Related
So I download this X-Ray vulnerability scanner app (it's legit) and scan my device. To my surprise, even my Nightly is vulnerable to the mempodroid exploit. Should this concern me enough to file a CM bug report? By the way I use Franco kernel so if this is a legit exploit should I consider contacting him? See original G+ thread. https://plus.google.com/117694138703493912164/posts/AfNQ7cT9JYV
Sent from my Nexus 4 using Tapatalk 4 Beta
Mempodroid is a root exploit and considering that CM comes pre-rooted you shouldn't have anything to worry about
Sent from my NEXUS 4 using xda premium
Oh good. What a relief. So that means we have no known vulnerabilities. That's good. Take that Apple.
Sent from my Nexus 7 using Tapatalk 4 Beta
MikeRL100 said:
Oh good. What a relief. So that means we have no known vulnerabilities. That's good. Take that Apple.
Sent from my Nexus 7 using Tapatalk 4 Beta
Click to expand...
Click to collapse
http://www.theepochtimes.com/n3/152836-android-master-key-security-flaw-affects-900m-devices/
If people are worried about security they should not be rooting their devices to begin with.
Sorry if I'm offending
zelendel said:
If people are worried about security they should not be rooting their devices to begin with.
Click to expand...
Click to collapse
Sorry for disagreeing with you, but I worry about common sense security. If this is a root exploit that is needed to ship with CM to allow one to use root, no biggie. I know root makes you vulnerable, but guess what? So does administrative access on Windows. If I worked for the governemnt or a large business I would have a different, possibly non-smart phone to do that task. I'm not stupid enough to go downloading cracked apps from pirated sites, but let me tell you all something. On my PC I had Opera 14 installed and used it during when one of Opera's employee's PCs got hacked and injected the Opera certificates with malware. I freaked. Prooves that a targeted attac could be successful, even with good protection. Luckily, my layer of security (MVPS hosts, Avast, and Malwarebytes Pro) kept it from even approaching the front door. And my Linux box even has the MVPS hosts file as well. Also, if this was an actual vulnerability to be concerned about, Steve Kondik would've patched it before the iCrap loving media could get new anti-Google propaganda. By the way, I am arguing with none of you, but I do need to make a point. I know since Android is based of Linux and not Windows NT, it is hella more secure. I would not root this if this phone had to be used under secure conditions. I'd either disable root while at work, or get a second phone. Yes I love root that much. But I don't get malware very often, havent' had an actual infection that wasn't blocked in many many years. Never even had Android malware. You know why? Hosts file+common sense. I never go to pirated sites, and never will. I love the XDA devs, community, and even some of the non-XDA Google Play devs enough not too. And when I say love, I mean I don't want to see their income sapped. Piracy is a no-no on XDA, but I'm sure it's OK to condemn it. And my talk on that ends now. :good: So onto the main topic, I have common sense, some privacy protections, and I don't just allow any app superuser access. I check reviews first and even have a malware scanner in Advanced Mobile Care. No on demand protection since its not necessary for me, and I never have gotten malware. I bet jailbroken iOS devices get more malware since most of the apps on them are cracked since Apple boots you out of iTunes for jailbreaking. Also, even though I'm rooted I like to know what each exploit means. No device or computer (even a hardened Linux server) is safe from the most skilled black hat. But since I'm not a target of interest, I have some malware prevention via the HOSTS file, Android is more secure than Windows, and I most importantly have common sense, I'll be fine. Maybe I'm too lax on security, but I guarantee you, I will adapt if some freak drive by download trojan comes to Android and by some crazy way gets malware through the Play Store with reputable apps. If a nasty was detected, or an app just looked different enough, it ain't gonna get no system access from me. So go ahead you iOS loving "Android is the next Windows XP" malware magnet pundits in the media, go ahead (that i if any Apple trolls stumble across this thread). I guarantee none of the streams of infected botnets will not add another to the collection. Like I said, not arguing with you but I disagree with you (at least initially) on how powerful my common sense is. I'm not saying you're doubting me, you're a cool guy and more than likely give a lot of assistance around here, but I may look like a noob troll cause I am a Junior member, but I was a long time lurker, and on AndroidForums I have been around a bit. I'm not some sort of super brain (at least not yet) and I do know rooting hampers security, but although I care about security, I just don't want my precious Nexus 4 and 7 to ever become virus magnets. I should have mentioned it, but I thought that vulnerability in CM was because it needed an exploit to have root by defaul (even though CM has disabled it recently). Also I will take some blame myself if I offended any of you. I am paranoid about a lot of things. But it's good to be paranoid to a certain extent. That would explain the lack of malware on all of my computers. But I should pay less attention to the social networks. Even G+. If this was on Facebook, mind you all, I wouldn't have game a damn about it. Facebook is full of trolls, fanboys, and noobs. That's why I rarely use that site and when I do, I pretty much block off all access to my profile from strangers. G+ encourages sharing with new people, while Facebook is like being with your old clique of buddies. That's why I use G+ so much now. That and I can help idiiot test things for developers. :laugh:
scream4cheese said:
http://www.theepochtimes.com/n3/152836-android-master-key-security-flaw-affects-900m-devices/
Click to expand...
Click to collapse
Yes you're definitely right we have a security issue. Not that Android itself is insecure (both my Nexus 4 and 7 were rushed to the latest Nightly to prevent them from joining a botnet) Good thing is custom ROMs create headaches for the bad guys cause they fragment Android (not in the iSheep style way of not getting updates) but in the way that they remove bloatware and some system apps, increase security in some areas, and in general all the code changes make it harder to create a universal botnet. I guarantee 95% of that botnet will be from OEM stock phones. We forget around here that most people are ignorant of common sense and security, if not downright stupid and don't care about security as long as they get their free cracked apps. We're the nerds here and most people are going to make it easy for these holes to be abused. They go to the most untrustworthy sites, install unstrustworthy apps, and are basically asking for it. Also the OEMs are pathetic for not all having a way to quickly patch Android. This type of stuff should sound an alarm to create a security update. I can see not giving an old phone a new version of Sense/touchwiz/Motoblur,etc. but denying security updates is ridiculous. The government should sue the offending OEMs if they want to be respected by the geeks a little more after the whole NSA mess. Because despite the fact that we aren't the ones here creating the botnet, what are we gonna do if thousands of clueless users install cracked apps that contain malware with the exploit, and form a botnet, that say DDOS attacks Google. Then Google Services would be disrupter. Also Google (who I am a big fan of) needs to stop being greedy in the one area of Android updates and force OEMs to include security patches and also backport and open source the security patch ASAP. I know CM is safe from that exploit already, I saw Steve Kondik's commit. But the OEMs are the problem. Google needs to push them past their comfort zone. You can have a car that is 10-20 years old and just because it's out of warranty doesn't mean that even if it takes a fool to make the engine explode in a deadly blast, that the manufacturer would just it there. I've seen Chevy recalls for example. One of them was a recall because something would catch fire if you were an idiot and poured gasoline or engine fluid or somehting on the engine. Of course the people doing this were stupid, but the same is true with technology. Why let the clueless and in the worst case those that just don't care create a botnet for us all to suffer from? Create an idiot patch and stop the situation from exploding. Please OEMs. Do something right for once.
MikeRL100 said:
Sorry for disagreeing with you, but I worry about common sense security. If this is a root exploit that is needed to ship with CM to allow one to use root, no biggie. I know root makes you vulnerable, but guess what? So does administrative access on Windows. If I worked for the governemnt or a large business I would have a different, possibly non-smart phone to do that task. I'm not stupid enough to go downloading cracked apps from pirated sites, but let me tell you all something. On my PC I had Opera 14 installed and used it during when one of Opera's employee's PCs got hacked and injected the Opera certificates with malware. I freaked. Prooves that a targeted attac could be successful, even with good protection. Luckily, my layer of security (MVPS hosts, Avast, and Malwarebytes Pro) kept it from even approaching the front door. And my Linux box even has the MVPS hosts file as well. Also, if this was an actual vulnerability to be concerned about, Steve Kondik would've patched it before the iCrap loving media could get new anti-Google propaganda. By the way, I am arguing with none of you, but I do need to make a point. I know since Android is based of Linux and not Windows NT, it is hella more secure. I would not root this if this phone had to be used under secure conditions. I'd either disable root while at work, or get a second phone. Yes I love root that much. But I don't get malware very often, havent' had an actual infection that wasn't blocked in many many years. Never even had Android malware. You know why? Hosts file+common sense. I never go to pirated sites, and never will. I love the XDA devs, community, and even some of the non-XDA Google Play devs enough not too. And when I say love, I mean I don't want to see their income sapped. Piracy is a no-no on XDA, but I'm sure it's OK to condemn it. And my talk on that ends now. :good: So onto the main topic, I have common sense, some privacy protections, and I don't just allow any app superuser access. I check reviews first and even have a malware scanner in Advanced Mobile Care. No on demand protection since its not necessary for me, and I never have gotten malware. I bet jailbroken iOS devices get more malware since most of the apps on them are cracked since Apple boots you out of iTunes for jailbreaking. Also, even though I'm rooted I like to know what each exploit means. No device or computer (even a hardened Linux server) is safe from the most skilled black hat. But since I'm not a target of interest, I have some malware prevention via the HOSTS file, Android is more secure than Windows, and I most importantly have common sense, I'll be fine. Maybe I'm too lax on security, but I guarantee you, I will adapt if some freak drive by download trojan comes to Android and by some crazy way gets malware through the Play Store with reputable apps. If a nasty was detected, or an app just looked different enough, it ain't gonna get no system access from me. So go ahead you iOS loving "Android is the next Windows XP" malware magnet pundits in the media, go ahead (that i if any Apple trolls stumble across this thread). I guarantee none of the streams of infected botnets will not add another to the collection. Like I said, not arguing with you but I disagree with you (at least initially) on how powerful my common sense is. I'm not saying you're doubting me, you're a cool guy and more than likely give a lot of assistance around here, but I may look like a noob troll cause I am a Junior member, but I was a long time lurker, and on AndroidForums I have been around a bit. I'm not some sort of super brain (at least not yet) and I do know rooting hampers security, but although I care about security, I just don't want my precious Nexus 4 and 7 to ever become virus magnets. I should have mentioned it, but I thought that vulnerability in CM was because it needed an exploit to have root by defaul (even though CM has disabled it recently). Also I will take some blame myself if I offended any of you. I am paranoid about a lot of things. But it's good to be paranoid to a certain extent. That would explain the lack of malware on all of my computers. But I should pay less attention to the social networks. Even G+. If this was on Facebook, mind you all, I wouldn't have game a damn about it. Facebook is full of trolls, fanboys, and noobs. That's why I rarely use that site and when I do, I pretty much block off all access to my profile from strangers. G+ encourages sharing with new people, while Facebook is like being with your old clique of buddies. That's why I use G+ so much now. That and I can help idiiot test things for developers. :laugh:
Yes you're definitely right we have a security issue. Not that Android itself is insecure (both my Nexus 4 and 7 were rushed to the latest Nightly to prevent them from joining a botnet) Good thing is custom ROMs create headaches for the bad guys cause they fragment Android (not in the iSheep style way of not getting updates) but in the way that they remove bloatware and some system apps, increase security in some areas, and in general all the code changes make it harder to create a universal botnet. I guarantee 95% of that botnet will be from OEM stock phones. We forget around here that most people are ignorant of common sense and security, if not downright stupid and don't care about security as long as they get their free cracked apps. We're the nerds here and most people are going to make it easy for these holes to be abused. They go to the most untrustworthy sites, install unstrustworthy apps, and are basically asking for it. Also the OEMs are pathetic for not all having a way to quickly patch Android. This type of stuff should sound an alarm to create a security update. I can see not giving an old phone a new version of Sense/touchwiz/Motoblur,etc. but denying security updates is ridiculous. The government should sue the offending OEMs if they want to be respected by the geeks a little more after the whole NSA mess. Because despite the fact that we aren't the ones here creating the botnet, what are we gonna do if thousands of clueless users install cracked apps that contain malware with the exploit, and form a botnet, that say DDOS attacks Google. Then Google Services would be disrupter. Also Google (who I am a big fan of) needs to stop being greedy in the one area of Android updates and force OEMs to include security patches and also backport and open source the security patch ASAP. I know CM is safe from that exploit already, I saw Steve Kondik's commit. But the OEMs are the problem. Google needs to push them past their comfort zone. You can have a car that is 10-20 years old and just because it's out of warranty doesn't mean that even if it takes a fool to make the engine explode in a deadly blast, that the manufacturer would just it there. I've seen Chevy recalls for example. One of them was a recall because something would catch fire if you were an idiot and poured gasoline or engine fluid or somehting on the engine. Of course the people doing this were stupid, but the same is true with technology. Why let the clueless and in the worst case those that just don't care create a botnet for us all to suffer from? Create an idiot patch and stop the situation from exploding. Please OEMs. Do something right for once.
Click to expand...
Click to collapse
Oh you have many valid points. My statement was more for the average user that really has no use for root. They root and flash cause they think it is cool.
The carriers and OEMs are trying to do something to stop it. The are locking bootloaders and making unrootable kernels (Samsung) To be honest I think this is a good idea for most users. They have no really need for those things and only end up with issues cause they have no idea what they are doing.
Cm Released a set of patches today to block some of the security issues.
See that is the issue with With OEM. Google cant force them to do anything. All the carrier has to do is take the AOSP code and add their stuff to it. No one can say what they have to add or not. This is why I only get nexus devices. I watched Euro devices get updated by the OEM while the US based devices never saw any updates at all. Including security updates that the OEM had issued. As long as the Carriers control what happens to the devices there is nothing that we can really do.
#Nexus4Lyfe I wish this was G+. I felt like a stupid hash tag would be appropriate.
Please help me in this. i need root apps and unlocking . coz i have no money etc ..... i need to root my device and want to install cm 12 on my device ....
Um... So do I. Do the research yourself, and spend time. This is so spam-like, and the research is ridiculous.
Yup.... Why motorola is treating customer like this. We paid u n that's it. I think they should provide unlock code for Droid mini as they do for others.
Sent from my XT1030 using XDA Free mobile app
Well, a few things. First off, if you are on android 4.4.4, there is no unlock for your bootloader. Next, there is a "free" rooting method, but based on what you have said thus far, I am going to go ahead and recommend against it. Motorola absolutely *SHOULD* provide bootloader unlock codes for any user not on contract, that wants one. The reason they do not is their agreement with Verizon Wireless stating specifically that they will not give unlock codes for Verizon devices that are not Developer Editions. Motorola phones that are supported are hard to come by, especially if you are a Verizon customer.
Personally, if your Mini is in good shape, (no scratches, dings, etc) i would sell it and hunt out another Mini or a Maxx on 4.4 on Ebay. (i have now done this successfully with a Mini and a Maxx) then you can (yeah, i know you don't like this part) pay $25 to get Sunshine to unlock the bootloader. Maybe that sounds like a lot of $$ for what it is. What i can say is a Dev edition of the Maxx (i know, i had a real one) is about $680 new. The retail version of the same phone was $550 or so. Even buying the phone from Motorola, you still paid more for Bootloader Unlock. I am old enough in the Android community to remember guys like Dan Rosenburg that never asked for $$, (or if you were insistant on paying, he asked you make a donation to charity), and also rooted every other device I have owned before the Mini for free. That used to be how it worked. Now, the only people interested are professionals who are literally spending time and money to find and utilize exploits. If you are really new, you should read up on security vulnerabilities, the qfuse system, and read up on the Azimuth Security blog and see what exactly was involved in the last run of bootloader unlocks. it isn't just someone playing code monkey and making a script. it is bricking (sometimes beyond all repair) $300-600 devices in an effort to make an unlock that might yield the money invested back.
As you said, and I live at the moment, you do not have money. This, my friend, sucks. I can say that in order to invest in my android devices, i have sold other things i cared about less (rare vinyls, extra devices, etc.) The reality is, $25 is not very hard to come up with if you are determined. Principally, at first glance, i disagreed with the premise of paying for what i feel should be an inherent feature of any android device, but when Motorola themselves say nothing will change the policy, I would much rather pay the money and know i am unlocked. google #unlockthedroids and you will see my names (kitcostantino, medicbeard, etc) a time or two...believe me i have tried. Motorola sells a crapload of devices to Verizon. Unfortunately, that means that Verizon (and also ATT) have too much clout and control over the Moto devices they sell for use on their networks.
The reality is, in the forseeable future, there will be less and less opportunity to unlock a retail device that is not a developer or pure edition. Security software checks and hardware gets better and better. the Devs that get through have a harder and harder time, and the knowledge is becoming more and more specific. I actually messaged DjrBliss on Hangouts to ask if he had any plans to work on the Turbo bl and he told me it was a stressful part of his life he was glad to be past. Honestly, he was so completely nice and cool about a total stranger contacting him, it blew me away. One of the most amazing exploit creators with ZERO pretentiousness, totally chill, and glad to talk to a fan (i have used his exploits on many of my phones). With dudes that capable not wanting to invest their time and efforts, we are left with mostly security experts to find our unlocks.(who can potentially make a crapload of money with their time and skillsets). Is $25 a lot compared to what these guys could be making? nope. but in all honesty, as I am inclined to do myself, I suggest you read up on anything Motorola related with regard to Qfuse, security checks, etc. The new age of exploits is upon us. The end user is going to have to be far more intelligent and far more comfortable doing things themselves to have control over their devices. In a way, it is a good thing because users that cannot do anything without a one-click or an app will be weeded out. In another way, it is horrible for android development, because those that do not have time, nor money to invest will get lost in the shuffle if they cannot buy a dev or unlockable device. I wish you the best man.
Can you guys learn to help instead of standing here complaining? For example, learn to deal with the All-PKG QHSUSB-DLOAD, download crap, be fearless and flash onto your device....
https://m.youtube.com/watch?feature=youtu.be&v=KyDnN3_hAmA
do u have root for 4.4.4?
do u have root for 4.4.4?
kaifkhan15 said:
do u have root for 4.4.4?
Click to expand...
Click to collapse
Yes.
http://forum.xda-developers.com/showthread.php?p=60085162
Sent from my locked but not stocked XT1080.
kaifkhan15 said:
do u have root for 4.4.4?
Click to expand...
Click to collapse
I use Kingroot to get my phone rooted. However, I failed to install TWRP by Flashify.
lwang9 said:
I use Kingroot to get my phone rooted. However, I failed to install TWRP by Flashify.
Click to expand...
Click to collapse
You rooted your phone but your phone's bootloader was still locked.
damiloveu said:
You rooted your phone but your phone's bootloader was still locked.
Click to expand...
Click to collapse
Im pretty sure he has an unlocked bootloader and then used kingoroot to Root.
method for 6-7.7
Hello, is it possible to get root for Droid mini with SU 6-7.7 somehow?
not as far as i know. not wp off full root at the very least. i have two droid maxx stuck on that same firmware with some success with temp root with kingroot, but reboot kills it. the newest firmware doesn't even do that.
Sent from my DROID Turbo using XDA-Developers mobile app
Nothing is updating.
Sent from my Nexus 6
I know its too early but what do you guys this about rooting/custom roms for venice?
BB ceo said (something along the lines) that they will only make an android device if it is secured enough. WOuld that mean a locked bootloader etc? Moreover, it is using a much more secure kernel (http://berryflow.com/2015/09/blackberrys-android-slider-using-hardened-linux-kernel/) and i've read that some beginner's tools (eg enabling developer's options, sideloading apps etc) are blocked.
So what do you guys think? As for me, I believe in this community and i know one way or another, we will be able to install our favourite custom roms/apps on venice. Although I dont know if it would happen 2 days after launch of 2 years after the device reaches the market!
Btw cant wait for the device! I hope blackberry becomes a force again after this phone. I'll buy it the day it's bootloader gets unlocked + root is acheived
Do you have a source on the Priv blocking sideloaded apps? That would be very unfortunate. Locked bootloader is a given but I would still like to be able to install my favorite apks.
I can't see things like developer options/USB debugging etc being outright blocked. That just seems like a great way to alienate the majority of the userbase that a device like this is targeted towards.
This is my main concern... I want this phone, badly. But after having a G4, having to wait for root and still not having any decent roms I won't get the Priv if it doesn't at least get root. It's stock-ish android so I can deal with lack of roms but no root, no sale.
Sent from my LG-H811 using Tapatalk
No idea why anyone here thinks they would do that. Even on BB10 devices installing apks is allowed - and they sure wouldn´t do otherwise on an Android device - that would be crazy.
and yes, bl will be locked and encrypted - root - well that will be something to wait for.
:good:
Bootloader WILL be locked, that's a no brainer. But locking out sideloading, developer options is not possible without TOTALLY killing interest and sales. Blackberry desperately needs Priv to succeed. This is their last chance to avoid becoming the next Nokia. So no, we will have at least sideloading available. Honestly, it doesn't matter if they lock out all these essential features, if they release at least the kernel source and device tree day-and-date with the phone. If you have these, we're better off building a CM 12 (or 13:fingers-crossed ROM for the Priv.
Zer0.exe said:
Do you have a source on the Priv blocking sideloaded apps? That would be very unfortunate. Locked bootloader is a given but I would still like to be able to install my favorite apks.
Click to expand...
Click to collapse
sorry I cant give you a source. I read this on reditt or a blog post
MSF Jarvis said:
Bootloader WILL be locked, that's a no brainer. But locking out sideloading, developer options is not possible without TOTALLY killing interest and sales. Blackberry desperately needs Priv to succeed. This is their last chance to avoid becoming the next Nokia. So no, we will have at least sideloading available. Honestly, it doesn't matter if they lock out all these essential features, if they release at least the kernel source and device tree day-and-date with the phone. If you have these, we're better off building a CM 12 (or 13:fingers-crossed ROM for the Priv.
Click to expand...
Click to collapse
hmm. So do you think it would be possible to unlock the bootloader or it can never be unlocked?
btw slightly offtopic, but is there any phone which has a completely locked bootloader (ie has never been unlocked)?
Welp a leaked pic about the security settings confirms developer options can be enabled, so sideloaded apps is probably a go to. False alarm, peeps!
Zer0.exe said:
Welp a leaked pic about the security settings confirms developer options can be enabled, so sideloaded apps is probably a go to. False alarm, peeps!
Click to expand...
Click to collapse
Link?
HyperM3 said:
Link?
Click to expand...
Click to collapse
http://n4bb.com/blackberry-priv-64-bit-4k-video-confirmed/
The beautiful glass weave is also shown off. I love it on my Z30.
pluto7443 said:
http://n4bb.com/blackberry-priv-64-bit-4k-video-confirmed/
The beautiful glass weave is also shown off. I love it on my Z30.
Click to expand...
Click to collapse
Thanks for that! I am really looking forward to this device. Im all or nothing on this with my Nexus 6 right now.
rollerdyke44 said:
hmm. So do you think it would be possible to unlock the bootloader or it can never be unlocked?
btw slightly offtopic, but is there any phone which has a completely locked bootloader (ie has never been unlocked)?
Click to expand...
Click to collapse
there must be some poor phone that didn't get a bootloader unlock, and I firmly believe the Priv is gonna join their ranks as soon as it gets released.
Sent from a Cool Phone stuck with crappy KingUser
rollerdyke44 said:
btw slightly offtopic, but is there any phone which has a completely locked bootloader (ie has never been unlocked)?
Click to expand...
Click to collapse
Look at the recent crop of AT&T and Verizon Samsung phones. Their bootloader are locked up tighter then...... Well we will just say their locked down [emoji1]
Sent from my Nexus 6 using Tapatalk
http://i-cdn.phonearena.com/images/...aked-hands-on-photos-plus-official-images.jpg In fact, this image outright confirms that you can sideload/ use developer options.
I wouldn't count on too much. The developer options could have easily been changed and some removed. As BB main selling point is security I expect this device to be one of the harder ones to crack.
As for the bootloader questions. Yes there have been a few that were uncrackable, a dirty hack to by pass has worked on some.
I imagine root is just a matter of time. Unless they lock the system partition, which other manufacturers have done in the past (Looking at you HTC). Even so, it has been done and s-on/off has been cracked before. Alternatives to locking include e-fuses, like in legacy motorola devices.
Bootloaders on the other hand, we're probably going to have to get some concrete evidence. It is most likely locked in my personal opinion.
This is all just speculation. Hopefully Blackberry can find a good balance.
htko89 said:
I imagine root is just a matter of time. Unless they lock the system partition, which other manufacturers have done in the past (Looking at you HTC). Even so, it has been done and s-on/off has been cracked before. Alternatives to locking include e-fuses, like in legacy motorola devices.
Bootloaders on the other hand, we're probably going to have to get some concrete evidence. It is most likely locked in my personal opinion.
This is all just speculation. Hopefully Blackberry can find a good balance.
Click to expand...
Click to collapse
The efuze us still used in many devices and if I know blackberry they will have it check against its servers for security. Once it detects root it will most likely disable the device. Or most of the functions that use BB servers. Remember everything is routed through Blackberrys servers in Canada so if their servers go do so does the device.
zelendel said:
Once it detects root it will most likely disable the device. Or most of the functions that use BB servers.
Click to expand...
Click to collapse
I would be completely fine with them locking out the BB services when root is discovered. But locking down the hardware would be overstepping their bounds. It's our hardware, not theirs. I know that doesn't mean they couldn't still do it, I just think it would be a jerk move.
It would be like if Microsoft bricked xbox machines that have been modded. They don't, they just ban you from XBox Live if they detect it. I think it should be the same approach.
Yes but even MS has locked the bootloader on Many of their 32 bit machines now. Also I have a link that you might want to read where is passed then modding our devices at all will become illegal.
https://www.eff.org/issues/tpp
I've been an iPhone user for years but I've always wanted to move on to Android because of how much more freedom it provides compared to IOS. Jailbreaking was somewhat simple to do but Apple would be quick to patch that out and they are just so restrictive, on top of having weak hardware it was enough for me to want to move on. I've owned my Samsung Galaxy S7 Edge for a week now and I'm still getting used to this new OS and so far I'm finding the edge screen to be annoying because the way I hold the phone my skin would touch the edge and it would just make the side bar continuously pull out. Anyways I'm looking to get the most out of my new phone.
1. Is there any way for me to prevent my phone from auto updating? yesterday it said there was an update available and I didnt want to immediately rush into updating on the chance I would be missing out on rooting my device but then a couple of hours later my phone would light up and it would update all my applications as well as the firmware without my consent. As wonderful as that sounds I would prefer to make that choice myself so I dont accidentally update past a firmware where its possible to root. Even after updating is it possible to rollback at all or no? My device is now on 6.0.1 so I hope I'm not too screwed.
2. I have some preinstalled apps I am positive I will never use in my life such as Uber (I drive my own car) and Facebook (I dont have Facebook and dont plan on it anytime soon). I saw options to disable it but I would prefer if it was outright deleted so is it possible? I would like to save on the space that it takes up no matter how minuscule that may be especially on apps that are just dead weight.
My phone is Samsung Galaxy S7 Edge and my service provider is AT&T.
I'm exactly in the same boat as you, having just moved to Samsung/Android after using iphones since it's first release. It feels so great to have the freedom that comes with the S7 Edge.
I too found the edge screen to be annoying, but as soon as I bought my case ( OtterBox Commuter) that issue you describe quickly dissapeared, I beleive any case will deliver the same result, as you'd been griping the actual case and not the edge screen .
There is a way to disable your play store updates through the play store settings.
As far as firmware updates you can control these in the Settings - About options. However I don't beleive that Android updates are there to plug any capabilities of rooting Android, from my understanding as long as the baseband is unlocked, and that will depend on which version of the Edge you have then it will remain rootable regardless of any software updates pushed. However someone with more android experience is probably best to confirm this.
I'm suprised that your device came pre-installed with Uber and Facebook, I had to install them through play store and likewise am able to uninstall them. There is an app called package disabler in the app store but as the name suggests it only disables them which you say you have the option to anyway. I beleive a root will be able to fix that.
Sent from my SM-G935F using Tapatalk
first time android user
To be very honest i did hands on many android smartphone but my love to windows phone always increase respectively
. Do you really think a hard core windows lover its gonna be easy to sift at android .
On the T-Mobile version you can hit postpone when it pops up and then schedule it.
Thank you ih8un for your response. I guess I'll wait until rooting becomes available in order to delete these preinstalled apps.
Can anyone confirm if firmware updates can patch out rooting? If yes how do I disable or prevent firmware updating? I cant seem to find that option anywhere in the settings.
*You have got snapdragon version which have locked bootloader so unless samsung and at&t push out official update that unlock it, it is unlikely your device will get rooted at least not normal method.
1.It is possible but unlikely that new update can make root impossible(assume that your s7 get bootloader unlocked and root by flashing supersu) but if your device get root in special way by using exploits(like jailbreaking ios) update will patch up exploit and disable rooting.
2.Uninstall preinstall app will recover no space for user since system partition has fixed size and separate from data partition.
(Preinstall apps is in system partition. User apps and data is in data partition)
Also once your device is rooted it will list your software as custom and disable ota update.
Sent from my SM-A9000 using Tapatalk
@RemixDeluxe couple things.
Package DisablerPro even though they don't uninstall the apps such as Uber it does disable and they won't show up in your folder nor update.
To stop automatic app update go to Playstore settings and check the do not auto update box.
As far as firmware update I took the update so no biggie
Since the bootloader on the G935A ATT is locked down tight I seriously doubt there'll be a root exploit but if someone does find one if you root you won't have to worry about auto updates because the device won't be able to take the OTA.
I use a thin Speck case and Case Mate makes a good case as well and they will eliminate the incidental screen touches.
I've had the Galaxy S series of devices since the S2 and I've got to say in my humble opinion of course you won't find a finer device.
Yes I've owned several other android devices as well.
I've bought the international S7 Edge and that device is fully rootable so if you can come up with the money it's an idea to consider.
Even the Tmobile S7 Edge bootloader is locked down now so that's out of the question.
I hope I've answered some of your questions.
Feel free to hit me up if you have more.
"And on that bombshell!"
Sent from my Smokin G935A
NonXtreme said:
*You have got snapdragon version which have locked bootloader so unless samsung and at&t push out official update that unlock it, it is unlikely your device will get rooted at least not normal method.
1.It is possible but unlikely that new update can make root impossible(assume that your s7 get bootloader unlocked and root by flashing supersu) but if your device get root in special way by using exploits(like jailbreaking ios) update will patch up exploit and disable rooting.
2.Uninstall preinstall app will recover no space for user since system partition has fixed size and separate from data partition.
(Preinstall apps is in system partition. User apps and data is in data partition)
Also once your device is rooted it will list your software as custom and disable ota update.
Sent from my SM-A9000 using Tapatalk
Click to expand...
Click to collapse
I'm confused by your post, I thought rooting the phone was the equivalent to jailbreaking on IOS as in it makes the device open source but by no means is it official by the developers of the OS.
So are you saying I can only disable updates once my phone is rooted? I mean how would I stop it in the first place so I can get root to begin with? sounds like a catch 22.
s7freak said:
@RemixDeluxe couple things.
Package DisablerPro even though they don't uninstall the apps such as Uber it does disable and they won't show up in your folder nor update.
To stop automatic app update go to Playstore settings and check the do not auto update box.
As far as firmware update I took the update so no biggie
Since the bootloader on the G935A ATT is locked down tight I seriously doubt there'll be a root exploit but if someone does find one if you root you won't have to worry about auto updates because the device won't be able to take the OTA.
I use a thin Speck case and Case Mate makes a good case as well and they will eliminate the incidental screen touches.
I've had the Galaxy S series of devices since the S2 and I've got to say in my humble opinion of course you won't find a finer device.
Yes I've owned several other android devices as well.
I've bought the international S7 Edge and that device is fully rootable so if you can come up with the money it's an idea to consider.
Even the Tmobile S7 Edge bootloader is locked down now so that's out of the question.
I hope I've answered some of your questions.
Feel free to hit me up if you have more.
"And on that bombshell!"
Sent from my Smokin G935A
Click to expand...
Click to collapse
I dont care about applications updating since that doesnt affect the OS in terms of exploits but for firmware updates I want to be able to not update because I imagine Samsung or AT&T (whoever it concerns) would not want their customers to root their devices and have open souce access they arent suppose to have. Maybe I'm too used to Apple stomping out jailbreak and I should ease up with Android updates, this is all new to me so forgive my lack of understanding.
RemixDeluxe said:
I dont care about applications updating since that doesnt affect the OS in terms of exploits but for firmware updates I want to be able to not update because I imagine Samsung or AT&T (whoever it concerns) would not want their customers to root their devices and have open souce access they arent suppose to have. Maybe I'm too used to Apple stomping out jailbreak and I should ease up with Android updates, this is all new to me so forgive my lack of understanding.
Click to expand...
Click to collapse
Honestly I doubt very seriously if there will be root for the ATT, Verizon, TMO s7 edge. Just like the s6 edge or Note5. There was root for a very short period for the s6 edge but the exploit was patched very quickly. It seems devs aren't even trying to find root for ATT devices since the bootloaders are so tightly locked.
As far as updates to the OS since root isn't available there's no worry about exploits being patched.
It sucks tremendously but the major carriers are more concerned with security than anything else.
Tomorrow my ATT s7 edge is going back to the corporate store and from now on I'll be buying the international versions outright.
I've been lucky since I've had a couple other devices that I was able to sell on Swappa to offset the cost.
"And on that bombshell!"
Sent from my Smokin G935A
I really wanted to root my device, its half the fun of owning a new device and this really bums me out I may possible never get to experience that.
So am I completely screwed out of rooting or do you think there will be some workarounds in the foreseeable future?
Thanks for keeping me informed.
RemixDeluxe said:
I really wanted to root my device, its half the fun of owning a new device and this really bums me out I may possible never get to experience that.
So am I completely screwed out of rooting or do you think there will be some workarounds in the foreseeable future?
Thanks for keeping me informed.
Click to expand...
Click to collapse
Never underestimate the xda community even if it looks grim now I'm keeping a positive outlook that us variants will eventually have root. But maybe that's just wishful thinking. But there are plenty of modifications and customization options available to us without the need of root.
I have a couple of requests in regards to some applications if anyone would be generous enough to suggest anything.
1. Are there any applications to get free inapp purchases without root?
2. Anyway to stop ads in apps or while viewing youtube videos? I've tried a few adblockers but they dont seem to do much if anything at all.
3. I used this app on my iPhone called Mewseek which allowed you to download music on the fly and listen to it instantly. Is there any equivalent of that on Android?
Hi,
I am currently testing a few dual-sim phones for use by a few people within my company. We purchased one Note 9, a few S9s and a OnePlun 6T (it's like Christmas early at my work).
First discovery was that "new, factory unlocked dual-sim" on Amazon doesn't always mean that. Since dual/sim phones aren't sold directly by Samsung, we had to buy them on Amazon and at the very least, one of the S9s was not new. It had a specific knox setting for a bank in south america so that did not come from the factory. So not having a trusted source for dual-sim Samsung is not something I like.
I then purchased a 6T directly from OnePlus and this one is clearly straight from the manufacturer. I'm happy with that and with the fast updates, but now that two phone manufacturers are making the news for security reasons, it doesn't make me confident that OnePlus doesn't gather data without users knowing. Huawei and ZTE are being boycotted left and right for security purposes, companies are shifting towards what I think in an illusion of safety by focusing on products made in the US (doesn't mean chips aren't made in China).
So for my own curiosity, are there people out there concerned by the fact that OnePlus phones are made in China and that as of right now, two electronics manufacturers are involved in security concerns?
Everyone is spying on everyone : Rule #1 , destroy one country's economy by hitting it's strongest companies : Rule # 2
Now all depends what kind of security you are looking for. Samsung has made an "enterprise edition" of the Note9. with
Huawei has very slow updates and being in the US (i guess you are based there) forget about it. This for obvious guarantees, etc...
OnePlus is a great company, it had it's issues in the press oneplus-phones-collecting-sensitive-data But i think this was dealt with.
now depends in what business you are in, and how sensitive your information is.
I hate to say this, but Apple does offer good security (apparently) and now you can order dual SIM cards, or even use e-sim + nano SIM.
Now if someone REALLY wants to know things about you, they will find out. Thus the famous "I gOt nOtHinG tO HiDe".
Everyone is logging data they shouldn't and without consent I'm sure OnePlus is still doing it even if you select disagree, Google is the worst offender all of their services log everything best way to avoid is to run AOSP and FOSS apps avoid stock roms and Google services if you value privacy.
Nic2112 said:
Hi,
I am currently testing a few dual-sim phones for use by a few people within my company. We purchased one Note 9, a few S9s and a OnePlun 6T (it's like Christmas early at my work).
First discovery was that "new, factory unlocked dual-sim" on Amazon doesn't always mean that. Since dual/sim phones aren't sold directly by Samsung, we had to buy them on Amazon and at the very least, one of the S9s was not new. It had a specific knox setting for a bank in south america so that did not come from the factory. So not having a trusted source for dual-sim Samsung is not something I like.
I then purchased a 6T directly from OnePlus and this one is clearly straight from the manufacturer. I'm happy with that and with the fast updates, but now that two phone manufacturers are making the news for security reasons, it doesn't make me confident that OnePlus doesn't gather data without users knowing. Huawei and ZTE are being boycotted left and right for security purposes, companies are shifting towards what I think in an illusion of safety by focusing on products made in the US (doesn't mean chips aren't made in China).
So for my own curiosity, are there people out there concerned by the fact that OnePlus phones are made in China and that as of right now, two electronics manufacturers are involved in security concerns?
Click to expand...
Click to collapse
Turn off all feedback to OnePlus and the phone does not make any pings to strange servers.
I have my phone rooted and have installed apps that log access to ip addresses. I haven't see anything strange in a month.
I'm not concerned and turned logging off.
tech_head said:
and have installed apps that log access to ip addresses.
Click to expand...
Click to collapse
I'm listening...
I don't buy any devices that can't run Lineage. You can remove the logging programs entirely if you are worried about them still reporting back to OnePlus after opting out. I removed a long list of things, and my phone still works. The couple Huawei devices I've had, and actually are still in the house, run Lineage, so not really worried about them either.
I only buy devices that can be unlocked, and with the intent of running Lineage on them, so I don't really care what software comes on them. Heck my OP 5T sat new in the box until Lineage was released, I used my Nexus 5X while I waited.
Thanks for your feedback.
There's a huge push towards not using Huawei network equipment or not doing business with people who do so. I'm not worried about someone knowing too much about what I do with my phone because between Facebook and Google, anyone can buy that information. The security I'm more concerned about is information theft, leaking screenshots like OnePlus supposedly did at one point, text files filled with "key words" like another news story mentioned. We are even reconsidering laptops and putting a huge emphasis on computers not made in China. I'm guessing the political situation with the Huawei CEO isn't helping the situation either.
Nic2112 said:
The security I'm more concerned about is information theft, leaking screenshots like OnePlus supposedly did at one point, text files filled with "key words" like another news story mentioned.
Click to expand...
Click to collapse
You have a OnePlus device? Remove the offending programs if you insist on running OxygenOS? You can secure your own device. Don't like Google collecting information, you can go without Google if you really wanted too. I just see this whole thing as a none issue I guess?
Nic2112 said:
We are even reconsidering laptops and putting a huge emphasis on computers not made in China. I'm guessing the political situation with the Huawei CEO isn't helping the situation either.
Click to expand...
Click to collapse
Which leaves you with? What devices aren't made in China or made from components from China? I'm not sure any one device is more secure than another.
Anyone see this story:
Germany Refuses To Ban Huawei, Citing Lack of Real Evidence
This is why open source, and open devices are so important. We need things we can update, and things that can be audited. Some people may argue that makes them vulnerable but I disagree.
OhioYJ said:
Which leaves you with? What devices aren't made in China or made from components from China? I'm not sure any one device is more secure than another.
Click to expand...
Click to collapse
That's also something I brought up, you can say Samsung phones don't say "Made in China" but it's highly likely that some components in there are which would have their own security flaws.
OhioYJ said:
You have a OnePlus device? Remove the offending programs if you insist on running OxygenOS? You can secure your own device. Don't like Google collecting information, you can go without Google if you really wanted too. I just see this whole thing as a none issue I guess?
Which leaves you with? What devices aren't made in China or made from components from China? I'm not sure any one device is more secure than another.
Anyone see this story:
Germany Refuses To Ban Huawei, Citing Lack of Real Evidence
This is why open source, and open devices are so important. We need things we can update, and things that can be audited. Some people may argue that makes them vulnerable but I disagree.
Click to expand...
Click to collapse
This is exactly why I unlock my BL and root my phone.
Once that is done, I own it and can do what I want.