I love having my phone rooted. I am grateful to all the work by the devs on this board making my S5 run the way it should.
However, I try to keep my phone as secure as possible. I have my S5 set to use Fingerprint identification at login. I also have Google Location set up so I can locate my phone or wipe it remotely if it is lost or stolen.
However, with Safestrap, it is very easy for someone to get past the security. They can boot my phone, see the message for SafeStrap Recovery mode, push recovery and wipe my phone. Then they can then use any gmail account and reconfigure my phone for their own use. Of course, this disables me using Google Locate to find or wipe my sdcard.
Also, since SafeStrap does not support encryption, they can pop out my sdcard and read all of my data in any computer.
Is there a way to secure a rooted phone? Perhaps, SafeStrap could have an optional stealth mode that does not show on boot without a keypress combination? Maybe a third party encryption app that secures the sdcard?
Is there any way around these security issues (besides not rooting the phone)?
Related
I have a new Galaxy Note 3 (having bricked one trying to understand why it wouldn't encrypt) and now with a full stock rom I still find that the phone is impossible to encrypt.
I have an encrypted SD card in it. (only thing I can think of that might be causing problems)..
Settings > General > Security > Encrypt Device keeps stopping after a single shutdown,
How the heck do I encrypt this thing?? - Am I missing the blindingly obvious..
Thanks
tahnoonp said:
I have a new Galaxy Note 3 (having bricked one trying to understand why it wouldn't encrypt) and now with a full stock rom I still find that the phone is impossible to encrypt.
I have an encrypted SD card in it. (only thing I can think of that might be causing problems)..
Settings > General > Security > Encrypt Device keeps stopping after a single shutdown,
How the heck do I encrypt this thing?? - Am I missing the blindingly obvious..
Thanks
Click to expand...
Click to collapse
I'm having the exact same issue. Encryption is requited to get my work email and I can't get it to go.
Finally got mine to encrypt
Took me a bunch of tries.. and finally once i opened a chat with samsung support it finally worked.. i was at 100% charge, plugged into the wall and if finally worked. not sure if thats a bug in its detection if your over the stated 80% or not... good luck.. i finally got it working though.. only did a fast encryption as it didn't work on previous tries either way... so i just chose one and tried it again.
tahnoonp said:
I have a new Galaxy Note 3 (having bricked one trying to understand why it wouldn't encrypt) and now with a full stock rom I still find that the phone is impossible to encrypt.
I have an encrypted SD card in it. (only thing I can think of that might be causing problems)..
Settings > General > Security > Encrypt Device keeps stopping after a single shutdown,
How the heck do I encrypt this thing?? - Am I missing the blindingly obvious..
Thanks
Click to expand...
Click to collapse
I have the Google Policy Manager and Encryption is required for me too. I started at 81% and the first time I did it, it just rebooted. The second time I did it it worked like it was suppose to. Try it again right after it reboots and see if it works.
Make sure the phone is charged and keep trying over and over.
It will work eventually.
I gave up. I'm using touchdown now for work email which will allow me to skip full device encryption
Sent from my SM-N900V using Tapatalk
Same problem here, it will not encrypt
....help please
This is the answer I found doing a couple of root and unroot
1.If you encrypt the device and then root it you will net get past the passcode in the phone (black screen)
2. If you root the phone first and ten try to encrypt you will get the problems mentioned in this thread
..any tips how to get the phone rooted and then encrypted?
greffel said:
This is the answer I found doing a couple of root and unroot
1.If you encrypt the device and then root it you will net get past the passcode in the phone (black screen)
2. If you root the phone first and ten try to encrypt you will get the problems mentioned in this thread
..any tips how to get the phone rooted and then encrypted?
Click to expand...
Click to collapse
Bump. I'm looking for this answer too.
digittante said:
Bump. I'm looking for this answer too.
Click to expand...
Click to collapse
anyone at all? im stuck. Bump!
was having a similar problem on nexus 4 but safe mode helped there.
dind't help on my new n3. shouldn't have rooted before encrypting.
tried pressing encrypt about 10 times.
tried boot into recovery + wipe . also tried safe mode. also tried unroot + factory reset (pretty sure recovery + wipe /data is the same as reset user data from settings).
waiting for the firmware image to download - decided to try a firmware reflash
and then before flashing it I tried rebooting to recovery and powering off and encrypting and it worked. or maybe it was that random 12th time it worked because of an unrelated reason.
and after trying to root it again it just booted to a black screen after cf-root and enter encryption password screen.
*sigh*
My Work-Around
svyr said:
and then before flashing it I tried rebooting to recovery and powering off and encrypting and it worked. or maybe it was that random 12th time it worked because of an unrelated reason.
and after trying to root it again it just booted to a black screen after cf-root and enter encryption password screen.
*sigh*
Click to expand...
Click to collapse
I'm an AT&T customer, but I bought a T Mobile Note 3 off of Craigslist, unlocked it, rooted using Chainfire's ODIN thread, and then used the RegionFree Lock Away app. I was unable to encrypt just like you guys until I did the following. Flashed TWRP tar file from the TWRP site using ODIN. Rebooted into recovery and made an image, backup up everything, just in case. Rebooted and went in the SU Superuser application that Chainfire originally installed and uninstalled through the settings in the program. Once I rebooted I was able to encrypt the device (without fast method), I already had my SD Card encrypted. Once I encrypted the device I downloaded Kingo Root at the advice of DesignGears and used the one click root application from the Kingo Root site (google it.) After I did that, I now have full root access back, encryption, and never had to uninstall the region lock, so I didn't lose phone connectivity, applications, or anything else during the process. I recommend using TitaniumBackup and syncing via Google Drive or Dropbox before you start the process so you can restore your apps and data, once again, just in case.
encrypted ATT Note 3 not able to root
I was able to unroot my ATT Note 3 and then encrypted it. But Kingo Root failed to root the device. (I used it to root the phone once previously)
Now I stuck in a status with encrypted phone not able to root anymore.
Any suggestions please?
GHolbrook4 said:
I'm an AT&T customer, but I bought a T Mobile Note 3 off of Craigslist, unlocked it, rooted using Chainfire's ODIN thread, and then used the RegionFree Lock Away app. I was unable to encrypt just like you guys until I did the following. Flashed TWRP tar file from the TWRP site using ODIN. Rebooted into recovery and made an image, backup up everything, just in case. Rebooted and went in the SU Superuser application that Chainfire originally installed and uninstalled through the settings in the program. Once I rebooted I was able to encrypt the device (without fast method), I already had my SD Card encrypted. Once I encrypted the device I downloaded Kingo Root at the advice of DesignGears and used the one click root application from the Kingo Root site (google it.) After I did that, I now have full root access back, encryption, and never had to uninstall the region lock, so I didn't lose phone connectivity, applications, or anything else during the process. I recommend using TitaniumBackup and syncing via Google Drive or Dropbox before you start the process so you can restore your apps and data, once again, just in case.
Click to expand...
Click to collapse
I was able to get mine to encrypt after killing the bloat apps. All Google sync, amazon, and Verizon services. I can't say which one was killing it since it stopped pretty much every app or service that wasn't critical to the device.
Can anyone confirm that Encryption will never work once we root our phone ?
nlatifolia said:
Can anyone confirm that Encryption will never work once we root our phone ?
Click to expand...
Click to collapse
Same question here... Anyone was able to encrypt after being rooted???
Same question, rooted can't encrypt.
Just got a note 3 and this is an old thread. So wanted to update this question.
To encrypt device after root all that is needed to do is run the following command from terminal or adb shell as root. You must have the latest busybox installed.
pkill -KILL daemonsu
After running this command you should be back at the "$" prompt and out of root. Do not run su again.
Then encrypt your device. Encryption should work fine. Once rebooted you will have root again.
I had to repeat the above steps because I ran su again. Running su restarts daemonsu.
Good luck
Hi,
I was able to root and encrypt my sm-n900 note3 using the steps mentioned on this post:
http://forum.xda-developers.com/showthread.php?t=2791587
Just make sure that you have your backups ready case something goes wrong
I've installed the bloatwares after rooting and encrypt.
I need my work email but it requires I encrypt the phone when I setup gmail. I hate that cause if my phone reboots while I am asleep then it prevents it from booting back up. I used the boot.img that is supposed to disable the check to force encyption but it's not working. I even tried the one from wug noforce_encrypt_angler_npd90g.img. Prior to this I was on another rom and it didn't require I force encrypt my phone when setting up gmail but last time I installed the noforce encryption from wugs tool. This time I am trying from twrp and selecting "boot" as the option. Any idea on how to bypass it besides not using gmail?
I know it's not the answer you are looking for but have your tried inbox by gmail? It works great on my decrypted device. Not to mention IMO it's a superior mail app for my gmail.
So I'm using androman's pre-rooted firmware for my G-361f, and have been able to install the fixed twrp. (Thanks guys!) I have oem-unlocked and adb-debugging selected in developer options, and have toyed with the seandroid-permissive boot.img from the androman thread. If I put my device into download-mode, it says frp-unlocked. However, if I register a gmail account to access google-play, then turn my device off, it will not boot because the 'custom binary frp-lock' is back again. (even though settings were unchanged)
No problem-flash stock rom with odin and start from the beginning, but to get the twrp recovery to work requires a factory reset, and so it's inconvenient to have to keep repeating the process.
My solution has been to delete my gmail account from the phone immediately every-time, as soon as I have whatever I need from google-play, but it seems like a cumbersome solution. I havn't found any other mention of this issue, so I'm wondering if I've missed something obvious? Is there a more permanent fix?
Thanks
Hello guys,
I need some help with my Lenovo K4 Note Vibe (3GB RAM version). The thing is it started popping up random "Unfortunately xxxx stopped working" a couple of weeks ago. That specific app would just crash and restart itself. It can be a system app or game or any random thing (GUI, Contacts, Messaging, Angry Bird and other games etc.). It would usually gets solved on by restarting the phone or stopping the app from setting or on it's own.
Now the problem I have is, I gave it a restart and now it just shows "Unfortunately Notification Center Has Stopped". I have two option "Okay" and "Try To Resolve" none of them does anything except the error goes away for a second or two and pops back up. I can not even see the usual "Enter you PIN" screen. Yes I was using Fingerprint so I had to enter the PIN every time I restart the phone. So now basically I'm stuck at startup screen without any options. The phone is alive I can tell, I can feel it vibrate when I call, hear messaging tones (whatsapp/text). If connect it with PC when turned on, I can see a Lenovo Folder option to browse but its empty since it requires the phone to be unlocked first with pin.
The mobile belongs to my sister and she is dentist by profession and have lots of important data including some research she did (photos) for journal she publishes in national magazines.
How do I get past this error ? I do not have root, I tried the recovery but it is a Chinese recovery and does not have an option to wipe catch partition. The phone was on latest version (Marshmallow) and there is nothing I can do to start it up. Tried booting in safe mode but still the same error.
There is an option to see basic details in Chinese recovery, it shows
Model No. A7010a48
Build Time : 2016 12 27 14:35:36 CST
Kernel Ver. 3.18.19+
Android Ver.: 6.0
along with various other details.
How do I save my data ? Can I recover it anyhow ?
1. Try wipe data and factory reset
if not solve
2. Use SP Flash tools to flash stock rom.
If you have unlocked bootloader, then you can try to flash/hotboot into twrp recovery as it shows all files and folders in pc while connected in recovery mode.
Even if the bootloader is locked, there is no harm in trying.
tiks1001 said:
If you have unlocked bootloader, then you can try to flash/hotboot into twrp recovery as it shows all files and folders in pc while connected in recovery mode.
Even if the bootloader is locked, there is no harm in trying.
Click to expand...
Click to collapse
Bootloader is locked. And there was no custom recovery flashed, every recovery flashing method I searched required for data to be wiped and bootloader unlocked so I`m stuck on that front.
macblaze said:
1. Try wipe data and factory reset
if not solve
2. Use SP Flash tools to flash stock rom.
Click to expand...
Click to collapse
Like I mentioned in post, the data is important, I could throw away the hardware I just need data.
I`m looking for a method to wipe catch partition without getting my data erased or to extract data any other way. Please do let me know if anyone have any solution at all, this is really really important.
Enable usb debugging
Use adb pull command to get the data.
Edit: nevermind, saw you can't unlock the phone.
Pretty sure if you flash twrp it will wipe data data partition as soon as you reboot. So I wouldn't do that.
Other option is do a full nandroid backup using adb but the only way you are gonna get that working is if you flash twrp and like I mentioned it's probably not a good idea but I'm not certain.
Another option is mtktools/spflashtool and do a full firmware backup from that, reset the phone and then restore from the backup, but I have no experience in that but it should work in theory.
Do you see the error even when there is incoming call? If not try from InCallUi i.e. when you answer the phone, try to navigate from that such as opening contacts, if there is a chance pull down notification bar and enter into settings. If any of these happen, it will ask to enter your pin and then you can unlock your phone. Now connect your phone to your pc and backup the data you need
If the data you seek are images, google photos should already backup your images to your google photos cloud account. Check this by signing in from your pc.
If they are media from whatsapp, don't worry, it will be backedup daily to your google drive account and all your messages along with your media will be restored after you install whatsapp again.
If they are Docs, then probably they are in gmail account (PROBABLY) you can always search for required ones in gmail.
Any other files from these cannot be restored if they are inaccessiblefrom your phone.
Suggestion: Maintain a cloud account which you feel safe and backup to that account so that you have no need to worry about the important files. **** like these happen every now and then.
Edit : These are gonna work if you checked the online backup or sync in respective app.
I'm very confused by the behavior of my Nexus6p right now. I would like my phone to be fully encrypted, IE, you pick up the phone and can access absolutely none of my data without typing in a password. So I've clean flashed it several times, usually whenever a new update comes out. And each time I do this, the phone behaves how I want, when it boots, I get a password screen that says "enter a password to continue boot". It goes on this way for a day or so usually, and then suddenly this password screen stops showing up and I get the "you must enter a password after restarting" screen that clearly has already decrypted my data because I can see notifications and even play music through bluetooth without entering the password.
After each clean flash, I have been installing various mods. This time around, I have the things I've flashed down to TWRP 3.1.0, Magisk 12, and ElementalX 4.08. In the security settings, the phone still reads as encrypted, so I'm very confused. Is this normal behavior for this device, or is it one of the above things I have flashed? Either way, how do I fix this so that my data actually stays encrypted when the phone boots?
I have had similar issues to fix I formated everything and then installed the rom installed newest vendor image and then kept on eye on what I allowed special access to my phone
Keeper was wanting special access so I stopped using them and switched to last pass I have not lost decryption on phone boot
Also decided to pay for esexplorer pro to get ride of any possible infected ads
Your phone data is still encrypted, but your security settings are not optimized for what you want to accomplish. Make sure your Lockscreen has a password/PIN/Gesture set. There is the password on BOOT when encrypted, a password on Lockscreen when the screen is off, and In Settings>>Notifications>>Gear Icon>>"On the lock screen"- there are three settings. Default is set to "Show ALL notification content". Set it to NOT show notifications for now until you set which ones you want to show or hide. TWRP and EX are not causing your issue. Magisk might be but I don't use it. Uninstall just to be sure and/or check in the dedicated Magisk thread. This is on the stock 7.1.2 ROM. If you are running a custom ROM, YMMV.
So if I understand the issue correctly, you clean flash and you have the prompt to enter your credentials before booting finishes. Eventually you get set up and upon a reboot you notice that the prompt is gone?
Check your apps. You're using an app that requires an accessibility service (see Settings / Accessibility / Services). Granting an app accessibility service will do away with the boot entry of your pin/pattern/password. Set up your apps again and either don't use the app in question or just don't grant it the accessibility service for whatever feature requires it.
Known issue, btw. I forget why it happens, Google may turn up the results you're looking for.
Edit: Despite it not asking for that prompt on boot, your phone is still encrypted, by the way. This also has absolutely nothing to do with TWRP, EX, Magisk or how you choose to have your notifications hidden on lock screen.
2nd: Sadly, just revoking the service won't usually restore the prompt while booting. You'll need to clean flash again and not grant it in the first place.
That makes sense, I was looking in the wrong place. That's a really irritating design decision, there's no sense in having the encryption at all if you're just going to store the material necessary to decrypt the data in the clear.
For now, changing my password seems to have returned the encryption prompt while leaving the accessibility services working to the best of my observation.
It will probably go away again shortly​, most likely after the app uses the accessibility service. If it does, revoke the service and change your password again or clean flash. I don't believe there is a way to keep both 100% of the time.