Test - Android Software Development

This is a test

Untouchab1e said:
YubiNotes is an open source secure notes app for Android that supports using either a password or the YubiKey NEO to encrypt/decrypt notes. Encryption/Decryption is based on a simple lock system that stores and wipes necessary keys for decryption.
YubiNotes is the perfect companion for anyone with a YubiKey NEO or the desire to keep their secrets to themselves.
Notes are encrypted using AES/CBC with PKCS5 Padding.The encryption and decryption process is based on 4 security keys. The first two are generated the first time the app is started and subsequently stored for safe keeping. The second two are the result of the hashed password or Yubikey input string.
As long as the device is locked only the unique device id keys are stored on the device. The other two keys are wiped when the note store is locked. A one-way hash of the password is also stored on the device when password mode is used.
Would love to get some feedback, so feel free to give the app a spin and shout out your thoughts and ideas!
Download: Play Store
Click to expand...
Click to collapse
Wow, no feedback yet for this excellent app!!
So, here's mine - excellent app and the perfect companion to Lastpass, as Yubinotes lets me use the yubikey OTP to safely store secure information as well as long passwords for non-yubikey enabled apps such as Roboform, which I have for now as a backup to Lastpass (just migrated). Exactly what I needed, since the Yubikey does not let me use both OTP and Static passwords in Android (without reconfiguring the key, which is not practical). Well done!

Thanks for the nice feedback! The Yubikey is still a bit of a niche product, but personally, I find Yubinotes a useful companion.

Untouchab1e said:
Thanks for the nice feedback! The Yubikey is still a bit of a niche product, but personally, I find Yubinotes a useful companion.
Click to expand...
Click to collapse
Unt, thanks for fixing the inability to edit a note. I am finding that when I select text, the only thing I can do is paste. No other options, such as copy, select all, etc show up.
Bug?

smalis said:
Unt, thanks for fixing the inability to edit a note. I am finding that when I select text, the only thing I can do is paste. No other options, such as copy, select all, etc show up.
Bug?
Click to expand...
Click to collapse
I really need to sit down and give the whole app an overhaul. But Ill def look into that specific issue asap. Thanks for the heads up.

Untouchab1e said:
I really need to sit down and give the whole app an overhaul. But Ill def look into that specific issue asap. Thanks for the heads up.
Click to expand...
Click to collapse
Much appreciated. The app, barebones as it is, does what it is supposed to do and works quite well for me - except that as I use it to store passwords, I need the ability to copy the password so that I can paste it into a form.
Thanks again!

smalis said:
Much appreciated. The app, barebones as it is, does what it is supposed to do and works quite well for me - except that as I use it to store passwords, I need the ability to copy the password so that I can paste it into a form.
Thanks again!
Click to expand...
Click to collapse
Cool to hear that you find it useful! Im actually attending an advanced Android training this week, so maybe Ill just sit down some day this week and work out some much needed improvements.

Related

is there a quick way to password protect your ppc?

Hello,
Is there a shortcut or a link I can click on the ppc to make to password protect it?
I have it where it will turn on after 90 minutes, but not everytime. and I'd like a way to just click on a link, and the password thing is protected.
Any ideas or suggestions?
if you set it to 0 minutes it will lock when the ppc goes to suspend mode; the downside of course is you have to unlock everytime you power back on.
I'm also interested in something that enables the password screen via software/button. I use the 0 minutes rule but you have to suspend the device which breaks any activesync connection and the whole process starts again when you power on. A simple little app that enables the password screen the same as at power on would be great.
Maybe TranCreative Nice Start would help
you may want to take a look at psshutxp also http://www.freewareppc.com/utilities/psshutxp.shtml
Thanks guys, but neither is what I'm looking for. I don't want a third party security product and I don't want anything that shuts the device down, just a tiny app. that triggers the in-built password screen so I can assign it to a button or icon.
Ah well, have to keep looking.
I use Omega 1-pass, its a great password app (currently the best one for magician I think)
Also, it wont cost you a cent if you search around for the crackz.
mtbsoft said:
I don't want a third party security product ... just a tiny app. that triggers the in-built password screen
Click to expand...
Click to collapse
mtbsoft said:
mtbsoft said:
I don't want a third party security product ... just a tiny app. that triggers the in-built password screen
Click to expand...
Click to collapse
Click to expand...
Click to collapse
I was trying to help others also by the way.. (not just you)
Anyways, the built-in password in PPC is terrible.. buttons are too small and basically its too basic. Why dont you want a third party app? A "tiny app" is a third party app (LOL)
Give 1-Pass ago.. believe me its one of the app that you'll sacrifice some space for it (around 500KB or less I think). Perfect sized buttons, no excess features etc..
If you do try it.. let others know how you get on.
If you afraid/alergic to use 3rd party software just X-backup first your ppc, install the software >> not satisfied >> restore to get the same setting/database
1-PASS IS A WONDER
hi all,
i am using 1-pass and the software is in fact wonderful... lets u assign a hardware button for password access and moreover allows flexibility!
and for the problem with which the topic was started /.... just set the time when u want 1-pass activated when the device is not used and ur work is done!
Nutdhanai said:
Anyways, the built-in password in PPC is terrible.. buttons are too small and basically its too basic. Why dont you want a third party app? A "tiny app" is a third party app
Click to expand...
Click to collapse
nsriza said:
If you afraid/alergic to use 3rd party software
Click to expand...
Click to collapse
I'm not "afraid/alergic" to use third-party products - I have over 90 applications & games installed, ALL legit. by the way, no cracks - I review the stuff as well as use it.
I simply don't want/need anything more than the basic PIN mechanism which the device already provides. Besides which, I wish it to be something my wife (a technophobic!) can use easily, hence the PIN approach.
I've looked at many security packages and either dislike the way they work or find them to be complete overkill. I'm not looking to bullet proof the device just provide simple privacy protection when it's on the desk, hence I just want a basic trigger mechanism for the in-built password screen, nothing more.
BTW I find the 1-pass claim of...
In tests, entering a 4 digit password using the standard password program took 7 seconds.
Click to expand...
Click to collapse
...laughable, what were they using to enter it? A blind gorilla? I have no problem entering the four digit pin in two seconds, including powering the device on with the same hand!
mtbsoft,
try contacting Microsoft, see if they can patch the built-in password protection for you
MTBSOFT seems to be in airs!
the subject sums up all!
Re: MTBSOFT seems to be in airs!
studdocs said:
the subject sums up all!
Click to expand...
Click to collapse
It might... if it made sense!
studdocs said:
try the attachment! .cab file and works like magic!
Click to expand...
Click to collapse
You realise that, by posting bootleg software like this, you are risking the actual owners of this commercial software taking action against the site? You might want to consider removing it for the sake of the other site users.
@mtbsoft back on topic (well hopefully): I was using a set of shortcuts that would automatically send you to the Settings Menu used the Bluetooth one. Anyway when I tapped it, I went straight to the Bluetooth App. Maybe there is one for the Password Application, found it over at brighthand... here is the link for the thread. http://discussion.brighthand.com/showthread.php?s=&threadid=79526
also am not sure but when I used to use OmegaOne's BattpackPro I remember that it had a 'key' icon/link (in Program Bar) maybe this would lock the device as well so? if you have it on your device maybe you can check this feature.
anyway, still thinking of other ways to lock the device without power off (and hopefully additional apps) also...
bnycastro said:
anyway, still thinking of other ways to lock the device without power off (and hopefully additional apps) also...
Click to expand...
Click to collapse
Hi mate,
Thanks for the thread, I'll take a look and see if there's anything there of use to me. I have found a crude sort-of way to give some protection - the screensaver from PHM Tools. When you run it, it simply powers off the screen and doesn't come back on until you press the action button (nav-pad centre), so the device appears to be turned off. If someone then tries to turn it on with the power button it actually turns off and engages the lock!
The disadvantage is that other buttons are actually still enabled and functional when the screen is off so someone could trigger applications or even make a call with two phone button presses, but it's a start. Thanks again for the helpful reply.
mtbsoft said:
bnycastro said:
anyway, still thinking of other ways to lock the device without power off (and hopefully additional apps) also...
Click to expand...
Click to collapse
Hi mate,
Thanks for the thread, I'll take a look and see if there's anything there of use to me. I have found a crude sort-of way to give some protection - the screensaver from PHM Tools. When you run it, it simply powers off the screen and doesn't come back on until you press the action button (nav-pad centre), so the device appears to be turned off. If someone then tries to turn it on with the power button it actually turn off and engages the lock!
The disadvantage is that other buttons are actually still enabled and functional when the screen is off so someone could trigger applications or even make a call with two phone button presses, but it's a start. Thanks again for the helpful reply.
Click to expand...
Click to collapse
I dont understand?? Why would you go through all the trouble when there is a software readily available to do the job that you need?
How little is that tiny app you are looking for?? Why doesn't 1-Pass cut it for you? Please share.. the ppl that are using might want to know if there is a flaw in it or some information that you might know..?
If you dont want 3rd party app then why are you using PHM tools??
i summed up the reason and will provide one more....
mtbsoft works for a company which competes with 1-pass!
HA HA HA ....
Nutdhanai said:
Why doesn't 1-Pass cut it for you? Please share.. the ppl that are using might want to know if there is a flaw in it or some information that you might know..?
<snip>
If you dont want 3rd party app then why are you using PHM tools??
Click to expand...
Click to collapse
Did you actually RTFA or just skim over it? Try again...
mtbsoft said:
I don't want a third party security product
Click to expand...
Click to collapse
...and...
mtbsoft said:
I have over 90 applications & games installed.
Click to expand...
Click to collapse
All of which I use and need (excluding the games), including many of the features of PHM. I don't want and don't need a third party security product. All was looking for was a tiny little exe which wraps up the single API call (probably) to a DLL which triggers the password lock screen - I don't even want it to be memory resident.
mtbsoft said:
I simply don't want/need anything more than the basic PIN mechanism which the device already provides.
Click to expand...
Click to collapse
Memory is a consideration because of the number of applications which have to be installed in Main Memory as opposed to SD. Why should I waste memory for something which is essentially built-in?
mtbsoft said:
I've looked at many security packages and either dislike the way they work or find them to be complete overkill.
Click to expand...
Click to collapse
Take 1-pass - it claims...
Password program you will actually use! - I use the built in!
Fastest ever password entry using innovative hard key password feature - don't need.
Shows essential information - so does the basic "my info" screen
Automatically locks when left unattended - don't want, would find it more annoying
Lock your device on demand - woohoo!
Keylock - just like on your mobile phone - don't need, if the password is engaged!
2 types of password entry - don't want
Use your own picture in the background - don't want
Ideal for corporate deployment - irrelevant for an individual
Supports landscape (320x240) - not on my device since it doesn't
So you see, I'm not knocking the product (even though some of the claims on the website are laughable, misleading or just plain wrong), it simply isn't what I want, it's full of features that I don't want or need and I wouldn't waste USD$20 buying all that for just the one feature I'm interested in. I also dislike the way some of its features require you to buy other products too.
The same applies to most of the products I've looked at - they're all crammed full of stuff that is totally useless to me.

nombCrypt - beta

Hello Everyone,
I just got my 8525 in the mail yesterday and upgraded the boot loader, radio, and WM6. I had a little trouble but in the end, all that I can't get working right is the internet for Cingular. I really appreciate all the hard work everyone puts into this. Here is my thank you, this is my first app so go easy on me.
nomb
nombCrypt
nombCrypt is an encryption program I originally made for the desktop but then decide to port it over. It uses a password you provide and encrypts either a block of text or files using 256bit Rijndael (AES). This level of encryption was given the ok to encrypt Top Secret documents. It can of course decrypt as well. This is for Windows Mobile 6. Please enjoy and every developer of course likes to get back feedback.
Planned/Requested Improvements
Truecrypt like encrypted containers
Implement Encrypted Backups (P)
Get File Encrypt Status Bar Working (P/R) <-- I'm dreading writing the working class :'(
Use Device ID As Salt Option (P)
Randomize Salt More (P)
Add More Encryption Algorithms (P)
Change File Open Dialog To Open Less (R) completed - now initially looks for *.nen (nombCrypt Enc. Files)
Encryption Password Confirmation (R) completed
Clipboard Paste Button (R) completed
Clipboard Clear Button (R) completed
Take Off Start Menu Icon (R) completed
Change Icon (R) completed
Add Exit To The Menu (R) completed
Add Time Out Feature (R) completed - (see page two for details)
Integrate nombCrypt Into WM6 More (P)
I. Encrypt MS Certificate Store (R)
Other Fixes
Improved Text Encryption So The End TextBox Is Opened Less
Added file error checking to the file decryption process
Two screenshots and the cab file are attached.
I hope you guys enjoy...
nomb
Hey! I wanted to do the same thing too! Just that I use my own XOR method (One Time Pad-like) instead. Of all the thing, it works alright, except that I can't get it to do a Copy-Paste. (see here http://forum.xda-developers.com/showthread.php?t=321014)
Also, from what it seems, I would presume that (since you uses AES), the end result would be in 'relatively' binary format (right?), which may not be very program friendly.
I was going to do about the same thing, except that I'll have my end result Base64 encoded, such that I can have them pasted to Notes and have it sycned to outlook. And I have my PC based software to do the job there (if required).
Previously, I used a software called Ccrryyppttoo, which did quite alright, but it seems that my PC is doing some coding, when synced, that makes it goes funny (i.e. cannot be decrypted anymore).
I'll PM you a demo of what I did (in Java web), of which I intended to do it in PPC
With Rijnael the resulting encrypted string/file gets encoded into base64 as well because if it didn't, all the characters wouldn't be represented. You can paste this into notes just fine.
Mine is programmed in c# so there is a clipboard function which works relatively well. If you'd like to help with this your more than welcome to. Or if you want to join your project with mine that would be cool too. I plan to support all major and a lot of minor encryption algorithms that I can find. Plus people were complaining about how the encrypted backup on the ppc should use the device id to encrypt instead of the randomly generated key so I plan to implement that as well.
I'm looking forward to seeing your demo.
nomb
Hmm.. so it is b64 encoded.. niicceee. Hmmm. . I should try out C# soon.
Anyway, there is a suggestion, I'm not sure if you have the library for it. After my symmetric cipher program, I'm in thinking about a asymmetric-public-private key cipher, which people can exchange short messages in secret (e.g. via email, IM, SMS) without the need to exchange the key/password. It is relatively done now, I'll show you the web base version once it is done. It runs on the Java security class, which I'm not sure if C# has those library or not.
The idea is, Alice go to my page, generate a pair of keys. Alice then send Bob her pub key. Bob use pub key, go to my page, encrypt the message. Send it to Alice. Alice decrypt message at my page. No software to install, no secret key exchanged.
Yup c# has the ability to do that built into its cryptography namespace.
That is a cool idea, but instead of having Alice send the key to him. You should just make a db to keep track of the keys and then have him answer a question about Alice or something like that to use the pub key. that way thats even one less step they have to worry about. Or have Alice put in his email address and have your site auto email him the pub key. That would be good too.
But sweet idea, maybe I'll make my program talk to your site.
Have you tried mine yet?
nomb
I dont like the "answer a question" method, as in that case, you might as well use the answer as the password?
Anyway, the emailing the pub key is an idea
I'm not in my own PC yet, can't send it to my phone from this PC. Will try it out later tonight.
hanmin said:
I dont like the "answer a question" method, as in that case, you might as well use the answer as the password?
Click to expand...
Click to collapse
Ya I'm at work and was hungry so I wasn't thinking strait. I don't like that idea either. ^^
I think my next step in mine is to build the background worker class to update the progress bar when you encrypt/decrypt a file.
If you just point your phone to the cab above it will install it for you. You don't need a comp unless u don't have a dataplan.
nomb
I dont have data in my plan.. although O2 gives me 1MB+ a month free.. I'm not using it.
Anyway, I've tested your software, a few comments.
Slightly major problems:
[1] It is not wise to do a 'All folders' and 'All Files' upon browsing (for file to be de/encrypt). People (e.g. me) has gazillion files around and it may take ages to load the list.
[2] You may want to pop up a Window, asking the user to confirm his/her password upon encryption (one of the thing I intended to add on mine )
[3] I'm not able to paste any data onto the 'start text' area. E.g., I have encrypted my stuff, saved it into Notes. Later, I wanted to get it back, I copy the encrypted code from my Notes, and no way of pasting it into the 'Start text'
[4] You already knew this, but, good to have some kind of progress bar to indicate the progress
[5] Hmmm.. on the browsing, there doesn't seems to have a way to find files on my Storage Card's root directory
[6] For security reason, probably it is good for you to add a 'Clear Clipboard' button?
Minor:
[1] I find it annoying that once I had the software installed, it is on my Start menu
[2] You could use a better icon, I just see a black square on my not so bright screen. I can help you on this.
[3] Add an "Exit" on the menus below?
Other possible suggestions:
[1] Have a time out on your software, such that, e.g. if there is no activity on software after a certain amount of time, it will do one/some/all of these (a) close itself (b) clear the password, input, output (c) clear the clipboard
Good suggestions, I'll have those done by tomorrow. I can't play with the storage card aspect yet because I don't have one. :'( Soon though I'm hoping to get a 4gb. And ya, i can't make icons worth any.
Oh, to past it back I always did ctrl+v from the keyboard. But I'll throw a button up there to do that. And I'll make sure to take it off of the start menu.
1 good comment would have been nice. Altho criticism is good.
nomb
Haha.. sorry for the lack of good comments, I was trying to think of something to suggest. But come to think of it my post on top are good comments (e.g. niiiiccceee Base 64 encoded), and the fact that it has the simple string->string encryption.
I did googling a bit, and found these
http://www.entity.cc/ICONS/security-icons.php
http://www.hscripts.com/freeimages/icons/computer/lock-icon.php
http://icons.qarchive.org/
which you may want to use as your icons?
Ya I was just teasing you. The icon I have now I got off of your last link at somepoint I just don't remember when. But I think I will probably use one of the others. But ya, I'll work on those fixes and then attach the updated program. Then once I get those fixes done, I'll work on adding the differnt encryption algorithms and the encrypted backups.
nomb
Did you wrote any backup software before for the PPC? I'm not really sure, but it seems that backup-ing can have a lot of issues. You have the "Copy everything" backup, the PIM only backup, etc. Some backups are ROM-flashing/upgrading friendly, some are not. You can have a backup software all standalone by itself. I would recommend you to have the backup software seperated and have encryption onto it as a plugin. Take a look at PIM-backup, it is very popular here.
Hi,
This is a very interesting thread. Thanks for your efforts so far (is there a donation link anywhere?)
A basic question...I understood that to carry out really secure encryption it would be necessary to write a filter driver that worked within the core ROM Image. Is this not the case?
Can I encrypt the MS certificate store too? The crypto protection on this store could be beefed up...
Once again I am very pleased that this thread has appeared and will be testing your software with interest,
Well done for your work so far,
Sam.
Hey there PianoSam,
First I just want to make it clear I'm not doing this to make money. If anyone donates I want it to be because they like the software. I am at work so PayPal is blocked but I'll put my donation link on the front page later today.
Also, I am going to try and incorporate the encryption as much as possible. If that is a feature you'd like, then after I get all of the previously requested changes done, I'll start on that for you.
And thank you for your kind words.
nomb
***EDITED***
Sorry I didn't answer you question at first.
Question: A basic question...I understood that to carry out really secure encryption it would be necessary to write a filter driver that worked within the core ROM Image. Is this not the case?
Answer: I pondered over this for a little while and I can't think of a reason this would be necessary. However, I've only had my phone for two days. Can you find where you saw that so I can read it as well and maybe gather a little bit on information so I can do some research on the topic? If thats what needs to be done then thats what I'll do but I can't see why. Let me know!
Added another cab with all the fixes I've completed.
nombCrypt-beta.cab <-- On the front page.
I added the donate link.
I added the timeout feature and thought I would make a comment on it.
It is a two minute timeout. Whenever you fucos on a textbox the timer is stopped and when the textbox looses focus, the timer is on. The downside to this is if you were in the middle of typing and set your device down, it wont timeout. I could make it so when you start typing into the textbox it restarts the two minutes and you have two minutes to complete your message but I didn't know if that was a good idea or not.
Also, when you copy, and go to another program to paste it in, you have two minutes before the clipboard is cleared and the program shutdown.
When the encryption program is encrypting something, the timeout is not running. It starts afterwards.
I can tweak this as much as you guys would like, just let me know.
nomb
I've tested your Beta.. niiiiiccceeeeee.. it is gooood. Almost prefect. Few things (OH NO! )
- The "Clear" button doesn't seems to be working. It is suppose to clear the clipboard only? Should you clear off everything as well?
Other requests/suggestion
<rant>
- I'm not sure why I thought I need it.. but it would be good to have a copy function for the "End Text" as well. I thought I may need it one day. Not sure why. It ought to make the screen a bit crowded, I thought.
Anyway, slightly related to the suggestion above, I've just revisited the design I made on my copy-paste-failed PPC attempt, I have this idea which I thought you might want to use it. For my design, I do not have "Start Text" and "End Text", I only have ONE TextField "Message" (and another for the password). The user enter the encrypted/plain text on this "Message". Click on the button "Encrypt" or "Decrypt", the result will then overwrite whatever that is in "Message" TextField.
Example:
(1) "Message"=<plain text>. User key in password, click "Encrypt", "Message"=<encrypted text>.
(2) "Message"=<encrypted text>. User key in password, click "Dencrypt", "Message"=<plain text>.
In such cases, you only need a pair of copy-paste to perform copy-paste on both (in a way) encrypted and plain text.
</rant>
As for the time out issue, I thought the typing-sensitive time out would be a better choice. The moment that you are worried about your data being seen is when you are away from your phone. You can have focus on your TextField but you can be million miles away from your phone. But, you ought to be around to be typing stuff, right?
BTW, I'm also wondering on the working of this time out feature. I thought there ought to be a 'clock' running and when time's up, it will clear the stuff needed to be cleared, right? So, if I were to forget to switch off the application, the timer will not be another running software that drain my battery, right?
Good work.
hanmin said:
- The "Clear" button doesn't seems to be working. It is suppose to clear the clipboard only? Should you clear off everything as well?
Click to expand...
Click to collapse
The "clear" button is in the clipboard row, i think i tagged it on the left, and only clears the clipboard. If you go to menu->reset it will clear everything like your looking for.
hanmin said:
- I'm not sure why I thought I need it.. but it would be good to have a copy function for the "End Text" as well. I thought I may need it one day. Not sure why. It ought to make the screen a bit crowded, I thought.
Click to expand...
Click to collapse
The "Copy" button copies the end text to the clipboard. Not the start text.
hanmin said:
Anyway, slightly related to the suggestion above, I've just revisited the design I made on my copy-paste-failed PPC attempt, I have this idea which I thought you might want to use it. For my design, I do not have "Start Text" and "End Text", I only have ONE TextField "Message" (and another for the password). The user enter the encrypted/plain text on this "Message". Click on the button "Encrypt" or "Decrypt", the result will then overwrite whatever that is in "Message" TextField.
Click to expand...
Click to collapse
I originally had it setup this way, however there was a time when I had wrote a huge paragraph in it and encrypted it, and then found out I had forgot a line. I switched it so this wont happen.
hanmin said:
As for the time out issue, I thought the typing-sensitive time out would be a better choice. The moment that you are worried about your data being seen is when you are away from your phone. You can have focus on your TextField but you can be million miles away from your phone. But, you ought to be around to be typing stuff, right?
Click to expand...
Click to collapse
The timeout I have running in it now, (new version that isn't up yet), is completely off of the user's actions. Whenever you do anything in the program the timer resets. Except for encrypting/decrypting. The timer is off for those functions incase you encrypt a file that takes longer.
hanmin said:
BTW, I'm also wondering on the working of this time out feature. I thought there ought to be a 'clock' running and when time's up, it will clear the stuff needed to be cleared, right? So, if I were to forget to switch off the application, the timer will not be another running software that drain my battery, right?
Click to expand...
Click to collapse
The timeout feature does not clear everything in the program. I have it so it actually completely closes the program. So if you forget to close it and walk away, the program will end so it doesn't drain your battery.
hanmin said:
Good work.
Click to expand...
Click to collapse
Thanks, wait till you see the next version...
nomb
I got the progressbar working for encryption, now for decryption.

Little known feature on Jelly Bean ROMS : Multiuser profiles

Little known feature built into any 4.1.1 codebase and beyond, Multi User Profiles.
Easy to enable on rooted devices:
Open a terminal emulator and type the following:
Code:
su
pm create-user <new-user-name>
(replace <new-user-name> with your desired username)
That's it! Then hold down power button until you see the power menu, there will be an option for the new username you added! This user can have it's own Google account, Apps, etc. Great when a device is used by spouses, kids, friends, etc.
Cheers!
Found an app that manages users without having to use the Terminal. HERE
AWESOME !!! This works great! Thank you!
Do you happen to know how to change the name/label of the "Primary" account? I found the help for "pm" and didn't see anything. Actually, the "create-user" option isn't even listed.
Thanks again!
sttovo said:
AWESOME !!! This works great! Thank you!
Do you happen to know how to change the name/label of the "Primary" account? I found the help for "pm" and didn't see anything. Actually, the "create-user" option isn't even listed.
Thanks again!
Click to expand...
Click to collapse
Found the answer, credit goes to mandian, I'm just referencing another post, so please don't give me any credit for this:
In case someone hasnĀ“t figured out how to rename/change any username, it's pretty easy.
You only have to go to /data/system/users and edit the "userX.xml" file, where X is the user number(0,1,2,...). Then change the name between <name> and </name> to any other you like. For example, from guest to invitado. Save the file and reboot. It work well for me.
P.S: If you don't know which user number has the one you wanna change, check out the userlist.xml file, which has the same path above.
Click to expand...
Click to collapse
For me, it was a little different. My file names were "X.xml", not the "userX.xml" convention.
One other note: Some apps in the new profile do not run. Most do though. Not sure what's causing that.
Already heard of it, but I've never tried.
Next time I flash JB I'm going to test it.
Thanks for the command line.
Tried it last night but was very disappointed.
All profiles I created could see my google account.
This is not what I want.
The reason for having this option is for me to have real separate accounts so the kids are not buying games on my credit card.
So either I have not understood it or the implementation in 4.1.2 is not fully ready for multi user accounts.
I hope in 4.2 it will be better.
sweet thanks ^_^

[Q] About forgot password (strange)

(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot
EX_RIVER said:
(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot
Click to expand...
Click to collapse
If you have TWRP (not sure about Clockworkmod), "Factory Reset" will leave personal files on while clearing settings, custom apps, etc. FORTUNATELY, there is no way to bypass, other than resetting the device, the password for security reasons
dibblebill said:
If you have TWRP (not sure about Clockworkmod), "Factory Reset" will leave personal files on while clearing settings, custom apps, etc. FORTUNATELY, there is no way to bypass, other than resetting the device, the password for security reasons
Click to expand...
Click to collapse
Pretty sure that's not true, strictly speaking. Unless OP is talking about encryption, flashing a new ROM over top will preserve most user data saved on /sdcard (much to my annoyance).
Rirere said:
Pretty sure that's not true, strictly speaking. Unless OP is talking about encryption, flashing a new ROM over top will preserve most user data saved on /sdcard (much to my annoyance).
Click to expand...
Click to collapse
You are correct. I forgot that circumstance. TWRP specifically excludes the data/media area
Sent from my Samsung Galaxy Victory via XDA Developers App
dibblebill said:
You are correct. I forgot that circumstance. TWRP specifically excludes the data/media area
Sent from my Samsung Galaxy Victory via XDA Developers App
Click to expand...
Click to collapse
I mean, it's useful because if you flub a flash you can use a backup, but these recoveries are not secure and aren't designed to be.
EX_RIVER said:
(sorry about my chinglish )
So here's how:I locked my nexus10 and forgot the password, and I do not see the "Forgotten" button on the screen and also I didn't turn USB debugging mode on, so is there any possibility I can save my data instead of cleaning them up? Thank you (btw, I deleted the original recover files(because I once booted Ubuntu Touch on it) how can I reset it anyway?) Tanks a lot
Click to expand...
Click to collapse
USB debugging isn't required for ~all~ USB stuff, so you should try it anyways.
Then, as long as you still know your Google password you can install this to your Nexus, via the web (no log on to device actually needed):
http://www.androidlost.com/
I haven't actually tried or used that program, so cant say 100% it will work on N10 - but "in general" it seems like it should!
:good:
bigmatty said:
USB debugging isn't required for ~all~ USB stuff, so you should try it anyways.
Then, as long as you still know your Google password you can install this to your Nexus, via the web (no log on to device actually needed):
http://www.androidlost.com/
I haven't actually tried or used that program, so cant say 100% it will work on N10 - but "in general" it seems like it should!
:good:
Click to expand...
Click to collapse
I don't know if AndroidLost can unlock a device, and he doesn't seem to have lost it either. Unless an app had root/device admin access, I can't imagine that it would have the privileges necessary to remove authentication from a device (since that seems to be the pinnacle of bad security). Secure Settings + Tasker can do it, but you need to set that up beforehand.
Rirere said:
I don't know if AndroidLost can unlock a device, and he doesn't seem to have lost it either. Unless an app had root/device admin access, I can't imagine that it would have the privileges necessary to remove authentication from a device (since that seems to be the pinnacle of bad security). Secure Settings + Tasker can do it, but you need to set that up beforehand.
Click to expand...
Click to collapse
It says it can:
Lock the phone
You can lock and unlock the phone from the web. If you forget your pincode you can simply overwrite it or remove it from the web
bigmatty said:
It says it can:
Lock the phone
You can lock and unlock the phone from the web. If you forget your pincode you can simply overwrite it or remove it from the web
Click to expand...
Click to collapse
I don't think this means what you think it means (and I could be wrong). Many security apps like avast! offer a similar "locking" functionality, where the normal lockscreen (whatever security it is) is covered by a second lockscreen, superimposed over all system UI elements to prevent access. This lockscreen is controlled by the app, but it will not affect any underlying security (basically, think of it as a replacement lockscreen for security reasons, not much unlike HoloLocker or Go Launcher's lockscreen).
Rirere said:
I don't think this means what you think it means (and I could be wrong). Many security apps like avast! offer a similar "locking" functionality, where the normal lockscreen (whatever security it is) is covered by a second lockscreen, superimposed over all system UI elements to prevent access. This lockscreen is controlled by the app, but it will not affect any underlying security (basically, think of it as a replacement lockscreen for security reasons, not much unlike HoloLocker or Go Launcher's lockscreen).
Click to expand...
Click to collapse
I don't know man, and like I said I've never tried it. But its a super popular app, and has been featured in write ups. On their main page it states that text, as the fifth "main feature" which seems pretty straight forward to mean "the main lock screen"...
bigmatty said:
I don't know man, and like I said I've never tried it. But its a super popular app, and has been featured in write ups. On their main page it states that text, as the fifth "main feature" which seems pretty straight forward to mean "the main lock screen"...
Click to expand...
Click to collapse
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.
Rirere said:
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.
Click to expand...
Click to collapse
Nice on the testing! Too bad about the unlock. Perhaps he can still use it to offload his content though.
Did you try to "push" it to your device w/out installing it direct? I have wondered if I should pre-load this app on my devices, but "they" tout its remote-install-ablity, so I somewhat feel like I would not have to pre-install. (But then again, Im always apprehensive of claims that make things seem super easy.)
EDIT: Hmmm.... I see it requires "SMS" to install this on a device via Push - so I guess it NEEDS to be pre-loaded on a N10 if one wishes to use it to retrieve a lost N10, or even use it in this context! Now to decide if I install this or not...
bigmatty said:
Nice on the testing! Too bad about the unlock. Perhaps he can still use it to offload his content though.
Did you try to "push" it to your device w/out installing it direct? I have wondered if I should pre-load this app on my devices, but "they" tout its remote-install-ablity, so I somewhat feel like I would not have to pre-install. (But then again, Im always apprehensive of claims that make things seem super easy.)
Click to expand...
Click to collapse
I installed direct. I use Cerberus (and before that, avast! Anti-Theft) to help secure my devices, but these things are all a game of chance. My advice: completely disregard remote-install abilities. If you're going to use this kind of service, it really doesn't make any sense not to install it yourself, where you can change your preferences (such as install to /system or rename the application) to work for you.
The bigger problem is that, obviously, six hundred million things could go wrong. I noticed that AndroidLost noted that they were using Google to push messages, which indicates that they're using C2DM (unlikely, it's deprecated) or GCM push services, which require your phone being connected to a network (itself a big assumption) that will allow Google's ports to send traffic. This excludes no small number of places, particularly corporate networks (and many schools as well). It also looks like one of the wakeup methods if SMS, which is not only noticeable (to a thief), but potentially may be intercepted by other apps on the phone (such as an alternative SMS app).
The idea is that these apps intercept and delete any command SMS before any other app, but in practice this doesn't always happen. So test your setup before something happens!
Rirere said:
I installed direct. I use Cerberus (and before that, avast! Anti-Theft) to help secure my devices, but these things are all a game of chance. My advice: completely disregard remote-install abilities. If you're going to use this kind of service, it really doesn't make any sense not to install it yourself, where you can change your preferences (such as install to /system or rename the application) to work for you.
The bigger problem is that, obviously, six hundred million things could go wrong. I noticed that AndroidLost noted that they were using Google to push messages, which indicates that they're using C2DM (unlikely, it's deprecated) or GCM push services, which require your phone being connected to a network (itself a big assumption) that will allow Google's ports to send traffic. This excludes no small number of places, particularly corporate networks (and many schools as well). It also looks like one of the wakeup methods if SMS, which is not only noticeable (to a thief), but potentially may be intercepted by other apps on the phone (such as an alternative SMS app).
The idea is that these apps intercept and delete any command SMS before any other app, but in practice this doesn't always happen. So test your setup before something happens!
Click to expand...
Click to collapse
Thanks for the info, I will look into Cerberus. I am assuming you would recommend that as you are currently using it? Do you think its better than AndroidLost, even though you haven't spent as much time w/ AndroidLost?
bigmatty said:
Thanks for the info, I will look into Cerberus. I am assuming you would recommend that as you are currently using it? Do you think its better than AndroidLost, even though you haven't spent as much time w/ AndroidLost?
Click to expand...
Click to collapse
I like it a lot more, but I will admit I personally liked avast! better. Its uncertain future (plus a nice promotion) led me to jump ship to Cerberus. I'd have to play around with it a bit more to be sure though.
Rirere said:
No good, sorry. You're right on one count-- I just tested it, and it does interact with the stock lockscreen. Unfortunately, as I said earlier, unless the app is granted root/device admin privileges, no Android app can change the stock lockscreen...and since OP can't get into his device, he can't grant it device admin.
Click to expand...
Click to collapse
Yep, you're right I can't get root under this situation, thanks a lot I'm trying to figure out how to save my data mow
EX_RIVER said:
Yep, you're right I can't get root under this situation, thanks a lot I'm trying to figure out how to save my data mow
Click to expand...
Click to collapse
It's not root you need per se, it's device admin. But root isn't an easy option for you either, because unlocking your bootloader will hose your data. I also think most of the locked-bootloader exploits require the device to be on and unlocked. If you're signed into your Google account, you should have a fair degree of stuff backed up already-- what sorts of data are you trying to save?
Rirere said:
It's not root you need per se, it's device admin. But root isn't an easy option for you either, because unlocking your bootloader will hose your data. I also think most of the locked-bootloader exploits require the device to be on and unlocked. If you're signed into your Google account, you should have a fair degree of stuff backed up already-- what sorts of data are you trying to save?
Click to expand...
Click to collapse
Mostly..........Photos and videos
EX_RIVER said:
Mostly..........Photos and videos
Click to expand...
Click to collapse
...do you have a Google+ account? Slash have you ever opened the app? If so, you might actually be in luck and your data should have been backed up to your Google+ (or PicasaWeb if you prefer).

password protect a tile?

Is there a way to do this? Thanks ,
I have seen software which "claims" to do it with desktop software. Dont think any of them work with tiles though sadly.
Is creating a new user account with less installed applications not an option?
SixSixSevenSeven said:
Is creating a new user account with less installed applications not an option?
Click to expand...
Click to collapse
Thanks. No this isn't a good option for a tablet..
Switching users is *really* easy on Win8/ Windows RT, but OK...
There's no practical way to do exactly what you want without putting some OS-enforced security boundary between you and the other user. The most obvious, and by far the easiest, is to create a second user account. However, if that doesn't cut it for you...
In decreasing order of security:
* Create an NT driver that intercepts requests to open a specific program, and demands a password first.
* Create or find a user program that will encrypt a program so it can't be run, then demand that anybody trying to open that program supply the password first. (Note: this is way weaker than it probably sounds to you, and also way more complicated.)
* Remove the shortcuts to the app, replace them with a script that demands a password, then launches the app itself if the PW is correct. (Note: this is trivially insecure, and still bloody complicated to do "right".)
There are various other options, such as hiding the app, making the user do something (like alter its permissions) before running it, or similar. None of them are what you're asking for, though, and most of them are insecure, hideously complex, or both).
GoodDayToDie said:
* Remove the shortcuts to the app, replace them with a script that demands a password, then launches the app itself if the PW is correct. (Note: this is trivially insecure, and still bloody complicated to do "right".)
Click to expand...
Click to collapse
This was also my idea of doing it.. It is probably easy to do a skript with autoit http://www.autoitscript.com/site/autoit/ to do this.. Altgough i have years to program with it..
But things like this are easy in android.. I believe that microsoft should copy some things from it..
Thanks again,
Sent from my Nexus 7 using xda premium
sosimple said:
This was also my idea of doing it.. It is probably easy to do a skript with autoit http://www.autoitscript.com/site/autoit/ to do this.. Altgough i have years to program with it..
But things like this are easy in android.. I believe that microsoft should copy some things from it..
Thanks again,
Sent from my Nexus 7 using xda premium
Click to expand...
Click to collapse
Oh you mean how android actually copied microsoft?
You are just messing around with this. Having a separate user is much easier and much better in every respect when you want to restrict access to some app.

Categories

Resources