How to "lockdown" a phone for users. - G2 Q&A, Help & Troubleshooting

Hi, I'm new to XDA. I'm an android developer, but this is a bit outside my wheelhouse. My company is providing no-cost phones to low-income disadvantaged families for health care and health monitoring purposes in conjunction with a local hospital and local health departments. We developed the app in conjunction with local health departments, and we are procuring the devices ( LG G2 (VS980) ) from a wholeseller of refurb phones. We would like to "lock down" the device to prevent abuse and eliminate company liability. The devices remain company property and will (hopefully) be recovered and re-used for other patients when a patient leaves the program. These devices are solely for the purposes of the program and general purpose smartphone functions are only permitted when not affecting the data/voice/sms service plan. (i.e. Calculator)
While I am capable of using Google, I keep finding information about parental locks. I am looking for information specific to:
1. Restricted dialing to a few numbers that we specify (We might have to provide a custom dialer, 911 service ok)
2. In-bound only SMS, No outbound SMS AT ALL (We might have to provide a one-way only SMS app, replacing the default - How to remove the default app?)
3. No ability to install other apps, no google play
4. Auto-update of our app with no google play account needed
5. Restricted web browsing to servers we list (i.e. only patient web portal)
Many thanks in advance.

Related

MyPhone Lock/Kill Alternatives for Unsupported Carriers

I've decided that typing a password every time I wake my HD2 is too much of a pain, so as an alternative my plan was to set up MyPhone so that in the event of loss/theft, I could go online and find/lock/kill the phone. Alas, no Belgian carriers support the advanced features of MyPhone.
So I'm exploring alternatives. In particular, looking for remote find/lock/erase features - I don't care about syncing any content from the phone. Searched these forums, and here's the list so far:
Ultimate Theft Alert
Remote Tracker
Can anyone add other alternatives to the list? And what are your experiences with these two apps (efficacy, impact on battery/performance, etc.)?
Thanks!

[Q] Booking system app for Android

Hey guys
I'm an entrepreneur from Brisbane, Australia. I'm looking into introducing a new product and am wondering if you guys would be able to help me clarify a few questions. I have to add I have no idea what so ever about programming languages or whats possible or not. I just going to post my vision of the application I will need and hope some of you guys can tell me what of that will be possible, what not and how much effort / money it would take to realise.
Firstly of all and most importantly I need the the Phone application to work with several other systems which would be at the moment : - Iphone, Windows Mobile, Blackberry Android, a Website interface, Windows Vista / 7 and Mac OS. I need this to work in two ways. One for the user to sync their data on different apps and secondly for the admin to receive and send data from the main system (that would be working on Windows or Mac)
On first interface the user would have to log in with a username and password, high security would be welcome, after the log in the general interface should be offering the user a booking request form with the ability to use a saved lists of items which have been previously use / prepared but also a interface for add one or editing
It also should offer a open bookings lists and the ability to edit this lists. This should also be able to be synced to the other systems. A third interface showing a history and updates should be also available.
If possible it should offer different accounts and groups where admins can edit the bookings of other users. If this is possible it also should offer a control for the admins which shows bookings and history of other group users.
I would like this obviously to be a professional looking app which offers a good service and is secure and bug free. If anyone has an idea if this is realisable or what parts of it would be difficult or have to be changed please do me the favour and comment.
Thank you for your help in advance.
JPM
Hello,
If you're looking for developers for your project, please contact [email protected]
Example of similar (ok, a bit different but technical approach is the same) web app and mobile clients for several smartphone platforms is in my signature.

[Discussion] Security-Focused Marshmellow-Based ROM

Hey all,
I've been toying with some ideas for improving security / implementing existing security tools / creating a security-focused ROM for the ZF2. I thought I would bring my ideas here and invite discussion on the ideas / take improvements and suggestions from the community.
Purpose for this Post:
This discussion is for envisioning, dreaming, brainstorming. I want to put my ideas out there and have the community improve them. Currently there are a number of facets of mobile security that have a large number of options / apps available for managing them:
- Internet traffic encryption: OpenVPN apps (many available)
- EncFS style disk encryption: built in encryption tool, Kryptonite, LUKS, etc
- Per-app firewall, internet denial: AFWall+
- Secure texting: Text Secure and I'm sure there are others
- Keychains: KeePass, others
- Secure keyboards, etc
For the person who wants to use all of these features, keeping apps updated and properly working is a LOT of work. The idea would be to integrate these tools into a ROM with a simple GUI control for all of them, and the updates for the tools would come via the ROM updates. Perhaps this post may spark a change in the way current things are done, and a separate ROM wouldn't be needed. If CM implemented some/all of these features, it would affect a lot (all?) of ROMs that are currently made for this device.
I would see the following principles as important to this idea:
- Encryption without reliance on external services - encryption done on the device, and key exchanges would be done device to device (of course securely through cell towers)
- Seamless integration without the user usually seeing it (unless they want to)
- If services are allowed access to data like contacts, notifications, and SMS, the user has fine control over what data they want to provide (individual contacts and lists, certain subset of SMS list selected by the user, call logs only through XX date or from XX person, etc)
Before kicking off into the content, here's a disclaimer:
- I am very busy lately (60 hours work / week). I'm not saying I will be working on this or that this is an up and coming ROM that you can expect to hit the shelves next week (unless someone else wants to take the idea and run with it)
- I have some self-taught programming, and encryption knowledge, but no formal background. As such, there may be some gaps in my knowledge, misinformation, misunderstanding on my part and some of my ideas might not make sense.
- Notwithstanding #1, I may stretch myself some day (at least longer than 6 months from now) to create some of this according to my limited capability
Now to the ROM:
Marshmallow Based:
- Would have dm-Verity enabled - making changes to system would / should be somewhat difficult
- SE Linux
- Intel encryption hardware on our CPU utilized
Calls:
- Public / Private key based voice data encryption: The keys would be generated on startup, stored in memory only , dumped on power off or regenerated every so often
- Maybe first second or two of the call would be a handshake request (data over the voice channel like a 56k modem)
>> If there is a response to the handshake request - exchange keys and encrypt voice data
>> If no response to handshake request, no encryption
Contacts:
- Encryption / Decryption Middleware based on stored private keys on phone
- Contacts are synced to Google encrypted, decrypted on phone to user (not stored on internal storage - or that's ok?)
- Apps requesting contacts can either have the legit contacts or fake and/or encrypted (user choice)
>> Downfall - if keys are lost, contacts are lost. Requires backups
- SMS public keys stored for each contact perhaps?
- Contact lists allowing apps to access partial lists (like if you want to use whatsapp, whatsapp doesn't get your whole contact list, just who you choose)
- Options for using Roll Your Own Cloud services in lieu of Google (one click to switch between OwnCloud, google contacts, for example)
Messaging (SMS, MMS):
- Something like TextSecure - but based on device to device key exchange...
- Looking for help on this one...maybe each contact on first text ever received by the phone exchanges public keys over text and keys are stored per contact?
- Appended special character to the front/back of text to indicate handshake request?
Email:
- Email client for encryption/signing with PGP built in
- Can send emails encrypted through google so google (or whoever) doesn't see your message (not by default - who wants an inbox full of emails only readable by phone?)
- Other features?
PGP:
- PGP integration with email / what else??
- User friendly interface for building key and signing others
- Other PGP uses?
Keychain:
- Some sort of Keepass like keychain - maybe browser integration?
- Maybe utilizing private key stored on disk?
- Secure password generation feature for creating accounts
Wifi/4G:
- Selective OpenVPN integration - options to force connection (or no internet), prefer (on certain types of networks - no password networks), notify (persistent notification on lack of connection), or disable entirely
>> Per app settings and possibly per network settings (SSID based - like when you connect to "Starbucks", force connection, but at home, no connection)
>> GUI for easy key generation, config file creation for those who roll their own
- Built in firewall with features like AF Wall+ for selective disabling of app network access
- Is Tor use or option worth it?
Browser:
- Permanent incognito mode / no cookies / no trace? At least as an option - like a "Snowden" mode or something
- Ad blocker integration. Whoo.
- Something like "HTTPS Everywhere" plugin
Disk Encryption:
- How is google's? Do we need something better?
- How to secure disk better than digit passcode (keyspace ten thou - hundred million - trivial for modern PW crackers)
Looking for help / ideas here.
Key Storage:
- As mentioned - where possible, generate new keys on startup every time for non-persistent data (phone calls, etc)
- When on disk, in encrypted folders through some sort of EncFS functionality or similar
- Disk decrypted keys only stored in memory, flushed on power off
Security tips:
- Password checkers / other tips for the average user for being more secure as an option (perhaps through notifications or toasts)
Theft/Data Loss Prevention:
- Integrated SMS-based option to erase keys / factory reset phone / other features?
Something like this would give Blackberry a run for their money! What are your thoughts? Tell me what you like and what you don't - what's great and what's stupid. Looking forward to the discussion.
First of all, this idea and vision you have regarding privacy is seriously way too advanced! I'm mindblown after reading your post. Now, it would take a hell lot of work to build this rom for ZF2 models(Z00A,Z008) and keeping them up to date. Dont really know if this much security is indeed needed. For me , even the Privacy feature in CM roms is enough. Dont know about others, but i doubt the success of this rom, if it gets built. Please dont mistake me, just sharing my thought.
I like this idiea, it is actually too advanced for the zenfone 2 but if you want to build this kind of ROM i support you, because i really want to install that ROM to my device.
Sent from my ASUS_Z00AD using Tapatalk
So here's the thing: these are all independent ideas. All of the ideas together are complicated, but they don't necessarily all have to be implemented. Or perhaps they could be built in to a cm mod incrementally. Either way, even if complicated, dream big. Discuss what you would like and what you think would be a useful feature. Also talk about what wouldn't be worth the effort to use (dont worry about building/implementing). If you would use these features, what options would you want? Would you want fine control and visible metrics or seemless operation? Again, don't worry about how it would be implemented, just what's useful.
I disagree that it would be too complicated for the ZF2. The cpu has built in dedicated encryption hardware and these tools are all available - just not in one package.
Sent from my ASUS_Z00A using XDA Premium HD app
Just begin with encryption support (pgp|s-mime/openkeychain) on emails like native android email client or BlackBerry Hub for Android, sms app, contacts maybe? Start with the basic apps that is usually used by people.
that, and kali nethunters and the zenfone will be a good phone for cybersecurity engineers
I want this rom make it lol what can I do to have ometing like this? I can buy a encrypted phone but the price is rather high so a rom with full encryption with calls and texts is what I'm looking for
Security patches will be updated too?

[IDEA] iMessage Bridge (iDroidChat)

Hey guys, just wondering if any skilled devs could think about this
What is iMessage?: iMessage is a great product that Apple uses to bring to and keep people on the iOS platform. But what if we could bridge it to android?
Situation: Many people have old iPhones (or can buy cheap on Swappa) I have a jailbroken iPhone 5. I also have an LG Nexus 5X. What if we could bridge the two and bring iMessage to Android?
Is it possible?: A while ago, some "enterprising developer" found a way to let android users communicate with iMessage. But all of the traffic was being pushed through a server in China. It was shady as shady gets. An APK teardown revealed some unwanted code abilities. But the point is that someone did it and that it is possible. Here at XDA, we can open source the code. We can create a clean, safe version for daily use. Just a little more DIY action.
The Idea: Use an iPhone/iOS Device as the host for iMessage. (The Android will handle SMS, but the iPhone will have no SIM and only send/receive iMessage messages) (P.S: Keep phone number attached to iMessage) The iOS device will most likely need jailbreak to execute the actions as it is far more locked down than Android. So the iOS device will likely sit on a charger, connected to wifi 24/7, acting as the messenger between your device and iMessage. Think of it as a translator.
You will also have an Android device with the appropriate software to connect to the iOS device over the web and send/receive your iMessage texts over the internet. The android app will either be the primary messaging app or a background app. Maybe it will even need root. I don't know. But if it's the main messaging app, it would be a fork of the default messaging app in Android and have the mods needed to connect to the iOS device running iDroidChat. If it's a background app, it will work with any messenger app and will simply act as another source of messages. Like a second SMS server/SIM. It may need root for this functionality.
The Bridge - A connection made over the internet between the iOS device and the Android device. The 2 apps will be encrypted with manual username and password entries. Both of which are entered into each app. The iOS device will host the connection (secured, of course) and the Android device will connect to it using the app. Once the iOS server is running, it will display it's IP, Username, and Password. Just enter these 3 strings on the android app to connect to the iOS server.
Future Plans:
1) An HTML implementation where you can type the iOS device IP into a web browser and it will have a UI for iMessage.
2) Pushbullet integration for mixed SMS and iMessage.
Execution: I'm going to say it up front. I don't know much about coding. That's why I am actively learning Java. But for this project to be possible, I need the XDA community. I will not accept any cash or profits whatsoever from this. I simply want to support the community.
My Role: I will keep the project in shape and help out devs as much as I can. Let's do this. Project Manager. yay.
Check out amphora Messenger on Twitter. So far it seems possible however developer is extremely busy currently. Pie message is also a working solution however needs a dedicated Mac computer, I phones are not possible

Whatsapp - any way to backup to HTML?

Hi, is there a way to (batch) convert all conversations on whatsapp to HTML and csv files? Most 3rd party apps online seems to use some way to install an 'old' version of whatsapp to do this and that gets me banned temporarily from Whatsapp.
I basically want to uninstall Whatsapp and not use it anymore. But I have years of important conversations (many of which I may need to refer to for work etc), and I want to keep them all on my computer in a searchable format. HTML is optimum as it would presumably preserve the look and feel of the chats. CSV could also be good in terms of efficiency of searching.
Thanks!
I am having the same issue and it drives me insane! Ideally, I would like my messages and my attachments to be accessible in a convenient format for the future.
All I found is backuptrans, but I haven't tried it. People (on here) say it is legit in terms of "getting the job done" but I am generally suspicious of companies that hide their whois record behind a shell corporation and don't provide business contact details.
Cheers, JD
Try this, you can read messages in a GUI:
GitHub - andreas-mausch/whatsapp-viewer: Small tool to display chats from the Android msgstore.db database (crypt12)
Small tool to display chats from the Android msgstore.db database (crypt12) - GitHub - andreas-mausch/whatsapp-viewer: Small tool to display chats from the Android msgstore.db database (crypt12)
github.com

Categories

Resources