I am trying to understand how the android password authenticator works in some specific app.
There is this line of code in the app:
PasswordAuthentication auth = java.net.Authenticator.requestPasswordAuthentication(url.host(), getConnectToInetAddress(proxy, url), url.port(), url.scheme(), challenge.getRealm(), challenge.getScheme(), url.url(), RequestorType.SERVER);
I know that the requestPasswordAuthentication function Ask the authenticator that has been registered with the system for a password. It then returns the username and password and store them in "auth".
My questions are:
what is the authenticator that has been registered with the system? where is this password stored? Where does it get the password from?
Related
Hello
I installed 4.1.1 on a MB525 (Defy) according to the honorable post in <http://forum.xda-developers.com/showthread.php?t=1768702> and it works like a charm!
One thing I am missing is: Configuration options for the IMAP account are not as fine granular as in the stock Motorola. Especially I can't configure to an IMAP server supporting the following:
* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE STARTTLS AUTH=PLAIN AUTH=DIGEST-MD5 AUTH=CRAM-MD5] Dovecot ready.
Means: IMAP with STARTTLS and encrypted (MD5) password
What is supported by the 4.1.1: None, SSL/TLS, SSL/TLS (all certs accepted), STARTTLS, STARTTLS (all certs accepted).
What I would need is STARTTLS with password encryption md5 (automatically detected or fixed configurable).
How could I solve this issue?
Regards
TinL
Q does not seem to be Question
Hello
it does not seem to be an issue for Android 4.1 in general.
Regards
TinL
Hello all,
I installed [ROM] NexusHD2-JellyBean-4.1.2-CM10 V1.2 from tytung.
It is fine. I find it great.
But I have an issue to configure with my corporate exchange account.
My error log emaillog.txt is as following:
[11:17:53] AbstractSyncService| Testing EAS: my.server.adress, my_domain\my_user, ssl = 1
[11:17:53] ExchangeService| !!! EAS ExchangeService, onStartCommand, startingUp = false, running = false
[11:17:53] ExchangeService| Reconciling accounts...
[11:17:53] ExchangeService| !!! EAS ExchangeService, stopping self
[11:17:53] AbstractSyncService| Validation (OPTIONS) response: 500
[11:17:53] AbstractSyncService| Internal server error
[11:17:53] ExchangeService| !!! EAS ExchangeService, onDestroy
Click to expand...
Click to collapse
I can't get rid of the error:
[11:17:53] AbstractSyncService| Validation (OPTIONS) response: 500
[11:17:53] AbstractSyncService| Internal server error
Does someone know how to solve it? What is it meaning?
I searched hours on the xda forums and found lots of posts with issues concerning Email.apk and Exchange Server.
I tried different proposed solutions, but they didn't solved my case.
Here what I tried:
- Delete all accounts (even the google account), recreate the exchange account 1st ...
- Check my permissions in Active directory (The famous checkbox inherit permissions), which are correct.
- Reinstalled the rom.
- I tried to replace my apk with various Email.apk and Exchange2.apk without exchange security, it never worked.
- I tried with a pin lock screen, a password lockscreen or a pattern lock screen
- I found post speaking about issues concerning the exchange server SSL Certificate.
I tried the workaround with WIFI connection and shut down the connection, to finish the account configuration, but it didn't worked.
Instead of skipping the SSL certificate check and completing the account configuration, it cancelled/interrupted the account configuration.
- I tried to add the SSL certificate in the trusted certificates
- With my Email.apk V4.1 and Exchange2.apk v5.0 I never got the message to add the email application to the device administrator...
- I checked my settings with Moxier trial and Touchdown trial, and it worked. So my settings (account, domain, server) are correct. The only problem is the Email.apk on JB 4.1.2 !!!
I noticed that if i install a previous version of Email.apk (v2.3), I can configure my exchange account and sync mails, but the application is not stable on JB 4.1.2 and constantly crashes.
What could I do to solve that issue?
Do someone have a tip or hint?
Thanks in advance
Regards
A. Meladius
I chosen a project at security information to find a password from a phone with Android.
I found in password.key from data/system/ a crypto text with 97 characters ,how are generate that crypto text ? Which is the function ?
I need that function to do bruteforce on that password /pin with 4 digits.
I am trying to connect an email app (AquaMail) on my phone (Sprint Samsung Note 4, stock rooted, Android OS 5.0.1) to my email server (IMAP) using SSL. When I try this, I get the following error message:
Incoming mail server (IMAP): Invalid security (SSL) certificate. java.security.cert.CertPathValidatorException: Trust anchor for certification path not found.
The server to which I am trying to connect is my own VPS. I do have a wild card certificate installed on the site and I believe it is installed properly. I say this because of the report I generated on www.ssllabs.com/ssltest:
Certificate: 100%
Protocol Support: 95%
Key Exchange: 90%
Cipher Strength: 90%
Two certification paths are shown: mail.mydomain.com -> StartCom Class 2 Primary Intermediate Server CA -> StartCom Certification Authority (one path shows this with SHA1withRSA and the other shows SHA256withRSA).
Looking at the Handshake Simulation section, it clearly shows that Android 5.0.0 functions properly, but is also shows that Java 7u25 has a 'protocol or cipher suite mismatch'. This same warning shows up for other, deprecated systems and is probably due to my having turned off older, insecure access protocols.
Can anyone suggest how to get this working properly? Yes, I could work around this by a) allowing all certificate or b) not using secure protocols; but neither of these are solutions.
Thank you for your help!
Please, by mistake when you login to the My Community Forum, register my UserName incorrectly, instead of entering the Username, I enter the Password. It is a bottled error, I know, but I want to be canceled the Username that I have in the community since it is obvious that I can not enter this way. The error is caused by input through the browser of my Phone and did not see the letters well.
My cloud
Email: [email protected]
User Name: GabrielCh. (on the phone)
Password: xxxxxxxxx (this Password was changed obviously)
UID: 16xxxx5439 (x numbers changed here)
ERROR in My Community
Email: [email protected]
User Name: gxxxx243. (ERROR in the explorer) (x numbers changed here)
Password: xxxxxxxxx (x numbers changed here)
UID: 2238863843
Captured Account ERROR:
https: //prntscr.com/gh21wc
Captured Acount Correct (Not Change):
https: //prntscr.com/gh21gs
Please, it's possible to eliminate or change this UserName in acount in the Mi Comunity!
User Name: gxxxx243
If you need the complete data, I can send it in private, Thanks.