet.
But this is exactly what SandroProxy do. It acts as local proxy accepting requests.
For SSL you need also to use Menu->Export CA to store.
It can also connect to your corporate proxy (basic/digest/ntlm) so you do not need to use thether mode.
http://forum.xda-developers.com/showthread.php?t=1737138
Mix3d said:
Yeah, that's the wrong type of proxy. I need the *phone* to act as the proxy, or at least decrypt ssl traffic between the phone and tethered device; this one is more of a "hide my traffic" proxy between the phone and the internet.
Click to expand...
Click to collapse
You're totally right. Just tried it out and it's working splendidly.
You the man!
Howdy all. I have a wifi at home which works with web authentication i.e. you connect your phone to wifi and on opening a browser, it redirects you to an authentication site wherein upon entering your username and password, you get connected. The authentication page requires you to keep the tab open and work with another tab, otherwise you lose the connection. When working on a PC, it works like a charm. I keep the tab open and wifi sticks for long even when you're not active. But on a smartphone (I have a Galaxy S3 here), it's a living hell trying to keep it stay connected. I've tried keeping the browser app resident in memory, created a tasker script to browse the URL and reconnect on certain intervals which honestly is too tedious and needs a better solution, used wifi web login apps which don't work to my satisfaction i.e. don't connect just when connection is lost; but in all these cases, the connection just seems to disconnect making me reconnect time and again :/. I would be utterly grateful to anybody who could suggest a solution for me for this as this is seriously making me lose my sleep.
ubz91 said:
Howdy all. I have a wifi at home which works with web authentication i.e. you connect your phone to wifi and on opening a browser, it redirects you to an authentication site wherein upon entering your username and password, you get connected. The authentication page requires you to keep the tab open and work with another tab, otherwise you lose the connection. When working on a PC, it works like a charm. I keep the tab open and wifi sticks for long even when you're not active. But on a smartphone (I have a Galaxy S3 here), it's a living hell trying to keep it stay connected. I've tried keeping the browser app resident in memory, created a tasker script to browse the URL and reconnect on certain intervals which honestly is too tedious and needs a better solution, used wifi web login apps which don't work to my satisfaction i.e. don't connect just when connection is lost; but in all these cases, the connection just seems to disconnect making me reconnect time and again :/. I would be utterly grateful to anybody who could suggest a solution for me for this as this is seriously making me lose my sleep.
Click to expand...
Click to collapse
what is the reason you don't want to use wpa2 for a home network?
mjz2cool said:
what is the reason you don't want to use wpa2 for a home network?
Click to expand...
Click to collapse
Dunno much about wifi security protocols but this is as my ISP provided. I've tried modifying the router protocols but nothing seem to make the web authentication go away.
ubz91 said:
Dunno much about wifi security protocols but this is as my ISP provided. I've tried modifying the router protocols but nothing seem to make the web authentication go away.
Click to expand...
Click to collapse
ah, ok, what kind of router is it?
mjz2cool said:
ah, ok, what kind of router is it?
Click to expand...
Click to collapse
A Motorola SBG901 wireless router.
ubz91 said:
A Motorola SBG901 wireless router.
Click to expand...
Click to collapse
is there any security settings tab? or maybe it's under the wireless settings tab
mjz2cool said:
is there any security settings tab? or maybe it's under the wireless settings tab
Click to expand...
Click to collapse
Nope, even setting security protocol to open shows the auth page. Might have to find a different solution for this.
ubz91 said:
Nope, even setting security protocol to open shows the auth page. Might have to find a different solution for this.
Click to expand...
Click to collapse
it could be the provider is forcing it, have you tried another router? normally, the web authentication is a proxy, so that could be the modem, or at the provider's end
mjz2cool said:
it could be the provider is forcing it, have you tried another router? normally, the web authentication is a proxy, so that could be the modem, or at the provider's end
Click to expand...
Click to collapse
Don't think the router has anything to do with this. Only the provider URL loads in the browser for authentication. So yeah, would know if it had something to do with the router.
Hey all, I turned on google maps (and the location service) on my stock Galaxy S9+ and noticed that the android system was suddenly making some outside calls on the HTTPS port (443). I've blocked them for now, but I was wondering if any of you know if they are ok to let through? The IP addresses are usually 13.249.134.*, going out to an amazon cloudfront server. Is this just how Samsung does some of its updates, or should I be worried about my privacy?
It could be any number of apps or services on your phone doing that. Without knowing which app did it or what it was doing (get, post, etc) was it's not possible to tell you if it's normal or not.
For example on my phone I see an https tunnel connection to 13.56.148.213:443 by Samsung neural keyboard.
I would try to use something to help narrow down what app is connecting to that IP address, and what it is doing in a bit more detail.
I cleared my adguard filter log recently but I will keep an eye on it. Will check on it tomorrow and see if I have any requests going to that IP address range.
**Edit - I don't see anything calling to that specific ip address range, but that doesn't mean anything necessarily. I would strongly suggest you find a way to identify what application is trying to connect to the IP address and what kind of event is taking place (POST, GET, HTTP TUNNEL, etc). Amazon cloudfront server(s) could very well be some form of content delivery service (images and etc), a server for use in backing up configurations/data, or as a way to send data to an app using the closest server to your location (like some sort of content delivery network).
Alright, thanks for your help! Would you happen to know of any good packet sniffers that wouldn't require root access?
StultusNemo said:
Alright, thanks for your help! Would you happen to know of any good packet sniffers that wouldn't require root access?
Click to expand...
Click to collapse
Unfortunately no., and I looked for such an app for a while (over past few months) now.
Hi,
Can someone help me with this problem.
Since I updated my Xperia 1 III this morning, I can't connect to my two different Enterprise WiFi networks.
WiFi window ask me for a domain name, but our IT admin doesn't know anything about it.
Without domain name, my connect button is greyed out, can someone help me to fix this without rooting my phone?
PURPOSE OF DOMAIN FIELD WHEN CONNECTING TO WIFI 802.1X (PEAP) ANDROID 11 PIXEL - Google Pixel Community
Does this help? I just googled abit so Im not too sure about your issue. You can also show this to ur IT admin maybe he will understand it better.
hotcakes_shinku said:
PURPOSE OF DOMAIN FIELD WHEN CONNECTING TO WIFI 802.1X (PEAP) ANDROID 11 PIXEL - Google Pixel Community
Does this help? I just googled abit so Im not too sure about your issue. You can also show this to ur IT admin maybe he will understand it better.
Click to expand...
Click to collapse
Thank you for your answer.
Unfortunately this can't help me, because my company isn't using "freeradius".
I spent whole day on Google trying to find fix or temporary solution.
almirsahbaz said:
Thank you for your answer.
Unfortunately this can't help me, because my company isn't using "freeradius".
I spent whole day on Google trying to find fix or temporary solution.
Click to expand...
Click to collapse
Domain issue: the domain is the url name of the SSL Certificate.
Click to expand...
Click to collapse
The "freeradius" here is just an example. You need the url name of the SSL certificate that your company uses. It doesn't need to be freeradius
hotcakes_shinku said:
The "freeradius" here is just an example. You need the url name of the SSL certificate that your company uses. It doesn't need to be freeradius
Click to expand...
Click to collapse
Thank you for answering.
I know that, but my company doesn't know what their domain server is.
almirsahbaz said:
Hi,
Can someone help me with this problem.
Since I updated my Xperia 1 III this morning, I can't connect to my two different Enterprise WiFi networks.
WiFi window ask me for a domain name, but our IT admin doesn't know anything about it.
Without domain name, my connect button is greyed out, can someone help me to fix this without rooting my phone?
Click to expand...
Click to collapse
I suspect you normally would use your account credentials to connect to the WiFi network?
Normally the domain name ist something like "your-company.com" or "your-company.local" (even if .local wouldn't be the best choice).
If so you could look for "EAP-Method" and change the value to "PWD". There you can enter your credentials which you normally use to lock in into your User-Account.
Hudrator said:
I suspect you normally would use your account credentials to connect to the WiFi network?
Normally the domain name ist something like "your-company.com" or "your-company.local" (even if .local wouldn't be the best choice).
If so you could look for "EAP-Method" and change the value to "PWD". There you can enter your credentials which you normally use to lock in into your User-Account.
Click to expand...
Click to collapse
My Enterprise WiFi network requires PEAP method.
I tried with PWD value, but it won't work.
If PEAP is the thing then you will need to provide a certificate, the domain name of the WLAN Controller... Basically everything all that the posts beforehand suggest.
When you were connecting prior android 12 to this network, what did you need to submit? Just some credentials? Certificates? That's something your admin should be able to tell...
Hudrator said:
If PEAP is the thing then you will need to provide a certificate, the domain name of the WLAN Controller... Basically everything all that the posts beforehand suggest.
When you were connecting prior android 12 to this network, what did you need to submit? Just some credentials? Certificates? That's something your admin should be able to tell...
Click to expand...
Click to collapse
This is what I needed:
EAP method: PEAP
Phase 2 authentication: MSCHAPV2
CA Certificate - Do not validate (this option is now removed, and now asks for domain, which needs to be put in)
Identity: My e-mail address
Anonymous identity: Blank
Password: My password
And that was it, I was successfully connecting to this network for a years.
Well you can try to fill in the last part of your email addresses for domain - so everything after the "@".
As written in one of the guides, normally you would enter the domain address of the authentication server / the common name which is part of the certificate of the server...
Seems that some restrictions in Android12 got tighter and you are now not allowed to skip the certificate validation part. Might be that now that Android12 is going to be published more, your it will need to change some things...
Hudrator said:
Well you can try to fill in the last part of your email addresses for domain - so everything after the "@".
As written in one of the guides, normally you would enter the domain address of the authentication server / the common name which is part of the certificate of the server...
Seems that some restrictions in Android12 got tighter and you are now not allowed to skip the certificate validation part. Might be that now that Android12 is going to be published more, your it will need to change some things...
Click to expand...
Click to collapse
I'm using public hotspots from my internet provider, so I can't do that, because I'm using my @hotmail.com e-mail to access this network.
I contacted them, but they don't know how to set up a domain.
Okay... now i am a bit stunned.
You are using public hotspots (not related to your enterprise). To connect you are authenticate with the credentials that you have configured at a side of the ISP?
If the hotspot is provided by your ISP you will have to ask him about accessing and credentials for the WLAN and not your IT-Admin.
Hudrator said:
Okay... now i am a bit stunned.
You are using public hotspots (not related to your enterprise). To connect you are authenticate with the credentials that you have configured at a side of the ISP?
If the hotspot is provided by your ISP you will have to ask him about accessing and credentials for the WLAN and not your IT-Admin.
Click to expand...
Click to collapse
The thing is, I'm working for that ISP provider, so I asked their IT Admin, but I'm also their user and I'm using my private ISP account to access these hotspot locations
@almirsahbaz
Ahhhhhh - now that make sense for me. Thanks for clearing things up. Back to your problem:
It will get troublesome....
PEAP Authentication "normally" requires the authenticator (aka the Server, Wifi Controller... some referring to it as a RADIUS-Server - which can also be a "role" performed by another server; often used are Domaincontrollers ) to offer a certificate. Simple speaking: Kind of similar to webserver-authentication for https.
Your phone then "checks" the provided certificate on validity. This validation step was "skipped". Skipping isn't supported anymore. This started already with android 11 (depending on oem-implementations).
So your Admins will have to deploy certificates as mentioned above and provide them to you.
The "domain" field you are mentioning is used to select the certificate of the authenticator (for a user it is often easier to enter the proper name then select the certificate out of the certificate store an the device).
The thing for you is:
You can't do anything, as your admins will have to think about the whole process. So you won't be able to use the hotspots until there have been some changes made by the admins.
What you can do is to inform the admins on the changes that google made starting at Android 11
PSA: Android 11 will no longer let you insecurely connect to enterprise WiFi networks
The Android 11 update will break connecting to certain enterprise WiFi networks. Here's why and what you can do to fix it.
www.xda-developers.com
If they want to use PEAP further on with devices running Android 12, they will have to change something!
Hudrator said:
@almirsahbaz
Ahhhhhh - now that make sense for me. Thanks for clearing things up. Back to your problem:
It will get troublesome....
PEAP Authentication "normally" requires the authenticator (aka the Server, Wifi Controller... some referring to it as a RADIUS-Server - which can also be a "role" performed by another server; often used are Domaincontrollers ) to offer a certificate. Simple speaking: Kind of similar to webserver-authentication for https.
Your phone then "checks" the provided certificate on validity. This validation step was "skipped". Skipping isn't supported anymore. This started already with android 11 (depending on oem-implementations).
So your Admins will have to deploy certificates as mentioned above and provide them to you.
The "domain" field you are mentioning is used to select the certificate of the authenticator (for a user it is often easier to enter the proper name then select the certificate out of the certificate store an the device).
The thing for you is:
You can't do anything, as your admins will have to think about the whole process. So you won't be able to use the hotspots until there have been some changes made by the admins.
What you can do is to inform the admins on the changes that google made starting at Android 11
PSA: Android 11 will no longer let you insecurely connect to enterprise WiFi networks
The Android 11 update will break connecting to certain enterprise WiFi networks. Here's why and what you can do to fix it.
www.xda-developers.com
If they want to use PEAP further on with devices running Android 12, they will have to change something!
Click to expand...
Click to collapse
Thank you for your detailed answer.
I found possible solution for them online, and I sent that to them.
I guess this is what they need to do: "Radius server's certificate needs to contain a fully-qualified domain name (FQDN) in the Common Name field."
Basically they will need to implement PEAP as it was intended, yes
Hudrator said:
Basically they will need to implement PEAP as it was intended, yes
Click to expand...
Click to collapse
Thank you once again for all support that you have provided
Hi,
It's me again, I'm still wondering about this issue.
I found online that Android 13 implemented option "Trust on first use" for Enterprise WiFi network, which is available in drop-down menu for CA Certificate, but that feature is completely missing from my Xperia 1 III phone.
Is there some kind of trick to enable this option without rooting my phone?
almirsahbaz said:
Hi,
It's me again, I'm still wondering about this issue.
I found online that Android 13 implemented option "Trust on first use" for Enterprise WiFi network, which is available in drop-down menu for CA Certificate, but that feature is completely missing from my Xperia 1 III phone.
Is there some kind of trick to enable this option without rooting my phone?
Click to expand...
Click to collapse
Hi there,
this works on custom roms (im using alpha droid, its very nice i highly recommend)
Just today was the first time i was able to connect to server wifi but it meant using a custom rom which i am completely happy with. Good luck