[Q] Bypassing Exchange ActiveSync Security Policy - Nexus 7 Q&A, Help & Troubleshooting

Any way to bypass Exchange 2010 ActiveSync Security Policy on JRO03D?
I tried this: http://forum.xda-developers.com/showthread.php?t=1117452
It successfully decompiled the email .odex files, patched them, recompiled them, but exchange is still forcing me to:
• Erase all data via factory reset (remote wipe)
• Set password rules for unlock screen
• Monitor screen unlock attempts
• Control the lockscreen policy
• Set lock screen expiration
• Force device encryption
• Disable cameras
No way I'm agreeing to that.

Seems a little strict (camera) but your company sets the policy. At ours, if you need email as a business requirement you accept the policy or don't get access..
Some are issued company phones and don't use there personal devices for that purpose.
If you attempt to circumvent security, you can be fired for breach of policy... most tend to want their jobs...
I have worked in offices where cameras were not allowed. (Motorola) If your phone had one you had to check it at the security gate.
Sent from my Nexus 7

Nevermind, this patch DOES work. You still get the message that you must accept the new security policy, but none of the restrictions are imposed.
PATCH: http://forum.xda-developers.com/showthread.php?t=1117452

m03sizlak said:
Nevermind, this patch DOES work. You still get the message that you must accept the new security policy, but none of the restrictions are imposed.
PATCH: http://forum.xda-developers.com/showthread.php?t=1117452
Click to expand...
Click to collapse
it only work partially
while it skips locks and pin requirements
when a remote wipe is requested the phone still wipes
just tested this morning
need a way to disable remote wipe

Any words on this? it's a big concern in the android world :/

pchtc said:
it only work partially
while it skips locks and pin requirements
when a remote wipe is requested the phone still wipes
just tested this morning
need a way to disable remote wipe
Click to expand...
Click to collapse
Have you checked out Enhanced Email? https://play.google.com/store/apps/details?id=com.qs.enhancedemail&hl=en
Works great for me. I just wish they would update the UI.

painter_ said:
Have you checked out Enhanced Email? https://play.google.com/store/apps/details?id=com.qs.enhancedemail&hl=en
Works great for me. I just wish they would update the UI.
Click to expand...
Click to collapse
That's a cool suggestion, too bad it's not free. Any free alternatives?

pchtc said:
it only work partially
while it skips locks and pin requirements
when a remote wipe is requested the phone still wipes
just tested this morning
need a way to disable remote wipe
Click to expand...
Click to collapse
Are you trying to do something illegal? If you are a employee then IT rules simply state that circumventing the security policies is illegal.
Sent from my SAMSUNG-SGH-I747 using xda premium

metaldood said:
Are you trying to do something illegal? If you are a employee then IT rules simply state that circumventing the security policies is illegal.
Sent from my SAMSUNG-SGH-I747 using xda premium
Click to expand...
Click to collapse
Last I heard corporate IT departments don't get to create laws. Doing this is most assuredly NOT illegal, but it can get you fired or sued for a breach of your employment contract.

stormwyrm said:
Last I heard corporate IT departments don't get to create laws. Doing this is most assuredly NOT illegal, but it can get you fired or sued for a breach of your employment contract.
Click to expand...
Click to collapse
Agreed. Also, it's my choice if I want to get fired or not. We're looking for a way to access our corporate email without fearing our devices being wiped thanks to a wrongly-placed finger.
Sent from my ZTE V970M using xda app-developers app

Bumping because I want a solution or an alternative. I can't believe Android systems presume of their capabilities and such but aren't able to let the user configure a damn policy manually, like. Wtf.

deleted

Active-Sync is an enterprise solution, controlled by... you guessed it, your enterprise/company IT staff and for a reason, that is why it is not configurable. Is your N7 something given to you by your company? if not and you choose to use it to get email from your company Exchange environment then this is all on you. This is also something that Google licenses from MS to provide extended functionality to their users.
Maybe if you push this up your management ladder, you might get your admins to make an exception for you <sarcasm>
---------- Post added at 03:11 PM ---------- Previous post was at 03:09 PM ----------
darkguy2008 said:
Any words on this? it's a big concern in the android world :/
Click to expand...
Click to collapse
This is most certainly not a big concern for the masses...
---------- Post added at 03:15 PM ---------- Previous post was at 03:11 PM ----------
darkguy2008 said:
Agreed. Also, it's my choice if I want to get fired or not. We're looking for a way to access our corporate email without fearing our devices being wiped thanks to a wrongly-placed finger.
Sent from my ZTE V970M using xda app-developers app
Click to expand...
Click to collapse
It would take a lot of effort for that wrongly placed finger to wipe your device, this is not an option that is on the surface of any admin utility. Again if it's a personal device you should assume the liability of using it for company use.

zPacKRat said:
Active-Sync is an enterprise solution, controlled by... you guessed it, your enterprise/company IT staff and for a reason, that is why it is not configurable. Is your N7 something given to you by your company? if not and you choose to use it to get email from your company Exchange environment then this is all on you. This is also something that Google licenses from MS to provide extended functionality to their users.
Maybe if you push this up your management ladder, you might get your admins to make an exception for you <sarcasm>
---------- Post added at 03:11 PM ---------- Previous post was at 03:09 PM ----------
This is most certainly not a big concern for the masses...
---------- Post added at 03:15 PM ---------- Previous post was at 03:11 PM ----------
It would take a lot of effort for that wrongly placed finger to wipe your device, this is not an option that is on the surface of any admin utility. Again if it's a personal device you should assume the liability of using it for company use.
Click to expand...
Click to collapse
I appreciate your correct answers, however I thought the hacker community in general wasn't about doing things as-they-should-be but on the contrary, provide the knowledge/tools without being hold responsible of the given usage (good or bad) of such knowledge or tools?.
Also, not every country has the same culture and thus not the same rules apply for each company, also, not every company has well-prepared personnel in their place, especially when you're the one without a degree solving their stupid network/exchange problems instead of them, so my fear of them doing something stupid to my cellphone thanks to those incorrect permissions and policy enforcements is justified.
Anyways, for those interested, Maildroid (free) has done the job. The app is also good enough to provide a lock (password/pin) before opening itself instead of blocking the damn phone and exposing it to be wiped at any time by some retard, so it's a good choice and I recommend it .

IT "Professionals"?
zPacKRat said:
Active-Sync is an enterprise solution, controlled by... you guessed it, your enterprise/company IT staff
Click to expand...
Click to collapse
Our corporate IT (Giant multi-national corporation) is the same group of idiots that pushed a proxy server out to all of the computers including laptops.
I am in the field, onsite, for 5-6 days week and obviously this didn't work for me or my peers. We use our laptops to connect into PLCs and other devices. We had to hack our laptops to get them functional again, just to do our jobs.
I wouldn't trust those morons with a remote wipe for my phone, no matter how deeply it's buried.
If we could get past the 'whys' and the 'why nots' and get to a solution on this, maybe this thread would useful.

What about something like this? I know it works on gnex, but haven't tried it on the nexus 7.
http://forum.xda-developers.com/showthread.php?t=1749921
Sent from my Galaxy Nexus using xda app-developers app

Twiddler said:
Our corporate IT (Giant multi-national corporation) is the same group of idiots that pushed a proxy server out to all of the computers including laptops.
I am in the field, onsite, for 5-6 days week and obviously this didn't work for me or my peers. We use our laptops to connect into PLCs and other devices. We had to hack our laptops to get them functional again, just to do our jobs.
I wouldn't trust those morons with a remote wipe for my phone, no matter how deeply it's buried.
If we could get past the 'whys' and the 'why nots' and get to a solution on this, maybe this thread would useful.
Click to expand...
Click to collapse
I can't agree with you more. However, as solution (for only email) I found MailDroid on the play store to be quite awesome, no need for stupid IT policies.

Any news about this. It's even worse. I contacted our system administrator and he also allows AllowNonProvisionalDevices. But the google app just tells exchange it's a provisional device and thus requires me to accept something I don't want to accept. It should make itself known as NONProvisionalDevice when you don't agree to the policy...

Company has disabled Activesync
this means that i cannot use any of the native apps or the ones downloadable via Play.
I am looking to be able to use the native app on my SGT 3 as the one provided only works with the SGS4 (touchdownHD) and it is S%^T.
I have tried all manner of different apps to no avail.
the SGT3 should run on similar software yet it doesn't even let me use the corporate provided download. it only works on the SGS4.
And to make matters worse I work for a large IT Multi-National company that probably created this app:crying::crying::crying:

darkguy2008 said:
We're looking for a way to access our corporate email without fearing our devices being wiped thanks to a wrongly-placed finger.
Click to expand...
Click to collapse
This. My company contracted with Total Computer Solutions and they managed to accidentally wipe my phone twice while moving us to a new email server. My company simply requires me to have a phone to that can access email and in exchange, I can expense my phone bill; they don't care about security compliance, TCS just used the default settings for the exchange server.
I hate when technical questions become moral judgment threads. If you don't know how to do this or wish to withhold the information on moral grounds, simply do not post.
---------- Post added at 03:43 PM ---------- Previous post was at 03:21 PM ----------
zPacKRat said:
It would take a lot of effort for that wrongly placed finger to wipe your device, this is not an option that is on the surface of any admin utility. Again if it's a personal device you should assume the liability of using it for company use.
Click to expand...
Click to collapse
From the EAC while viewing a user mailbox's settings, it takes 3 clicks.
View Details
Wipe Device (button appears next to each device in the list of all devices that have ever connected to this mailbox).
Save (both space bar and enter also register as an affirmative on this dialog)
My phone (which is in fact mine wholely and solely) has been wiped twice by accident. Once because a tech was just fooling around looking at what devices we were all using and managed while using keyboard shotcuts. Tabbed his way to the button and hit enter instead of going to the next user. The second time they intended to wipe the device of the person above me alphabetically because they were going to fire her that morning.
---------- Post added at 03:51 PM ---------- Previous post was at 03:43 PM ----------
Twiddler said:
Our corporate IT (Giant multi-national corporation)... We use our laptops to connect into PLCs and other devices...
Click to expand...
Click to collapse
Is your company Austrian?

Related

Android Market not working on my device

Hey guys,
I've had my sgs2 for about a week now, and i have not yet been able to successfully open Android Market.
As soon as i press on the Market icon, a white page opens up that says "loading" and it stays like that for a while, then suddenly my screen goes back to the android home screen.
-Same result using 3G and WiFi
-Google account added to device (contacts synced successfully)
No idea how to solve this.
This is obviously a single case problem, but i would really appreciate any solutions from the bright minds that frequent this forum.
trancer_84 said:
Hey guys,
I've had my sgs2 for about a week now, and i have not yet been able to successfully open Android Market.
As soon as i press on the Market icon, a white page opens up that says "loading" and it stays like that for a while, then suddenly my screen goes back to the android home screen.
-Same result using 3G and WiFi
-Google account added to device (contacts synced successfully)
No idea how to solve this.
This is obviously a single case problem, but i would really appreciate any solutions from the bright minds that frequent this forum.
Click to expand...
Click to collapse
With an issue like that I would just try flashing a new ROM. I take it you are on stock and have already performed a factory reset? Another quick test would be to wipe the application cache from firstly the settings --- application menu and failing that just wiping the phone cache from recovery. If these steps don't work then reflash your ROM. It may also be worth trying another G account as means of ruling out any issues solely with your email address. Only worth doing if the problem persists though.
If you are not wanting to root you can just reflash official firmware but why not check out a custom ROM seeing as your hand is being forced! Head over to the Development Section and check out the guides for flashing with ODIN.
Regards.
Before flashing a new ROM, try the following...
From the home screen, go to menu, settings, applications, manage applications and find the market in the list (look in the "all" tab, not the default "downloaded" tab).
In there, click "clear data" and (if not greyed out) click "clear cache".
Now try running the market app.
If that doesn't work, I'd recommend a hard reset before flashing a different ROM. You shouldn't just assume a software issue needs a new ROM. If everyone else using the same ROM has the same problem then fair enough, but I don't see hoards of xda members complaining about the market not working!
Good luck mate - hope this helps
Thanks for the suggestions mates!
Clearing data/cache did nothing.
Factory reset did nothing but annoy me
I have a pretty big hunch this problem is due to me being currently located in Syria.
(screw you google )
I'm going to flash VillainROM and try the Market Enabler app.
Hopefully that will solve it and give me access to the Market.
Will post an update if things work out, if anyone really cares
Cheers!
I had a problem with my market as well.
Did some of the things suggested above - Cleared data and cache under Manage Apps, etc. Asked a colleague to check on their phone - no problem. Ensured my data connection was working, etc, etc but to no avail. In the end I tried Wifi and it worked straight away. Switched off wifi and tried again - it continued to work
Anyway, I'd say your problem is more political than technical ...
Just wanted to post an update:
Finally got Android Market to work! :-D
I had to bypass google's block on android users from Syria by using Market Enabler to spoof my gsm provider (requires root). And then i had to use a VPN service to mask my ip (subscription required).
Overall im very happy, it just sucks that some people have to go through all this just to experience a standard feature of an android device.
And who says google isnt into politics? ;-) (thanks for the sanctions a$$holes)
Peace!
Sent from my GT-I9100 using XDA App
trancer_84 said:
....
And who says google isnt into politics? ;-) (thanks for the sanctions a$$holes)
Peace!
Click to expand...
Click to collapse
yeah! go jihad on our american sorry [email protected]@es! Peace!
y still stick on official android market??
Sent from my GT-I9100 using XDA Premium App
kreoXDA said:
yeah! go jihad on our american sorry [email protected]@es! Peace!
Click to expand...
Click to collapse
Huh? Care to elaborate?
I was not insulting Americans. I am an American! So whats all this jihad bs you speak off?
I am calling those who impose and support sanctions a$$holes.
I call out imperialistic policies when i see them.
If you care to defend such policies and discuss this issue further, lets take it to a political forum. I will standy by and defend my statement till you are enlightend.
Sent from my GT-I9100 using XDA App
trancer_84 said:
Huh? Care to elaborate?
I was not insulting Americans. I am an American! So whats all this jihad bs you speak off?
I am calling those who impose and support sanctions a$$holes.
I call out imperialistic policies when i see them.
If you care to defend such policies and discuss this issue further, lets take it to a political forum. I will standy by and defend my statement till you are enlightend.
Sent from my GT-I9100 using XDA App
Click to expand...
Click to collapse
Sanctions on Syria are in part imposed by the US, so you called the US a$$holes, thus insulting me, and as an American you billed yourself an a$$hole too I guess.
I replied with "jihad" because I felt like countering a stupid ideologically charged and stereotypical message with another stereotyping message. I thought you would enjoy it.
Please keep this forum free of politics.
kreoXDA said:
Sanctions on Syria are in part imposed by the US, so you called the US a$$holes, thus insulting me, and as an American you billed yourself an a$$hole too I guess.
I replied with "jihad" because I felt like countering a stupid ideologically charged and stereotypical message with another stereotyping message. I thought you would enjoy it.
Please keep this forum free of politics.
Click to expand...
Click to collapse
How was my remark stereotypical? lol. Your remark on the other hand clearly fits the description of stereotypical.
Not all Americans (my self included) support these sanctions.
If you support these sanctions then my previous remark applies to you as well.
If you care to back up your reasons for supporting such policies lets take it to a political forum.
Sent from my GT-I9100 using XDA App
trancer_84 said:
How was my remark stereotypical? lol. Your remark on the other hand clearly fits the description of stereotypical.
Not all Americans (my self included) support these sanctions.
If you support these sanctions then my previous remark applies to you as well.
If you care to back up your reasons for supporting such policies lets take it to a political forum.
Sent from my GT-I9100 using XDA App
Click to expand...
Click to collapse
some guy from Syria comes and calls my country "a$$holes" - believe me I went easy on you with the obviously obnoxious (and thus message-pointing, not actually heartfelt) jihad reference. I do not know and do not care how your use of the word "a$$holes" was justified in reference to my country especially not knowing it was your country too. I also do not care what your political views are, because this is not a political forum. So please stay off politics, please.
kreoXDA said:
some guy from Syria comes and calls my country "a$$holes" - believe me I went easy on you with the obviously obnoxious (and thus message-pointing, not actually heartfelt) jihad reference. I do not know and do not care how your use of the word "a$$holes" was justified in reference to my country especially not knowing it was your country too. I also do not care what your political views are, because this is not a political forum. So please stay off politics, please.
Click to expand...
Click to collapse
Despite my clarification, you still misunderstand.
When did i call 'your' country an a$$hole? Do you know how to differentiate between foreign policies and the rest of America? Your political stances are not shared by all americans. So please dont speak on behalf of all americans.
Your unwillingness to discuss this issue on a political forum in order to defend your position or listen to someone else's point of view reveals your closed minded nature that does not accept criticism or the desire to learn something other than what is engrained in your brainwashed mind.
I might have put a can of worms on the table, but you opened it buddy
Sent from my GT-I9100 using XDA App
Rofl, take it easy boys. Whether sanctions on Syria were imposed by US or not it's not part of this debate. And if these sanctions stop an Android user from accessing the market then you gotta admit it's a bit retarded
guys, come on, GTFO to some political forum and discuss your obviously matching political views there. thank you very much! let this be the last post on the subject.
OP, go on, the thread is yours again.
Sorry to be off-topic, i thought my point is not a political view, but a common sense statement. Accessing google shouldn't be political, if you think otherwise than it's you right to believe so. And that's my last post here as well. Have fun oppressing syrian android users
trancer_84 said:
Just wanted to post an update:
Finally got Android Market to work! :-D
I had to bypass google's block on android users from Syria by using Market Enabler to spoof my gsm provider (requires root). And then i had to use a VPN service to mask my ip (subscription required).
Overall im very happy, it just sucks that some people have to go through all this just to experience a standard feature of an android device.
And who says google isnt into politics? ;-) (thanks for the sanctions a$$holes)
Peace!
Sent from my GT-I9100 using XDA App
Click to expand...
Click to collapse
hi trancer_84
may i ask you which VPN service you used? is it paid public service or something private? i am asking coz i'v tried 2 company's who provide vpn solution till yet and both of them seems to be already blocked !
can you give the name please? i am welling to spend for this
hi mate i live in syria too and i am having a problem with the same things but cant get a vpn working on my phone can you help me or just recommend some kind of vpn or anything that would be nice from you
use pandapow[.com] tested and working in syria 100%
yaskot Bashar
Go into settings you're looking market applications and delete the data cache and restart and open it you should work

Using CM or other ROM without Gapps

So people are at least slightly aware of the news about NSA/PRISM and how Google is taking part in handing over our personal data.
I know it's a small step but I'm thinking of removing Gapps and making my phone slightly less compromised than it is now.
Anyone else done this? I've already been recommended F-Droid as an alternative by someone, it's probably not even 10% as good as the Play store but I'm more concerned with not being snooped on.
Removing GAPPS lol doesn't mean Google can't still put ads on your phone...and like all of us on this forum why would anyone spy on us.. Unless we are in the mob or a criminal...I'm sure Google has no interest in snooping on you man.don't be so paranoid
Sent from my Galaxy Nexus using Tapatalk 2
---------- Post added at 11:14 PM ---------- Previous post was at 11:09 PM ----------
And all these people who think Google is snooping on them look dumb...Google is using your actions..like clicked ads and what you buy... Why would a billion dollar company want to spy on a no name android user
Sent from my Galaxy Nexus using Tapatalk 2
This is a valid question which I'd also like answered. I suspect that running CM or other AOSP ROMs without installing GApps will be sufficient.
Those who do not appreciate this discussion are kindly invited to abstain from commenting.
Im sure even without Gapps there is some low level thing that can collect your data.. Android is maintained by Google..
-Grift- said:
Im sure even without Gapps there is some low level thing that can collect your data.. Android is maintained by Google..
Click to expand...
Click to collapse
When using CyanogenMod there isn't. Only if you install apps that do this.
And seriously, stop with the trolling. You're not helping the discussion and you're getting reported. I'm not "afraid", "butthurt", or "paranoid". Google have openly admitted that they don't care about our privacy.
http://www.theguardian.com/technology/2013/aug/14/google-gmail-users-privacy-email-lawsuit
wrsg said:
When using CyanogenMod there isn't. Only if you install apps that do this.
And seriously, stop with the trolling. You're not helping the discussion and you're getting reported. I'm not "afraid", "butthurt", or "paranoid". Google have openly admitted that they don't care about our privacy.
http://www.theguardian.com/technology/2013/aug/14/google-gmail-users-privacy-email-lawsuit
Click to expand...
Click to collapse
Nono i would just like to hear your view on it, take a look at this quote from Pulser_g2
Another unaddressed concern is why CM would prefer someone else make a privacy fork, rather than care about user privacy within the ROM (beyond the anti-leech properties of privacy guard). Apparently that wasn't within the scope of what they were doing.
Surely CM should be trying to push the envelope, making a fully usable and amazing experience ROM, as Steve said above, without betraying their users to advertisers and tracking networks who profit from selling the user as a product. While privacy guard is a good "half step" (stops apps like faces from harvesting your contacts without permission, for those who use it), it remains a half step, as it's still possible to uniquely identify a user by their device by any app, without any permissions (ahem, CPU serial and device serial number).
Since the user can't easily change these, they can forever be tracked, and have their actions sold on to others, based on these identifiers. Is that OK to do to the user, after telling them they're protected by privacy guard?
Click to expand...
Click to collapse
From here Link
Personally dont think this is "trolling" but if you feel the need to report then please do.
-Grift- said:
Nono i would just like to hear your view on it, take a look at this quote from Pulser_g2
From here Link
Personally dont think this is "trolling" but if you feel the need to report then please do.
Click to expand...
Click to collapse
Sorry, the request to stop the trolling wasn't meant at you. I just didn't think it was worth quoting each of them separately.
Thread closed
This thread leads to non-sense posts or flaming.
You like the Google Apps use them, you don't like them or don't trust them don't use them, this is that simple

To all Indie-developers - Google might require you to publish your real address

If you have a paid-app or an in-app-billing inside your app, you will have to put your real address to be publically shown on the Play Store .
Links about this :
http://www.xda-developers.com/andro...s-will-soon-have-to-provide-physical-address/
http://www.androidauthority.com/google-forcing-developers-to-publish-home-addresses-527772/
http://www.androidpolice.com/2014/0...es-to-have-an-address-on-file-in-google-play/
http://phandroid.com/2014/09/18/google-play-now-requires-devs-to-make-their-home-address-public/
http://www.androidheadlines.com/201...physical-address-file-paid-apps-apps-iap.html
http://androidandme.com/2014/09/new...es-app-developers-to-list-a-physical-address/
http://www.greenbot.com/article/2685242/android-developers-must-now-list-physical-address-in-play-store.html[/url]
http://www.pcworld.com/article/2685...-now-list-physical-address-in-play-store.html
I've also written 2 posts about it here and here.
Please try to make a difference and help fight against this decision.
You can do the next things:
1. Sign a petition, here and here
2. Share, star and comment on the above links, not only those that I've found, but also on other places.
Maybe, together we will show Google that it's a bad decision, and they will give a better alternative.
Signed both. I'm not a developer, but I think it's total crap that they'd force this on people.
Not good game Google. "Don't Be Evil"
Thanks I was hoping someone would start a forum regarding this
Thanks I was hoping someone would start a forum regarding this :
This is an awful direction for Google to take the only people this hurts are the very people that made Android what it is today The " Individual " APP Developers , if it wasn't for the hobbyist and enthusiast , you know The small " Individual " APP Developers early on Android probably wouldn't of made it past Version 1.5 , it was the APPS that these " Individual " APP Developers made that gave people a want to buy an Android device and has lead to Android being the APP ECO System it is today.
Hope Google comes to their senses. . .
I understand why (reduce malicious apps) but it will also pull good indie apps.
Guess donations packs should now be sold on dev's website, without the help of Googke Play Services DRM for piracy checking.
An alternative could be Amazon's app store, but I don't know if they are indie friendly.
Magissia said:
I understand why (reduce apps) but it will also pull good indie apps.
Guess donations packs should now be sold on dev's website, without the help of Googke Play Services DRM for piracy checking.
An alternative could be Amazon's app store, but I don't know if they are indie friendly.
Click to expand...
Click to collapse
This won't have any affect on malicious apps, most malicious apps are free so won't be bound to the mandatory address requirement the ones that are not free will just convert to free.
And users need to take more realisability for the content they load on their device. Really in this day in age I can't believe people still install things with out researching first.
Sent from my XT907 using XDA Free mobile app
Shame on Google.
This actually won't prevent malicious apps to be published on the Play Store, malware are usually free apps.
Instead, this put indie develepers into a risky condition, mad people at the door, harassment, in the best case "just" privacy concerns.
I can't understand this stupid decision by Google, maybe it's because of the new refund policies, refund requests after the canonical 2 hours are hanled by them, in other words they have to put the money. Forcing people to publish free instead of paid apps will make them save some money.. maybe.
However, whatever the reason, it's time they stop to make the developers pay for THEIR mistakes and security holes!
Is there a way to make it a sticky on all of the Android sub-forums, or something?
Time is running short, and I really hope to make a difference here.
I don't care even if you modify my post or make a new one.
Magissia said:
I understand why (reduce malicious apps) but it will also pull good indie apps.
Guess donations packs should now be sold on dev's website, without the help of Googke Play Services DRM for piracy checking.
An alternative could be Amazon's app store, but I don't know if they are indie friendly.
Click to expand...
Click to collapse
Speaking of donations, I've tried to suggest an alternative solution in case it won't work, as a second plan, here
AndroidDeveloperLB said:
Speaking of donations, I've tried to suggest an alternative solution in case it won't work, as a second plan, here
Click to expand...
Click to collapse
hey, is the thing about entering addresses still going on? i havnt gotten a notification on my google developers console to give address
Sahaab said:
hey, is the thing about entering addresses still going on? i havnt gotten a notification on my google developers console to give address
Click to expand...
Click to collapse
Yes, it is.
If you go there, and click on "Announcements" , you will see it.
AndroidDeveloperLB said:
Yes, it is.
If you go there, and click on "Announcements" , you will see it.
Click to expand...
Click to collapse
thanks, found it
really dont want to add an address tho XD
---------- Post added at 09:26 PM ---------- Previous post was at 09:22 PM ----------
AndroidDeveloperLB said:
Yes, it is.
If you go there, and click on "Announcements" , you will see it.
Click to expand...
Click to collapse
lawl i dont know but i am now having trouble finding the place to put my address in XD
Sahaab said:
thanks, found it
really dont want to add an address tho XD
---------- Post added at 09:26 PM ---------- Previous post was at 09:22 PM ----------
lawl i dont know but i am now having trouble finding the place to put my address in XD
Click to expand...
Click to collapse
They specifically say :
"
Add a physical contact address Beginning September 30, 2014, you need to add a physical address to your Settings page. After you've added an address, it will be available on your app's detail page to all users on Google Play. If your physical address changes, make sure to update your information on your Settings page.
If you have paid apps or apps with in-app purchases, it's mandatory to provide a physical address where you can be contacted, as you are the seller of that content, to comply with consumer protection laws. If you don't provide a physical address on your account, it may result in your apps being removed from the Play Store."
This means they want an address to be published for all.
In order to edit this setting, you have to go to "finance" and then to the merchant settings and then edit the address...
AndroidDeveloperLB said:
They specifically say :
"
Add a physical contact address Beginning September 30, 2014, you need to add a physical address to your Settings page. After you've added an address, it will be available on your app's detail page to all users on Google Play. If your physical address changes, make sure to update your information on your Settings page.
If you have paid apps or apps with in-app purchases, it's mandatory to provide a physical address where you can be contacted, as you are the seller of that content, to comply with consumer protection laws. If you don't provide a physical address on your account, it may result in your apps being removed from the Play Store."
This means they want an address to be published for all.
In order to edit this setting, you have to go to "finance" and then to the merchant settings and then edit the address...
Click to expand...
Click to collapse
yes i read the announcement
trying to find the setting to add the address XD
Sahaab said:
yes i read the announcement
trying to find the setting to add the address XD
Click to expand...
Click to collapse
attached a screenshot.
AndroidDeveloperLB said:
attached a screenshot.
Click to expand...
Click to collapse
oh okay, thanks
removed since reading the suggestion.
Don't like the change.
Maybe someone started moving their apps to another stores such as Amazon?
Or even focus on IOS and not to deploy on Android anymore.
Good job Google
Generic Field said:
Don't like the change.
Maybe someone started moving their apps to another stores such as Amazon?
Or even focus on IOS and not to deploy on Android anymore.
Good job Google
Click to expand...
Click to collapse
Good job, you forget IOS yearly fee.
If you can't afford a PO BOX or let's say any forwarding address yearly, can you afford IOS yearly service which is $99 / year ? Let alone you need mac OS to develop your application.
I rather to publish is in Amazon or just use any address which I have access to (maybe it is friend address or whatever) or you can use a "service" which help you to publish your app to market (but they will ask you: source code (as they will compile it by themselves), analyze your source code (make sure your code is safe), and get 20 - 25% from your revenue). If you insist to use a store: publish your application to windows phone (well good luck with visual studio license) store or incoming Tizen. IOS is not good idea if you cannot sell your apps (don't forget yearly $99).
ishengard said:
Good job, you forget IOS yearly fee.
If you can't afford a PO BOX or let's say any forwarding address yearly, can you afford IOS yearly service which is $99 / year ? Let alone you need mac OS to develop your application.
I rather to publish is in Amazon or just use any address which I have access to (maybe it is friend address or whatever) or you can use a "service" which help you to publish your app to market (but they will ask you: source code (as they will compile it by themselves), analyze your source code (make sure your code is safe), and get 20 - 25% from your revenue). If you insist to use a store: publish your application to windows phone (well good luck with visual studio license) store or incoming Tizen. IOS is not good idea if you cannot sell your apps (don't forget yearly $99).
Click to expand...
Click to collapse
Well, this is not the old good war between google fans and apple fans, the point is google is going to screw up everything.
I'm totally against apple and ios but, let's face these things about them:
- they ask you a per-year fee
- they verify your app and make sure it's safe for the users
- earnings on their store is four times than the play store
So, you pay a lot but you have a good change to get the money back and, above all, you're not asked to pay in terms of lack of PRIVACY and SAFETY.
What google is doing is crazy and unacceptable, everyone (not who actually buy on the play store, everyone!) will be allowed to see your personal info and home address and, btw, it's still not clear if a PO box is allowed.
I'm not a google soldier, i like google but i won't defend them when they become so greedy and unfair that even apple appears better.
ishengard said:
Good job, you forget IOS yearly fee.
If you can't afford a PO BOX or let's say any forwarding address yearly, can you afford IOS yearly service which is $99 / year ? Let alone you need mac OS to develop your application.
I rather to publish is in Amazon or just use any address which I have access to (maybe it is friend address or whatever) or you can use a "service" which help you to publish your app to market (but they will ask you: source code (as they will compile it by themselves), analyze your source code (make sure your code is safe), and get 20 - 25% from your revenue). If you insist to use a store: publish your application to windows phone (well good luck with visual studio license) store or incoming Tizen. IOS is not good idea if you cannot sell your apps (don't forget yearly $99).
Click to expand...
Click to collapse
Isn't Apple's share of revenues from the app the same as Google's - 30% ?
Anyway, I got a weird reply today from Google on their Google groups:
https://code.google.com/p/android-developer-preview/issues/detail?id=1340#c22
to comply with consumer protection laws in different jurisdictions, you may be required to provide certain business contact information, including email and/or business address. Please speak with your legal representative on the different types of information that can be used. As an example, for more information on the types of business contact information that can be used, the European Commission has provided official guidance that may be helpful.
ec.europa.euhttp://ec.europa.eu/justice/consumer-marketing/files/crd_guidance_en.pdf
Click to expand...
Click to collapse
Can I understand from it that an email is enough?
Also, how come I can't (as a user) see any app's address on the play store? Not even of Google's ?
Is it possible it's available only in certain countries? Maybe only in the EU ?

Verizon Bootloader Unlock Update

7. Do not sell or trade on the forums.
If you wish to advertise a product, simply contact us. We can provide ads but you are not permitted to just post it in the forums. If you do, it will be removed and you're likely to receive a ban.
The buying, selling, trading and / or exchanging of any item is now prohibited on XDA, in any forum or via Private Messages. We now use www.swappa.com
OP's method costs $30 and requires you to give some guy access to your computer and phone. Probably a scam, don't do it.
>junior member
>Post that's just a title and subject that tells you to pm
>Pm links to third party guy on Facebook asking for $30
????
Refer to similar thread on the Questions and Answers board and you'll see why this is probably not a good idea
The dude didn't ask me for a penny. I haven't tried yet, but asks for a factory wipe, with no sim first, flexihub installed, too
I'm calling BS. Scammmm
aholeinthewor1d said:
I'm calling BS. Scammmm
Click to expand...
Click to collapse
No I'm sure this actually does what it says. The issue is for the uninformed user it has the potential to come with a lot more than just a bootloader unlock since none of us really know the person performing the unlock and they need remote access to ur PC and obv the phone too.
It works. My once locked tighter than fort Knox Verizon pixel is bootloader unlocked, magisk root, viper audio, and elementalx kernel. Happy man here
---------- Post added at 03:37 AM ---------- Previous post was at 03:36 AM ----------
All I needed was flexihub. He sent a PayPal link after, but didn't directly ask for a dime,and I'm broke currently, so I will maybe toss him something when I get money
abranson said:
It works. My once locked tighter than fort Knox Verizon pixel is bootloader unlocked, magisk root, viper audio, and elementalx kernel. Happy man here
---------- Post added at 03:37 AM ---------- Previous post was at 03:36 AM ----------
All I needed was flexihub. He sent a PayPal link after, but didn't directly ask for a dime,and I'm broke currently, so I will maybe toss him something when I get money
Click to expand...
Click to collapse
Any way you can take some screenshots for us skeptics?
Not too sure how to prove it was a Verizon cleaner, get, but I am get pics of the label in a bit, but here is my app drawer with xposed, a few modules I installed, and also magisk
Still shows that, after I unlocked. I'll get a camera, and take pics of the barcode label showing it was a Verizon cleaner, and I'll get a root check screenshot too
Root and cid from cidgetter
Rooted
TheRealFolkBlues said:
OP's method costs $30 and requires you to give some guy access to your computer and phone. Probably a scam, don't do it.
Click to expand...
Click to collapse
Did mine for free. Still donated $10 to him.
Used a VM. Phone already factory reset with nothing on it at all.
Bootloader unlocked with Magisk root up and running.
I don't get it. We've been asking for this exploit for nearly two years, now that it's here we automatically assume it's a scam? I understand we have to be skeptical when it comes to these things, but multiple people across this forum, senior members and juniors alike, have confirmed it working. It's okay if you don't trust the process, you may have sensitive info at stake, but to call it a scam is unbelievable. Screenshots of the FB chat and proof of unlocked BL coming soon.
These are from twrp on my phone,and email for the cleaner pixel from big red. If that isn't proof enough, Idk what is
Still no process for us to use though....too bad. I really like the idea of having control over my own phone. Knowing how my phone is directly affected,....what information is being given up.... The only way that I will be directly unlocking is by having a proven process that is followed by myself. Sorry, for me handing over my phone is not an option.
I agree. I was at a library, using a pc there. Haven't had any issues since, so I feel ok with it
abranson said:
I agree. I was at a library, using a pc there. Haven't had any issues since, so I feel ok with it
Click to expand...
Click to collapse
U still offered your imei.... serial.... etc
Not sure if that is given via flexihub or not.
abranson said:
Not sure if that is given via flexihub or not.
Click to expand...
Click to collapse
If your sim was in the phone when he remoted in then ye he could see all of that no doubt
Had me remove sim and factory reset prior to anything. No Wi-Fi connecting til he said go, and sim remained out till after I unlocked bootloader

Advise Best vpn

Hi fellows
I need an advise about vpn provider.
Which is the Best for surf anonymous and no logs ?
Thx
Envoyé de mon oneplus 6T
karmoussa said:
Hi fellows
I need an advise about vpn provider.
Which is the Best for surf anonymous and no logs ?
Thx
Envoyé de mon oneplus 6T
Click to expand...
Click to collapse
You can have a look at here https://www.xda-developers.com/android-vpn/ or here https://www.xda-developers.com/purevpn-discount/ for some recommendations.
But the best VPN is your own where only you are able to give security.
ProtonVPN, ExpressVPN , NordVPN
They're all saying they don't keep a logs
Personally I like NordVPN. It is a paid service but well worth the money. They have a lot of servers around the world, support streaming, have an awesome and responsive ServiceDesk and best of all, a no-log policy. That last part is something that is being overlooked to often and basically means that your VPN isn’t private at all since the logs will tell exactly what, where and how long you did something.
Highly recommended!
Hello,
I'm looking to find myself a VPN.
I've gone through a lot of reviews and I see people are recommending right few vpn that is more privacy oriented.
However, I ended up on this page (https://www.privacytips.co/) where it says that Express, PIA, Nordvpn are better options in terms of privacy. But i am confused which one to choose.
Can someone recommend me a good VPN (free or paid), I just need to strengthen up my online privacy.
Thanks.
Express VPN is the best for me [emoji16][emoji106]
Sent from my MRD-LX2 using Tapatalk
---------- Post added at 03:08 PM ---------- Previous post was at 03:06 PM ----------
karmoussa said:
Hi fellows
I need an advise about vpn provider.
Which is the Best for surf anonymous and no logs ?
Thx
Envoyé de mon oneplus 6T
Click to expand...
Click to collapse
Express VPN is the best [emoji16][emoji106]
Sent from my MRD-LX2 using Tapatalk
pavelkin said:
ProtonVPN, ExpressVPN , NordVPN
They're all saying they don't keep a logs
Click to expand...
Click to collapse
are theres any free?
gwgantengloh said:
are theres any free?
Click to expand...
Click to collapse
all are paid. Never use free vpn btw. They store logs and not secure.
+1 on NordVPN.
Get if when it is on sale tho.
+1 on Express VPN.. Ive used quite a few different ones and express seems to be the best so far.
Also a fan of Express VPN...
Super Vpn is best
HotVPN is the best for me. Quick ip change and no logs
Oh my, where do I start to answer the OP's question?
While nothing anyone said is wrong above, everything they said was wrong in some way.
Even the OP's original question is wrong in some ways. Sigh.
Where do I start?
Let's start with the OP's original question...
"Which is the Best [free][VPN] for anonymity and no logs?"
That's like asking which is the best religion, or which is the best town to live in, or which is the best tree to plant on your lawn. The only best VPN is the best one FOR YOU (where there are scores of critical criteria to choose from).
It's kind of like asking which is the best spouse. There isn't any one best spouse. But many will do just fine. That's what VPN is like.
But no spouse is perfect. They REMEMBER stuff you did. Maybe they "say" they won't remember all the bad things you did, but they "can" remember them - and that's the point. There are no VPNs that don't keep logs of some sort or other. They just do not exist. They may "say" they don't keep logs, and maybe they even wipe them out frequently, but if a subpoena tells them to keep logs, they'll keep logs.
About the only way to avoid the suphoena is to find a VPN that is offshore for your country, and that doesn't have an agreement with the country you live in. Fat chance you'll find that - but you might.
But if someone is gonna ask 'what's the best VPN?" that's not the type of person who will do that much work to find the best VPN they can find for themselves.
Anyway, moving forward, the anonymity part is really kind of simple since even a web proxy will give you some level of anonymity, as would a TOR connection if you're doing 'web surfing'. Of course, that's just IP address anonymity - where the proxy keeps records - and where your browser fingerprint and other web activity is gonna curtail that anonymity real fast.
But for most things (e.g., torrenting), you need a bona-fide VPN and not just a web proxy (like Opera, or Epic).
As always, the answer to the "what's the best VPN" question is sort of like the "what's the best motor oil" question on car forums - where it's always asked - and the answer is always the same - and that means the answer depends on whom you're hiding from, where let's assume, for our sanity, that you are not hiding from a TLA since anyone asking that question isn't gonna be able to do that.
Take the motor oil example, where there isn't a car forum on this planet that doesn't have a huge set of threads on what's the best motor oil.
Some people will swear on Mobil 1
Others will vehemently proclaim Castrol is the best
Still others say just get any motor oil that meets the minimum spec
Same thing with VPNs.
Me? I'm in that third category above.
Get any motor oil that meets the minimum spec; and,
Get any VPN that meets the minimum spec.
As for the free part of the spec, there are plenty of free VPNs out there, but each one takes its pound of flesh. Three that come to mind offhand are
freeopenvpn
vanwa
vpngate
Note: Many people "think" you have to pay a lot of money to get a good oil, but every person who ever said that doesn't know anything about motor oil. Every time. It never fails.
It's the same with VPN.
People who think "you get what you pay for" are always stupid people because it's just not true. You get what you get. It doesn't matter how much or how little you pay for it.
What you pay is a function of the supply and demand curve, and a LOT of that curve is due to MARKETING and not to the specification of the product. But let's not go there 'cuz I could wax philosophically on you for days on that one topic alone (where MARKETING === PROPAGANDA).
Suffice to say if anyone ever tells you that you get what you pay for in a VPN, run from them as fast as you can as they don't know a darn thing about anything - because that statement - in and of itself - is never true. It's always wrong.
Now, I'm NOT saying that you can pay for a damn good VPN, but what makes the VPN damn good is the adherence to the spec - not how much you paid for it. Anyway, I'm sure I'll get flack for that...
But what matters is the spec.
For example, the protocol.
What protocol is "the best"?
Hell if I know.
For this post I'll assume the openvpn protocol, but of course, others exist.
The point about the free openvpn VPNs is that if all you want is anonymity, and if you're not hiding from a TLA, and if you can handle the inconvenience, those free VPNs work fine (despite everyone claiming otherwise without any evidence).
I'm not saying they're the best - I'm just saying they're free and they work and that anyone can at least get up to speed on using VPN if they use any of those.
All you need are two things:
a. The openvpn client
b. Any openvpn configuration file (which those three sites give you)
Of course, you can pay for a VPN too, and then the onus is on you to figure out the gotchas such as bandwidth caps, speed limitations, location of servers, etc., which, like choosing the best spouse, could take the rest of your life to figure out for sure - and even then - one mistake and you're dead (if you're hiding from a TLA for example).
Oh well, that's where I started. Sorry to bore you.
Overall, my advice is simple.
1. There is no 'best' free VPN nor a best 'payware' vpn
2. You could spend the rest of your life finding one
3. And even then, you'd be making mistakes
Given that inevitability, my advice for anyone who has never used a VPN is to simply download the openvpn client and download a bunch of the free openvpn configuration files above, and just do it.
What do you have to lose?
just don't break the law and just do normal stuff.
BTW, in the USA, nobody has EVER been successfully prosecuted for torrenting mainstream movies who fought the charges. Nobody.
If you think otherwise, I'd love to know the case since I researched this, and the only thing that came up were the "malibu" cases, which were eventually thrown out of court and the lawyers disbarred (long story but it's unrelated to the point).
The reasons are as complex as copyright law and the mechanism that is how torrents work - but rest assured - almost everyone who torrents mainstream movies without a VPN gets a letter forwarded by their ISP so it's de rigueur to use even a rudimentary VPN if you torrent.
The point is that if you use a VPN, even a free VPN, and if you torrent, then you're "probably" safe with the free VPN (or a payware VPN). If you're watching naughty stuff, you're still probably safe as long as that nasty stuff isn't illegal. I have no idea what happens if it's illegal stuff but I wouldn't recommend you risk that on any VPN where my entire response is assuming you are not breaking the law.
In summary, if you're not breaking the law, and if all you want is a bit of privacy, and maybe torrenting a mainstream movie or two, then a free VPN "should' work just fine for that purpose (as would any of the payware VPNs).
Back to the 'best' question... there is no answer since it would take the rest of your life to find the best VPN and you'd only be able to figure it out by trial and error. Best to just look up any review for any VPN you're interested in.
There. I started answering the question. I hope...

Categories

Resources