Related
Hello, I am a .NET Web Developer that has become enthralled with the android operating system. I had an idea the other night while me and a friend of mine were discussing his adulterous spouse.
The app would activate the mic and begin streaming audio to a remote server (she's not tech savvy, so as long as it's not obvious she won't notice). He could listen to what was happening in real time, with a slight time lag, and activate/deactivate from the same remote server by having the app check a variable on the remote server that he could change for whether or not it's recording at given point in time.
Would this require root? Is it even possible? I don't see why not.
jancarius said:
Would this require root? Is it even possible? I don't see why not.
Click to expand...
Click to collapse
Once a service is running in the background, it can check whatever internet site it wants whenever it wants. No need for rooting the phone. You just need to install the app.
And you might as well suck up GPS data while you're at it... though some folks (Evo!) disable GPS to prolong their battery life. There's always "course location" information available.
As long as we're being horrifically intrusive, you might as well log incoming and outgoing phone calls, and make recordings of selected numbers. Heck you could record the first 10 seconds or so of all calls, and the full conversation of specific numbers you flag.
:/
Then all you need to do is install this beast... and give it some innocuous/useful name so if she ever checks the service list she won't kill it.
PS: Services don't show up on the app list.
PPS: I'm starting to feel dirty just typing this stuff. This sort of app would be so easy to abuse. Law enforcement wet dream. Stalker wet dream too. Yow!
Of course lets not forget text and mms forwarding or intercepting. Some similar products out the allow remote control over the phone such as turning on the gps, bluetooth, speaker, and camera. Even if the program did show up in a process or service list on the phone - given the proper name no one would end it in fear the it's an important system process or something similar. (Well that excludes us on XDA )
Oh my, this is nasty... Might you ever release it.. Let me know.
Sent from my Legend using XDA App
yrref said:
Oh my, this is nasty... Might you ever release it.. Let me know.
Sent from my Legend using XDA App
Click to expand...
Click to collapse
Hahaha. Sounds like yrref is up to something devious.
There are already several similar spy apps out there... there's a thread in the evo forum about some guy that can't get one off his phone, psycho girlfriend issues.
Not. Cool.
I put my first app on the market. For some reason, Google Market doesn't let you download your own app. wth?
I'm asking that someone download it (or try to) to make sure it works. There were a few steps to do to get the app ready for the market and I want to make sure I didn't mess anything up (and that people can dl it!)
It's called "Prefix Code Finder" and has a blue telephone icon and the author is "smartapps".
It's listed at $1.00...all I ask is you to dl it for 5 minutes, test it and then you can return it.
And another weird thing happened after I published it; I can no longer get it on my phone. I load it, it says "Success" and I can see it in Manage Applications, but the icon to run is not to be found!! I turned debugging back on, tried to load it by running it from Eclipse and installing with adb. I tired both apk's; the publishable version and the one that I changed the debug to TRUE. WEIRD.
Please don't consider this spam and I really didn't want to post this, but I have no way to check to see if this is working.
Thanks
You are allowed to download your own app, trust me on that one, ive done it many times
Hmmm...I'll try again, but..getting a "Server error has occurred" still
Well, I can't wait. Only thing I can think of was that I imported this project vs. "making it from scratch". I'm just going to make a new app and copy all the files in...something got out of synch somehow...
Well, I redid the ENTIRE project from scratch, exported my apk and installed to market.
I still get a SERVER ERROR...can anyone please try to download this.....just see if you can pull it down, do a search or two and return it.
It's now called "Prefix Finder" has a red phone icon and the author is still "smartapps"
I just really need to narrow down if I'm doing something wrong with the app preparation or if it's Google Market.
Thank you so much
Only thing I can think of is that I don't have my bank account info in there yet; maybe that's causing the error...i just need another "body" to test it LOL
Rootstonian said:
Well, I redid the ENTIRE project from scratch, exported my apk and installed to market.
I still get a SERVER ERROR...can anyone please try to download this.....just see if you can pull it down, do a search or two and return it.
It's now called "Prefix Finder" has a red phone icon and the author is still "smartapps"
I just really need to narrow down if I'm doing something wrong with the app preparation or if it's Google Market.
Thank you so much
Only thing I can think of is that I don't have my bank account info in there yet; maybe that's causing the error...i just need another "body" to test it LOL
Click to expand...
Click to collapse
It is moist likely your app there has been a lot of people getting this server error
Edit: I just downloaded app works perfect
Sent from my unrEVOked using xda app
THANK YOU SO MUCH! I'll make sure you get a free copy if you want it LOL
What sucks to me is making those images of the app; I'm a programmer, not a graphics artist. And since my data is on a hosted server, I can't get a picture of the output from the emulator. I would have to "hard code" some data in and then do the screen capture.
Oh well, off to get my next app up...similar to this one, but it's a Zip Code Finder.
Then I've got to figure out what to code next...
It be pretty cool if you could put looking for the area codes and zoos by city and state
Sent from my unrEVOked using xda app
So, a reverse lookup? I have considered that.
I'll have to look at the data first. Major cities could have a lot of area codes and prefixes. Not worried about the speed pulling from the hosted database, it's pretty fast; I'm just worried about a crapload of data to scroll through
But hey, thanks, I will probably do it as version 1.1 if I'm not getting 100 areacodes and prefixes for one city.
Yeah, not going to work. I just queried Columbus, OH and got 427 rows back! That would be a lot of scrolling if I did that many lines. I could send it back as "201, 202, 203, 215, 216, 217....", but that just might look ugly LOL
Yeah way top Mick Lol
Sent from my unrEVOked using xda app
Got the other app published...I still don't know why I can't install either of them...freakn' server error.
Don't know if you've tried this. Guessing you probably have, but I had got that error a few times before and I fixed by doing a reboot of the phone. Just an idea.
Didn't think about that...thanks!
I just ended-up running adb install
Well, I'm up and running and making "some" sales.
Moved on to licensing my apps (new and old). Once I get that ironed-out, I can start back with development, because we ALL know that's where the real fun is. LOL
Sucks being a programmer...no problems writing code, just not creative enough to come up with ideas that aren't out there yet...still in search of that "must have" app that sells 50,000 copies (yeah, I know...good luck ROFL)
Hi,
My phone which was just sat by me doing nothing in particular (just a Facebook notification) and I see an icon I'd not seen before. I tapped on it and I am being prompted to accept a privacy policy for the "Samsung Denial Log Reporting Service"...
Err WTF is this and should I be accepting it. I'm particularly concerned as I'm on MH8 which I'm not keen on, FW status I got back to official, although of course the boot loader is still locked and gives the Knox warranty error messages if I try and downgrade.
Any ideas? A Google and forum search hasn't turned up anything which is odd, can't believe I'm the first to see this.
I'd also like to know the answer as it popped up on mine last week
Sent from my GT-I9505 using xda app-developers app
Samsung Ireland, in their facebook page (https://www.facebook.com/SamsungIreland) has been asked about the "Samsung Denial Log Reporting Service" and them said "This is genuine. It's for Samsung Knox - a new security system we are releasing for S4 and future products. You can find out more here: http://www.samsung.com/global/business/mobile/solution/security/samsung-knox"
I still need to understand what it is.
I'm not sure if I want to accept or decline...
---------- Post added at 08:10 PM ---------- Previous post was at 08:02 PM ----------
after more google search, I found a document
https://cdn.samsungknox.com/system/files/whitepaper/files/Samsung_KNOX_Glossary.pdf
and in this document, at page 7, there is written
Denial Log:
- Captures SE for Android denials in Enforcement mode on the device and uploads
them to a Samsung Server.
- These denial logs are stored on the device at:
/data/misc/audit/audit.log and audit.old).
Naturally I don't want my S4 to upload anything, anywhere.
Some news on this.
Hi.
I've just had the same message. What I found ...
Samsung Ireland Facebook : "Hi Alan, This is genuine. It's for Samsung Knox - a new security system we are releasing for S4 and future products. You can find out more here: (samsung's website) /global/business/mobile/solution/security/samsung-knox 12 September at 11:18
Me
OK. So they are releasing an enterprise level security app. Fine with that. As I my phone isn't a company phone, but a personal one, what benefit will I gain? And, therefore, do I need to install it? If so why? From samsung's website (I can't post URLs yet, so add the domain dot com manually) /global/microsite/galaxys4/lifetask.html#page=knox ... "While S4 includes the features of Samsung KNOX, the solution is activated by the IT administrators of your company. Please also note the service availability may vary by the market your company operates."
So, for a personal user, this is a pointless app. It gets installed, but never activated as I'm not using a company phone.
The Benefit: you get a secured/locked bootloader for free :thumbup:
Sent from my GT-I9505 using XDA Premium 4 mobile app
silentscreamer said:
The Benefit: you get a secured/locked bootloader for free :thumbup:
Sent from my GT-I9505 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
So should I accept, and if I do what happens?
buttonpusher1 said:
So should I accept, and if I do what happens?
Click to expand...
Click to collapse
You get a locked boot loader.
dratsablive said:
You get a locked boot loader.
Click to expand...
Click to collapse
OK What are the consequences if I don't accept?
buttonpusher1 said:
OK What are the consequences if I don't accept?
Click to expand...
Click to collapse
I wonder the thing, what if we refuse to send them these logs?
The same thing has happened to me a few times now on my S4. I've just ticked the 'Do not show for 90 days' button then selected cancel.
DanCR said:
The same thing has happened to me a few times now on my S4. I've just ticked the 'Do not show for 90 days' button then selected cancel.
Click to expand...
Click to collapse
I am pretty sure I am not able to root my At&t GN3 MJ5 because KNOX is force closing the app which Kingo uploads to root.
Whenever I try ot use Kingo, I cause the "prevention information" error which tells me "an app has been force closed due to an attempt at accessing system on your device".
I have done it so many times that now after a reboot, I see the "denial log" service asking for permission to upload the denial logs.
based on info in this thread, its clear that samsung wants to know what app it is force closing (what app is trying to get root access) so that they can design future security updates to prevent us from rooting.
Really ****ty if you ask me. DO NOT allow the denial logs! **** you samsung .. I thought you were a good company but now you are just making things difficult for us. You sold me a car with a hood welded shut. (Samsung chat admits there is no way to disable KNOX security on GN3).
I wont be a samsung customer for long..
---------- Post added at 05:04 PM ---------- Previous post was at 04:15 PM ----------
Update to my last post,
I spoke with Samsung again. This time I said I'm a dev and I understand root would void my warranty but I need to do it. First they tried to help me Force close the KNOX related apps, which I did (Klingo still didnt work and the same "prevention information" notice appears each time I try), then they gave me the number to KNOX so I can ask them.
I encourage everyone to call and voice your opinion that you don't like KNOX force closing apps that it deems are a security risk, without letting us disable that "Safety" feature. Its really not for safety after all, its to make modifying our own phones more difficult.
B S!
Heres the #:
(Samsung chat)
Valerina: You contact Knox support team at 1-888-525-5442 Monday - Friday 8:00am - 8:00pm CST.
Click to expand...
Click to collapse
This is a thread to develop the domestic unlock for the sprint variant of the S5. As this thread is a work in progress, please keep all post to development only. If you need help seeking information for the uicc international unlock, please search xda because this is not a thread for that which has already been accomplished. Feel free to chime in and post any relevant information regarding an unlock method. Methods for previous samsung phones may or may not work. With that said, welcome and happy hunting guys and gals!!!!
Reserved
Reserved for devs
Reserved for dev 2
About20ninj45 said:
This is a thread to develop the domestic unlock for the sprint variant of the S5. As this thread is a work in progress, so please keep all post to development only. If you need help seeking information for the uicc international unlock, please search xda because this is not a thread for that which has already been accomplished. Feel free to chime in and post any relevant information regarding an unlock method. Methods for pprevioussamsung phones may or may not work. With that said, welcome and happy hunting guys and gals!!!!
Click to expand...
Click to collapse
Hope to see the colleagues from the international unlock here (especially @Dest! Ahem...I mean @aalyatim). For those wondering where to start we're looking for nv items with the first two characters at 01 or bad param nv items.
Sent from my LGLS990 using XDA Free mobile app
ecs87 said:
Hope to see the colleagues from the international unlock here (especially @Dest! Ahem...I mean @aalyatim). For those wondering where to start we're looking for nv items with the first two characters at 01 or bad param nv items.
Sent from my LGLS990 using XDA Free mobile app
Click to expand...
Click to collapse
Same here and thanks. I browsed the android manifest and found some interesting things. Ther is an ril : RIL_PERM_BLOCKED, MODEM_RFS_ERROR , RIL_PERSO_BLOCKED.
Could yiu tell me if these files exist on your s5? its should be in the PhoneErrService.apk
ecs87 said:
Hope to see the colleagues from the international unlock here (especially @Dest! Ahem...I mean @aalyatim). For those wondering where to start we're looking for nv items with the first two characters at 01 or bad param nv items.
Sent from my LGLS990 using XDA Free mobile app
Click to expand...
Click to collapse
So I explored alot of NV items recently and I want to compare them to an International MODEL . If you are reading this thread or knows anyone that has an international version of the s5 or note 4, could you please send me a NV back up so I can compare those items.
NV
Here
I have sm-900p
ecs87 said:
Hope to see the colleagues from the international unlock here (especially @Dest! Ahem...I mean @aalyatim). For those wondering where to start we're looking for nv items with the first two characters at 01 or bad param nv items.
Sent from my LGLS990 using XDA Free mobile app
Click to expand...
Click to collapse
sprints5 said:
Here
Click to expand...
Click to collapse
You have an international version of an s5 or note 4? I.E. SM-N910 unlocked or SM-G900H ?
About20ninj45 said:
Same here and thanks. I browsed the android manifest and found some interesting things. Ther is an ril : RIL_PERM_BLOCKED, MODEM_RFS_ERROR , RIL_PERSO_BLOCKED.
Could yiu tell me if these files exist on your s5? its should be in the PhoneErrService.apk
Click to expand...
Click to collapse
Yep all of these are in the PhoneErrService.apk on my G900P in the manifest. By any chance have you taken a look at personalization.apk? The name of the app is quite deceiving. It actually refers to "perso" as in "network perso"...as in network lock/unlock lol. There's some VERY interesting stuff in there. I wonder if the domestic GSM lock is a perso lock. I did see in the service menu where it had a lock reason, I think it just said NW. I don't remember seeing that before (being internationally unlocked).
ecs87 said:
Yep all of these are in the PhoneErrService.apk on my G900P in the manifest. By any chance have you taken a look at personalization.apk? The name of the app is quite deceiving. It actually refers to "perso" as in "network perso"...as in network lock/unlock lol. There's some VERY interesting stuff in there. I wonder if the domestic GSM lock is a perso lock. I did see in the service menu where it had a lock reason, I think it just said NW. I don't remember seeing that before (being internationally unlocked).
Click to expand...
Click to collapse
No i didnt notice that but it makes sense. After sifting through hours of NV items, 14000 to be exact, i took a break and decided to look at some more manifest logs. I had an idea that if i compared the manifest from an factory unlocked version as well with its NV items, it would give me a better idea of which ones to tackle. Kinda like which one came first the chicken or the egg, so by comparing those 2, I can narrow it down.
NW in the perso is there by default if you have a US version. I had the same on my note 4 and on my note 3 as well.
SW Configuration xml is also 9f interest. You can see the configuration of virgin mobile boost verizon sprint and all other sprint Mnvo's. Just not tmobile or att
Progress so far.
I decompiled the perso.apk and found that the OEM secret dialer codes are present( I.E 7465625*77*), they are just LOCKED (i.e 0x0) and they are bypassed. The whole app looks at the sim status "req lock status" and if its locked then then it doesnt send the unlock data to the modem.
IF """" mIsLock == 0x1"""" then it throws a sim error *invalid sim* for the sim network lock.
So I'm going to attempt to rewite this code and inject the apk into the phone. IF it works, we will have sim unlock, if not then we will need to do it the long and hard way which will require injecting rils into the xml file. @ecs87
About20ninj45 said:
I decompiled the perso.apk and found that the OEM secret dialer codes are present( I.E 7465625*77*), they are just LOCKED (i.e 0x0) and they are bypassed. The whole app looks at the sim status "req lock status" and if its locked then then it doesnt send the unlock data to the modem.
IF """" mIsLock == 0x1"""" then it throws a sim error *invalid sim* for the sim network lock.
So I'm going to attempt to rewite this code and inject the apk into the phone. IF it works, we will have sim unlock, if not then we will need to do it the long and hard way which will require injecting rils into the xml file. @ecs87
Click to expand...
Click to collapse
putting the apk back to /system won't work. use xposed framework nstead and rewrite the required method
josuelopezv said:
putting the apk back to /system won't work. use xposed framework nstead and rewrite the required method
Click to expand...
Click to collapse
I remembered that, but my run environment is on my desktop, so im debugging on computer, not the phone. Did you happen to poke your head around in that file? I know java, not smali to much, so i just got done switching it over to a way I can understand lol.
About20ninj45 said:
I remembered that, but my run environment is on my desktop, so im debugging on computer, not the phone. Did you happen to poke your head around in that file? I know java, not smali to much, so i just got done switching it over to a way I can understand lol.
Click to expand...
Click to collapse
No I will try to take a look into it this weekend. There is a program called smali2java it is easier to read java only and then create a method using xposed framework that overrides or receives from the original method. Smali is like assambler it uses more low memory management and stuff. But as far as I know the list of domestic locked providers is stored in a db is best to see if it i sql or in nvram
josuelopezv said:
No I will try to take a look into it this weekend. There is a program called smali2java it is easier to read java only and then create a method using xposed framework that overrides or receives from the original method. Smali is like assambler it uses more low memory management and stuff. But as far as I know the list of domestic locked providers is stored in a db is best to see if it i sql or in nvram
Click to expand...
Click to collapse
Yes but i found a function in there that i just need to hook and the rest will do the job for us. IM using smali2java, thats how i found it. I can send you the commands, we just need a way to hook/invoke it.
About20ninj45 said:
Yes but i found a function in there that i just need to hook and the rest will do the job for us. IM using smali2java, thats how i found it. I can send you the commands, we just need a way to hook/invoke it.
Click to expand...
Click to collapse
sure let me know what function and what commands do we need to pass and i will create the xposed fx module
About20ninj45 said:
Yes but i found a function in there that i just need to hook and the rest will do the job for us. IM using smali2java, thats how i found it. I can send you the commands, we just need a way to hook/invoke it.
Click to expand...
Click to collapse
So I was messing around with many a things today (like smali as you mentioned previously...it's a Damn mess) and decided to toy with the international unlock app. I was able to alter the code to re lock the phone...meaning I was able to alter what raw command to send over RIL. I was also looking at the logs after setting them more verbosely using 9900 (dialer code). It does log the RIL unlock/lock code in the log but it Also briefly explains part of it.
I have probably close to 100 pictures to share worth of logs and decompilations. I've just got to throw them all on my laptop. I've been a bit busy...and lazy.
Also has anyone noticed that the SIM error in the logs is a I/O error? I'm not too experienced on SIM errors but I thought it would've thrown some kind of xxxx lock error, like SP lock or NW lock? Sprint went quite far with this domestic lock. It doesn't make it easier that there isn't a process to chase after like there was for the UICC unlock.
Sent from my LGLS990 using XDA Free mobile app
ecs87 said:
So I was messing around with many a things today (like smali as you mentioned previously...it's a Damn mess) and decided to toy with the international unlock app. I was able to alter the code to re lock the phone...meaning I was able to alter what raw command to send over RIL. I was also looking at the logs after setting them more verbosely using 9900 (dialer code). It does log the RIL unlock/lock code in the log but it Also briefly explains part of it.
I have probably close to 100 pictures to share worth of logs and decompilations. I've just got to throw them all on my laptop. I've been a bit busy...and lazy.
Also has anyone noticed that the SIM error in the logs is a I/O error? I'm not too experienced on SIM errors but I thought it would've thrown some kind of xxxx lock error, like SP lock or NW lock? Sprint went quite far with this domestic lock. It doesn't make it easier that there isn't a process to chase after like there was for the UICC unlock.
Sent from my LGLS990 using XDA Free mobile app
Click to expand...
Click to collapse
josuelopezv said:
sure let me know what function and what commands do we need to pass and i will create the xposed fx module
Click to expand...
Click to collapse
Im just now being around to my messages so I'll send you the command josue. Ecs thanks for that tidbit.send me what you have. And we do have process to chase after. Its all in the perso app. Ill send you and josue a pm detailing it.
Hi everyone, I am trying to use my rooted Nook Simple Touch for the first time since early 2020, and when using the Browser app, I keep getting this warning message
Security Warning
There are problems with the security certificate for this site.
The name of the site does not match the name of the certificate.
Click to expand...
Click to collapse
If I use Opera Mini, this problem doesn't happen. But another app which used to work for me back in early 2020 is now having Network Errors, and I found a comment somewhere in the app's github repo that it downloads data using the main browser. So I suspect that the security warning and and the app's network errors are related?
Does anyone know why this warning is happening or how to fix it? Has something changed with regards to how the NST connects to the internet via the browser since early 2020 which could be causing the issue?
sd156 said:
Hi everyone, I am trying to use my rooted Nook Simple Touch for the first time since early 2020, and when using the Browser app, I keep getting this warning message
If I use Opera Mini, this problem doesn't happen. But another app which used to work for me back in early 2020 is now having Network Errors, and I found a comment somewhere in the app's github repo that it downloads data using the main browser. So I suspect that the security warning and and the app's network errors are related?
Does anyone know why this warning is happening or how to fix it? Has something changed with regards to how the NST connects to the internet via the browser since early 2020 which could be causing the issue?
Click to expand...
Click to collapse
The NST still has a lot of life left in it, but not perhaps as a vehicle for internet browsing. You don't identify the "browser", but about the only two options for the NST at this date that I know of are Opera Mobile (or "Classic"--very similar) and Opera Mini. Of the two, the more practical and satisfying is Opera Mini. This is because the security checks are done by Opera's up-to-date servers before the site content is reformatted and sent off to the browser.
It's not perfect and some sites just won't display or won't display properly, but it's "pretty good" for infrequent and casual browsing.
Opera Mobile has settings for TLS 1.2 but their effect is spotty at best. Security requirements at web sites are a moving target and what worked last month may not work this month. And its rendering of HTML on many sites leaves a great deal to be desired. To be fair, some of the newer "tricks" just won't work with Android 2.1, so it's not all the browsers fault.
An app that uses the browser to download something? Not sure exactly what that means, but if it's using the Android Download Manager then you are probably running into the security issue either because of no TLS 1.2 (B&N only dealt with this issue for their own connection to the device) OR because a certificate in the cacerts.bks file has died since the last time you tried it successfully.
If it's the TLS thing, there's no hope. Like I said, websites and servers tighten rules all the time and there is no way to address that on the NST. If it's an expired certificate, it may be possible to track down which one has died and replace it.
For that, a logcat of a download/login/whatever attempt might be helpful (or not). Or maybe the error message mentions the certificate? If you could reference the github and/or app in question, that might help also.
Edit: See the "Edit" at the bottom this post... I looked into this more myself and found some answers
_____________________________________________________________________________
Hi @nmyshkin, thanks for your detailed reply.
You don't identify the "browser"
Click to expand...
Click to collapse
The "browser" that I'm referring to is literally the app called Browser which I think came pre-installed on the NST. (Its icon is a circle showing North and South America... let me know if you're still not sure what I'm referring to)
An app that uses the browser to download something? Not sure exactly what that means... If you could reference the github and/or app in question, that might help also.
Click to expand...
Click to collapse
The app I'm using is called Ankidroid. Here's a link to the github repo/comment which mentions using the browser to download. I'm using v2.4.4 (last stable release to support android 2.1):
- https://github.com/ankidroid/Anki-Android/issues/3075#issuecomment-125547244
- https://github.com/ankidroid/Anki-Android/tree/v2.4.4
A logcat of a download/login/whatever attempt might be helpful (or not)
Click to expand...
Click to collapse
Here is the logcat (but I removed all lines which don't contain the app name (anki) in them to remove clutter, so if it looks like something's missing let me know and I can give you the full log)
- https://pastebin.com/Du5rcT04
It looks like the following exceptions are being thrown:
- javax.net.ssl.SSLException: Not trusted server certificate
- java.security.cert.CertificateException: java.security.cert.CertPathValidatorException: TrustAnchor for CertPath not found
Does that mean anything to you?
if it's using the Android Download Manager...
Click to expand...
Click to collapse
I tried searching through the code for DownloadManager, and I was able to find one occurrence, but it's in some xml file. Does this seem like it could be relevant?
- https://github.com/ankidroid/Anki-A...iDroid/src/main/res/values/04-network.xml#L71
... because a certificate in the cacerts.bks file has died since the last time you tried it successfully
Click to expand...
Click to collapse
How can I check if a certificate in cacerts.bks has died and fix it if that's the case?
If it's the TLS thing, there's no hope
Click to expand...
Click to collapse
Hopefully not this then :O
_____________________________________________________________________________
Edit:
I looked into that exception a bit more, and
It looks like the following exceptions are being thrown:
- javax.net.ssl.SSLException: Not trusted server certificate
- java.security.cert.CertificateException: java.security.cert.CertPathValidatorException: TrustAnchor for CertPath not found
Click to expand...
Click to collapse
I found an issue in the github repo which references this same exception
- https://github.com/ankidroid/Anki-Android/issues/6317
A comment says that this is the cause
- https://support.sectigo.com/article...ddTrust-External-CA-Root-Expiring-May-30-2020
And another comment says that the connection won't work on older devices which don't support TLS1.2
- https://github.com/ankidroid/Anki-Android/issues/6317#issuecomment-650341494
There's a workaround mentioned in the comment (installing a sync server) so I'll try that then. Thanks for responding in this thread and helping me identify this issue
sd156 said:
The "browser" that I'm referring to is literally the app called Browser which I think came pre-installed on the NST. (Its icon is a circle showing North and South America... let me know if you're still not sure what I'm referring to)
Click to expand...
Click to collapse
I'm surprised that it worked back in 2020! That old browser is past its expiration date--and then some. I don't even have it on my devices any more.
sd156 said:
The app I'm using is called Ankidroid. Here's a link to the github repo/comment which mentions using the browser to download. I'm using v2.4.4 (last stable release to support android 2.1):
- https://github.com/ankidroid/Anki-Android/issues/3075#issuecomment-125547244
- https://github.com/ankidroid/Anki-Android/tree/v2.4.4
Click to expand...
Click to collapse
Ah. I helped someone with Ankidroid in the past although I can't find the post now.
sd156 said:
Here is the logcat (but I removed all lines which don't contain the app name (anki) in them to remove clutter, so if it looks like something's missing let me know and I can give you the full log)
- https://pastebin.com/Du5rcT04
It looks like the following exceptions are being thrown:
- javax.net.ssl.SSLException: Not trusted server certificate
- java.security.cert.CertificateException: java.security.cert.CertPathValidatorException: TrustAnchor for CertPath not found
Does that mean anything to you?
Click to expand...
Click to collapse
Yes and no. It's clearly unhappy about the SSL but the certificate that appears to be mentioned is not the one used at anikiweb.net.
sd156 said:
How can I check if a certificate in cacerts.bks has died and fix it if that's the case?
Click to expand...
Click to collapse
I went to ankiweb.net on my PC and looked at the certificates they use. One seems to be USERTrust RSA. This is in the most up-to-date cacerts.bks for the device. Did you ever update your cacerts.bks? There is an updated file at the end of the first post in the referenced thread. You don't need to look at all the other stuff (unless you want to). In any caase, this seems to make no difference since mine is updated.
There is a second certificate from Sectigo but I can't seem to extract that from Firefox the way I do others. That's the certificate the old Browser complains about and that certificate is NOT in the cacerts.bks file.
sd156 said:
There's a workaround mentioned in the comment (installing a sync server) so I'll try that then. Thanks for responding in this thread and helping me identify this issue
Click to expand...
Click to collapse
Yeah, I took a brief look at that. Looks a bit intimidating, but perhaps not if you're motivated to get it working.
I installed 2.4.4 just to see what we were talking about. Since Opera Mini is my browser, that's what opened. It looks promising, but like many sites with non-static content, it does not display completely. You go to a topic and all you get is a search bar, not a listing of what exists (like you see on the PC). Opera Mobile simply fails to establish a connection. Not surprising.
Finally I replaced the old Browser app in /system/app and tried that out . You can get past the certificate errors by just saying to "continue" but the eventual display is just like in Opera Mini. Only a search bar appears if you select a category like "Chemistry", no listing of existing shared decks.