Related
I've been using T-mobile touchscreen devices for 4 years, and I STILL have problems with basics of accessing wifi at cafes, hotspots, etc.
Connecting to these wifi networks is not a problem; there are multiple ways to do that with my T-Mobile Wing, for instance, but the problem is with accessing the wifi provider's login webpage where you are asked to agree to their terms and conditions.
OperaMini is my primary browser, but I have never been able to access a wifi "terms and conditions login page" via OperaMini, I am guessing due to it's a java app.
Yes, I can use I.E., but it is so damn slow and cumbersome, just to load and then try to hit your default homepage, then having to manually select "Homepage", then have it reload.
There must be better ways. For Starbucks usage, T-Mobile has its own "Hotspot Login Utility" which is supposed to handle all of that. I have never had it simply work... wherein i go to starbucks, launch Hotspot utility, and have it turn on wifi- then auto connect to the ATT network using my stored username & password in the HotSpot Utility.
So what are the best ways people have found to minimize this process and connect fast... I get a headache every time I want to ultilize one of my phone's best features.
For me the ideal app/utility would behave this way:
a) I am using my regular GPRS data connection, which is always on, and which I use for SMS or checking email with opera mini wherever I may be.
b) I enter a place that has free wifi, but requires you access their webpage to accept terms and conditions.
c) I want to click on one utility that loads quickly, turns on wifi, launches & opens that webpage (whether loading a fast non-java browser, or some direct internet connection), then upon logging into that establishment's wifi, I can close that util and have OperaMini launch and use wifi, not gprs data.
What is the app/apps I need? thank you.
I have no clue, but I'd love the same thing. PIE seems like it's the only browser that will re-direct to the login page automatically. Have you tried just saving the page as a favorite in opera mini? I know it's a pain in the butt, you'll have to cut-and-paste the address from PIE to mini, but that might work for a particular location.
After making a connection with PIE, I can usually switch browsers (I use mini most of the time, too), but the connection seems to drop frequently. Fortunately, my main coffee shop doesn't have one of those forced logins.
Yes, I have tried saving the "homepage" wifi login URL to OperaMini
It doesn't work. ... well at least I am glad I am not the only one with this problem.... I feel totally out of the loop on this, which seems like a Wifi-101 question ! thanks for replying. (I have also asked the great and powerful Menneisyys on this browser thread. Hopefully he will have the perfect answer!)
Farmer Ted said:
I have no clue, but I'd love the same thing. PIE seems like it's the only browser that will re-direct to the login page automatically. Have you tried just saving the page as a favorite in opera mini? I know it's a pain in the butt, you'll have to cut-and-paste the address from PIE to mini, but that might work for a particular location.
After making a connection with PIE, I can usually switch browsers (I use mini most of the time, too), but the connection seems to drop frequently. Fortunately, my main coffee shop doesn't have one of those forced logins.
Click to expand...
Click to collapse
quicksite, I use the Iris Browser for logging into the free Mc Donalds Free WiFi (yes, most if not all Mc Donalds has free WiFi here in Australia!).
Though, I don't actually remember being able to access the net using Opera Mini. But that may be due to the hotspot restrictions more than anything else. So YMMV there.
Also, note that Opera Mini is just a thin client. It must have internet access to be able to access anything at all. Everything gets encoded server side before it reaches your device, hence why you can't use Opera Mini to login with.
And some hotspot providers require you to keep the browser with the login page open whilst you surf. The Iris browser allows for multitabs, so you can always just open another tab to surf.
I use this for logging in automatically on my campus network:
http://devicescape.com/
Devicescape : hey this looks pretty promising
but lots to first figure out re how everything gets routed, any hidden costs, etc. Thanks very much for posting!
tene20 said:
I use this for logging in automatically on my campus network:
http://devicescape.com/
Click to expand...
Click to collapse
I can't wait to explore this. I figured there had to be some completely innovative ways of handling this very basic function. But just from a cursory reading, so far, it looks like there are many parts to this enterprise... i.e., registering your device with this service, installing EasyWiFi application, there's something about FON network which I don't yet understand... like maybe your device logs onto a cafe's wifi service, supplying that service with "devicescape's" agreement to Terms of Service. Then routing from the provider's wifi network to something called the FON network... But at this point I have to do a bunch more reading.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
For everyone else: Here's what I found in their Terms of Service, which describes a bit how they handle the agreement to wifi provider Terms of Service:
Account-Free Providers
Some providers offer access to their hotspot network without requiring you to create an account. The Service has the capability to automatically connect you to these types of networks without your submission of any provider information to Devicescape. If you wish to use these account-free providers, you may be unable to view their end user license agreements and/or terms of service. You acknowledge and agree that Devicescape may automatically log you in to such providers and may accept end user license agreements and/or terms of service from such providers on your behalf.
Due to wireless device limitations, the Service may or may not allow you to select whether you wish to use these account-free providers. If you do not agree with Devicescape's process of accepting such end user license agreement and/or terms of service from such providers, then you must disable this capability, provided that the Service allows this capability to be disabled. If the Service does not allow for disabling use of these account-free networks, your sole recourse is to cease your use of the Service.
Certain account-free providers request your email address in order to provide access. The Service will allow you to opt-in to supplying your email address whenever requested by such providers, and will not submit your email address without your agreement. In the circumstance where you opt-in to this arrangement, Devicescape is not responsible in any way for the use of your email address by such providers.
Click to expand...
Click to collapse
Then there's this, re adding your provider to Devicescape's network. They say this is free.
Submit A New Wi-Fi Hotspot
Devicescape supports many hotspots and wireless networks, but if your favorites aren't yet supported, you can help us add them. Start by collecting some info and use this web form to submit it us. We will process submissions on a time-available basis.
Personal Network?
We can only list hotspots in our directory that are operated by organizations and intended for general access by the public, subscribers, students, etc. If this is a personal (e.g., individual or private) network, you can add it your own Devicescape account by using the "Add a Personal Network" button on the "My Wi-Fi" page or clicking here.
Open network?
We are currently only adding hotspots that have a welcome or login page to our directory. If this hotspot does not have a welcome or login page, you can add it your own Devicescape account by using the "Add a Personal Network" button on the "My Wi-Fi" page or clicking here.
Network requires 802.1x or WPA Enterprise?
Unfortunately we cannot support 802.1x or WPA Enterprise networks at this time. The form below can be used to submit networks that use web-based captive portal authentication only. If you have a network that only uses WEP or WPA Personal authentication, you can add it your own Devicescape account by using the "Add a Personal Network" button on the "My Wi-Fi" page or clicking here.
To submit a new hotspot, follow the basic instructions below, or view more detailed instructions.
Record the provider's Network Name or SSID.
Save all welcome and login pages.
Be sure to capture every page required to get you to online access.
Submit the info to us via the form below.
We will notify you when the new hotspot network is available. Thanks for contributing to building out the Devicescape!
Basic Information: (required) SSID: Name of the hotspot provider:
(e.g., "Wi-Fi Everywhere" or "Hotspots “R”Us") Name of the location:
(e.g., "Joe's Tea Shop") Address:
(Street, City, Region, Country, e.g., "1 Bay St, Toronto, ON, CA") Home page URL for location or provider: Does this Hotspot have a welcome page? no yes Welcome page: Does this Hotspot have a login page? no yes Login Page: Is 802.1X or WPA Enterprise required? no yes In order to add an 802.1X or WPA Enterprise network, we need to have the following information: EAP type (TTLS, PEAP), tunneled EAP type (EAP MS-CHAPv2, PAP, etc.), WPA Version, Certificate Domain, Key Mgmt (Dynamic WEP, WPA Enterprise), Cipher (TKIP, CCMP). If possible, please supply a URL for a web page that describes this information. If not, include the information below. 802.1X information URL (or details):
Additional Information: Provider support page URL: Comments:
Click to expand...
Click to collapse
I'm just starting to investigate this whole offering... so I'd appreciate it if anyone sees anything just within these quoted sections that sounds ill-advisable?
Finally, for now, here's a video that describes how iphone's use their service, as indicator of how it works:
Here's something I found in Dev/Hacking forum - WiFi Monster
[Jul 23][WiFi Monster v1.0.52.149] The best WiFi software ever
Download:
http://www.wifimonster.net/downloads.php
Stuff like this that shows why iphone is winning the war. It's 2009 and still a hassle to get on to a captive portal !!!
firefly123 said:
Stuff like this that shows why iphone is winning the war. It's 2009 and still a hassle to get on to a captive portal !!!
Click to expand...
Click to collapse
In my opinion, Apple makes it easier to find apps in ONE place...but that doesn't mean there isn't a solution for WM. And definitely don't want to get into the Apple vs WM crap. Windows mobile has many versions of different apps and are scattered everywhere. Looking for them is the challenging part. So far, I have accumulated over 12gb worth of apps for windows mobile-this includes some upgrades, mods. Probably would have had more if I was into cooked Roms.
With my HTC Touch Pro, I am using Opera Mobile v9.5 v2808- a modified version with some Flash support (found it here). Before I screwed up my wifi- i was able to get online at Barnes & Nobles, McDonald's, Borders, home network and many mom and pops coffee shops with NO issues.
I used this OLD app, Hitchiker, that worked on my Touch Pro.
montecristo1 said:
With my HTC Touch Pro, I am using Opera Mobile v9.5 v2808- a modified version with some Flash support (found it here). ...i was able to get online ...with NO issues... used this OLD app, Hitchiker, that worked on my Touch Pro.
Click to expand...
Click to collapse
I hope this works for me, thanks for posting. (I've also been meaning to download the modified Opera Mobile browser). Let me ask you, though: It's the security settings and acceptance that make it so cumbersome.
Actually I am thankful that there ARE such security warnings when trying to log onto a non-secure public access point. But .... I should really only have to say "OKAY" once. With Internet Explorer, and with the browser I started using most, Netfront, it took at least 4 if not 6 "OKAY" responses to switching to/from secure page etc. My original post was longer. But the issue for me is: *Sometimes* when I go to a coffee house it's to grab a coffee, check email, send a movie file or picture file, and then go, sometimes to catch bus or train. So I don't have all day. And I have found over and over again that by the time it takes me to accomplish those approximately 15 clicks to activate wifi and launch a new browser and accept login agreement including all the security acceptance, I would have more quickly gotten my email and even uploaded a large set of photo files by just staying connected to Edge and forgetting the whole damn wifi attempt... I've missed trains in San Francisco many a time, seriously, just from trying to take advantage of wifi speed at a cafe and going through so many ridiculous steps. Many a time by the time I had all the clicks accepted and I was able to browse freely, my train was there and I had to run -- completely defeating the whole experience.
Two other comments:
(1) I finally found a utility that was promising: Peek .... but it would be "sabotaged" by the inconsistent behavior of AKtoggle and other wifi on/wifi off utilities avail, vs having to click Settings > Connections > Communication Manager > wifi on > then wifi settings just to select the access point. I have never ever had anyone's version of a wifi on/ wifi off toggle button work consistently and normally. Every other time you try turning wifi on, and no, it doesn;t work. I've come to find out that if your regular edge data connection is either on or off, then the toggle doesn't work, which means once again going to Communicaton Manager and tapping through to the primary command, then once your device sees wifi access points, you still then have to use the other tool (like "Peek") to select the access point... or follow the etxra 4 clicks to do it within the Communication Manager.
(2) I'm completely platform agnostic as I use macs, PCs, WM and now android devices, and if the functions work and I can get the task done, i really don't care whose name is on the object or software... But I have to agree with firefly123, it's stuff like this that Apple knows how to solve with smooth simplicity... But it goes further than that. Apple/iPhone users have a conditioning that automatically expects stuff like this to be simple, whereas I was astounded by, on the other thread I posted about this same login issue, WM users were just fine with the multiple steps, and quite surprised I was even asking/complaining...in other words, a conditioning that says "what's another 3 or 4 or 5 or 6 clicks, as long as you can get the whole process done in a reasonable amount of time?".
That's what baffled me most. I love XDA... yet I was very surprised by the huge yaaaaaaaawwwwwnnnnn I got on this issue: cumbersome and multi-stepped is just fine with hundreds of thousands of Windows Mobile users. Meanwhile I miss my bus or train from staying to finish that last step and finally access wifi to upload my pics... when using Edge would have ultimately been faster. Bizarre.
quicksite said:
I hope this works for me, thanks for posting. (I've also been meaning to download the modified Opera Mobile browser). Let me ask you, though: It's the security settings and acceptance that make it so cumbersome.
Actually I am thankful that there ARE such security warnings when trying to log onto a non-secure public access point. But .... I should really only have to say "OKAY" once. With Internet Explorer, and with the browser I started using most, Netfront, it took at least 4 if not 6 "OKAY" responses to switching to/from secure page etc. My original post was longer. But the issue for me is: *Sometimes* when I go to a coffee house it's to grab a coffee, check email, send a movie file or picture file, and then go, sometimes to catch bus or train. So I don't have all day. And I have found over and over again that by the time it takes me to accomplish those approximately 15 clicks to activate wifi and launch a new browser and accept login agreement including all the security acceptance, I would have more quickly gotten my email and even uploaded a large set of photo files by just staying connected to Edge and forgetting the whole damn wifi attempt... I've missed trains in San Francisco many a time, seriously, just from trying to take advantage of wifi speed at a cafe and going through so many ridiculous steps. Many a time by the time I had all the clicks accepted and I was able to browse freely, my train was there and I had to run -- completely defeating the whole experience.
Two other comments:
(1) I finally found a utility that was promising: Peek .... but it would be "sabotaged" by the inconsistent behavior of AKtoggle and other wifi on/wifi off utilities avail, vs having to click Settings > Connections > Communication Manager > wifi on > then wifi settings just to select the access point. I have never ever had anyone's version of a wifi on/ wifi off toggle button work consistently and normally. Every other time you try turning wifi on, and no, it doesn;t work. I've come to find out that if your regular edge data connection is either on or off, then the toggle doesn't work, which means once again going to Communicaton Manager and tapping through to the primary command, then once your device sees wifi access points, you still then have to use the other tool (like "Peek") to select the access point... or follow the etxra 4 clicks to do it within the Communication Manager.
(2) I'm completely platform agnostic as I use macs, PCs, WM and now android devices, and if the functions work and I can get the task done, i really don't care whose name is on the object or software... But I have to agree with firefly123, it's stuff like this that Apple knows how to solve with smooth simplicity... But it goes further than that. Apple/iPhone users have a conditioning that automatically expects stuff like this to be simple, whereas I was astounded by, on the other thread I posted about this same login issue, WM users were just fine with the multiple steps, and quite surprised I was even asking/complaining...in other words, a conditioning that says "what's another 3 or 4 or 5 or 6 clicks, as long as you can get the whole process done in a reasonable amount of time?".
That's what baffled me most. I love XDA... yet I was very surprised by the huge yaaaaaaaawwwwwnnnnn I got on this issue: cumbersome and multi-stepped is just fine with hundreds of thousands of Windows Mobile users. Meanwhile I miss my bus or train from staying to finish that last step and finally access wifi to upload my pics... when using Edge would have ultimately been faster. Bizarre.
Click to expand...
Click to collapse
So iphones NEVER take you to the WIFI providers conditions acceptance screen? can some one verify this? cause if so thats good, but truthfully I dont have as much problem as you are talking about on my WM xperia. I use wifi monster or the comm manager that comes with SPB mobile shell and then access opera mobile (9.5), the terms and conditions screen loads up I accept it and thats pretty much it. No real hastle and its easy and quick. I dont know why you are having so much problem. just for comparasin can you outline the steps it takes to connect an iphone?
But at any rate for the developers out there its somthing to consider, a browser with access to a comm manager in it.
regards
Chris
Chris, thanks... Sorry I was pontificating there. Let me clear up a few things. (1) I don't have an iphone; I've never had one in my hand for more than a half hour exploring, so have never used it in "real life" scenarios. (2) I wasn't suggesting Apple could magically make all the login and acceptance requirements go away! I just meant that they do focus on exactly these kinds of common bottlenecks, to try to reduce the clutter of steps, and get the goal accomplished. (3) #2 above is not based on my having used an iphone at a coffeehouse, nor watching someone with an iphone login at a coffee house. I was commenting because this thread had been dormant for a good while, then suddenly yesterday someone commented about frustration he was having with this very issue -- and HE concluded something like "this is why Apple is winning the war".
I never took that as any kind of fanboy comment, or instigating remark. I am just imagining this person had some similar problems that I have had, and searched XDA, and came upon this thread -- because there are no other threads that I know of on this site on this subject matter of wifi utility to help smooth out the coffee house login process. And he probably read thru it thinking at the end was a solution... only to find the thread dropped off because nobody presented a solution... I merely did my best to comb the web and XDA to find potential solutions, but it stopped there because most of the utilities were about turning your device's wifi on or off, then selecting an access point. But that's not the problem that needs solving.
What I was suggesting is that just like a Google mail app connects to the web within its own UI, and NOT opening up a browser, which on some older devices like mine does take a while just to get the browser open and loaded to its home page... And it queries for username and password then pulls in your mail. And just like T-mobile has a Hotspot Utility that is a very niche specialized version of such a wifi utility limited to its access point locations like starbucks and airports and fed ex kinkos offcies, it similarly establishes a web connection without opening a browser. But it's purpose is exactly what I am talking about: to make that stuff happen as much as possible in the background so that you then get confirmation of being logged in and connected,and you can then use whatever browser you like, including opera mini.
So, though I am not a programmer, it seems to me this would not be so hard to master if someone who IS a developer applied some resource time to the problem (but that's just it, it doesn't seem to be a problem that most feel warrants any resource time applied to it). To me it would be very simple.
(1) Click a button and it queries the state of all data connections on your phone noting if wifi is on or off, and makes sure to turn wifi on if needed. (2) Like most wifi utilities, it then seeks the strongest connection and tries to login to any unsecured access point, or, if it recognizes even a secured access point, follows a login proceedure. (3) I am not sure how best to explain step 3 but to me it happens in the background: A dedicated web client/ thin-browser (something to build) opens and issues the normal commands that = "open my browser and after it loads, hit the home button to then have the browser connect to the coffee house's login page. (4) My hope would be that at this point the thin browser client can present the login page, user clicks "i agree" as normal, then (5) the connection to the wifi access point in made, and (6) the utility puts itself away, opening my preferred or default browser... and (7) I just start using my browser which is now connected via wifi.
As a user experience designer I can envision this thin client speeding up this process because it doesn't have to load a full featured browser, and it includes the wifi on/off function, essentially resulting in this, as far as user is concerned:
(1) arrive at a wifi spot that requires accepting TOS, click "SuperWifiLogonUtility" and all the wifi on/wifi off stuff happens in background.
(2) I select the access point i am trying to connect to, done.
(3) Background processes occur, and the next thing I see is the wifi provider's login page and I check "yes, i agree"
(4) That goes away, my preferred browser opens and I begin using browser connected to wifi.
Of course, I could be wrong, and perhaps this is complicated. It doesn't seem so to me
hungry81 said:
So iphones NEVER take you to the WIFI providers conditions acceptance screen? can some one verify this? cause if so thats good, but truthfully I dont have as much problem as you are talking about on my WM xperia. I use wifi monster or the comm manager that comes with SPB mobile shell and then access opera mobile (9.5), the terms and conditions screen loads up I accept it and thats pretty much it. No real hastle and its easy and quick. I dont know why you are having so much problem. just for comparasin can you outline the steps it takes to connect an iphone?
But at any rate for the developers out there its somthing to consider, a browser with access to a comm manager in it.
regards
Chris
Click to expand...
Click to collapse
OperaMini uses a built-in proxy server called Opera Turbo that loads the page from Opera's server, compresses it that send the page to your device in order to reduce bandwidth and increase speeds over mobile networks. My best guess is the the hotspot login page you are trying to access can only be reached locally and is therefor not accessible using Opera Turbo. If you turn off Opera Turbo from the setting page you should be able to use it as any other browser.
a lot has changed in two years!
kellywt said:
OperaMini uses a built-in proxy server called Opera Turbo that loads the page from Opera's server, compresses it that send the page to your device in order to reduce bandwidth and increase speeds over mobile networks. My best guess is the the hotspot login page you are trying to access can only be reached locally and is therefor not accessible using Opera Turbo. If you turn off Opera Turbo from the setting page you should be able to use it as any other browser.
Click to expand...
Click to collapse
a lot has changed in two years!
Every now and again I run out of things to watch on my laptop when abroad, so I turn on the hotel TV and find myself watching the same BBC World news or CNN news reports over and over.
When that happens, I normally try and set up FoxyProxy so I can watch iP***er etc. I usually spend about an hour trying to get the damn thing working before giving up and heading to the minibar!
I have never, ever found a working UK internet enabled proxy in probably 4 years. I don't know if I am just not using Foxyproxy correctly, or if proxies are that hard to find.
Anyway, long story short... has anyone used a proxy server on the Vega. Is so, which software did you use and more importantly which proxy and how did you set it up?!
It is possible, but unfortunately that is illegal. You are not allowed to watch bbc iplayer outside of the uk. I think this might break the site rules, and a mod might close the thread. Giving you info on how to circumvent might get me into trouble too. Sorry i cant help, but rules are rules
Circumventing a corporations draconian T&C's have never seemed to be too much of an issue for XDA. If it was, I'm not entirely sure it would be in existence
Nonetheless, edited...!
PS - The irony of being warned about legality by a member with your username is not lost on me
Ah, ganjaman just uses hemp to make phone/tablet covers.
what else could one do with that plant?
back on topic, there must be ways of obtaining foreign proxies, which in itself isnt naughty. As you could use this for many reasons.
Or is it that ipla yer recognises that fact and blocks ones attempt?
If the request is about the player then, fine, not allowed, but surely the proxy question is valid?
Playing devils advocate.
Rgds
Lok
The problem I encounter is actually connecting to a valid proxy, before even typing in a URL. As I said, I don't know if its an issue with FoxyProxy or the list of proxies that I work my way through on Google.
I was hoping to hear that somebody had successfully connected to a proxy server using Android. I can then test it myself, then go off and find a valid UK proxy with the knowledge that at least the program works as it should!
Not sure if you have seen this http://forum.xda-developers.com/showthread.php?t=766569. Just have to find a good proxy list. Works on are vegas
Asking the question in a different way is all you had to do. Sorry if you took it the wrong way, i just dont want xda dev to have illegal content, and worst being kicked out for suppling it.
As orlok said, i am in the uk, its cases for my tablet only
Unfortunately some countries have draconian laws, like here.
hey, i used to have a way around the school router blocks but i cant seem to remember what it was for the life of me. What it consisted was of an .exe that installed some software that allowed me to browse freely. I vaguely remember that the software consisted of a icon on the taskbar that was kinda an earth with fire around it....maybe?
if you have any other good router/server bypasses then please let me know. .exe file executions are blocked everywhere except in the technology building at school. Preferably i would like to have something only requiring a flash drive or it can be done within IE or Chrome.
Do u mean that you are able to surf the internet but some website, like Facebook for example , are blocked?
yukinok25 said:
Do u mean that you are able to surf the internet but some website, like Facebook for example , are blocked?
Click to expand...
Click to collapse
yes exactly, often they have keywords that they block as well, (such as game, kill, black ops, etc). maybe a proxy would work? we used to have a couple good ones but they would eventually block it.
johnston9234 said:
yes exactly, often they have keywords that they block as well, (such as game, kill, black ops, etc). maybe a proxy would work? we used to have a couple good ones but they would eventually block it.
Click to expand...
Click to collapse
yes, a free proxy can be a solution in most cases, here try some in this list first:
http://www.publicproxyservers.com/proxy/list1.html
johnston9234 said:
hey, i used to have a way around the school router blocks but i cant seem to remember what it was for the life of me. What it consisted was of an .exe that installed some software that allowed me to browse freely. I vaguely remember that the software consisted of a icon on the taskbar that was kinda an earth with fire around it....maybe?
if you have any other good router/server bypasses then please let me know. .exe file executions are blocked everywhere except in the technology building at school. Preferably i would like to have something only requiring a flash drive or it can be done within IE or Chrome.
Click to expand...
Click to collapse
To do this would require some form of exe to use a proxy via a specially setup browser, or admin rights to set the system proxy.
You will find that your IT admins will block the proxies you use (I have to block proxies at my work network when we detect them).
If implemented properly (any good professional IT admin should be able to do it right), you will struggle to tunnel out using most systems.
You can't ssh forward if they block non-standard ports, or filter protocols. You can't use SOCKS proxies if they do the same. You can't use web proxies if they use smart URL filtering.
You can try web proxies, but it's an uphill battle. If you find a proxy that works, don't tell your friends, as that usage across multiple accounts flags the URL in some security systems (my users alert me to the latest proxy sites unwittingly )
Finally, you do realise you are probably breaking the acceptable use agreement? Isn't it better to do facebook etc out of school hours? Or use your phone? If you get good at evading, it is easy to remove internet access altogether from an account in most systems. Good luck in tunnelling out when you have zero internet access as your account is null routed
Summary? Try proxies, don't hold your breath, and do you really need to use facebook etc in school? Oh, and for goodness sake, don't run exes on school PCs... If they've not set them up right, you could infect the machines. They prevent EXE execution on most machines for good reason...
pulser_g2 said:
To do this would require some form of exe to use a proxy via a specially setup browser, or admin rights to set the system proxy.
You will find that your IT admins will block the proxies you use (I have to block proxies at my work network when we detect them).
If implemented properly (any good professional IT admin should be able to do it right), you will struggle to tunnel out using most systems.
You can't ssh forward if they block non-standard ports, or filter protocols. You can't use SOCKS proxies if they do the same. You can't use web proxies if they use smart URL filtering.
You can try web proxies, but it's an uphill battle. If you find a proxy that works, don't tell your friends, as that usage across multiple accounts flags the URL in some security systems (my users alert me to the latest proxy sites unwittingly )
Finally, you do realise you are probably breaking the acceptable use agreement? Isn't it better to do facebook etc out of school hours? Or use your phone? If you get good at evading, it is easy to remove internet access altogether from an account in most systems. Good luck in tunnelling out when you have zero internet access as your account is null routed
Summary? Try proxies, don't hold your breath, and do you really need to use facebook etc in school? Oh, and for goodness sake, don't run exes on school PCs... If they've not set them up right, you could infect the machines. They prevent EXE execution on most machines for good reason...
Click to expand...
Click to collapse
This is a REALLY good explanation Pulser, I always liked the way you answer to the people on XDA! (specially on the Hero thread )
By the way, why an .exe file would infect a machine? Do you mean any kind of .exe? Even from a well known company, who create safe and populars software?
I used to run, without tell anyone, firefox portable in my office to bypass firewall restrictions, is that dangerous as well?
Considering you are at school, you will lack a lot of needed rights to edit certain things. I would know, I had to get around blocks on both Windows and Mac computers my freshman year.
I would advise you use the software, Your Freedom, it's free, but requires an account, you will also need to use a browser such as Firefox, and edit the settings to use the correct IP and Port as a proxy.
It also works on both Mac's and PC's. There is another software that I had used, strictly for windows PC's, but I can't recall the name of it.
Edit: I also ran the software from my flash drive..
i have special access to .exe and Command prompt just because of the position i am in as a student (several Technical courses). I can execute files on my computer and i have Chrome Installed. Does that help?
johnston9234 said:
i have special access to .exe and Command prompt just because of the position i am in as a student (several Technical courses). I can execute files on my computer and i have Chrome Installed. Does that help?
Click to expand...
Click to collapse
What I did was to download firefox portable, you can google it (and if you want you can copy it to an USB drive).
If you go to firefox networking setting, you can try to change the options in advanced with "no proxy" or as wisefire said just write an IP proxy address with the correct port, you should be able to visit any website.
At least this was working flawlessy for me..
yukinok25 said:
This is a REALLY good explanation Pulser, I always liked the way you answer to the people on XDA! (specially on the Hero thread )
By the way, why an .exe file would infect a machine? Do you mean any kind of .exe? Even from a well known company, who create safe and populars software?
I used to run, without tell anyone, firefox portable in my office to bypass firewall restrictions, is that dangerous as well?
Click to expand...
Click to collapse
Only a malicious exe would cause trouble...
But on a shared school network, who knows what the user before you used...
That's why I use disk freezing software on systems I run, and a forced reboot between logins, to give you a clean environment.
But while employees run portable firefox, what if they were to use it on another pc, and it had a virus, which infected the exe?
TBH, flash drives shouldn't be used in work environments, that were used outwith that environment... But that's not realistic in a school.
johnston9234 said:
i have special access to .exe and Command prompt just because of the position i am in as a student (several Technical courses). I can execute files on my computer and i have Chrome Installed. Does that help?
Click to expand...
Click to collapse
Come on... Surely you ain't gonna abuse that privilege? You got it because you were trusted, not to work round the restrictions that are in your acceptable use policy...
yukinok25 said:
What I did was to download firefox portable, you can google it (and if you want you can copy it to an USB drive).
If you go to firefox networking setting, you can try to change the options in advanced with "no proxy" or as wisefire said just write an IP proxy address with the correct port, you should be able to visit any website.
At least this was working flawlessy for me..
Click to expand...
Click to collapse
That would work unless they filter out proxy traffic (you can often detect SOCKS proxies and other ones that are working using this method, or even block common ports like 8080)
Back in high school we used Ultrasurf and GPass. I liked GPass because it was really easy to hide from the taskbar and notification area.
pulser_g2 said:
Only a malicious exe would cause trouble...
But on a shared school network, who knows what the user before you used...
That's why I use disk freezing software on systems I run, and a forced reboot between logins, to give you a clean environment.
But while employees run portable firefox, what if they were to use it on another pc, and it had a virus, which infected the exe?
TBH, flash drives shouldn't be used in work environments, that were used outwith that environment... But that's not realistic in a school.
Click to expand...
Click to collapse
haha, All of my schools have used disk freezing software. I thought about putting it on my parent's computer so I don't have to work on it anymore.
Eventhough I generally don't work on it anymore and just have them call someone to work on it for them. hahah.
buttes said:
Back in high school we used Ultrasurf and GPass. I liked GPass because it was really easy to hide from the taskbar and notification area.
Click to expand...
Click to collapse
Back in my days in high school we just got the many different IT and Librarian passwords/usernames and some teacher's passwords aswell. Then we'd log in to them and download Kazaa (yeah, it was that long ago lol), and downloaded like a gig or two of old NES, SNES, SEGA, Etc roms and started passing them around to everyone. haha.
It got so bad that the school threatened expulsion for everyone that had the games on their user accounts because it was overloading their network and storage space.
For a while they were just searching for the rom's extensions and you could just go and change them to a .txt and then change them back when you wanted to play them, but then they finally realized that the gig of space the roms took up were about 4 times the size of the data we were allowed to have and they could just sort the usernames by the usage of storage space.
The teacher's ones were fun to have though... it allowed you change some grades here and there...especially with my method of madness which I will not describe here. lol
pulser_g2 said:
That would work unless they filter out proxy traffic (you can often detect SOCKS proxies and other ones that are working using this method, or even block common ports like 8080)
Click to expand...
Click to collapse
So, I am really interested about this topic, is there anyway to bypass a restriction if they filter out the proxy traffic?
yukinok25 said:
So, I am really interested about this topic, is there anyway to bypass a restriction if they filter out the proxy traffic?
Click to expand...
Click to collapse
Hmmm... It's possible. If they use deep packet filtering it may be hard. But anything is possible...
I won't go into details, of getting round things, as it is my job to stop people getting round them, and I know a load of tricks, but look at the protocols in use in surfing - you need LDAP/AD to log into windows domain. Then you use DNS to resolve an IP (perhaps via a corporate web proxy). Then HTTP/HTTPS to access the page.
Now think what tools the domain admins might use to administer their network - RDP? SSH? Web services on high ports?
I think I've gone into enough detail for now... I can tunnel out almost any network these days, but I don't think it is sensible, wise, nor ethical to divulge this sort of thing.
pulser_g2 said:
Hmmm... It's possible. If they use deep packet filtering it may be hard. But anything is possible...
I won't go into details, of getting round things, as it is my job to stop people getting round them, and I know a load of tricks, but look at the protocols in use in surfing - you need LDAP/AD to log into windows domain. Then you use DNS to resolve an IP (perhaps via a corporate web proxy). Then HTTP/HTTPS to access the page.
Now think what tools the domain admins might use to administer their network - RDP? SSH? Web services on high ports?
I think I've gone into enough detail for now... I can tunnel out almost any network these days, but I don't think it is sensible, wise, nor ethical to divulge this sort of thing.
Click to expand...
Click to collapse
True I am agree with you Pulser, thus I am really into this sort of things recently.
I am eager to learn..
Could you please recommend me a book or something (not too advanced) that would help me to understand better LDAP/AD, DNS and everything about security and networking?
I obviously wanna learn just for myself and I definitely don't want to spread or divulge in anyway bad behaviors..
johnston9234 said:
hey, i used to have a way around the school router blocks but i cant seem to remember what it was for the life of me. What it consisted was of an .exe that installed some software that allowed me to browse freely. I vaguely remember that the software consisted of a icon on the taskbar that was kinda an earth with fire around it....maybe?
if you have any other good router/server bypasses then please let me know. .exe file executions are blocked everywhere except in the technology building at school. Preferably i would like to have something only requiring a flash drive or it can be done within IE or Chrome.
Click to expand...
Click to collapse
if not previously mentioned, you're looking for "Tor" which comes in both installable packages or portable exe files that can be run off flash drives and includes a custom made 'Mozilla Firefox' which comes preloaded with Tor and does not save any browsing information on your client machine, thus this program is completely anon when ran from a flash drive.
www.torproject.org and you're looking for the Stable Portable Browser Bundle
Please thanks me (click thanks) if this helped
really there is a simple way
use kon-boot and bypass admin password and change the settings
kylon said:
really there is a simple way
use kon-boot and bypass admin password and change the settings
Click to expand...
Click to collapse
not if he is on a school network, he would have to physically run kon-boot on the server itself which defeats the purpose because the server would already be logged in as an admin of some kind.
-correct me if I'm misunderstanding or have missed a key post somewhere-
These apps allow you to remotely access your phone from a web browser. However, they all run a web server on the phone, and I cannot connect to any of the over 3g (Verizon).
LazyDroid Web Desktop
Remote Desktop
Remote Web Desktop
I want to move the web server off phone, and (hopefully) onto private sites.google.com site. App Engine might be necessary, but I'm hoping this could be done solely in JS.
The hosting site would provide the UI, and interact with the phone using C2DM (the magic that powers Chrome2Phone, GMail, and installing apps from the web Market).
The UI is pretty obvious. It just needs a whiz to create HTML, Javascript, etc.
The C2DM backend is a still a bit mystifying to me... and searching for c2dm and javascript does not yield any obvious working implementations. But it seems plausible. Push a command to the phone, phone returns/uploads data to website, and UI updates.
Then there is the Android end. Well, there are the 3 projects above, Tasker for a quasi-hackish approach, and RPC (promising, but it seems like a WIP).
Thoughts? Volunteers? Geniuses?
Ooo... 2 birds with one stone!
This would also kill 2 birds with one stone.
No more typing in dynamic IP addresses! You get to use DNS to handle the connections. Bookmark your site in your desktop browser (it is always the same!). And set a preference in the Android app.
On lazydroid i've in planning some kind of trick that will let you connect behind firewall ... similar to a vpn...
CloudsITA said:
On lazydroid i've in planning some kind of trick that will let you connect behind firewall ... similar to a vpn...
Click to expand...
Click to collapse
I tried it again last week, and it is still unsuccessful. Webkey is currently the only application that I can successfully use to reach my phone.
Now, I could be wrong, but I believe all of these apps run a web server on the phone. I get a lovely, private 10.x.x.x IP address, which I can't reverse the route to. I have tried and failed to get DynDNS to work.
I have been looking into a solution since my original post. I have not had any time to do code squat, but I have loosely figured out all of the parts.
The big architectural difference I have been seeking is removing the server from the phone. I am not an Android expert, but I don't believe it even requires a running service. (Thank you, C2DM.)
With the app-webservice separation, you can work a "protocol" that reduces the overall bandwidth used... and thus improve battery life. Put all the "hard work" on a webserver, and (things get fuzzy here) possibly push it off onto the client browser (JS).
C2DM Browser Links
I could probably make something like WebKey but with C2DM and some more features. If you want you can give suggestions and I'll start making on saturday (after my exams). It would probably be possible in javascript for the actual sending from server and php just for logging in to your google account. The phone would just be registered on the server and no services (just as you wanted )
nebkat said:
I could probably make something like WebKey but with C2DM and some more features. If you want you can give suggestions and I'll start making on saturday (after my exams). It would probably be possible in javascript for the actual sending from server and php just for logging in to your google account. The phone would just be registered on the server and no services (just as you wanted )
Click to expand...
Click to collapse
I am not sure "more features" is necessarily the direction I'm headed. I am focused on making a "seamless" experience (i.e. less separation of phone and computer).
I was headed to App Engine (Python bias + easy Google integration). I have a project created. I haven't pulled together the various examples to make the core, but it seems <naive>simple</naive>. Stir in some templates, CSS, a sprinkling of JS, and voila!
The big "tricky" part that I can't convert from f***ing magic to a clear approach is the data link in the server. I want to avoid any storage to a Google disk, or otherwise, even temporarily. No stored data = easy privacy policy.
nebkat, if you're really chomping at the bit to code, here's my Android client concept.
- C2DM is a wake-up call. (cheat an borrow ChromeToPhone's ID to begin with)
- Connect to web server, send "I'm here," and wait for further instructions (Channels API/Comet/AJAX/.........)
- make the command set extensible
- each command is blockable in the client. (Permission control is set on the phone, not remotely.)
- After N minutes of no activity, send a "good bye," disconnect from the server, and fade into the background.
Don't worry, I'm very experienced with the server side stuff and I know exactly what you want. The only information stored on the sever side would be google account, the device c2dm registration id and some logging features just for statistics. A password could be set on the phone that would be sha512 hashed on the ajax request and would be sent to the phone. Even if a hacker found the hash, it would be useless without being logged in to the persons google account or knowing the server side auth token.
For now i'll just make the reciever, processor and command output and later on the extra security and ui stuff. It will work exactly the same way as Chrome2Phone except it will have server side php and the different commands. The connection from pc to phone will be something like this.
user command -> ajax request -> php c2dm request -> phone
phone -> php server http request -> controller page status
BTW I'm saving up for a Nexus S, how much would people pay for this type of app? There would definitely be a free version, but I just need to get the Nexus S because I have a Galaxy Spica now and it isn't the best for app development. I'm new to how stuff at xda works, would a donate version get me enoguh for the Nexus?
nebkat said:
Don't worry, ... <snip> ... auth token.
Click to expand...
Click to collapse
Alrighty then. I'm feeling like I can stop contemplating implementing this.
BTW I'm saving up for a Nexus S, how much would people pay for this type of app? There would definitely be a free version, but I just need to get the Nexus S because I have a Galaxy Spica now and it isn't the best for app development. I'm new to how stuff at xda works, would a donate version get me enoguh for the Nexus?
Click to expand...
Click to collapse
Since I was learning the ins and outs of App Engine, I read their quota rules and realized if this were popular it would require funding. I don't know where you are going to your web server, but I assume you'll have to pay someone to keep it running. But I had thought about $$$ already.
"Give away the razor, and sell them the blades."
Make the app free, no feature restrictions.
You get your money through various "membership" levels on the server. (See the account levels at fastmail.fm for an example.) So, you can use the app for free, but you only get, say, 2-3 MB of traffic per day, and only X sessions per day. Need more? See the pricing chart.
user command -> ajax request -> php c2dm request -> phone
phone -> php server http request -> controller page status
Click to expand...
Click to collapse
user command -> php server http request -> phone
phone -> php server http request -> controller page status
user command -> php server http request -> phone
lather, rinse, repeat.
C2DM is not deterministic, and acts up in low signal conditions. So, I made a decision to only use C2DM to initiate a session. Once both ends are connected to the server, everything goes over HTTP.
Oh.... and not that we need another Lookout/Phone Finder, but a shared-secret SMS code for the case where "they" have shut down the data connection.
I have my own server nebkat.com and there is nothing on it anyway.
The only other way to make "push" requests to the phone is with WebSockets. It would probably be better than c2dm because we have full control over what gets sent (google limits some requests). The advantage of WebSockets is that they send no header information which means that we could send our messages in 20 to 30 bytes.
I'll look into more detail on friday.
With web sockets won't you need to ensure the phone has a routable, external IP address? I know, for one, t-mobile does not expose an external IP address for their phones. Unless, of course, if the phone is connected over WiFi. C2DM works great for me (I have used a couple of apps with it and it is really useful).
MrGibbage said:
With web sockets won't you need to ensure the phone has a routable, external IP address? I know, for one, t-mobile does not expose an external IP address for their phones. Unless, of course, if the phone is connected over WiFi. C2DM works great for me (I have used a couple of apps with it and it is really useful).
Click to expand...
Click to collapse
No, WS is server initiated and the ip address' shouldn't make a difference.
MrGibbage said:
With web sockets won't you need to ensure the phone has a routable, external IP address? I know, for one, t-mobile does not expose an external IP address for their phones. Unless, of course, if the phone is connected over WiFi. C2DM works great for me (I have used a couple of apps with it and it is really useful).
Click to expand...
Click to collapse
You need an valid external IP address if you are attempting to initiate contact with your phone, which is why the 4-5 apps I've mentioned do not work on carriers like t-mo and verizon.
But the phone can establish a connection, and the carrier NATs (or whatever) will handle the routing for outgoing and incoming data.
I think the right questions are: Will Verizon/T-Mo allow the ports and protocol for WebSockets? Do Android and desktop browsers implement the draft API correctly and consistently?
I like C2DM. I works well when you have a good connection. But there are 3 issues with it.
1) The message size limit is 1024 bytes. Not ideal for file transfers.
2) In a poor signal areas, since the service retries sending messages, you will get delayed and/or duplicate messages. I work in a large "concrete" building, so I get this behavior often enough that I don't want to rely on it.
3) I believe there is a limit on the number of messages you can send. So, hunting around the filesystem could hit this limit (but unlikely in reality... I hope.)
It would be interesting to see exactly how those apps handle all of the data. Do they only use C2DM, or do they hand over to another protocol?
Ok my exams are over and I am starting with it. I'll give updates on this thread
If you're like me, then you have a data plan with T-Mobile that includes only 2.5GB of data for tethering. After you 2.5GB is up,T-Mobile begins redirecting all of your tethered traffic to a webpage prompting you to buy more tethering data.
T-Mobile does this by reading all of the headers on every HTTP request. It analyzes each one and reads the User-Agent string. This is what tells websites how to deliver their content for you and is why you only get mobile versions of webpages on your phone and not on your laptop. So, many people got around this by spoofing the user agent with a browser plugin to make it look like your laptop was requesting the mobile version of websites (so T-Mobile would think that it's a phone requesting the data, not a tethered laptop.) However this solution only works for that specific browser. Other browsers, applications, and devices that do not support User-Agent spoofing were left without a solution. Was I really the only one trying to tether my PS3 for Netflix and gaming?
So some people turned to VPNs which basically act as a secure proxy so that T-Mobile could not read the traffic and tell what the User-Agent was. But this often costs money and/or slows down your network speed. Seeing as how people who are looking for a tether workaround are trying to not spend money, and are trying to use T-Mobile's lightning fast LTE, this isn't really a practical solution.
So after spending hours and hours looking for a solution, I came to the conclusion that there was none yet.
I deduced that the obvious solution would be to modify the packets on the fly and change the user-agent string of every HTTP request as it came to the phone before forwarding it on to T-Mobile. Luckily for us, all HTTP requests that have no User-Agent string or a string of "null/null" etc. are automatically accepted! So all that needed to be done was to strip the user-agent string of all of the outgoing HTTP requests - on the fly.
My first thought was that hopefully there was an android app that could do this.
There isn't.
And I am not capable of making one but if you find one or can make one, please tell me and I will adjust this explanation because that would make things a bit simpler. However, since we don't live in a perfect world, we have to run a program on a computer and route all traffic through that program. This wonderful little program that I came across called "Fiddler" (it won't let me post the link but it's www[dot]fiddler2[dot]com) is just what we need. It's a completely free program.
Go download and install fiddler. This program will allow us to monitor and 'fiddle' with the network traffic on the fly!
First, fire up your tethering app on your phone and connect your computer. I personally use android WiFi tether but I suppose it probably doesn't matter which one you use. Once you've connected your computer. Open up fiddler, go to "Rules," "User-Agents," and select "Custom..." A window will pop up. Leave this blank and click okay. Now, all of the network traffic from that computer with have its user-agent string modified to "User-Agent:[blank]" Test this out on any browser on your computer and you should not be redirected to the upsell page.
Now for all of your other devices! I was particularly concerned with my PS3 but any device that supports proxy use will work. That's a hell of a lot more devices than the number that support UA spoofing haha. Go to "Connection Settings" on your PS3 and select "Manual"
Go through your setup as usual and connect to your phone's wifi hotspot. When you come to the page that says "Proxy Settings" select "Use"
For the IP address go back to your computer and look at Fiddler. In the top-right corner there is an image of two computers and it says "Online" next to it. Hover over that icon and it will have an IP address listed. This is the virtual proxy that Fiddler has set up for auxillary incoming traffic on the local network. Type that IP address into the PS3's proxy settings and use port 8888 (you may have to configure your computer firewall to allow incoming traffic on that address/port)
Also, in Fiddler go to the AutoResponder tab and check the box that says "Unmatched requests passthrough." This is so that HTTP requests that come in without a User-agent already defined will just be passed on. If this box is not checked you may get frequent 404 errors.
Finish up the connection settings on the PS3 and let it fly! You can watch the traffic on Fiddler in real time!
This is my first post on XDA and this workaround is brand new as far as I can tell so there may be some kinks that need to be worked out.
Let me know if you have any questions or problems!
Respectfully,
Hunter.
TexasState said:
If you're like me, then you have a data plan with T-Mobile that includes only 2.5GB of data for tethering. After you 2.5GB is up,T-Mobile begins redirecting all of your tethered traffic to a webpage prompting you to buy more tethering data.
T-Mobile does this by reading all of the headers on every HTTP request. It analyzes each one and reads the User-Agent string. This is what tells websites how to deliver their content for you and is why you only get mobile versions of webpages on your phone and not on your laptop. So, many people got around this by spoofing the user agent with a browser plugin to make it look like your laptop was requesting the mobile version of websites (so T-Mobile would think that it's a phone requesting the data, not a tethered laptop.) However this solution only works for that specific browser. Other browsers, applications, and devices that do not support User-Agent spoofing were left without a solution. Was I really the only one trying to tether my PS3 for Netflix and gaming?
So some people turned to VPNs which basically act as a secure proxy so that T-Mobile could not read the traffic and tell what the User-Agent was. But this often costs money and/or slows down your network speed. Seeing as how people who are looking for a tether workaround are trying to not spend money, and are trying to use T-Mobile's lightning fast LTE, this isn't really a practical solution.
So after spending hours and hours looking for a solution, I came to the conclusion that there was none yet.
I deduced that the obvious solution would be to modify the packets on the fly and change the user-agent string of every HTTP request as it came to the phone before forwarding it on to T-Mobile. Luckily for us, all HTTP requests that have no User-Agent string or a string of "null/null" etc. are automatically accepted! So all that needed to be done was to strip the user-agent string of all of the outgoing HTTP requests - on the fly.
My first thought was that hopefully there was an android app that could do this.
There isn't.
And I am not capable of making one but if you find one or can make one, please tell me and I will adjust this explanation because that would make things a bit simpler. However, since we don't live in a perfect world, we have to run a program on a computer and route all traffic through that program. This wonderful little program that I came across called "Fiddler" (it won't let me post the link but it's www[dot]fiddler2[dot]com) is just what we need. It's a completely free program.
Go download and install fiddler. This program will allow us to monitor and 'fiddle' with the network traffic on the fly!
First, fire up your tethering app on your phone and connect your computer. I personally use android WiFi tether but I suppose it probably doesn't matter which one you use. Once you've connected your computer. Open up fiddler, go to "Rules," "User-Agents," and select "Custom..." A window will pop up. Leave this blank and click okay. Now, all of the network traffic from that computer with have its user-agent string modified to "User-Agent:[blank]" Test this out on any browser on your computer and you should not be redirected to the upsell page.
Now for all of your other devices! I was particularly concerned with my PS3 but any device that supports proxy use will work. That's a hell of a lot more devices than the number that support UA spoofing haha. Go to "Connection Settings" on your PS3 and select "Manual"
Go through your setup as usual and connect to your phone's wifi hotspot. When you come to the page that says "Proxy Settings" select "Use"
For the IP address go back to your computer and look at Fiddler. In the top-right corner there is an image of two computers and it says "Online" next to it. Hover over that icon and it will have an IP address listed. This is the virtual proxy that Fiddler has set up for auxillary incoming traffic on the local network. Type that IP address into the PS3's proxy settings and use port 8888 (you may have to configure your computer firewall to allow incoming traffic on that address/port)
Also, in Fiddler go to the AutoResponder tab and check the box that says "Unmatched requests passthrough." This is so that HTTP requests that come in without a User-agent already defined will just be passed on. If this box is not checked you may get frequent 404 errors.
Finish up the connection settings on the PS3 and let it fly! You can watch the traffic on Fiddler in real time!
This is my first post on XDA and this workaround is brand new as far as I can tell so there may be some kinks that need to be worked out.
Let me know if you have any questions or problems!
Respectfully,
Hunter.
Click to expand...
Click to collapse
Yeah, that's a workaround indeed, however the setup is long and extensive for anyone. We're still trying to find a QUICK solution that doesn't require a mass setup of every device. I only bounce to my tethering when there's an outage at home or I'm on the road, neither are the best solutions to be spending time switching everything over when I could have just as easily opened the browser on my phone to take care of everything. I found this post from the link you posted in the other thread where we weren't discussing hard solutions, just concepts and ideas, theoretical solutions (hence why there was never a post like this there). It's great to see that the one thing we know is the catalyst has been confirmed once again (HTTP USER-AGENT) as what T-Mo and every other carrier is doing, so this is a solution for not just T-Mo, but every provider. Again, it's a hell of a setup and requires that you keep at least one computer active during the ENTIRE tethering session, also, it appears T-Mo doesn't block Playstation 3 from what I can tell, at least we were able to watch like 3-4 hours of Netflix when we had the 500mb tethering cap without a problem.
This affect nat type? If I use this program? Ps3 online game though
Sent from my SGH-T889 using XDA Premium 4 mobile app
It seems T-Mobile has caught onto using different agents. I was trying to use mobile hotspot on my laptop yesterday. It didn't matter if my UA was android handset or Googlebot, it redirected me to a hotspot upsell page.
Dr. Hax said:
It seems T-Mobile has caught onto using different agents. I was trying to use mobile hotspot on my laptop yesterday. It didn't matter if my UA was android handset or Googlebot, it redirected me to a hotspot upsell page.
Click to expand...
Click to collapse
Go into your APNs and select the tethering APN, if you can edit the hostname from epc.tmobile.com to fast.t-mobile.com or whatever your normal APN is, there are a bunch of threads talking about how to get tethering working, this is just the LAST step, don't come here thinking this is the FIRST step, you're going at it backwards.
TexasState said:
If you're like me, then you have a data plan with T-Mobile that includes only 2.5GB of data for tethering. After you 2.5GB is up,T-Mobile begins redirecting all of your tethered traffic to a webpage prompting you to buy more tethering data.
T-Mobile does this by reading all of the headers on every HTTP request. It analyzes each one and reads the User-Agent string. This is what tells websites how to deliver their content for you and is why you only get mobile versions of webpages on your phone and not on your laptop. So, many people got around this by spoofing the user agent with a browser plugin to make it look like your laptop was requesting the mobile version of websites (so T-Mobile would think that it's a phone requesting the data, not a tethered laptop.) However this solution only works for that specific browser. Other browsers, applications, and devices that do not support User-Agent spoofing were left without a solution. Was I really the only one trying to tether my PS3 for Netflix and gaming?
So some people turned to VPNs which basically act as a secure proxy so that T-Mobile could not read the traffic and tell what the User-Agent was. But this often costs money and/or slows down your network speed. Seeing as how people who are looking for a tether workaround are trying to not spend money, and are trying to use T-Mobile's lightning fast LTE, this isn't really a practical solution.
So after spending hours and hours looking for a solution, I came to the conclusion that there was none yet.
I deduced that the obvious solution would be to modify the packets on the fly and change the user-agent string of every HTTP request as it came to the phone before forwarding it on to T-Mobile. Luckily for us, all HTTP requests that have no User-Agent string or a string of "null/null" etc. are automatically accepted! So all that needed to be done was to strip the user-agent string of all of the outgoing HTTP requests - on the fly.
My first thought was that hopefully there was an android app that could do this.
There isn't.
And I am not capable of making one but if you find one or can make one, please tell me and I will adjust this explanation because that would make things a bit simpler. However, since we don't live in a perfect world, we have to run a program on a computer and route all traffic through that program. This wonderful little program that I came across called "Fiddler" (it won't let me post the link but it's www[dot]fiddler2[dot]com) is just what we need. It's a completely free program.
Go download and install fiddler. This program will allow us to monitor and 'fiddle' with the network traffic on the fly!
First, fire up your tethering app on your phone and connect your computer. I personally use android WiFi tether but I suppose it probably doesn't matter which one you use. Once you've connected your computer. Open up fiddler, go to "Rules," "User-Agents," and select "Custom..." A window will pop up. Leave this blank and click okay. Now, all of the network traffic from that computer with have its user-agent string modified to "User-Agent:[blank]" Test this out on any browser on your computer and you should not be redirected to the upsell page.
Now for all of your other devices! I was particularly concerned with my PS3 but any device that supports proxy use will work. That's a hell of a lot more devices than the number that support UA spoofing haha. Go to "Connection Settings" on your PS3 and select "Manual"
Go through your setup as usual and connect to your phone's wifi hotspot. When you come to the page that says "Proxy Settings" select "Use"
For the IP address go back to your computer and look at Fiddler. In the top-right corner there is an image of two computers and it says "Online" next to it. Hover over that icon and it will have an IP address listed. This is the virtual proxy that Fiddler has set up for auxillary incoming traffic on the local network. Type that IP address into the PS3's proxy settings and use port 8888 (you may have to configure your computer firewall to allow incoming traffic on that address/port)
Also, in Fiddler go to the AutoResponder tab and check the box that says "Unmatched requests passthrough." This is so that HTTP requests that come in without a User-agent already defined will just be passed on. If this box is not checked you may get frequent 404 errors.
Finish up the connection settings on the PS3 and let it fly! You can watch the traffic on Fiddler in real time!
This is my first post on XDA and this workaround is brand new as far as I can tell so there may be some kinks that need to be worked out.
Let me know if you have any questions or problems!
Respectfully,
Hunter.
Click to expand...
Click to collapse
Doesn't work on ps3...obtaining ip address succeeds but internet connection fails..i added the ip and port 8888 to the fire wall and allowed connection. and when i hover over the two computers it shows two ip addresses i have tried both and same results
metro pcs upsell, lg optimus f3/JB 4.1.2
I'm on the Metro PCS network, i used to have the lg motion and that phone would hotspot my ps3 with no problems. I figured that I would upgrade my phone to the lg optimus F3 and keep hotspoting on the $60 unlimited plan. Much to my surprise I have ran into the same issue many have others have ran into, the tmobile upsell page. mine now says metro pcs upsell. so I have tried many Apps in the store with no possible way around the upsell page. After hours and days of research, its apperhant that tmobile and metro pcs are not restricting the tethering function. I can obtain an ip address but not gain internet access. As have many others. I've rooted my phone using motochopper, i installed titanium backup pro, and rom toolbox pro. I backed up all my apk's to the external and went root browsing for anything that has to do with wifi, hotspot or tether. I wasnt getting anywhere untill today. My LG Optimus F3 runs on JB 4.1.2, instead of finding tethering features i found the open source codes on sharing data and http rules. I dont have much experience with altering codes, but i do know this would be a great starting point for bypassing the upsell reroute. By using romtools pro, i finally found myself using the app manager, from there i clicked on the file networking apk, i scrolled the app display to the right to get to romtools special features, clicked on explore apk. Every rule was laid out in plain text using a notepad. Javax/servlets/resources. Every file in this folder can be read with notepad. There is tons of info regarding internet sharing, web browsing, and what runs and triggers the infamous upsell codes. I've read a few post where developers are trying to find the source of upsell, i hope this helps as a starting point. (Besides that) i was also able to enter the lg hidden menu and uninstall all metro pcs apps with one click
"(Besides that) i was also able to enter the lg hidden menu and uninstall all metro pcs apps with one click""" ????
i am in exact same boat , metropcs , rooted with all tricks tried , and still upsell page .
one interesting thing though is my lg motion can use the F3 wifi for ip camera apps . tried other apps but no go .
"IP camera viewer" has no issues accessing internet by way of a wifi tether on the F3 using my non active LG motion , strange .......the other apps report network errors or just fail to start ( netflix ) perhaps this will help in hunting a bypass on the UPsell crap
Thanks but...
Thanks for providing the most current news about this problem with Tmobile, I have been using HMA / foxfi since Aug 2013. Just a few hours ago it stopped working, couldn't even login to VPN. I lost my useragent switcher when I upgraded Chrome, and couldn't fall back on that either, so thanks for the tip about fiddler.
I am currently online because I caved to the upsell. So my question is, has Tmobile "improved" security on its upsell to the point that VPN's and UA spoofs dont work anymore, and do I have to learn the answer to this by community or by blowing my data limit again? Does anyone have a fresh strategy, or know what's going on in Tmobile business? Do they even care about people like us?
I live by this connection, since other ISP's around here are not worthwhile, and I maintain mobile business with my laptop, and I would prefer to process GB's without having to scavenge for someone else's wifi.
petedude2lu3 said:
Thanks for providing the most current news about this problem with Tmobile, I have been using HMA / foxfi since Aug 2013. Just a few hours ago it stopped working, couldn't even login to VPN. I lost my useragent switcher when I upgraded Chrome, and couldn't fall back on that either, so thanks for the tip about fiddler.
I am currently online because I caved to the upsell. So my question is, has Tmobile "improved" security on its upsell to the point that VPN's and UA spoofs dont work anymore, and do I have to learn the answer to this by community or by blowing my data limit again? Does anyone have a fresh strategy, or know what's going on in Tmobile business? Do they even care about people like us?
I live by this connection, since other ISP's around here are not worthwhile, and I maintain mobile business with my laptop, and I would prefer to process GB's without having to scavenge for someone else's wifi.
Click to expand...
Click to collapse
VPN's no longer work for me either. I'm not getting the upsell page just no internet access at all while tethering.
Thanks TexasState, this was very valuable information that got me completely through T-Mobile's "walled garden" on their unlimited high-speed plan (for phones only) in an area where we don't have any good land-line options. :good:
What are some proactive approaches to making sure T-Mobile doesn't block my line? I'm using a phone basically as a makeshift wifi-router and all our computers run Fiddler. Is there anything else that T-Mobile might do to sniff out cheaters in the future? Is user-agent the only thing they can look at to determine if you're cheating?
Greetings first post here on XDA I have been able to tether via usb on metro/tmobile in OKC ,I am on a rooted F3 (LGMS659) I have tried just about everything a little luck with open garden but too slow for me ,downloaded foxfi wifi ap point no go ,redirected to upsell , tried usb with level one settings ,it works . but I may have done something when I entered the hidden menu 3548#*659# in settings those last two are interesting to me Upsell Url and ATS Start Property On
Took me about 8-10 hours to figure it out but i did it so heres how you get your tether back.
1.Open up your hidden menu.
2.Open Wlan test.
3. Click on UpSell and turn it off.
And turn on your tether app and have fun.
JUN10R831 said:
Took me about 8-10 hours to figure it out but i did it so heres how you get your tether back.
1.Open up your hidden menu.
2.Open Wlan test.
3. Click on UpSell and turn it off.
And turn on your tether app and have fun.
Click to expand...
Click to collapse
After half a day on the unlimited plan with Tea Mobile, this seems to have worked for me. Had to reinstall hiddenmenu.apk on my LG phone because I removed it earlier as bloatware but even after a reinstall as a user (as opposed to system) app, it worked.
Procedure was slightly different due to different model of phone/hidden menu but same basic procedure. BTW, it's unlimited but with 2.5 gb cap for hotspot. Let's just say I'm over the cap.
EDIT: So I got to almost 6 gb in one day, but then I got the redirect of death. I will troubleshoot when I have time later.
dbozam said:
After half a day on the unlimited plan with Tea Mobile, this seems to have worked for me. Had to reinstall hiddenmenu.apk on my LG phone because I removed it earlier as bloatware but even after a reinstall as a user (as opposed to system) app, it worked.
Procedure was slightly different due to different model of phone/hidden menu but same basic procedure. BTW, it's unlimited but with 2.5 gb cap for hotspot. Let's just say I'm over the cap.
Click to expand...
Click to collapse
What model did you use? Mine was in the Hidden Menu --> Settings menu.. and i chose "Upsell Try Off" with no avail.
LG G2 for Tmobile.
S4 "Hidden" Menu
I'm having the same issues as presented above but I'm unable to get into the "hidden" menu using the key code mentioned. I'm running Wicked V10 (it's great). Would love to test this out if I could access the right menu. So far I've gotten into the service menu but that's it.
This is by far the best work around I have found. Everything works. And if you are clever you can edit your user agent rules so they are automatic. Then turn fiddler into a windows service so ya never have to see it again and it just works. Excellent tutorial. The only thing I wish I could do is figure out how to get my Xbox 360 to connect to fiddlers proxy. If anyone knows please post it.
Thanks again OP
-Polluti0n
Sent from my SAMSUNG-SGH-T879 using XDA Premium 4 mobile app
Blank UA causes 403s and ASP issues.
This method works fantastic overall. I have my phone tethered to a router and run fiddler on all needed devices - no upsell message thus far (40GB+ down)
The issue I've run into is that some websites user the User Agent string to serve different content - by using a blank UA many ASP.net websites fail (on _doPostBack, in particular) and several give 403 errors (docs.WooThemes com) so I switched to a mobile UA but then sites serve mobile versions of their content (Amazon com). The next option is a desktop UA, but then I may as well not even switch it at ll?
I'm wondering - does anyone know what specifically T-Mobile looks for in the UA field, or know of a valid UA string that avoids detection but doesn't register as mobile (or give 403's)?
brn2drv99 said:
This method works fantastic overall. I have my phone tethered to a router and run fiddler on all needed devices - no upsell message thus far (40GB+ down)
The issue I've run into is that some websites user the User Agent string to serve different content - by using a blank UA many ASP.net websites fail (on _doPostBack, in particular) and several give 403 errors (docs.WooThemes com) so I switched to a mobile UA but then sites serve mobile versions of their content (Amazon com). The next option is a desktop UA, but then I may as well not even switch it at ll?
I'm wondering - does anyone know what specifically T-Mobile looks for in the UA field, or know of a valid UA string that avoids detection but doesn't register as mobile (or give 403's)?
Click to expand...
Click to collapse
Googlebot and safari 5 for windows work great and are undetected by T-Mobile.
Sent from my SAMSUNG-SGH-T879 using XDA Premium 4 mobile app
Polluti0n said:
Googlebot and safari 5 for windows work great and are undetected by T-Mobile.
Click to expand...
Click to collapse
Seems to work perfectly. Thanks!
For anyone needing it, here's a bare-bones CustomRules js file for Fiddler.
Code:
import System;
import Fiddler;
class Handlers
{
static function OnBeforeRequest(oSession: Session) {
// User-Agent Overrides
oSession.oRequest["User-Agent"] = "Mozilla/5.0 (compatible; Googlebot/2.1; +tp://w.google.com/bot.html)";
// Add 'ht' after the + and make it 3 'w's instead of just one
}
}