I'm trying to wrap my head around how Maas360 blocks things for Samsung devices (at least for Android 8.0 and higher). Is it blocked using Knox? Where is the file of whitelisted and/or blacklisted domains? How can you modify it? I would like to fundamentally understand fully how MDMs like Maas360 block websites and domains. I can handle a deep explanation! ?
jordanbw1 said:
I'm trying to wrap my head around how Maas360 blocks things for Samsung devices (at least for Android 8.0 and higher). Is it blocked using Knox? Where is the file of whitelisted and/or blacklisted domains? How can you modify it? I would like to fundamentally understand fully how MDMs like Maas360 block websites and domains. I can handle a deep explanation! ?
Click to expand...
Click to collapse
Well, there could be 2 different things happening. Are you able to use any browser on the device? If so, it may be running through a proxy. Most Maas360 admins utilize the Secure Browser when they supervise devices through the MDM. All traffic is then routed through Maas360. If you aren't restricted to the Secure Browser, and it's a corporate-owned device, they may have set up a proxy filtering connection and routed it through that way.
I used Maas360 for their trial while evaluating content filters for work. Their Secure Browser definitely works well.
Related
I installed the bit torrent app. Is there an app like peer block which i use on my pc, so i can download torrents more safely?
I am in no way supporting any software of the such, but here :
https://www.google.com/webhp?source...qf.&fp=215a8248afbd2d8&ion=1&biw=1777&bih=872
There is no virus a torrent might contain that will mess with an android phone
if youre worried about downloading "free paid apps" from a torrent that may harm your phone...download at your own risk and dont expect an answer
but like i said ..you can download an AV on the Play store but viruses that harm your computer wont work on an android phone
so its pointless
Nah. I didn't think i'd have to spell it out....
i was lead to believe that downloading a torrent could lead to some kind of tracker. A peer block program will safeguard against that happening.
Does that make sense to anyone
ARTAQaf said:
Nah. I didn't think i'd have to spell it out....
i was lead to believe that downloading a torrent could lead to some kind of tracker. A peer block program will safeguard against that happening.
Does that make sense to anyone
Click to expand...
Click to collapse
Ive never heard of that to be honest..
only thing ive heard or seen is the air push ads but there is apps to black that
also if youre really concerned, check what permissions the apps ask for when downloading from market
i use torrents to "preview" music and havent had any kind of problem to this day
ARTAQaf said:
Nah. I didn't think i'd have to spell it out....
i was lead to believe that downloading a torrent could lead to some kind of tracker. A peer block program will safeguard against that happening.
Does that make sense to anyone
Click to expand...
Click to collapse
I assume that you're taking about downloading a movie and not wanting the MPAA seeing your ip from the trackers, yes?
AFAIK there isn't anything like that. Something you could try, this is just theory btw, would be to add the list of ip addys to the hosts file the same way the ad blocking apps use. It would stop you from connecting to them, however they might still be able to see your addy from the swarm tracker information.
Sent from my SAMSUNG-SGH-I717 using xda premium
admittedly i am a relative noob about internets stuff. but i'm 51% sure that what i'm saying is true. gotta be someone here in this techy forum who knows for a certainty though. and if it is true, idk how there can not be an app that can cover your tracks like Peer Block for PC does.
Using peerblock 1.1 on my PCs works just great i cannot live without it and also looking for something on my android... she is a bit paranoid.... Using LBE Security Master so i can filter out adverts and unwanted stuff...
Peerblock is there to protect you from Copyright holders, there is no additional benefit gained from blocking the IPs in the lists from accessing your tarffic. There is no need to discuss its use on these forums as XDA does not condone Warez. if you're worried about getting reported to MPAA, RIAA, or any other copyright holder for the ILLEGAL download of copyrighted materials look elsewhere or stick with your PC/Peerblock combination. There is no comparable app for android phones and the extent of the methods you would need to implement would be beyond a headache.
peer block is an application that collects lists of sites you dont want your device connecting to and blocking access.
it is not just used for piracy but for many other uses..
don't want your computer connecting to devices is a particular country or continent? peer block can block that.
don't want ads on your device..?? peerblock blocks the major and many minor sites that host ads
don't want software calling home ( for any reason) peek block can block that..
don't want your web browser connecting to Microsoft?? peer block can block that
don't want government or corporate agencies connecting to your computer? peer block can block that
don't want your ftp used by schools ? peerblock can block that
don't want your weather station used by fox? peer block can block that
its all about the lists..
the biggest issue with peer block ( and the main use of it) is that the lists get old (even a few hours can be a problem)
and someone you don't want to have access to your device gets it.. and your compromised..
i have not seen any app that gathers block lists and incorporates them into a firewall for your phone
adblock plus dose a similar thing but just for ads..
you could build a hosts file every day and do that...
but really peerblock is only about 75% effective if even that for blocking.
but 75% is better than nothing...
but don't do anything you don't want to come back to you.. on any Internet in your real name..
what is legal in some places is not legal in others, and the Internet is a world wide community
go irc, nntp and some others for privacy from corporate/goverment snooping and spying.
(I just checked and ad block allows custom lists from web sites so you COULD set it up to act just like peerblock if you can find the lists you need in compatible format)
Again not condoning the act of piracy, but if you don't want people to know your ip from a sense of security, you could use a vpn service. I use one at home because I don't want my isp tapping into my datastream which has been deemed legal to do without a warrant of a wiretap.
Sent from my SAMSUNG-SGH-I717 using xda app-developers app
To any Android system expert:
I just experienced the following:
I'm using an iptables firewall on all my Android devices (Avast and since a few days AFWall+ (Play Store version)).
I started blocking many apps to limit data usage.
Now I wanted to open up a webpage with Google Chrome, but it always failed with DNS_PROBE_FINISHED_NXDOMAIN.
The iptables log was showing blocked packages of UID 0, so the root UID, listed as "Root execution" in the firewall apps.
Unblocking this UID resulted in web pages loading fine in Chrome.
I just want to know: Has Android some built-in DNS resolver that Chrome uses and that is running as root out-of-the-box, so that it could get blocked by that?
It is some really interesting behavior in my opinion, so I just would like to understand the system.
I would also like to block root execution from internet access (even while apps could remove the block, I know, but most of them wouldn't, as I think), mostly because of said data usage, especially on roaming, but I want to continue using Chrome.
If that is not possible due to this and my question above has an understandable answer, it would also be ok.
I did not try with other browsers for now, so I don't know whether this is a Chrome-specific thing or not.
Also, all my devices (as seen in my signature) are running some sort of AOSP, so I also don't know whether some carriers/manufacturers changed something with that.
Thank you in advance!
EDIT: Partially answered at http://forum.xda-developers.com/showthread.php?t=2386584
Seems to be an "issue" of the Android system.
If anyone knows more, or a way to circumvent this (on Lollipop) to block everything except the DNS requests, please tell me.
my problem is that i have a non rooted phone with vpn always on and im searching for an app to activating ad block on it.
My fix for it would be to use an android wide proxy or a custom dns that overrides vpn dns.
as title said an root app or an app that provides vpn solution wouldnt be what im searching for. I had once an adblock app that routes traffic trough local proxy beside the vpn but cant find it anymore
Update: i found AdHell but its only for Samsung Devices with knox. Any other solutions?
HeathenMan said:
Update: i found AdHell but its only for Samsung Devices with knox. Any other solutions?
Click to expand...
Click to collapse
any news on this one?
I wanna use protonVPN and adblcoker at same time
a bit of elbow grease to protect self from Privacy Raping
Some [open]vpn clients allow vpn side connection to Socks5. Some even allow toggle of LAN access from device. I am not claiming a finish product exists but perhaps this gives you some joy.
Perhaps your socks5 instance runs in Amazon AWS free tier. Maybe it runs locally on your android handset. Perhaps you run Privoxy itself on android. [@mod: privoxy is F/OSS older than this forum]. There are a few privoxy projects for android on github. Perhaps you pick their brain. It was that against which proxomitron competed [also F/OSS. Thank God for Scott Lemmon].
Using things in differing order you might search the article to which I may not link: Privoxy on Android (with EC2 VPN)
I wanted to bring the Amazon EC2-based Privoxy service to it, by way of a VPN.
Click to expand...
Click to collapse
There was no obvious way to contact the author who hasn't posted since 2016.
There is an OpenVPN service you can likely find the name of yourself offering *recently* an adblock toggle and AntiTracker toggle with a hardcode mode to protect you from predators like google and Fbook. It shouldn't be long before others emulate this functionality. It sports the vpn side socks5 option.
Or privoxy tunnel to remote [cloud (openvpn)]. See? Fun with permutations. Maybe from phone with ShadowSocks to cloud to vpn to web. "OpenVPN over shadowsocks". At this point look into sites helping Chinese dissidents.
You definitely then return here with your improvements to share.
The remaining question is how much is your time worth? Not much? Then search the web ad naseum for the 'ideal free' solution. Elsewise pony up some pennies for some cloud time as part of a solution.
Same question here !
And it seems that adhell is now only available for entreprise use
Wasn't AdGuard doing that?
yes you are right. it works with setting a private dns in the system settings with dns.adguard.com - no batterydrain - no more ads - no vpn - no root
Hello there,
it seems that on the S9+ (and maybe S9, tho users over there report everything is fine) all the VPN-based ad blockers like DNS66, Blokada and the likes do not work correctly. When switching between wifi and mobile, the connection randomly dies, not letting anything through anymore until you restart the phone, or disable the blocker. It is documented in a github issue for DNS66 here. This is annoying, as I found this solution the most user-friendly. I know there is Adhell 3, but a) it's annoying to resign and reinstall every 3 months and apply for new keys and b) it doesn't block everything, not even if I manually feed it with all the hosts files that DNS66 uses. It blocks ads alright, but misses quite some.
Is there any known fix for this, or any other adblock suggestion besides that? I know that rooting and adaway would be best, but I won't root anymore since Samsung here in Europe straight off denies any warranty requests for rooted devices, even if it's got nothing to do with the root itself.
Adguard would a suggestion, but it does use a VPN blocking service for system wide blocking. It's not free and is subscription based. At one time I used adguard over dns66 as adguard worked and dns66 did not (VPN issues with dns66).
For non rooted users there is really no other options. Unless you want to setup a pihole server, somehow get your dns setting on your phone to point to the pihole server and go that route. In the case of dns changes on non-rooted devices it's either a VPN based change or knox. So your options are limited to one or the other. Of course this becomes moot if your plan on only blocking ads when you use a wifi connection.
I've done the pihole route before too, it works but doesn't catch everything. Some ads originate from the same domain as where your visiting, in which case dns adblocking won't work. For those scenarios cosmetic filtering would.
Otherwise I use adhell3 and adblock plus plugin on samsung browser. For practical intents and purposes I steered clear of VPN based setups for a reason. Also I don't mind recompilimg adhell3 once in a while, he's really put a lot of work into making it as simple as possible. I've got my android studio setup so that I just pull the latest changes, build the apk and install.
If adhell3 isn't your cup of tea then the only app I know is Disconnect Pro which costs $24.99 in the galaxy app store. Disconnect Pro functions the same way as Adhell3 does.. as a front end configuration for knox. I've read somewhere that Adhell3 has more features then Disconnect Pro, but I didn't look to much into that to find out what one has over the other.
If I were to suggest something I would suggest adhell3 combined with adblock plus plugin for your browser. combined those work the best for me... some ads might slip through, but dns based ad blocking is not the same as cosmetic ad blocking. Adguard should still do cosmetic filtering, but it's been a while since I used that app.
I am use this one on my S9+, it's free and work fine.
https://block-this.com/
Hello, developers!
I'm a student wanting to build an application for android that allows for a non-rooted phone to have a firewall (Such as Netguard), then route to the choice VPN provider (such as OpenVPN).
One thing that everyone is questioning (including myself) is why nobody else made this yet.
So I have come to the forums to ask if there is some Android Kernel reason that is preventing people from making such an app, or if VPN developers and non-root firewall developers just didn't decide to make it?
TLDR:
What is stopping developers from making an app that routes from a non-root firewall to a VPN provider?
The abillity to alter iptables with a non-root device. If you're a first year student you might be done at the end of your study. But then we'll probebly have Android Twix and your software will be useless. I'd place my bet elsewhere.
I'm not worried about the version upon release, I intend for this to be open-source, thus be useful in allowing others to make and use this in the future, so motivation worries asside-
The abillity to alter iptables with a non-root device is what the worry is?
Why could I not, for example, take netguard and modify that to just build in more VPN capabilities?
As far as I am aware, Netguard sets up a VPN on your device, so the idea was to just set the VPS to a choice provider.
Perhaps I just don't understand IP tables well enough, so just let me know if that is the case.