Database Users

Anti theft apps available?

I'm looking for an anti-theft app. I don't know if it exists yet.
Is there an equivalent to the symbian phone apps "Anti-thief" or "EzProtect"? It has some nice features to let your pda "phone home" when someone is tinkering with it, or you can remotely disable your pda by sending a password though sms.
I've been searching over the net and found "Kill-pda" but that can only erase the device completely by sms. Thats a bit overkill :lol:
I hope someone knows, because i learned the hard way that you really need an app like this. My phone got stolen once and I got a Huge A$$$ bill for calling to egypt en italy
edit: I found this description for EzProtect:
The application sends an SMS to your specified number as soon as the SIM card has been changed. By this way, you receive SMS on your friend's (or whoever's number u defined) cell with the thief's cellnumber and SIM number (IMSI) so it becomes very easy to track the thief.
I definately want an app that can do this. And I can imagine a lot of people wanting it too.

There was a discussion about this on HoFo in Oct ober when people first started receiving their Wizards. I think BTT (BeyondtheTech) mentioned something about it. I'll see if I can track it down this evening.
It certainly would be cool.

Check this out! http://www.ppcsg.com/index.php?s=0c0cedfa906ae1b85f844fb7b497def6&showtopic=65021
Hope this works. I have not tried this myself.

Thanks a lot for your help, but that was the program i mentioned in the threadstart "PDAKill".
The only thing it can do is erase the device completely when you send a sms to your pda containing a predifined password.
But when the thief takes out the simcard and puts in his own, then this program would be useless.

Guys, if I've seemed distracted for the last few days, this is why:
I've been working on a program called VJAccioPhone.
It is used to detect if your phone has been stolen and to permit remote use of the stolen phone. Your phone doesn't have to be stolen, eg if for some reason your wife is likely to discover your "niece's" affectionate messages to you, you can send a password protected remote keyword to format your phone and hardreset it. I'm sure you can think of better examples!
It's an expansion of some code I wrote for my unreleased plugin, VJEphemeris, which you can read about here. The release version allows you to do pretty much anything you can do with the phone when it's in your hand, all remotely. Destructive and constructive control.
This is a pre-announcement. I don't like preannouncing, but unfortunately this week I've been on a very limited programming quota due to the ministrations of my better half. So although the code is finally finished, it's being beta tested while I'm away on holiday. If all is well when I get back next week, hopefully I'll try to get it released!
Don't tell anyone else, but you can read about VJAccioPhone and see screenshots here. Please note, and don't ask, there is no download available at the moment.
V

Aside from that a program like this would be very handy, and I'm quite curious and will keep an eye on it myself, I advise everyone to activate the pin code on their simcard, and always call their mobile operator as soon as the phone is stolen so they can block your number to avoid getting high bills as the topicstarter said... You should also be able to get your number back easily by requesting a new sim card and having your mobile number set to that simcard again.
This may seem obvious to some people, but I just wanted to post it anyway since a lot of people are still not aware of these simple ways to protect yourself.

Absolutely true; in England, the police aren't interested in persuing phone theft, but for you own benefit, you must always have your IMEI blocked and the phone reported stolen immediately to prevent you being charged for calls.
VJAccioPhone will be able to report back to you even if the IMEI has been changed or it's being used abroad etc. It's more for protecting your data on the stolen phone then getting the phone back. Frankly, any thief would do better to throw the phone away then persue cracking strong protections. Stolen phones are easy enough to come by! However, at least a nice passer by might be able to get in touch with you!
V

Sounds great! Would it be possible to enable the phone ID (Where you can enter your name and contact details) thought this might be good if it was ever found (or part of the hard reset).

Wauw, this is great stuff Vijay!
If you need a beta-tester on the wizard platform, i would highly recommend myself
This would be excactly what everyone needs 8)
Would it be possible to save the configuration settings? Because my idea would be to include the cab file in my extended_rom, and thus make it install itself even after a hard reset. This would mean that the configurations settings also have to be loaded after the hard reset.
Keep up the great work Vijay

frigit: if you mean enable password screen, yes, should be no problem. however i'm thinking of writing a better custom password screen using some strong encryption, with optional destruction on failure.
leploep: of course, it's designed for extended rom etc. right now protection works as a ta k, for the demo, but i'll be writing protection into an invisible app. Remote control is already complete and works transparently when triggered, so the thief won't even realise what you're doing ie there's no sign of the control smss being received to the thief.
eg you can background call the police from the stolen phone
more when i'm back from holiday next week!
v

This is starting to sound like a killer app - pun intended 8)

I'm in for sure when you get this finished, Vijay!

Already finished for the demo version!
kept me quite busy, developing three intersecting programs, like playing chess! but they all seem to work ok. a friend is testing it hopefully this week then i'll see what i can do for wider release when i get back...
v

Well vijay555 , you can put me on the list of very interested persons on buying this soft.
Cheers mate.

vijay will this work on all the wm5.0 devices??
i.e. I have the pda2k with wm5.0 and have been looking for a prog like this since i got my device, also is it possible to keep this program after hard reset ?? as you know if a hard reset is done the data is gone, but the user now has an expensive device to start playing with

it's not been tested on wm5 at this time, actually because the guy testing has a wm2003 motorola - gulp! but everything i write is normally wm5 & wm2003 now. there is no reason why it's not wm5 compatible but i'll ensure it is before release. i can certainly say, to my pain, the hardReset keyword is very wm5, i activated it by accident in testing.
retaining it after hard reset is only possible, as far as i am aware, by using a custom ext rom or rom.i've not tried it on my magician or universal, but hopefully your device in particular ext rom customisation is possible. at this time it uses registry & normal exe/dll files to run, so no reason it can't be ext rom'med. hopefully this will be confirmed in testing shortly.
if anyone can think of any particularly useful remote keywords to incorporate drop me a line. as it is, the full version will permit remote .exe launching so it can do pretty much anything
v

a lot of us have paid an arm and leg for our devices so having that extra peace of mind,knowing that if your device is nicked your going to make it as hard as poss for the theif to try and profit from your loss.
vijay all the best mate so far your app looks very promising iv got the exec running WM05 so if you need a beta tester let me know LOL
and guys if you report your phone as lost make sure your service provider is also going to blacklist the device!
I work for Vodafones in a call centre in the birmingham, UK,but the amount of customer services that is outsoursed to other non vodafone call centres based here in the UK its unbelievable! the amount of complaints I deal with and customers accounts that I come across where the outsourced twats
will admin bar your sim card but not blacklist the handset!
anyway I'll keep my eyes open for any more theftbashing apps and will post on here.

N2h said:
I work for Vodafones i
Click to expand...
Click to collapse
But have an O2 phone.....

Whow V.
Looks very very promising.. !
Great Job man :!:
i'd be happy to check it on my devices :wink:
Cheerz

lol mcwarre
even with our staff accounts we can't get the pdas as they are only available for busniess customers to be honest with you don't know why vodafone is stupid enough not to sell to normal consumers its the biggest network in the uk,
the staff phones we do get we gets 12 months line rental free lol
annnnd from all the universals I think the exec with its black shell looks the most stunning-the white shell devices just look a tad bulkier! lol

Capture Voicestream to encrypt calls

Is there anyone who has done this, kind of like recording the phonecall... Though my query is slightly more advanced, I would like to see a Crypto program creating secure phonecalls using WM5...
So we would need to capture the datastream incoming(to decrypt) and outgoing to crypt, this creating a nice safe way to talk to your...friends... Anyone else up for this project?
Or any feedback on the concept?

...and...
i dont think its only me intrested in this so ill send this source code aswell from a company that works from a PC via isdn... This company sells cellphones with encryption...
http://www.cryptophone.de/support/downloads/downloads.html
Dont know if this could help in the initial stage?
Ps.
A similar software does exist (180 dollars per phone + all your details are sent to australian gov) www.securegsm.com
Anyone up for the task?

Re: ...and...
it is impossible to intercept the audio data coming through PPC unless your hardware is specially designed for it and it provides you a specialized API for doing that. All crypting software encrypts calls via doing CSD calls and senging data. There is another program - www.cryptophone.de

this looks like a HTC anyway...
http://www.cryptophone.de/products/CP220/index.html

???
Then how can secureGSM do it in a software made for any WM5?
So theoretically i dont think there is a problem there....

SecureGSM is an end to end app, which I suppose all such apps would have to be.
As such, it almost certainly doesn't need to pick up the phone/modem audio path (which as Mamaich says, seems to be impossible without a particular hardware implementation), but just use the normal microphone and loudspeaker recording/playback functions.
V

AddeBC,
Vijay is right. SecureGSM is working on the same principal as criptophone.
Establish a modem connection between two devices running the same software run a negociation with the network (v.110 is much faster then v.32) start a data connection with the other dude...the stream that the mic receives is encrypted and sent over to the other party there the software decrypts the stream and plays it troughout the speaker.
There were quite a few threads regarding csd connections between phones so could start from there.
The only thing that you're going to miss in this deal is the logistic for selling the software + phone.
Cheers,
Raul

I often thought of adding this as a feature of GSMbeam but I just can't think when I would ever really need it. It would be cool to communicate without the possibility of Big Brother knowing what is said, but what would you say?
To sell this kind of software may also bring you in contact with undesirable groups, criminals or terrorists are propably in need of good voice call encryption.
To do this it will have to have a reletively low quality of sound because of the poor data rate on voice calls. How would one go about encoding the sound to data? Are there any off the shelf open ended codecs for this purpose or would the work need to be done from scratch?

OdeeanRDeathshead said:
......To sell this kind of software may also bring you in contact with undesirable groups, criminals or terrorists are propably in need of good voice call encryption....
Click to expand...
Click to collapse
as per SecureGSM FAQ:
http://www.securegsm.com/pages.php?pageid=16#4
Is your software designed to support criminals and terrorists?
Absolutely not! We do not condone any such activities, and take extreme care to ensure that our products are used to prevent, rather than encourage criminal or terrorist behavior.
AddeBC
AddeBC said:
A similar software does exist (180 dollars per phone + all your details are sent to australian gov)
Click to expand...
Click to collapse
End User Details are being collected as part of identity verification procedure.
First name, Second Name, living address, phone number and contact email address. I suppose, this is standard practice. We do not support criminals and terrorists and would not sell if in doubt.. At the same time our software does just what is says to do: encrypts phone conversation end to end to the military standards and beyond.
It is buyer's resposibility to provide correct information on the order form.
see this page for details:
http://www.securegsm.com/pages.php?pageid=26
Also, I suppose providing end user information to the Australian Government does not automaticaly lead to the conclusion that SecureGSM is flawed or insecure, has master key, back door or leaving any other way to interfere with contents of SecureGSM encrypted conversation. And no! Big Brother does not know what is said..

Any way, if terrorists or any of the countries listed there want call encryption they would not trust their lives to someone elses software. I am sure they are smart enough to write their own.
As for the laws governing the sale, that just makes me mad. I do not trust John Howard, I think I should have the right to a private conversation without registering it with him. I guess that is the beauty of computers. Computers make the world go round and its the size of your brain that gets results not politics.

Well, for a less.. 'big brother-ish' scenario, I would, personally like to have my line phone to be encrypted, as it is way much easier to have someone bugging your phone line.
However, for a cell/mobile phone, it is relatively difficult for amateur people to bug it, right? What are the chances that someone around you that is interested on your conversations, is capable of intercepting your mobile/cell phone calls.

Raseac Secure Phone - for WM 2003 and WM 2003 SE
This looks worthwhile! Downloads are available from the website for testing.
[Also, as a side note, I have been in touch with Phil Zimmermann, the creator of PGP, and lately of Zfone (crypto SIP phone for XP/Linux/Mac), and he says he realizes the importance of the Pocket PC platform and is considering ways of implementing Zfone for Pocket PC.]
Code:
http://www.raseac.com.br/
Encryption system for end-to-end secure voice communication. It was developed to be used in palmtop computers running Microsoft PocketPC 2003 e 2003SE (Intel).
When installed in a palmtop connected via modem to a telephony system (fixed or mobile), it allows your company and your business a secure means of communication anywhere around the world.
Since Raseac encryption technology was developed for high capacity processors, it allowed for the implementation of state of the art security, featuring:
* Exceptional sound quality;
* 256-bit encryption key;
* Encryption technology based on the Rijndael block cipher (AES);
* CBC, Random IV, Time Stamp, Integrity check by MAC/SHA-256;
* 100% protected against "man in the middle attack";
* No backdoor.

Need for secure phone line; the brazilian site and others
Well, I'd say that common people don't have much to worry about being tapped... Usually, nothing that sensitive is talken EVER over line.
Things begin to change when you are involved with something sensitive, be that legal or not. Most of the guies who work with corps, above management level may have some need from time to time, to be contacted that way by a superior. From director and up, depending on what kind of business the company is into, it IS a must!
People who work with security, government and other agencies may need it. As already said, people who work with barely legal to blatantly criminal stuff are always in need of such trappings. I think terrorists end-up on that class.
Equipment, hard and soft is always expensive and cost prohibitive for most of us.
Paranoid, techno-junkies and just curious people may want it, just to have.
Since I fit two or three of the said categories, I would like to put a program like that on my cell phone...
Just for the sake of having it there!
(mind you! Curious, telecom and management+ position...)
That said, a basic voice scramble-de-scramble program is OK for me!!!
(the more open-source, the better!)
About the brazilian company, they changed the site's name to secvoice. I tried to have a look-see on their specs but they ignored my e-mail and so I've done with it.

Job offer ......of sorts!

Hey guys I hope you dont have any objections to this, if it is against any policies you have just let me know.
Ok the meat is, I am forming a very early stage start up.
I am UK based with (sadly!) no language skills so youll have to be English speaking.
I am seeking a developer to help me put together a prototype software suite.
I do not know this platform AT ALL, so youll have to know how to acces databases via vpn.( may need knowledge of the server side too) youll also have to understand the operations of the bluetooth stack with regards to sending print files.
And lastly you will need to be able to implement and debug a visual input sytem.
Its actually quite basic stuff, but I have no time to learn it as my bank wants to see a prototype ASAP.
Again I apologise if this is against your policy, but I need to get the ball rolling.
To clarify, as I am currently in patenting process I cant discuss much yet, but this can go two ways;
1: If you have the skills I need and spare time we agree on a price and timescale, I pay you for your work, then you walk away.
2: We discuss the project, you come on board with skills provided in return for a percentage of company.
This could be a great oppurtunity either way.
Thanks for listening.
I would prefer an email at [email protected]

What will it take?
I was disappointed to see no responses but oh hey!
SO? what am I doing wrong? what would it take to get some development skills in my pocket?
I would offer a go on the missus but shes not speaking to me right now for ignoring her.
Any advice pos' or negative would be cool.
Cheers guys.

If I were you I'd scan the Development forum and look at our community developers to see what they have done. Some of the more popular and highly respected are
A_C for S2U2 and S2V
Tene for PocketCM and PCM Keyboard
Thundershadow14 for PocketMelody and PictureFlow
DotFred for TaskManager and PPCPIMBackup
Vijay555 for (too much to name)
Slither2006 for SCLPC++
Grumps for iPhone App
I'm sure I missed out a lot of others with some real quality stuff. But I'm just naming off those who has produced software that I use most frequently and/or always see at the top of the Development forum cause the thread is so active. Sorry if I offended anyone by not naming them.
So check out the guys that I listed above and see if they have exhibit the skills that you need require for your project. Also if you need help with the design-side we also have plenty of good GUI/skinning guys.

Appreciated.
I will go check the area you suggested, so thanks for the heads up.
At the moment I am just interested in a rough and ready usable system to show the bank, but Ill definately remember your offer if they like what they see.
Again, thanks bud. And wish me luck.
PS If I wanted to learn the coding myself, do you think it would be completely improbable to do so myself in say 4 weeks?
(I am a mechanical engineering student so not completely dense but pretty busy).
And where would be a good place to start?
Thanks in advance.

You have to find a C++ book and get comfy with that. Then you'd have to look at the Windows Mobile SDK and combine the knowledge of both. Plus its trial and error because its running on different hardware.
Its a daunting task. It took me a good year fulltime to become a decent website developer. The hard part is thinking like a "programmer". Otherwise it'll look like its an alien language
Good luck with it.

Hey Mate,
I'd love to help although I've never worked in the areas you require. I'd recommend posting a slightly more detailed job requirements criteria so you may attract the right young budding enthusiast.
If you're creating software a bank will wish to use then the security side of the VPN will need to be top notch along with the methods in which the app will access data.
Unfortunately I'm more of a GUI designer and the only databases I access are the MS POOM databases for Outlook.
Good Luck!

Can I add I'd _never_ take someone seriously who's asking to reply to a hotmail.* / gmail.* / yahoo.* etc etc, address.

kirstan said:
Can I add I'd _never_ take someone seriously who's asking to reply to a hotmail.* / gmail.* / yahoo.* etc etc, address.
Click to expand...
Click to collapse
Erm Ok !!! I dont know what to say to that. That is the account I use most often. I didnt claim to rep IBM! This is a personal project and Im just trying to make contacts.
Regarding an other post above, The VPN is further down the road and not needed yet. Also the software will not be USED by a bank just shown to them as a proof of concept.
At that point I would be able to go beyond an overdraft to an actual business loan and be able to contract a developer.
It is hard for me to Give much detail without an NDA as my idea is not revolutionary but the application is novel.
If I were to discuss openly I would lose the ability to patent down the line.
It is essentially A GUI that I need, and a simple underlying app which will give me the ability to enter a small description in 30 odd fields.
When each field is selected a score of -1 is applied (the field value is initially zero).
At the end of a session, ( there will be an option to open new or close a session) a score is given to each field and depending on score, one of 90 text files (3 per field) is linked to.
A print file containing these 30 text files on one page and a score from 0 to -10 for each field in a table on the other page is then produced.
The database access and VPN would come later on but in the prototype that is all thats needed.
Im sorry thats about all the exp' I can give in open. But if you feel you could help and would like to get involved I could arrange an NDA.
I am currently speaking to a couple of people but there is nothing concrete yet so if at all interested, do get in touch.
Thanks for reading (and please take me seriously whatever my Email.)

solved.
Just in case anyone was interested, I finally found help on a site called Rentacoder so if anyone else is looking for development help, try there.
Cheers.

Noob question; Anti virus on X1?

OK. I have never owned or used a Winmo device, so prefer to take advice from actual users, rather than random google hits.
As we are getting so close to actually owning these hot devices (UK), I was just wondering anout web security, what with it being a Microshaft OS, and all.
I would be using the device quite a lot for Internet browsing, etc, so . . . .
Should i install antivirus software, and/or anti spyware software?
If so, what do other Winmo users recommend, Allbeit for other devices, and what would be available for X1 anyway?
Cheers for any help, people.
Stay happy, John

Hi,
Read the following article;
Title: "Mobile security: An ounce of prevention"
Link: http://www.microsoft.com/windowsmobile/en-us/totalaccess/columns/mobile-security.mspx
Links five antiviruses on that site. I also hear that McAfee also provides a mobile solution - if so, then i'm probably gonna try out that first. But am hoping that Xperia does come with it's own protection software...
Best Regards.

Is there really any point?
They're 500 viruses for ALL mobile OSs maximum...
And most of them arent that harmful at all, it'll be quite hard to get infected and not that hard to get rid of it...

Yeah, don't think the overhead is worth it. I don't leave my Bluetooth on and don't open attachments you don't expect...you should be fine

Cool... since this'll be my first WinMo device, i was wondering if i needed an antivirus or not. I figure not.

i realise this is quite an old post but i'm also a noob and was thinking the same thing. Another forum told me it was essential to buy a virus protector but here it seems not. Now the xperia is released and known...how important is it to get one? Thanks

put an antivirus on your pda si one of the most stupid things you can do

hehe i was thinking as much! some people in other forums are obviously a bit stupid then haha. thanks

Just scan all the files before you transfer them on the desktop if you're worried and only get "over the air" cab files from places you trust..
Attachments can be (and should be Imo) set to download manually in email settings on your device.

am a windows platform owner since 2001 and since then i have never used a security software and never been hit or attacked though i would call my self a heavy internet user since i use internet as a dataplan and through active sync and even back in those days i used to use it as dialup

Paranoid user (QuickGPS, eTrust Antivirus vs..)

Hi everyone,
I will be a little paranoid over here so don't take it hard on me =)
I've been using a i-mate k-jam for a long time and switched to touch hd on january. Interestingly the biggest similarity and annoyance for me was the softwares pre-installed to download some sort of data over internet and bugging every week to download new signatures/data and bugging even more if you fail to download.
eTrust found out to be useless and I can't really pinpoint why most handheld GPS devices doesn't really require to update this kind of information (Please correct if I'm wrong).
We might assume the transaction is a simple wget/http download which wouldn't carry any other information to the other party that someone from that IP downloaded something. But if there is a handshaking or at least some kind of a http post is inplace, it could be also sending a unique device idea which would let the guys in Taiwan track our devices our a map.
As I said I'm just being paranoid and making almost a conspiracy theory here but still the possibility exists.
So how can we be sure they are not sending any information out?
We can set up a proxy and mirror incoming traffic from a source ip (phones ip) and dump it with wireshark. Then we will need to define the proxy on our phone and click download.
Is there a wireshark/ethereal kind of packet capture software which can run on these devices? It could ease the job.
Reverse engineering the code? Not experienced in that but It should be quite small when the you think the job it supposed to do.
Any comments, thoughts, help, information - greatly appreciated.
BR, Kaya

You can disable Quick GPS if you want because it isn't necessary for the GPS.
It just speeds up the process of finding satellites.

why don't you just use a nokia 3210? that way you should be pretty safe lolol

philocritus said:
why don't you just use a nokia 3210? that way you should be pretty safe lolol
Click to expand...
Click to collapse
Only if you leave BT off JK

I've sort of resigned myself to the fact that using a smartphone exposes someone to a lot of security gaps. The best advice is to keep your bluetooth off / in hidden mode, as this is one of the easiest ways to get at your handheld's data. Moving up the paranoia scale, you can use that NoData program to disable your data connection except for when you really need at - that will prevent most third-party programs from dialing home. And if you're really worried about being tracked, I'd recommend just shutting off your phone when you have something private to do.