Database Users

WaveSecure Serious Vulnerability!!

I'm using Modaco latest r8 rom with froyo 2.2. I noticed 2 things:
1. wave secure will not download my account data automatically when I factory reset. I need to register again which make it vulnerable. >> Anyone can disable wave secure
2. I don't even need to factory reset and I can reset wave secure by clearing the data in settings!!!!
I have tried in original HTC ROM 2.09(rooted) and flash in /system/app. same situation.
And I've tried that if wavesecure hasn't been register, you can't lock it from wavesecure.com or sms
I don't know if this is due to the nature of froyo or it's been like this since 2.1
wave secure is practically useless right now on my phone!!
Anyone can confirm this?

called them and they said they disabled the function for temp as they are working on some fix, it will be up again in 3 weeks as what they said

Yep, saw this on MoDaCo. Will not be renewing my WaveSecure subscription.

Lets be honest, it was a waste of money to begin with right.

This whole thing makes me wonder...can an Android phone REALLY be protected by these kind of softwares? Even assuming there are no security issues with the app..I mean,a lot of Android phones are rooted by their owners and all are rootable (?) without booting into the OS, so even if said apps are installed as system apps (just like wavesecure can be) what's preventing a "smart/geek" thief from pulling the battery, changing the simcard,(rooting a non-rooted phone), booting into recovery, mounting system and wreaking havoc through adb, including removing the security app?? Am i going on a wild goose chase or is all this sound??

MacCarron said:
This whole thing makes me wonder...can an Android phone REALLY be protected by these kind of softwares? Even assuming there are no security issues with the app..I mean,a lot of Android phones are rooted by their owners and all are rootable (?) without booting into the OS, so even if said apps are installed as system apps (just like wavesecure can be) what's preventing a "smart/geek" thief from pulling the battery, changing the simcard,(rooting a non-rooted phone), booting into recovery, mounting system and wreaking havoc through adb, including removing the security app?? Am i going on a wild goose chase or is all this sound??
Click to expand...
Click to collapse
Yeah, but I don't think the average mugger/thief is that smart
Sent from my HTC Desire using Tapatalk

So can I cancel my current subscription then and get a refund?

If you install wavesecure to /system/app and make sure its only there and not in /data/app as well then you should not have this problem.
Also wavesecure have gone through a rough month, got brought by Mcafee who in turn just got brought by Intel. They need to adjust to the new owners. They are (were) only a small company and lets face it their app is the best around by a long long way.
If you have any problems or suggestions on how to improve they usually listen (it was one of TeamVillain and a xda mod who suggested they make a update.zip for /system/app and a number of other improvements and they did it straight away).
Don't just say "oh no its not working" no app can protect your phone from the right people, if someone who knows all about rooting etc gets your phone then your screwed anwyay. But the average joe thug who steals your phone will get it, put in a new sim the alarm will go crazy then they panic, drop the phone and run. You can then use the tracker to find it, or give details to police.
Just put the apk in your rom next time before you flash in system/app and flash the rom. Restore data from a backup (but not the app) and you still get your market link too.

Lennyuk said:
If you install wavesecure to /system/app and make sure its only there and not in /data/app as well then you should not have this problem.
Also wavesecure have gone through a rough month, got brought by Mcafee who in turn just got brought by Intel. They need to adjust to the new owners. They are (were) only a small company and lets face it their app is the best around by a long long way.
If you have any problems or suggestions on how to improve they usually listen (it was one of TeamVillain and a xda mod who suggested they make a update.zip for /system/app and a number of other improvements and they did it straight away).
Don't just say "oh no its not working" no app can protect your phone from the right people, if someone who knows all about rooting etc gets your phone then your screwed anwyay. But the average joe thug who steals your phone will get it, put in a new sim the alarm will go crazy then they panic, drop the phone and run. You can then use the tracker to find it, or give details to police.
Just put the apk in your rom next time before you flash in system/app and flash the rom. Restore data from a backup (but not the app) and you still get your market link too.
Click to expand...
Click to collapse
While i agree with you that a witch hunt isn't the proper response and that it is unlikely that the average thief will know his way around adb, i have personally tried to remove wavesecure from /system/app...it works...i did it without breaking a sweat. I intentionally triggered the lock by attempting to uninstall the uninstall-protection, pulled off the battery, booted in recovery and got rid of wavese cure with a single command. Reboot and presto! A free phone . So it is true that there is no full-proof way to be safeguarded, at least using this software, and in my humble opinion the guys over at wavesecure should clearly state so on their website. And they don't always listen..there is a long story of noisy silences concerning op's issue...omissions, censorship etc etc. I got a free lifetime subscription so i'm not particularly yelling at anyone, just making hypothetis, but wouldn't you be quite pissed off if someone stole your phone and rendered it's security software (for which you payed) impotent just because he knew "SU"?

MacCarron said:
While i agree with you that a witch hunt isn't the proper response and that it is unlikely that the average thief will know his way around adb, i have personally tried to remove wavesecure from /system/app...it works...i did it without breaking a sweat. I intentionally triggered the lock by attempting to uninstall the uninstall-protection, pulled off the battery, booted in recovery and got rid of wavese cure with a single command. Reboot and presto! A free phone . So it is true that there is no full-proof way to be safeguarded, at least using this software, and in my humble opinion the guys over at wavesecure should clearly state so on their website. And they don't always listen..there is a long story of noisy silences concerning op's issue...omissions, censorship etc etc. I got a free lifetime subscription so i'm not particularly yelling at anyone, just making hypothetis, but wouldn't you be quite pissed off if someone stole your phone and rendered it's security software (for which you payed) impotent just because he knew "SU"?
Click to expand...
Click to collapse
The thing is though, if they knew SU and other commands chances are they will get around any protection whatever it would be.
But Wavesecure offers you a way to track the phone, you can still contact your carrier and get them to IMEI blacklist it, then track the handset down via wavesecure.

hi - just check out secrep5265.blogspot.com - thats interesting information concerning your discussion.

[BOUNTY] Ultimate thief catcher $50

Forgive me if this is in the wrong place.
As stated in the title, I'm willing to offer a $50 bounty to anyone who can create this app for me, the perfect thief catcher app. Here's how it works:
The app runs in the background constantly (possibly as a service to avoid task killers), so it must be as minimal as possible. Upon receipt of a specifically worded text message, the app will trigger the GPS and wait 5-10 minutes for full lock. After this time has passed, the app will text the GPS coordinates to a preconfigured email address and then disable the GPS.
Optional function: Activate the front facing cam (silently and invisibly if possible), take a picture, and attach to said text message to be sent to preconfigured email address.
The main focus of this app is to accurately capture the location of the device while being light on battery, so that optimal capture can take place in the event the device is stolen.
If something like this already exists, please let me know so that I can donate to that developer.
Specifics: I have an Evo with CM7, if it matters in coding the app at all.

Lookout has lost phone features similar to what you are asking for. I have Lookout on my phone, uses almost no battery.
They also have an app called Plan B that you can install after the phone is lost to get a GPS location on it.
Both are free.
I don't expect the bounty, but feel free to buy me a sandwich for helping.

Lookout causes too many problems from what I've seen. I'll check out the Plan B app.
Bounty is still up.

I'm not the "fastest" coder in the world, but I would hazard a guess of minimum 20 hours for development, testing, etc.
Great app idea but I'm not writing code for $2.50 an hour ...just sayn'
And Android OS prevents someone from NOT being able to stop a Service.

Try apps "Where's My Droid" or GPS Tracker. Both have remote activation capabilities.
________________________________
http://ron-droid.blogspot.com

rigman said:
Try apps "Where's My Droid" or GPS Tracker. Both have remote activation capabilities.
________________________________
http://ron-droid.blogspot.com
Click to expand...
Click to collapse
Did you read the entire OP? I realize WMD has a few of the features that I listed, but I want ALL of the features working like I stated.

I'm no coder, but I could quite easily make a Tasker profile to do this.

Sunsparc said:
Did you read the entire OP? I realize WMD has a few of the features that I listed, but I want ALL of the features working like I stated.
Click to expand...
Click to collapse
Yes I read the entire op and wasn't very impressed. Texting coordinates wouldn't be very reliable way to catch someone. There's a very good chance the person could be driving at the moment you send your activation text.
Same for turning on the camera. Highly unlikely they'd have the camera pointed at their face or anything recognizable. Or even if they did, probably couldn't make out much without the flash.
Just my opinion. But I'd much rather have an app that gave me continuous GPS coordinates as does the apps I suggested.
________________________________
http://ron-droid.blogspot.com

Look up Prey. it runs as a background service and has a lot of cool stuff. Google it, they have a whole web interface and everything, you can use the same service on your laptop under the same account. I think it would suit your needs.
Sent from my MIUI SCH-i500

The best lost/stolen app imo is Theft Aware. From the app's website:
Theft Aware runs (and this is worldwide UNIQUE) completely invisible in the background. That's right! Theft Aware is COMPLETELY INVISIBLE. You'll be able to remotely control your phone by SMS at any time. Theft Aware will reply to your commands by SMS as well. The sent or received SMS leave no trace on the mobile phone, no signal will alert the thief - who will feel safe!
Sure, as soon as the thief changes the SIM card of the phone, the phone number of it will change. NO PROBLEM. Theft Aware will detect the change and will inform your buddy automatically about the new phone number by SMS.
Click to expand...
Click to collapse

Best thing to do with lost or stolen phone?
-Call provider and they'll kill the phone.
-Buy new phone

Edit: Mainly a reply to an edited out part of a post but still applicable so I'll leave what I wrote
At 9.99 EUR, Theft Aware is far from free but I understand your point. It's good to watch for security and privacy issues. I would only caution that one could easily miss out on good/helpful apps if generalizations are made based on one bad app(le) or the possibility of one. But really this is what Android is all about...individual choice. To each their own.

I've been using Prey for a while now and I'm very happy with it.

All the current apps are dependent on your sim card remaining in the phone so you can text it. So in the reality of your phone being stole they will be useless.
Sent from my Nexus One using XDA App

nutsnut said:
All the current apps are dependent on your sim card remaining in the phone so you can text it. So in the reality of your phone being stole they will be useless.
Click to expand...
Click to collapse
Since you must not have read my first post...
If a thief changes the SIM card, Theft Aware will proactively send you the location and the new phone number of the thief to predefined friends of yours. Once you got the new number, you will again be able to locate your phone at any time.
Click to expand...
Click to collapse
So even if the SIM card is changed, the app will inform you the phone number associated with that new card by messaging both of the numbers you assigned when you set it up. Once you have that, you can message commands invisibly to that new number to control Theft Aware as well as now knowing the thief's phone number to hand over to police, your carrier, or to figure out the owner of that number on your own.

nutsnut said:
All the current apps are dependent on your sim card remaining in the phone so you can text it. So in the reality of your phone being stole they will be useless.
Sent from my Nexus One using XDA App
Click to expand...
Click to collapse
I think you mean if you have a gsm phone.. i have a CDMA, so I really don't need to worry about it. However, if i ever stole someones phone, the first thing I would do is take out the battery and let it sit on the shelf for a month or two until the previous owner has given up. And trust me, you will if it happens to you. It happened to me.
Sent from my HERO200 using XDA Premium App

Theft Aware
Theft Aware isn't sim card depending. If the sim gets changed a sms is sent to up to two notification numbers you define on installing theft aware.
it meets all requirements you specify (except that the location is sent via sms not email).
but that will soon be available via a webinterface where you can control your device.
I don't need the bounty either - try theft aware and buy a license. thats enough compensation as my company sells theft aware

Check out "watch droid"......

Every beginning thief knows that if you steal a smartphone you get out the body the battery and SIM card as first thing. Second thing is looking for hard reset instructions.
It should be something deeper than OS level.

Khisha said:
Every beginning thief knows that if you steal a smartphone you get out the body the battery and SIM card as first thing. Second thing is looking for hard reset instructions.
It should be something deeper than OS level.
Click to expand...
Click to collapse
It's been said a couple times that Theft Aware can detect a SIM card change and inform you of the new number so you can continue to control it through text messages. It will also survive a factory reset if you have rooted your phone and installed it appropriately. It won't survive a full data wipe like you would do when flashing a new ROM through recovery, but nothing can...that's the point of a full wipe. If you are waiting for or expecting something to come out that will persist through a full wipe, then you will never be satisfied.

[Q] About forgot password (strange)

(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot

EX_RIVER said:
(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot
Click to expand...
Click to collapse
If you have TWRP (not sure about Clockworkmod), "Factory Reset" will leave personal files on while clearing settings, custom apps, etc. FORTUNATELY, there is no way to bypass, other than resetting the device, the password for security reasons

dibblebill said:
If you have TWRP (not sure about Clockworkmod), "Factory Reset" will leave personal files on while clearing settings, custom apps, etc. FORTUNATELY, there is no way to bypass, other than resetting the device, the password for security reasons
Click to expand...
Click to collapse
Pretty sure that's not true, strictly speaking. Unless OP is talking about encryption, flashing a new ROM over top will preserve most user data saved on /sdcard (much to my annoyance).

Rirere said:
Pretty sure that's not true, strictly speaking. Unless OP is talking about encryption, flashing a new ROM over top will preserve most user data saved on /sdcard (much to my annoyance).
Click to expand...
Click to collapse
You are correct. I forgot that circumstance. TWRP specifically excludes the data/media area
Sent from my Samsung Galaxy Victory via XDA Developers App

dibblebill said:
You are correct. I forgot that circumstance. TWRP specifically excludes the data/media area
Sent from my Samsung Galaxy Victory via XDA Developers App
Click to expand...
Click to collapse
I mean, it's useful because if you flub a flash you can use a backup, but these recoveries are not secure and aren't designed to be.

EX_RIVER said:
(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot
Click to expand...
Click to collapse
USB debugging isn't required for ~all~ USB stuff, so you should try it anyways.
Then, as long as you still know your Google password you can install this to your Nexus, via the web (no log on to device actually needed):
http://www.androidlost.com/
I haven't actually tried or used that program, so cant say 100% it will work on N10 - but "in general" it seems like it should!
:good:

bigmatty said:
USB debugging isn't required for ~all~ USB stuff, so you should try it anyways.
Then, as long as you still know your Google password you can install this to your Nexus, via the web (no log on to device actually needed):
http://www.androidlost.com/
I haven't actually tried or used that program, so cant say 100% it will work on N10 - but "in general" it seems like it should!
:good:
Click to expand...
Click to collapse
I don't know if AndroidLost can unlock a device, and he doesn't seem to have lost it either. Unless an app had root/device admin access, I can't imagine that it would have the privileges necessary to remove authentication from a device (since that seems to be the pinnacle of bad security). Secure Settings + Tasker can do it, but you need to set that up beforehand.

Rirere said:
I don't know if AndroidLost can unlock a device, and he doesn't seem to have lost it either. Unless an app had root/device admin access, I can't imagine that it would have the privileges necessary to remove authentication from a device (since that seems to be the pinnacle of bad security). Secure Settings + Tasker can do it, but you need to set that up beforehand.
Click to expand...
Click to collapse
It says it can:
Lock the phone
You can lock and unlock the phone from the web. If you forget your pincode you can simply overwrite it or remove it from the web

bigmatty said:
It says it can:
Lock the phone
You can lock and unlock the phone from the web. If you forget your pincode you can simply overwrite it or remove it from the web
Click to expand...
Click to collapse
I don't think this means what you think it means (and I could be wrong). Many security apps like avast! offer a similar "locking" functionality, where the normal lockscreen (whatever security it is) is covered by a second lockscreen, superimposed over all system UI elements to prevent access. This lockscreen is controlled by the app, but it will not affect any underlying security (basically, think of it as a replacement lockscreen for security reasons, not much unlike HoloLocker or Go Launcher's lockscreen).

Rirere said:
I don't think this means what you think it means (and I could be wrong). Many security apps like avast! offer a similar "locking" functionality, where the normal lockscreen (whatever security it is) is covered by a second lockscreen, superimposed over all system UI elements to prevent access. This lockscreen is controlled by the app, but it will not affect any underlying security (basically, think of it as a replacement lockscreen for security reasons, not much unlike HoloLocker or Go Launcher's lockscreen).
Click to expand...
Click to collapse
I don't know man, and like I said I've never tried it. But its a super popular app, and has been featured in write ups. On their main page it states that text, as the fifth "main feature" which seems pretty straight forward to mean "the main lock screen"...

bigmatty said:
I don't know man, and like I said I've never tried it. But its a super popular app, and has been featured in write ups. On their main page it states that text, as the fifth "main feature" which seems pretty straight forward to mean "the main lock screen"...
Click to expand...
Click to collapse
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.

Rirere said:
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.
Click to expand...
Click to collapse
Nice on the testing! Too bad about the unlock. Perhaps he can still use it to offload his content though.
Did you try to "push" it to your device w/out installing it direct? I have wondered if I should pre-load this app on my devices, but "they" tout its remote-install-ablity, so I somewhat feel like I would not have to pre-install. (But then again, Im always apprehensive of claims that make things seem super easy.)
EDIT: Hmmm.... I see it requires "SMS" to install this on a device via Push - so I guess it NEEDS to be pre-loaded on a N10 if one wishes to use it to retrieve a lost N10, or even use it in this context! Now to decide if I install this or not...

bigmatty said:
Nice on the testing! Too bad about the unlock. Perhaps he can still use it to offload his content though.
Did you try to "push" it to your device w/out installing it direct? I have wondered if I should pre-load this app on my devices, but "they" tout its remote-install-ablity, so I somewhat feel like I would not have to pre-install. (But then again, Im always apprehensive of claims that make things seem super easy.)
Click to expand...
Click to collapse
I installed direct. I use Cerberus (and before that, avast! Anti-Theft) to help secure my devices, but these things are all a game of chance. My advice: completely disregard remote-install abilities. If you're going to use this kind of service, it really doesn't make any sense not to install it yourself, where you can change your preferences (such as install to /system or rename the application) to work for you.
The bigger problem is that, obviously, six hundred million things could go wrong. I noticed that AndroidLost noted that they were using Google to push messages, which indicates that they're using C2DM (unlikely, it's deprecated) or GCM push services, which require your phone being connected to a network (itself a big assumption) that will allow Google's ports to send traffic. This excludes no small number of places, particularly corporate networks (and many schools as well). It also looks like one of the wakeup methods if SMS, which is not only noticeable (to a thief), but potentially may be intercepted by other apps on the phone (such as an alternative SMS app).
The idea is that these apps intercept and delete any command SMS before any other app, but in practice this doesn't always happen. So test your setup before something happens!

Rirere said:
I installed direct. I use Cerberus (and before that, avast! Anti-Theft) to help secure my devices, but these things are all a game of chance. My advice: completely disregard remote-install abilities. If you're going to use this kind of service, it really doesn't make any sense not to install it yourself, where you can change your preferences (such as install to /system or rename the application) to work for you.
The bigger problem is that, obviously, six hundred million things could go wrong. I noticed that AndroidLost noted that they were using Google to push messages, which indicates that they're using C2DM (unlikely, it's deprecated) or GCM push services, which require your phone being connected to a network (itself a big assumption) that will allow Google's ports to send traffic. This excludes no small number of places, particularly corporate networks (and many schools as well). It also looks like one of the wakeup methods if SMS, which is not only noticeable (to a thief), but potentially may be intercepted by other apps on the phone (such as an alternative SMS app).
The idea is that these apps intercept and delete any command SMS before any other app, but in practice this doesn't always happen. So test your setup before something happens!
Click to expand...
Click to collapse
Thanks for the info, I will look into Cerberus. I am assuming you would recommend that as you are currently using it? Do you think its better than AndroidLost, even though you haven't spent as much time w/ AndroidLost?

bigmatty said:
Thanks for the info, I will look into Cerberus. I am assuming you would recommend that as you are currently using it? Do you think its better than AndroidLost, even though you haven't spent as much time w/ AndroidLost?
Click to expand...
Click to collapse
I like it a lot more, but I will admit I personally liked avast! better. Its uncertain future (plus a nice promotion) led me to jump ship to Cerberus. I'd have to play around with it a bit more to be sure though.

Rirere said:
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.
Click to expand...
Click to collapse
Yep, you're right I can't get root under this situation, thanks a lot I'm trying to figure out how to save my data mow

EX_RIVER said:
Yep, you're right I can't get root under this situation, thanks a lot I'm trying to figure out how to save my data mow
Click to expand...
Click to collapse
It's not root you need per se, it's device admin. But root isn't an easy option for you either, because unlocking your bootloader will hose your data. I also think most of the locked-bootloader exploits require the device to be on and unlocked. If you're signed into your Google account, you should have a fair degree of stuff backed up already-- what sorts of data are you trying to save?

Rirere said:
It's not root you need per se, it's device admin. But root isn't an easy option for you either, because unlocking your bootloader will hose your data. I also think most of the locked-bootloader exploits require the device to be on and unlocked. If you're signed into your Google account, you should have a fair degree of stuff backed up already-- what sorts of data are you trying to save?
Click to expand...
Click to collapse
Mostly..........Photos and videos

EX_RIVER said:
Mostly..........Photos and videos
Click to expand...
Click to collapse
...do you have a Google+ account? Slash have you ever opened the app? If so, you might actually be in luck and your data should have been backed up to your Google+ (or PicasaWeb if you prefer).

Securing Moto G4 for my son.

I just purchased the Amazon Moto G4 edition for my son who is 8yrs old, and I understand he's a little young for a phone. However, a few of his buddies have phones and I thought it was a great way to help him read and type better through texting. I'm also not planning on paying for Cell service but rather use Wifi for SMS and Calls through hangout. And maybe get him freedom pop for in an emergency.
Now, with that said I created a gmail account that I control (my password, my recovery email/phone #, etc.) and then used this to setup the Play store. I set up all the restrictions in the play store to what I believe is appropriate and of course I locked it by setting up my own PIN code so he couldn't change them.
I also setup his own google voice number and tied it to google hangouts/dialer but I can also monitor what he is doing on my phone periodically if I wanted. I'm not interested in him using Snapchat, WhatsApp, or any other kind of social network.
I've also setup OpenDNS on the wifi account he uses at home. So I think I have things pretty much locked down with the exception of installing from Unknown sources. And although he probably isn't computer savvy enough yet, at some point he will be.
So, with that said is there anyway I can build a rom that disables installing from Unknown Sources? Also, any other recommendations and tips from others are welcome.
Thanks.

He can get rid of everything you did if he could factory reset

seth.dean02 said:
He can get rid of everything you did if he could factory reset
Click to expand...
Click to collapse
Of course he could, but he's 8! He's probably not savvy enough to circumvent my efforts yet and when he is I'll change my approach.

pabdaddy1995 said:
Of course he could, but he's 8! He's probably not savvy enough to circumvent my efforts yet and when he is I'll change my approach.
Click to expand...
Click to collapse
Try one of the apps that allows you to lock apps. One is Applock and you may be able to lock down settings. That would prevent him from changing anything. You've probably thought of it already but some type of tracking app is a necessary safety measure for a child's phone. LOL, when he becomes a teenager you'll need the tracking for many more reasons.

Samsung S8: completely remove Maas360 and KNOX?

Hi, I've been searching answers for this on Google for a while now but not found any sufficient answers.
I have a new phone that is completely locked down by company policies. I don't agree with these policies and they stop me from using my prefered launcher which needs root.
In short words, I want this crap off my phone!
Knox Enrollment Service is completely locked and cannot be disabled. Maas360 cannot be disabled and unlocked. I read that you cannot root a phone running Maas360 and KNOX the normal way.
Is there a ROM that would allow me to safely remove these services and turn my phone into a stock Samsung Galaxy S8 - or will that brick my phone?
Thanks for any advice

If its corporate policy, they will be notified if the phone is rooted or modified in any way and you could lose your job over it. They probably have strict policies in place to prevent access to company data. If you didnt agree then why did you add any company accounts to your phone?

whitedragon551 said:
If its corporate policy, they will be notified if the phone is rooted or modified in any way and you could lose your job over it. They probably have strict policies in place to prevent access to company data. If you didnt agree then why did you add any company accounts to your phone?
Click to expand...
Click to collapse
Thanks for your reply!
I don't know how these services work, but if I flash it with a custom rom that completely removes the old system and makes it into a "stock" Samsung phone. Then none of these services would be present to report any of these changes. I guess the receiving system would simply believe this phone is turned off and possibly after some weeks report that the phone hasn't reported in for X days. Thanks for worrying about me keeping my job, but that won't be a problem I assure you

mrkiwibanana said:
Thanks for your reply!
I don't know how these services work, but if I flash it with a custom rom that completely removes the old system and makes it into a "stock" Samsung phone. Then none of these services would be present to report any of these changes. I guess the receiving system would simply believe this phone is turned off and possibly after some weeks report that the phone hasn't reported in for X days. Thanks for worrying about me keeping my job, but that won't be a problem I assure you
Click to expand...
Click to collapse
It depends. I deploy MDM systems like this. Is this a corporate device or a personal device that is just enrolled?

whitedragon551 said:
It depends. I deploy MDM systems like this. Is this a corporate device or a personal device that is just enrolled?
Click to expand...
Click to collapse
Its a corporate device. When I first initialized the phone the KNOX or Maas360 started an enrollment service that was not optional.

mrkiwibanana said:
Its a corporate device. When I first initialized the phone the KNOX or Maas360 started an enrollment service that was not optional.
Click to expand...
Click to collapse
If its a corporate device there isnt anything you can do. It is enrolled at a physical hardware level in Android for Work. It will activate KNOX and call home every single time the device is wiped before you can proceed with any other functions. If it doesnt phone home to get the config, you cannot proceed with the setup. Its similar to DEP for Apple devices.

whitedragon551 said:
If its a corporate device there isnt anything you can do. It is enrolled at a physical hardware level in Android for Work. It will activate KNOX and call home every single time the device is wiped before you can proceed with any other functions. If it doesnt phone home to get the config, you cannot proceed with the setup. Its similar to DEP for Apple devices.
Click to expand...
Click to collapse
Thanks! Bad news for me, I guess I just have to bite into this sour lemon and accept. I will keep my hopes up that someone will find a way to blast past this in the future

Need help removing maas360
Hey, so my galaxy s8 had gone through the partial touch failure so as I was recommended I factory reset my phone and long story short I am stuck with maas360 and can't restore all my settings and such so I need to get it off preferably without a computer. (Also help with the touch screen would be nice but not crucial at this time)

Jok3Smok3 said:
Hey, so my galaxy s8 had gone through the partial touch failure so as I was recommended I factory reset my phone and long story short I am stuck with maas360 and can't restore all my settings and such so I need to get it off preferably without a computer. (Also help with the touch screen would be nice but not crucial at this time)
Click to expand...
Click to collapse
I love reading stories about MaaS360, I actually admin it for a company. If its a corporate device you may be sol, you may ask the admin to remove control, if it's a personal device to remove maas360.
Go into maas360- settings top right you should see 3 squares. hit remove MDM control after you remove control you can uninstall any part of MaaS360.

jmall84 said:
I love reading stories about MaaS360, I actually admin it for a company. If its a corporate device you may be sol, you may ask the admin to remove control, if it's a personal device to remove maas360.
Go into maas360- settings top right you should see 3 squares. hit remove MDM control after you remove control you can uninstall any part of MaaS360.
Click to expand...
Click to collapse
Hello . i installed an official software through odin to my s8 plus. Long story short, after factory resetting , i got this wierd app called "custom blocker" and in my device admin, i have knox customisation, knox enrollement and custom blocker restriction. this device is my own and not of any company. Why did these random apps appeared on my phone and how do i get rid of them? i am unable to update my phone or access the playstore.
Any help will be appreciated. Thanks.