I wanted to root my OnePlus 5t to install 'Google Feed' so was reading through tutorials on Magisk.
I thought maybe I'll download just the manager first, validate the security net, patch the boot image etc.
It seems, Outlook and 'Company Portal' app freak out as soon as they see 'Magisk Manager' installed. Even before beginning with rooting procedure, Outlook showed me the warning of data being deleted as root was detected.
Anyone knows about this ? I read Magisk module for Outlook but there are mixed reactions on those.
Many claims that it's not working.
Why do these apps panic on just seeing the manager installed
luvshines said:
I wanted to root my OnePlus 5t to install 'Google Feed' so was reading through tutorials on Magisk.
I thought maybe I'll download just the manager first, validate the security net, patch the boot image etc.
It seems, Outlook and 'Company Portal' app freak out as soon as they see 'Magisk Manager' installed. Even before beginning with rooting procedure, Outlook showed me the warning of data being deleted as root was detected.
Anyone knows about this ? I read Magisk module for Outlook but there are mixed reactions on those.
Many claims that it's not working.
Why do these apps panic on just seeing the manager installed
Click to expand...
Click to collapse
Maybe, they just warn you about security. A rooted device is many times considered insecure though I don't know why. You can try uninstalling them and then reinstalling after rooting ????
Arc android said:
A rooted device is many times considered insecure though I don't know why.
Click to expand...
Click to collapse
I can guess the 'why' part. The apps won't allow copy paste content outside of the app, take screenshots etc. which can be overridden from root I think
Arc android said:
You can try uninstalling them and then reinstalling after rooting ????
Click to expand...
Click to collapse
I think the 'Hide Manager' and 'Magisk hide' etc. will all be available only after rooting.
I am just being paranoid about whether these apps will work or not. Maybe I'll learn that only after I get my hands dirty
luvshines said:
I can guess the 'why' part. The apps won't allow copy paste content outside of the app, take screenshots etc. which can be overridden from root I think
I think the 'Hide Manager' and 'Magisk hide' etc. will all be available only after rooting.
I am just being paranoid about whether these apps will work or not. Maybe I'll learn that only after I get my hands dirty
Click to expand...
Click to collapse
Oh yes
Related
every few days my magisk root always gets uninstalled and had to reboot to get it back, is there any fix for it?
this happens on any custom rom, fresh install
Probably because you are using incompatible magisk library and apk.
spbx123 said:
every few days my magisk root always gets uninstalled and had to reboot to get it back, is there any fix for it?
this happens on any custom rom, fresh install
Click to expand...
Click to collapse
Apparently PlatStore is the culprit here. In the guise of checking for malignant apps, it removes Magisk. There is already information about this on XDA. I read it but am unable to locate it now. Disable Play Protect in PlayStore Menu and see if the issue is resolved.
nri_tech1183 said:
Probably because you are using incompatible magisk library and apk.
Click to expand...
Click to collapse
even though i got the zip from the magisk thread?
tnsmani said:
Apparently PlatStore is the culprit here. In the guise of checking for malignant apps, it removes Magisk. There is already information about this on XDA. I read it but am unable to locate it now. Disable Play Protect in PlayStore Menu and see if the issue is resolved.
Click to expand...
Click to collapse
I'll try this but doesnt it just enable itself again after some time?
spbx123 said:
even though i got the zip from the magisk thread?
I'll try this but doesnt it just enable itself again after some time?
Click to expand...
Click to collapse
It is sometimes enabled when PlayStore is updated. Otherwise it remains disabled, from my experience.
Hello all.
I wanted to hide xposed from certain apps, so made a recent search about hide xposed. and found this site:
https://www.xda.im/apk/com.yaerin.xposed.hide
And downloaded the app with full stress!
After launching the app, it looked so normal! so activated it in xposed installer and rebooted. but this app didnt hide xposed from safetynet. so tried to unistall it and it said unistall was unsuccessful, but the app wasnt in list anymore!
I tried to access the /data file with es explorer but there was no file showing, so I noticed that es explorer is not finding root. My magisk manager supersu menu, doesnt load up and it crashes.
I accessed the /data folder from twrp file manager and installed every folder I didnt recognize.
But after restartung the phone, I still cant access the /data with es explorer and the supersu menu in Magisk.
I uploaded the file in virustotal and this is the result:
https://www.virustotal.com/gui/file...685b65bf26b187ece0127cd1436ee4d3dbb/detection
The scan result is: PUP.HighConfidence
What danger have I sticked my head into it?!
Should I factory reset? Is it a virus?
Is it safe?
Guys help me pls.
Thanks!
Ill upload the file for more info to be given.
Edit:
Superuser menu in Magisk worked also the es explorer root detection.
But im still afraid to be infected with that virus which I dont know what is it!
Pls help!
Xda doesn't own that domain. Uninstall it and do a factory reset.
joluke said:
Xda doesn't own that domain. Uninstall it and do a factory reset.
Click to expand...
Click to collapse
I know xda doesnt own it.
it isnt easy for me to factory reset.
I just wanna know if Im already in danger or not. if not, why to factory reset?
What does that detected line mean as a virus?
Is it dangerous? or its just because xposed its used in it?
Aaazv said:
I know xda doesnt own it.
it isnt easy for me to factory reset.
I just wanna know if Im already in danger or not. if not, why to factory reset?
What does that detected line mean as a virus?
Is it dangerous? or its just because xposed its used in it?
Click to expand...
Click to collapse
That warning doesn't mean it's a virus. Most likely a false positive. Unless you root you should be good to go.
A PUP means it's a Possible Unwanted Program nothing else. Doesn't mean you are infected and most likely it's a false positive. Just uninstall and install from this forum
joluke said:
That warning doesn't mean it's a virus. Most likely a false positive. Unless you root you should be good to go.
A PUP means it's a Possible Unwanted Program nothing else. Doesn't mean you are infected and most likely it's a false positive. Just uninstall and install from this forum
Click to expand...
Click to collapse
Thanks. Youre like water on fire.
Im rooted with xposed installed.
But whats the reason that it didnt unistall and said unistalling was unsuccessful?
Should I be afraid of this happening?
Aaazv said:
Thanks. Youre like water on fire.
Im rooted with xposed installed.
But whats the reason that it didnt unistall and said unistalling was unsuccessful?
Should I be afraid of this happening?
Click to expand...
Click to collapse
Nah. Can be a defective apk and fails to install at some point and needs to be compiled correctly
Aaazv said:
Hello all. I wanted to hide xposed from certain apps, so made a recent search about hide xposed. and found this site: https://www.xda.im/apk/com.yaerin.xposed.hide.........
Click to expand...
Click to collapse
That may be one of those "Metadata" type of websites that seems to be popping up reflecting various websites and such.
Just keep in mind...
If the URL(s) doesn't begin with either:
https://forum.xda-developers.com
~ OR ~
https://www.xda-developers.com
(I could be missing one or two other URL's as well)
Then it's likely a fake/spoof website.
I'm thinking that this should be brought to the attention of @MikeChannon to investigate and/or refer to the appropriate Administrator.
~~~~~~~~~~~~~~~
Unless asked to do so, PLEASE don't PM me regarding support. Sent using The ClaRetoX Forum App on my Apple Macintosh.
Ibuprophen said:
That may be one of those "Metadata" type of websites that seems to be popping up reflecting various websites and such.
Just keep in mind...
If the URL(s) doesn't begin with either:
https://forum.xda-developers.com
~ OR ~
https://www.xda-developers.com
(I could be missing one or two other URL's as well)
Then it's likely a fake/spoof website.
I'm thinking that this should be brought to the attention of @MikeChannon to investigate and/or refer to the appropriate Administrator.
~~~~~~~~~~~~~~~
Unless asked to do so, PLEASE don't PM me regarding support. Sent using The ClaRetoX Forum App on my Apple Macintosh.
Click to expand...
Click to collapse
Yup, that's not an official XDA-Developers url.
As said lots of these sorts of tools/apps can trigger virus checkers because they access system files that normally apps shouldn't access. That's true of many apps you'll find here too BUT that's not to say it's safe. You install such a thing at your own risk. At least with things on xda-developers you generally have the chance to read a thread about the app or even question the developer about it.... things from obscure websites carry a higher risk.
Mike
Thanks to the guide created by pjottrr I successfully unlocked bootloader and rooted my device. Now I'm onto what I assume is the next step, which is to flash a custom rom via fastbootd?
Im aiming to 'degoogle' my device by getting rid of gapps and installing microG to substitute play services, though i'm not sure which custom rom is compatible with setting up microG.
Is there anyone here that can share their experience with a particular custom rom + microG integration? Or is there another method for what I'm trying to achieve
Android 10
OPMS30.80-63-6-8-5
US Retail
Mint Mobile
Moto G Power XT2041-4 Sofia
Check out https://forum.xda-developers.com/t/rom-rav-sofia-10-unofficial-lineageos-17-1.4250763/post-84701445.
It isn't microG, but it does have FDroid app store baked in. It's a really solid ROM. The only glitch is with tethering. Tethering works exactly as it is supposed to but when you exit out it reboots the phone.
tcaudill01 said:
Check out https://forum.xda-developers.com/t/rom-rav-sofia-10-unofficial-lineageos-17-1.4250763/post-84701445.
It isn't microG, but it does have FDroid app store baked in. It's a really solid ROM. The only glitch is with tethering. Tethering works exactly as it is supposed to but when you exit out it reboots the phone.
Click to expand...
Click to collapse
Thanks for the suggestion. Would I be able to install microG to replace the core gapps after flashing this rom onto my device? I was going to add the nanodroid magisk module to do so following This guide
Banana_sam said:
Thanks for the suggestion. Would I be able to install microG to replace the core gapps after flashing this rom onto my device? I was going to add the nanodroid magisk module to do so following This guide
Click to expand...
Click to collapse
There are NO gapps in this ROM. FDroid is a non google app store. You should be able to install microg without having to remove anything.
tcaudill01 said:
There are NO gapps in this ROM. FDroid is a non google app store. You should be able to install microg without having to remove anything.
Click to expand...
Click to collapse
Well all that's left now is to try and give it a go. I'll report back once it's completed!
Ive flashed the rom! No problems it seems so far. Now im trying... but not sure how to install microG. The aforementioned guide says to install magisk manager to install microG. Only problem is that magisks latest release notes claim that magisk manager is no more, that its already inside the latest apk, which I installed when rooting. So how do I install microG using the manager supposedly baked into the latest apk?
Edit: I was able to install microG successfully. I didnt know that custom ROMs came unrooted. I rooted it following the same steps as the first time and then I was able to easily flash the microG module in magisk with no issues.
Thank you so much to all the people on this forum. Im a total noob and seemingly was able to successfully accomplish what I was after, with very minor hiccups(that were caused by my noobness of course haha)
Guess I might have spoken too soon.. On microG the permission to access location in the background, and permission to receive SMS arent ticked in the self-check menu. Any ideas on how I could go about easily fixing this?
Banana_sam said:
Guess I might have spoken too soon.. On microG the permission to access location in the background, and permission to receive SMS arent ticked in the self-check menu. Any ideas on how I could go about easily fixing this?
Click to expand...
Click to collapse
You should be able to just click on the items which arent checked and microG will ask for the permissions so you can grant them in the pop-up
DknsBs said:
You should be able to just click on the items which arent checked and microG will ask for the permissions so you can grant them in the pop-up
Click to expand...
Click to collapse
Ive tried this but to no avail. Oddly enough, I made a 2nd user account on the same device and on there microG has all the permissions checked.
I installed it via the magisk module. Do you think it would make a difference to try uninstalling it and maybe try installing via the f-droid store?
Check out my post here. I have successfully installed crdroid 7.4 with Nanodroid plus microG and a real Play Store.
tinbilly said:
Check out my post here. I have successfully installed crdroid 7.4 with Nanodroid plus microG and a real Play Store.
Click to expand...
Click to collapse
I appreciate the tip, but this is for crdroid, I've already went with lineage and as of yet don't plan on switching to try something new. besides that, microG works fine on my 2nd user account which Ive switched to use and that I mentioned in an earlier post in this thread. And on my newly embarked journey to retain privacy and protect my data I've come to discover its better to use a second user account as your daily go-to account instead of your admin account which grants root permissions. My second use account doesn't have root permissions so in theory this should protect me better.
I guess what I thought was an issue with microG might have been a blessing in disguise since it's forced me to use it on my 2nd user account where all the permissions are granted and now I should be a bit more protected from root access attacks
A13 stock. Magisk 25203. PS Remote Play app 5.5, and hidden in the Magisk deny list, like other apps.
Other typical root detecting apps foiled, but not this one. Hiding the Magisk manager itself didn't help.
Suggestions?
Assuming you're on the stock ROM, else you might need to use MagiskHide Props Config. Try turning on Zygisk and adding Displax's version of USNF and Shamiko (note: Shamiko is a closed-source root hider, so your call if you trust it). Keep in mind that if you use Shamiko, then the "enforce deny list" switch needs to be off. Shamiko reads from the list and handles it instead (so you do still need to have Google Play Services and PS Remote Play in the deny list). So far I haven't had anything detect root with this setup as long as it's in my deny list, though I don't have a PlayStation so I can't test it with this specifically.
I am on A13 stock. I'll look into this. FWIW, one doesn't need a PlayStation to see the app PS Remote App fail the root check, which is upon opening it, resulting in error 88001003
PS Remote Play - Apps on Google Play
Access your PS5 or PS4 wherever you go.
play.google.com
Interesting, it's happening the moment you open the app? I don't have a Playstation account, but I can open the app and get in far enough to see the account login screen with no error. That's on my system with the above utilities installed as well as Magisk and LSposed, running the Android 13 QPR1 beta. If you set all that up and it's still happening, try clearing the PS Remote Play app's data, too.
Jaitsu said:
Interesting, it's happening the moment you open the app?
Click to expand...
Click to collapse
Yes. It may be using some data from the general PS App to auto-login, but it appears as instantaneous error to me, even after full storage/cache wipe and force close.
I just updated USNF, and installed the MOD version on top of that as you suggested, still no go. Disney+, Nintendo, other apps that check still work. Play Store certified, pass YASNAC.
Haven't tried the Shamiko thing yet
Are you hiding the Magisk app itself?
I'm using Canary manager, btw
deusfaux said:
Yes. It may be using some data from the general PS App to auto-login, but it appears as instantaneous error to me, even after full storage/cache wipe and force close.
I just updated USNF, and installed the MOD version on top of that as you suggested, still no go. Disney+, Nintendo, other apps that check still work. Play Store certified, pass YASNAC.
Haven't tried the Shamiko thing yet
Are you hiding the Magisk app itself?
I'm using Canary manager, btw
Click to expand...
Click to collapse
I am hiding the Magisk app itself, with the default "Settings" name. Normal release (25.2/25200) of Magisk. Do you have any other root-related apps the PS Remote Play app might be looking for? (Though I myself have Fox's Magisk Module Manager, LP, the TWRP app, and Franco Kernel Manager installed on my phone and they don't seem to be setting it off.)
I'd suggest turning off USB debugging. I had similar issue with some of my banking and other apps and tried every possible solution but didn't work. Finally I read somewhere to turn off USB debugging and Eureka!!
I've narrowed it to something the recent app version 5.5 is doing
Versions 5.0 and earlier have no problems loading.
My USB debugging is/was off.
It must be looking at / for some other app I have installed, which is really annoying to troubleshoot
Hello,
As you said, I downgraded the app to the version 5.0 ans now I can login
But I can't associate the playstation
It ask me to upgrade to the last version and if i refuse, the association failes.
Do you have the same problem ?
Thx
twingo_man said:
Hello,
As you said, I downgraded the app to the version 5.0 ans now I can login
But I can't associate the playstation
It ask me to upgrade to the last version and if i refuse, the association failes.
Do you have the same problem ?
Thx
Click to expand...
Click to collapse
Ver 5.01 asked me if I wanted to update but i could choose 'later' and successfully connect to my PS5
i choose later but I can't connect to my ps5
i will try to put it on wifi...
twingo_man said:
i choose later but I can't connect to my ps5
i will try to put it on wifi...
Click to expand...
Click to collapse
We should also try to determine what exactly latest version is detecting and preventing app from working
I have a rooted Samsung SG10Exynos/OS9 that bypasses SafetyNet with the help of Magisk 26.0 & safetynet-fix-v2.4.0-MOD_1.2 (meets BASIC INTERGITY) that I have been using the Starling Bank app 2.92.1.79025 without an issue. I stupidly upgraded to the latest version and got the attached screenshot saying that I had 14 days to restore the device to factory settings (I was still able to use the app after pressing ok). I even more stupidly thought that I could revert back to the previous version that I was using, using Titanium Backup which failed (the app would just flash continuous on launch) and then Swift backup (where it would just repeatedly crash even even before being launched requiring a force stop)
If I wipe data/uninstall/restart phone and install fresh from google play, I now get the attached screenshot saying again to restore to factory, but the button says close app. So being a digital bank, I'm now locked out of my account.
I've tried to install previous versions from APKMirror mirror after wiping data/uninstall/restarting phone, and then just restoring my data with my Titanium/Swift backups but still no joy.
Does anyone know how to downgrade/install not the latest version of Starling Bank, which doesn't have the increased STRONG INTERGITY check?
nukescript said:
I have a rooted Samsung SG10Exynos/OS9 that bypasses SafetyNet with the help of Magisk 26.0 & safetynet-fix-v2.4.0-MOD_1.2 (meets BASIC INTERGITY) that I have been using the Starling Bank app 2.92.1.79025 without an issue. I stupidly upgraded to the latest version and got the attached screenshot saying that I had 14 days to restore the device to factory settings (I was still able to use the app after pressing ok). I even more stupidly thought that I could revert back to the previous version that I was using, using Titanium Backup which failed (the app would just flash continuous on launch) and then Swift backup (where it would just repeatedly crash even even before being launched requiring a force stop)
If I wipe data/uninstall/restart phone and install fresh from google play, I now get the attached screenshot saying again to restore to factory, but the button says close app. So being a digital bank, I'm now locked out of my account.
I've tried to install previous versions from APKMirror mirror after wiping data/uninstall/restarting phone, and then just restoring my data with my Titanium/Swift backups but still no joy.
Does anyone know how to downgrade/install not the latest version of Starling Bank, which doesn't have the increased STRONG INTERGITY check?
Click to expand...
Click to collapse
It will force you to use the latest app.
Block firebaseremoteconfig.googleapis.com
theoneofgod said:
It will force you to use the latest app.
Block firebaseremoteconfig.googleapis.com
Click to expand...
Click to collapse
Also having the same issue. Is this something I should be blocking in Zygiskhide? I can't see it there. Googling the above isn't helping me.
Undeadwolfy said:
Also having the same issue. Is this something I should be blocking in Zygiskhide? I can't see it there. Googling the above isn't helping me.
Click to expand...
Click to collapse
You could try Magisk Delta as it now acts as whitelist so you add only what you want with root. This won't bypass Starling security though. You need to also block address above.
Undeadwolfy said:
Also having the same issue. Is this something I should be blocking in Zygiskhide? I can't see it there. Googling the above isn't helping me.
Click to expand...
Click to collapse
Blocking this address (firebaseremoteconfig.googleapis.com) through AdAway has fixed it for me! That is along with all the things that were needed to run it previously.
theoneofgod said:
You could try Magisk Delta as it now acts as whitelist so you add only what you want with root. This won't bypass Starling security though. You need to also block address above.
Click to expand...
Click to collapse
I think the part where I'm stuck is, what would you suggest to block that address? I can't do that in HMA or in Denylist because it doesn't exist.
I've tried blocking in AdAway and manually adding and still getting Starling recognising root.
I've blocked anything Google Play Services, Play Protect, Wallet too. Starling is my main bank. Has only been an issue in the last couple weeks.
A13 P6 Pro running the April security update 13 (TQ2A.230405.003.E1), Magisk 26101, USNF 2.4.0 Mod 1.2, passing Safetynet Basic+ CTS.
Will look at Magisk Delta next.
marian42 said:
Blocking this address (firebaseremoteconfig.googleapis.com) through AdAway has fixed it for me! That is along with all the things that were needed to run it previously.
Click to expand...
Click to collapse
This isn't working for me :/. Can you share what other modules you're running/how you've set up Magisk?
I followed the directions in this video.
I didn't do the final step where he renames the Magisk app, seems that it isn't necesary.
The YASNAC app shows that the device passes "Basic integrity" and "CTS profile match".
Also remember that blocking firebaseremoteconfig.googleapis.com might break other apps that use this domain (I've found one so far).
Undeadwolfy said:
I think the part where I'm stuck is, what would you suggest to block that address? I can't do that in HMA or in Denylist because it doesn't exist.
I've tried blocking in AdAway and manually adding and still getting Starling recognising root.
I've blocked anything Google Play Services, Play Protect, Wallet too. Starling is my main bank. Has only been an issue in the last couple weeks.
A13 P6 Pro running the April security update 13 (TQ2A.230405.003.E1), Magisk 26101, USNF 2.4.0 Mod 1.2, passing Safetynet Basic+ CTS.
Will look at Magisk Delta next.
Click to expand...
Click to collapse
It's a recent update that broke it.
Try Magisk 26.1, enable Zygisk and enforce deny list. Add systemless hosts. Add only Starling to the deny list.
Install safetynet fix 2.4.0 mod 1.2 by displax.
Add the domain I posted to adaway blocklist. Make sure its enabled and in root mode.
theoneofgod said:
It's a recent update that broke it.
Try Magisk 26.1, enable Zygisk and enforce deny list. Add systemless hosts. Add only Starling to the deny list.
Install safetynet fix 2.4.0 mod 1.2 by displax.
Add the domain I posted to adaway blocklist. Make sure its enabled and in root mode.
Click to expand...
Click to collapse
That's exactly how I have it running now. No change.
Undeadwolfy said:
That's exactly how I have it running now. No change.
Click to expand...
Click to collapse
It's the domain that did it for me. Working fine as of now.
theoneofgod said:
It's the domain that did it for me. Working fine as of now.
Click to expand...
Click to collapse
Thanks for updating. I have both of these in my AdAway too
Code:
firebaseinstallations.googleapis.com
firebaseremoteconfig.googleapis.com
Nothing doing
Undeadwolfy said:
Thanks for updating. I have both of these in my AdAway too
Code:
firebaseinstallations.googleapis.com
firebaseremoteconfig.googleapis.com
Nothing doing
Click to expand...
Click to collapse
Clean install for Starling? I'm trying to think if I did something else.
Oh. Have you "hidden" Magisk?
Just to weigh in here, I can confirm blocking:
firebaseremoteconfig.googleapis.com
Does indeed allow the Starling app to work. Yes blocking Firebase is going to stop some applications working, but you could always pause AdAway until you are done using the problematic app then resume AdAway when you want to use Starling.
Many thanks @theoneofgod
Not working
Reverting the Starling app back to version 2.95.1.79953 fixes things - just don't forget to re-add it to the Deny List.
I'll probably stay on this version until a new fix is found for the current version 2.96.0.80202.
darsh said:
Reverting the Starling app back to version 2.95.1.79953 fixes things - just don't forget to re-add it to the Deny List.
I'll probably stay on this version until a new fix is found for the current version 2.96.0.80202.
Click to expand...
Click to collapse
Wild, even this didn't work for me. No idea why I'm having issues.
Hi All
Quick update - Can confirm that rolling back to 2.95.1.79953 does fix things for now
This is using adaway to block the Firebase URLs in a custom host file and using enforce denylist. It doesnt work beyond that for now.
I swapped over to Magisk Alpha for now but i dont know what Starling are doing in the background to see that you have root at this point. Its very annoying
- Edit 2
They seem to be detecting the Enforce Denylist in Magisk (In any form)
Disabling it on version 2.95.1 shows the app can see root. Enabling it allows the app to proceed as if you are not rooted.
Give KernelSU a try if you can. No modules or any workarounds required.
theoneofgod said:
Give KernelSU a try if you can. No modules or any workarounds required.
Click to expand...
Click to collapse
Isnt that the same as the setting in magisk that hides root from everything not on the su list. Which also doesnt work.