Does anyone know a way to hack around a forced password policy?
(windows mobile 5.0 AKU2 + Exchange 2003 Admins that enable it)
I'm going mad with the short couple minute forced timeout/lock policy I'm forced to live with. Imagine trying to use your pocket pc as a GPS device and the screen locks asking for a password every couple minutes! (totally sucks) :evil:
Here is the closetest thing I've found to it so far. It has to do with Goodlink though but it's a good start. It woudl be helpful if anyone has more info on which reg keys to mess with, and how to keep changes from being overwritten/detected.
:idea:
http://forum.xda-developers.com/viewtopic.php?p=314918#314918
:?: anyone, anyone :?:
I just posted the same question at mobilitytoday for more exposure.
http://mobilitytoday.com/forum/showthread.php?t=12965
found the hack to disable and/or lenghten the duration!
http://mobilitytoday.com/forum/showthread.php?p=68058#post68058
http://mobilitytoday.com/forum/showthread.php?t=12965
"it is very simple registry hack. just go to hklm\security\policies\policies, look for name '00001023', and change the value to 1. This will enable you to select the lock option as well as duration, which were previously greyed out. this change is effective immediately without soft reset. I have done a few activesync without anyproblem, but as usual, disclaimer applies!"
This only works for a limited time. I get a "Security policy enforcement" message once a day that requires me to enter a PIN again.
The reg key gets reset to 0 remotely.
Monitor/Change Util needed or New programing needed
Try to increase the timeout instead of unchecking the "Prompt if device unused for" box (don't disable it all together) You'll find you wont get any error messages or popups about having to enter a pin etc. I set mine to time out at the maximum 24 hours. It still only lasts 24 hours but at least you dont get any messages flying in your face. You'll just notice the device starts locking too soon again once the forced reset happens
The good news about no error message means someone could write an app to monitor this registry key. (and change the value seconds or minutes after it's reset) Anyone up to the programing challange? (or any utiles that do this already out there?)
Until then I'm glad my registry program resco goes right to the same key when I launch it up for re-modification. (only takes me a few seconds)
Mandingo said:
This only works for a limited time. I get a "Security policy enforcement" message once a day that requires me to enter a PIN again.
The reg key gets reset to 0 remotely.
Click to expand...
Click to collapse
Check out the new utility app Zen from mobilitytoday wrote.
http://mobilitytoday.com/forum/showthread.php?t=13030&page=2
It monitors and keeps the registry set to 1 (24/7, light foot print)
bye bye admin policy lock, hello freedom
The "Zenyee.com Stay Unlock" app has worked great for the past few weeks. My device no longer is forced to lock per the policy. I'm 100% happy if anyone else has the same issue.
Anybody have a similar app that works with wm6.1? I have tried Zenyee the changes do not stick. they revert back rather quickly.
Wow....a real blast from the past :-D
Someone posted a similar question a while back......
See this post for the problem - and the solution I posted
Hope it helps you too
Mark.
Related
Got my new XDA2 today and have resolutely set about making it my own. With the various guides on this site and others, I've modified the Config.txt file in my Extended_ROM to remove the O2 Active interface from the machine when I do a hard reset. All looks good.
However, this means that the default O2 settings for SMS, GPRS and so on aren't installed either. There are two solutions:
- Either someone knows how to stop the O2Active interface running while preserving the installation of the O2 network settings at a hard reset, or;
- Someone knows what the settings should be for the O2 service in the UK, and wouldn't mind helping me set my machine up manually.
Thanks in advance to anyone who can help with either of these options!
PS. I got pass-through Internet connection working (when the XDA2 is docked) if the O2 settings weren't configured automatically, but never managed it with the thing O2-branded Another good reason to ditch the O2Active setup!
To stop active loading after powerup of soft reset simply remove its shortcut from the /windows/startup folder.
Perfect! Thanks, stryker. Didn't realise yet how all this works.
I took the opportunity to get rid of the Flashman apps from startup too, since nobody seems to need them, they eat into the precious 31 allowed processes, and I'll be synching all the time anyway. Anyone know of any other StartUp-folder items that can be safely removed? I'll be keeping the IA_Caller_ID for the moment, but what else could be stopped without causing a problem?
Any idea what USSD and stk are?
Cheers,
look in the comments at the bottom of this article.
stk = SIM Application Toolkit
BTIcon = BT icon in the Today screen
USSD.exe = unstructures supplementary service data (whatever that is)
Thanks to you too, tyfy. I've seen that article before in the last few days, but had forgotten it/ lost track of it, so cheers for reminding me.
I need to start building a list of all the tweaks I'm applying every time I do a hard reset. Things like removing these startup items, customising configuration etc. I've got a couple more days before my SIM is activated and I want to get it right before that happens. I need to get onto Handango too, and buy some of these power tools that people are raving about.
Got PocketQuake2 running last night, though It won't be staying - too slow, disk-hungry and difficult to control, but seriously cool!
I remember reading a post from a user about the slight ineffectiveness of IIWPO with regard to resetting the device, and I have also seen that it does not quite function properly, so here's what I propose, and plan to initiate work on, as soon as eMbedded VC++ downloads...
application works on the following security level;
a registry setting is created from the cab file after a hard-reset (so it's assuming that the PDA already has a built-in security code as part of WM) that contains a hash of a 5-digit security code, upon the soft-reset of the device, if another registry key that contains an XOR (XOR codes will be hardcoded) of the correct code is not found, then a window pops up, which will create another registry key, in the event that the user soft-resets the device (resulting in the preset number being sent a text) and the software never bothering the user again (in the hope that the user won't smell a rat, and will instead feel rather big and clever). should they however input a code, and that code is incorrect, a message will also be sent, but the program will once again disappear. and if the correct code is input, the program will apply the appropriate XOR version to the registry.
Hopefully, it will also be possible to a) disable active sync until after the program has either had a success with the code, or failure, and also disable all incoming beams, so that the init of the program cannot be bypassed by remote means.
and if you were wondering, IIWTBTPO = Interesting Interaction With Thieving B'stard Then Previous Owner.
comments? suggestions? need me to simplify the convoluted mess of a process?
Couldn't you just put a file into the extended rom, that would load the revelant settings into the registry that:
1. enabling 'strong alphanumeric password' (with a hardcoded password)
2. check 'prompt if device is unused for 0 mins'
3. load owner information (also hardcoded)
4. display owner information on startup
Effectively, on every hard reset, he won't be able to turn off the password, since he'd need to key in the existing password. Also, once the unit goes into standby, it gets locked and the owner information is displayed.
The only 1 chance to defeat this, would be to hard reset; load a registry editor via SD card, and disable the password from there. Any thief who gets this far, would probably also know how to unlock the extended rom and remove these registry settings from there.
I've changed the splash screen in the extended rom for my hp6365 to display a custom .bmp with my 'owner information' instead of the default startup screen on every soft reset. I think it's resonably annoying enough that he can't sell it except to someone else who'd know the unit was found/stolen.
The changes I'd like to see done to IIWPO include:
a) not using "IIWPO" in the registry (user customisable registry key, as well as executable file name)
b) not storing owner name & number 'in the clear' (a simple XOR to hide it would be just as effective)
c) a hash of the entire owner info page (not just the last name) so unit will resend an SMS if any info changes
d) a new sms is resent after a preset time (eg: every 24/48/120 hours for example), regardless if owner info has changed or not.
I don't believe the source is available (I'd like to poke into it if it was), but if IIWPO would do all of the above, i'd remove my custom splash screen, and not make use of any 'locks' that would prevent the unit from being used; Perhaps just 'preload' some owner infomation on every hard reset; but keeping the unit as 'normal' as possible would perhaps increase the chances of recovery with IIWPO.
or flashing a new ExtROM, or soft-resetting right before it rolls out the ExtROM.
if anyone has any info on the Password capability built into WM, I'd appreciate it
After having my last 2 XDA's stolen (Africa), I put this app straight into my VERY expensive JasJar and I'm DELIGHTED to see it works (incl sending the SMS SO discretely that I thought it MUST have tanked). Ran out and made a donation to xda-developers to IIWPO credit straight away!
I'd love to see a suggestion I saw elsewhere; Regular SMS's with theif's recent calls and sms's. Also, a 'honeypot' approach; put an obvious filename (eg Anti-theft.exe) in the startup directory that does nothing, but if deleted IIWPO reacts, and re-enables "show owner info on startup" key. (all this cos I'm not convinced that thieves know to change the owner info)
Also, if someone could provide some strategies for installing on a JasJar where we do NOT have access to the ROM, that would be great! African thieves are not very smart, but I would like it to survive a hard reset.
perhaps it might be an idea to toy with the possibility of hooking into the password screen, if possible in order to have a 3-strikes system whereby if after 3 incorrect tries, the PDA will send a message, and again, upon hard reset, password info is re-applied
enhancement
the best thing is - upon theft, The JJ will grow 2 legs,
and start running to the last owner address using Built in GPS..
but seriously:
a password screen that will appear every 24H saying:
"The rightfull owner is *Name*.
contact him at *Number* for a finders fee of **GBP".
The message wont contain "Enter Password:" but upon putting correct password (you can also apply an X,Y screen value like 0,0 which is lower left corner) the phone will unlock.
if he tries to H.R the password screen (in the same format) will appear.
+ after 2 wrong passes / no passes - disable all beams & USB.
so there is no away around it. (I think).
comments any 1?
Olipro - not necessary to hook password screen: write your own.
I'll try and write one one day. I've already done a bit of theft protection, to do the following:
-my plugin will detect an unauthorised sim and sms me back with cellid.
-Optionally hard reset and format the sd card by sms to the stolen phone.
-Am looking into how to "brick" the phone instead...
I don't want to encourage him to flash/hard reset, because then I will lose the SMS/cell id tracking function, so my protection system is benign, hidden in the background.
However, this is for the magician, and not for rom installation (although it can be!). But, I think: if a thief is knowledgable enough to know how to hard reset and flash a HTC phone, I think he's a fellow hacker and deserves the phone. I'm insured either way... however, for non-insureds, you get your own back a bit.
V
as soon as I get some free time from essays... I'll get round to this.
if you want to brick the PDA, then I believe that HimaClearJumpCode.exe when run on the PDA should do the job quite effectively
Corporate security requires a pin to be entered after 10 minutes of inactivity, I think this is measured by screentaps as even when GPS is running, the request will kick in.
What I'm after is a program that will simulate a screen tap every 9 minutes or so.
How easy is this to do? and is there a better way to keep the device alive?
Thanks
Howard
Check out SKSchema. I believe it can simulate a screen tap.
Excellent find!! Thanks very much, it does way more than needed, but it's a great solution.
Cheerio
Howard
Instructions?????
I checked out SKSchema to see if this would "fix" this problem. However, there is virtually no documentation (that I could find) for this application. Does anyone know how to operate this program?
What I'd like to do is "simulate a tap" while an application is being run (i.e. TomTom).
Thanks.
Justin
It would be may be good to create a list of known bugs and other problems with the WM6 ROM for Typhoon. Please post here if you know about some bugs or strange behaviour.
I have been using this rom since yesterday and after few restarts, the phone remains stuck for about 3 minutes in the "mobile operator" screen during start up. Eventualy it asks for pin code, but after typing in, the time, operator and appointments information is missing in the home screen. I have flashed WM6 once again, but this phenomenon occurred again after application unlock and installation of basic software (xbar 2.5, pocket controller, Binaries smart explorer, auto keylock, smart time sync) + few restarts. Now I am searching for the reason if this is caused by some registry entry or by an incompatible software installed...At present I removed all the software but problem still present. Ready to make registry clean or hard reset...
lot of software incompability, mostly games,
-bug tcmp looks like the same most games have; there is sound but the screen will freeze in a few seconds (sound continues )
..tried to add T9 language according to instructions described at Ronswens pages for WM5. During writing sms I can choose the new language, but after choosing it only beep occurs when pressing a key. I suppose there should be changed also some another key in registry...do we have some experiences already with the T9 languages on this WM6 rom?
Netopjer said:
I have been using this rom since yesterday and after few restarts, the phone remains stuck for about 3 minutes in the "mobile operator" screen during start up. Eventualy it asks for pin code, but after typing in, the time, operator and appointments information is missing in the home screen. I have flashed WM6 once again, but this phenomenon occurred again after application unlock and installation of basic software (xbar 2.5, pocket controller, Binaries smart explorer, auto keylock, smart time sync) + few restarts. Now I am searching for the reason if this is caused by some registry entry or by an incompatible software installed...At present I removed all the software but problem still present. Ready to make registry clean or hard reset...
Click to expand...
Click to collapse
I have this problem too and I back to wm2k3
r0c0 said:
lot of software incompability, mostly games,
Click to expand...
Click to collapse
I have found the decision:
1)
We open "exe" a file with game in any HEX-editor, we find gx.dll and it is replaced on g0.dll
We clean the signature from a file by means of SignRemv and it is done new by means of Signed tool
To place the changed file back, and a file g0.dll to place in folder Windows
or 2) To replace a file gx.dll in folder Windows, in any a file-manager to put "read only" and restart (there can be problems with other programs)
As example Bustem
PS: forgive for my bad English
Netopjer said:
I have been using this rom since yesterday and after few restarts, the phone remains stuck for about 3 minutes in the "mobile operator" screen during start up. Eventualy it asks for pin code, but after typing in, the time, operator and appointments information is missing in the home screen. I have flashed WM6 once again, but this phenomenon occurred again after application unlock and installation of basic software (xbar 2.5, pocket controller, Binaries smart explorer, auto keylock, smart time sync) + few restarts. Now I am searching for the reason if this is caused by some registry entry or by an incompatible software installed...At present I removed all the software but problem still present. Ready to make registry clean or hard reset...
Click to expand...
Click to collapse
how do you make application unlock on wm6 ?
Java
is there Java support with this WM6 ROM? I can't seem to find it. Very useful for Opera Mini and Gmail standalone app.
sebip said:
how do you make application unlock on wm6 ?
Click to expand...
Click to collapse
Use regeditSTG2.exe to modify the following phone registry keys:
- HKEY_LOCAL_MACHINE\Security\Policies\Policies0001001 = 1 (that will enable the rapi_config, 1 means full access to rapi config, 2 means user controlled access)
HKEY_LOCAL_MACHINE\Security\Policies\Policies0001005 = 40 (that disallows the check for security cirtificate etc)
HKEY_LOCAL_MACHINE\Security\Policies\Policies0001017 = 144
Run SDA_ApplicationUnlock.exe from the PC with the phone connected via ActiveSync. This will unlock the phone.
Disconnect and switch the phone off then back on again.
Hi,
I can't use voice talk (via handset bluetooth) before in wm2k3 and wm5 i have the fonction to add voice command with contact, but now no.
It is normal ?
Thx.
...I also revealed interresting behaviour when you are trying to connect to internet via GPRS. There sometimes occurrs error message that it couldnt be established GPRS connection because of missing GPRS coverage. (the "G" is also missing in homescren icon bar). But I am sure there is no GPRS coverage problem in my location.
So in this case you have to go into the phone settings and choose your network again. Afterwards when you are re-registerd in your network, the symbol G is present in iconbar and you can run the GPRS connection. Sometimes prolongomenous procedure...
I had pretty much the same thing as a few of the others.
Xphone11
WM5 - WM6
It flashed all ok, the phone booted all good and worked fine - but then after around 15 min of running, reciving one call and 3 failed attempts at sycning it died.
Well - actually, I re-booted it for something and it never came right after that.
These are the issues which appeared;
Contacts wouldn't open (yet the proccess was fired),
Calendar threw a 'missing file' error,
Start menu wouldn't work (no response from the button),
GPRS service was dropped ("no service available" - even though there was and the phone could see it if you seeked for it),
Yet the phone recived text messages while in this state and while calling the phone it just wouldn't do anything - yet to the caller it would appear to just ring and ring (not a provided service).
An interesting thing - I found that by making a change to the home screen or theme would allow the start menu too function as it should and the the clock to be displayed on the home screen.
Could be an area worth investigating....
I've had a taste now.... I want WM6!!!
What can I do to help?
...it also would be interresting to know whether there is a possibility to run the USB modem - I couldnt find it in start menu/accesories nor in the windows folder...
How to install for QTEK 8020 (T-Mobile SDA) joystick? please help... fuctional joystick in WM06 (my english low sorry)... right is up, left is down and left not functional and right... ???
///... please delete topic... ///
I am also wondering why nobody who is capable enough tries to make a "joystick-version" of the Typhoon WM6 - that work would be highly appreciated by so many people...
DoctorT said:
I am also wondering why nobody who is capable enough tries to make a "joystick-version" of the Typhoon WM6 - that work would be highly appreciated by so many people...
Click to expand...
Click to collapse
Because WM6 for Typhoon Error on Dumprom.
WM6 looks fantastic, however...
I also have a few disappointments the most important of which are:
- No "Headset" option in the profiles menu!!!
- No STK menu!!!
- Very easily crashing on games and some progs (hope to fix it as stated above)
and the camera is definately worse than in 2003SE
..various language t9 cab files - I tried it and it works fine on WM6
http://melgurth.ovh.org/
do anyone try the standard calculator in wm6 ? It show error in my c500 so I have to use other calculator program
..it looks that my calculator works properly...
Hallo!
I'm working on an application called hTorch and although it is my first vb.net app I was quite successfull so far (at least I hope so ). But one think I'm just not able to achieve: Preventing the device from going into standby/suspend while the app is running.
In C++/C# there semes to be a system call "SystemIdleTimerReset()" but either there is no equivalent for vb.net or I was not able to find it.
Another thought was to modify the according registry key (HKLM\System\CurrentControlSet\Control\Power\Timeouts\BattSuspendTimeout) and to restore the original settings on program exit. This works fine except that WM does not apply the settings change immediately when it's done via registry. Again I did some research and again I only found a solution for C++/C# only. A system call named "NWUS_MAX_IDLE_TIME_CHANGED" tells the OS that the settings have changed and should be reread. I wasn't able to find something similar for vb.net though.
Does anybody know a solution for my needs?
Maybe someone could provide me with some sample code how he achieved this within vb.net?
Maybe some C++/C# programmer has build a library to access the power functions?
I would be really thankful for any help/hint you can give me!
Thanks in advance,
DeepThought
The standby mode is in the registry. Make a timer in VB.net and set it with an interval of about 5000 ms. Then make sure that ever time the timer ticks the standby mode will be disabled in the registry
Thank you for the quick response!
But the change via registry doesn't work. When I change the BattSuspendTimeout to 0 that does change the setting correctly. But they become not active. Only after a soft reset. It seems, that you somehow have to notify windows, that the settings have changed. Otherwise the will not be reread.
Any Idea how to achieve that?
I would also like to know if there is a way to prevent suspend.
I think only the pocket pc winmo versions do a real suspend where wifi and applications stop processing, and the smartphone winmo devices only kind of black the screen.
The only software I know is S2U2 which successfully can prevent "real suspend" and let e.g. my led notification work correctly.
Cause i cannot really use it on ks20 due to compatibilty issues i would be very interested in a reg hack, or (if there really is no reghack, i tried alot) some code snipets with which i could build a little app.
There's a pretty good article on CodeProject covering power.
*digs out link*
Here you go - http://www.codeproject.com/KB/mobile/WiMoPower1.aspx
It covers:
* Displaying the voltage, current, and temperature of your device's battery
* Changing the power state of hardware within the device
* Enumerating the hardware in a Windows Mobile Professional device
* Enumerating the power modes that a Windows Professional device supports
* Preventing a device from sleeping
* Toggling the state of the screen's backlight
* Waking up the machine to perform work without alerting the user or turning on the screen
[solution]
Thanks to AndyZap I can now answer the question myself
It is so simple, that I'm really ashamed now.
The magic word for me was PInvoke. Since I new the function I was searching for was an available win32 systemcall the missing link was how I can make this system call within vb.net.
So the actual solution are just two lines:
Code:
Declare Sub IdleTimerReset Lib "coredll.dll" Alias "SystemIdleTimerReset" ()
where "IdleTimerReset" is the name I've given the Sub. Which than just needs to be called like:
Code:
IdleTimerReset()
NOTE: This just resets the Idle timer once. So if you want to prevent the device from going into standby you have to reset this timer every time before it reaches the threshold. (The windows default setting is 60 seconds AFAIK).
THANK YOU AndyZap for your Help via PMail!
DeepThought
Thank you for your answer Northernmost!
I really love this community!