Securing Moto G4 for my son. - Moto G4 Questions & Answers

I just purchased the Amazon Moto G4 edition for my son who is 8yrs old, and I understand he's a little young for a phone. However, a few of his buddies have phones and I thought it was a great way to help him read and type better through texting. I'm also not planning on paying for Cell service but rather use Wifi for SMS and Calls through hangout. And maybe get him freedom pop for in an emergency.
Now, with that said I created a gmail account that I control (my password, my recovery email/phone #, etc.) and then used this to setup the Play store. I set up all the restrictions in the play store to what I believe is appropriate and of course I locked it by setting up my own PIN code so he couldn't change them.
I also setup his own google voice number and tied it to google hangouts/dialer but I can also monitor what he is doing on my phone periodically if I wanted. I'm not interested in him using Snapchat, WhatsApp, or any other kind of social network.
I've also setup OpenDNS on the wifi account he uses at home. So I think I have things pretty much locked down with the exception of installing from Unknown sources. And although he probably isn't computer savvy enough yet, at some point he will be.
So, with that said is there anyway I can build a rom that disables installing from Unknown Sources? Also, any other recommendations and tips from others are welcome.
Thanks.

He can get rid of everything you did if he could factory reset

seth.dean02 said:
He can get rid of everything you did if he could factory reset
Click to expand...
Click to collapse
Of course he could, but he's 8! He's probably not savvy enough to circumvent my efforts yet and when he is I'll change my approach.

pabdaddy1995 said:
Of course he could, but he's 8! He's probably not savvy enough to circumvent my efforts yet and when he is I'll change my approach.
Click to expand...
Click to collapse
Try one of the apps that allows you to lock apps. One is Applock and you may be able to lock down settings. That would prevent him from changing anything. You've probably thought of it already but some type of tracking app is a necessary safety measure for a child's phone. LOL, when he becomes a teenager you'll need the tracking for many more reasons.

Related

Exchange Server - Security policy

I'm finding a lot of threads about changing from pin/password to pattern unlock, but not having any luck in completely disabling the security feature BS...
Is it possible to completely eliminate the password lock required by my exchange server? I have tried lockpicker and no lock, neither of which worked.
I would like to keep syncing but am not going to deal with this unlocking all the time (they JUST started enforcing it)...any help would be appreciated.
BTW, running Calkulin's EViO 2 v 1.7 (sense, so HTC mail)
Nope, this is tightly integrated down to the OS in order to pass MS requirements, and it reports the control level back to exchange so it can make sure it's in compliance with their mobile device policy.
In theory you can make an app that proxies the API and lies about what the phone can do ... but it wont be done with a simple APK/market app ... it's integration goes much deeper.
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Option 2: if you have a buddy on the exchange team he can put you on the same policy he undoubtedly created for himself and his team, that's 10x as lenient so he can mess with his little pet projects he plays with on the side.
Justin.G11 said:
Nope, this is tightly integrated down to the OS in order to pass MS requirements, and it reports the control level back to exchange so it can make sure it's in compliance with their mobile device policy.
In theory you can make an app that proxies the API and lies about what the phone can do ... but it wont be done with a simple APK/market app ... it's integration goes much deeper.
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Option 2: if you have a buddy on the exchange team he can put you on the same policy he undoubtedly created for himself and his team, that's 10x as lenient so he can mess with his little pet projects he plays with on the side.
Click to expand...
Click to collapse
Thanks...I figured it wouldn't be that easy but I had to ask.
Justin.G11 said:
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Click to expand...
Click to collapse
I get complaints all the time about policies. 99.999% of the time, the policies are created/approved by steering committees, the legal department or executive management. There is usually nothing IT can do about it as the policies are put into place for legal reasons or company security.
Additionally, if IT departments are not compliant in company policies there could be legal ramifications if the company has to comply with certain government guidelines.
And IT staff don't hate dealing with people...it sounds like your work environment is not like others.
Check out this thread to see if it does what you are looking for.
http://forum.xda-developers.com/showthread.php?t=775007
They modified the actual email.apk app to remove the security requirement that was hardcoded in it.
It was taken from CM7 which is AOSP, so I cannot say whether or not it will work on sense.
EDIT: After searching some more, droidforums has a modified email.apk file that you can install, that you use instead of the HTC mail, which tricks your exchange server into thinking that you have your security enabeled.
http://www.droidforums.net/forum/dr...onal-froyo-bypass-exchange-server-policy.html
Just download the zip, and extract the apk from it, then place the apk on your SDCard and install it just like a regular app.
Khilbron said:
Check out this thread to see if it does what you are looking for.
http://forum.xda-developers.com/showthread.php?t=775007
They modified the actual email.apk app to remove the security requirement that was hardcoded in it.
It was taken from CM7 which is AOSP, so I cannot say whether or not it will work on sense.
EDIT: After searching some more, droidforums has a modified email.apk file that you can install, that you use instead of the HTC mail, which tricks your exchange server into thinking that you have your security enabeled.
http://www.droidforums.net/forum/dr...onal-froyo-bypass-exchange-server-policy.html
Just download the zip, and extract the apk from it, then place the apk on your SDCard and install it just like a regular app.
Click to expand...
Click to collapse
Will look into that. Thank you very much!
I ended up using the modified email.apk from CM7...works like a charm!!! The Droid forums version kept coming up with security errors. THANKS AGAIN Khilbron!!!
awenthol said:
I ended up using the modified email.apk from CM7...works like a charm!!! The Droid forums version kept coming up with security errors. THANKS AGAIN Khilbron!!!
Click to expand...
Click to collapse
Can you please post a link to the one you used?
Sent from my PC36100 using XDA App
Justin.G11 said:
Nope, this is tightly integrated down to the OS in order to pass MS requirements, and it reports the control level back to exchange so it can make sure it's in compliance with their mobile device policy.
In theory you can make an app that proxies the API and lies about what the phone can do ... but it wont be done with a simple APK/market app ... it's integration goes much deeper.
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Option 2: if you have a buddy on the exchange team he can put you on the same policy he undoubtedly created for himself and his team, that's 10x as lenient so he can mess with his little pet projects he plays with on the side.
Click to expand...
Click to collapse
Yes..this reply really isn't correct. There have been some sqlite modifications that can be made or using the mail.apk from this link (http://forum.xda-developers.com/showthread.php?t=775007) works perfect, even with the new CM7-RC2
Bypassing Exchange security
I had this same issue with my work email. My way of bypassing it and still using the stock Mail app is by installing widgetlocker. Unfortunately the newest version does not bypass your encryption, but the older version before the most recent update does. Also it allows you to fully customize your lockscreen and add widgets and what have you. All in all pretty cool app.
widgetlocker.teslacoilsw.com/general/widgetlocker-1-2-9/
(unfortunately because i have never posted before i cannot post links so pm if the link does not work)
Amazing! So you guys have a device in your pocket that has complete access to your work mail server (something you don't own), and you apparently don't care if that falls into the wrong hands?
I don't want to get preachy but this is serious stuff:
1. Are you aware of the damage that can fall on an organization, its IP and reputation if a hacker/spammer has access to a mail account?
2. Your company's mail server is an assett of the company. Gaining access and leaving it unlocked is like borrowing something from work and leaving it on the street.
I understand that IT policies are annoying to the end user, but they are there for good reason.
Would you leave the company vehicle unlocked because it is annoying to get the key out? No.
Oh, and by the way, you can be held directly liable for damages for disabling/ hacking around policies. I have seen employees get fired for it.
Sent from my device.
ramiss said:
Amazing! So you guys have a device in your pocket that has complete access to your work mail server (something you don't own), and you apparently don't care if that falls into the wrong hands?
I don't want to get preachy but this is serious stuff:
1. Are you aware of the damage that can fall on an organization, its IP and reputation if a hacker/spammer has access to a mail account?
2. Your company's mail server is an assett of the company. Gaining access and leaving it unlocked is like borrowing something from work and leaving it on the street.
I understand that IT policies are annoying to the end user, but they are there for good reason.
Would you leave the company vehicle unlocked because it is annoying to get the key out? No.
Oh, and by the way, you can be held directly liable for damages for disabling/ hacking around policies. I have seen employees get fired for it.
Sent from my device.
Click to expand...
Click to collapse
The issue I have is with the idea that the company gets to dictate how my entire device functions. Your points are valid, but why not just require a password on the email app, not on the whole phone? Why do I have to consent to allowing them to order a full device wipe, instead of just a wipe of the company data?
bkrodgers said:
The issue I have is with the idea that the company gets to dictate how my entire device functions. Your points are valid, but why not just require a password on the email app, not on the whole phone? Why do I have to consent to allowing them to order a full device wipe, instead of just a wipe of the company data?
Click to expand...
Click to collapse
Those are some good points and questions:
If you just locked the mail app then the app would need to encrypt/decrypt all data, which would make it MUCH slower. However, the main reason is that the app lock approach is much more hackable..one simple example would be to load a proxy on the phone to intercept communication before it could be encrypted.
The idea behind the device lock is that it happens on a deeper level and is the most secure answer.
The question about having a choice with your device is actually a simple one to answer...if you don't agree with the work policy then don't use your personal device for work email.
The other thing is that, besides not having a choice, the forced answer is beneficial for everyone....if I lose my device then I definitely don't want strangers crank calling my family or getting personal info. I have read about some horrible stories.
The real question is...If your phone is lost why would you NOT want it to be secure and erased asap??
Sent from my "locked" device.
ramiss said:
Those are some good points and questions:
If you just locked the mail app then the app would need to encrypt/decrypt all data, which would make it MUCH slower. However, the main reason is that the app lock approach is much more hackable..one simple example would be to load a proxy on the phone to intercept communication before it could be encrypted.
The idea behind the device lock is that it happens on a deeper level and is the most secure answer.
Click to expand...
Click to collapse
Yes and no. There are approaches that are easier if you aren't securing the whole device, but that doesn't mean it can't still be hacked.
The question about having a choice with your device is actually a simple one to answer...if you don't agree with the work policy then don't use your personal device for work email.
Click to expand...
Click to collapse
Overall I agree with that, although I think at a company that offers mobile email, there's a sort of "peer pressure" to use it. Not to say that's a good reason. I'd imagine that it'd be hard for a company to actually require you to use mobile email on your personal device -- if your job truly requires it, I'd think they'd have to provide you a device if you don't have a compatible device or aren't willing to use it that way. So yes, you're probably right that you have the choice. It doesn't mean that we can't complain though.
The other thing is that, besides not having a choice, the forced answer is beneficial for everyone....if I lose my device then I definitely don't want strangers crank calling my family or getting personal info. I have read about some horrible stories.
The real question is...If your phone is lost why would you NOT want it to be secure and erased asap??
Click to expand...
Click to collapse
If it's really lost forever, yes. But what if:
- The exchange admin sends the wipe command to the wrong phone. ("Hi, I'm John Smith and I've lost my phone.")
- The "wipe after X invalid passcode" policy is enabled. A friend or a kid picks up the phone and tries to play with it. Whoops.
- Something else goes wrong...bottom line is that the company should have no right to wipe anything other than their own data.
I understand the need for locking the device...I really do. But, if someone does happen to find my phone (knock on wood but HIGHLY, HIGHLY unlikely, as I've never even almost forgotten any phone, anywhere, ever) they aren't going to find ANYTHING of value in my emails. I'm pretty low on the totem pole.
If I had sensitive data on my phone...no questions asked, I would keep it p-word locked.
matt2053 said:
Can you please post a link to the one you used?
Sent from my PC36100 using XDA App
Click to expand...
Click to collapse
http://forum.xda-developers.com/showthread.php?t=775007
awenthol said:
I understand the need for locking the device...I really do. But, if someone does happen to find my phone (knock on wood but HIGHLY, HIGHLY unlikely, as I've never even almost forgotten any phone, anywhere, ever) they aren't going to find ANYTHING of value in my emails. I'm pretty low on the totem pole.
If I had sensitive data on my phone...no questions asked, I would keep it p-word locked.
Click to expand...
Click to collapse
Your Exchange Admin (or you depending on the version of Exchange you're using) has the ability to remotely wipe your device in the event it gets stolen/lost.
Could anyone give a brief possible explanation of why I can connect to my exchange server easily using Touchdown, but not using the Android integrated Exchange Account Sync?
Sent from my PC36100 using XDA App
Just found this thread as I've encountered the same issue on a HTC Sensation, just setup Exchange ActiveSync, and bam, have to set up the PIN lock on the phone.
However I've noticed that once you've done it, you can then go into Settings, Security and change the timeout before it locks up to 1 hour (I think that is dependent on your company setting). Mine was defaulting to every time the screen locked, but changing it to 1 hour I find I hardly ever have to unlock the phone now apart from first thing in the morning as I tend to use it regularly through the day.

Modded Exchange Server APK?

For the Rezound,and other phones I guess, there is a modified Exchange server app that does away with the Administrator Rights requirement when connecting to some Exchange Servers.
Here is the issue. Mind you, this security policy only applies if the device supports it. Meaning one Android device or iPhone can connect without enabling Admin rights, while another one does.
But what happens, is that if the Exchange Server sees that the device supports it, it enforces this policy in order to set up and allow access to the email account. It gives the IT department COMPLETE control of your device. They can lock you out, format it, etc... Also, it forces you to set up a PIN, and it disables the camera and encrypts the storage of the device. So you can see how this an be an issue with a personal device. ANy pics you take, files you download, etc... are encrypted and can ONLY be accessed from the device. You cannot copy them to your PC and access them. Huge pain in the ass!
On the various ICS ROMs for the Rezound(the phone I have), there is a file that I can install, a modified Exchange.apk file, that lets me set up the account, and while it will force me to use a PIN, it ignores the rest and doesn't force me to disable the camera or encrypt the storage.
So, is there such an app for this device? Can I use the one for ICS that I use for the phone?
Any idears?
Please don't do that. Many times there is a legal requirement for that policy. Feel lucky that you can use a personal device for work. Many people have to deal with the policy and carry a dedicated work phone.
ekinnee said:
Please don't do that. Many times there is a legal requirement for that policy. Feel lucky that you can use a personal device for work. Many people have to deal with the policy and carry a dedicated work phone.
Click to expand...
Click to collapse
There is almost never a legal requirement, it is a corporate policy. I am using this type of modded Exchange.apk right now, have been for months.
The irony of the "security policy", is that if your phone does not support the feature, then the Exchange Server ignores it and lets the device right in with full access. It only affects certain devices. If I had a DroidX, no problem, Exchange lets me in. I upgrade to a Rezound, now I have to encrypt my entire device.
Don't use it if you don't want to, but many of us do, as this file is available for many phones. I just need to locate one for the N7.
You can try it. At where I work it is not worth it since doing so will get you fired for violating company policy which every employee signs.
The policy they use however doesn't affect the use of the camera and most employee's have a company phone so it's not theirs to begin with. Those that need email and also want privacy, have two phones.
You might want to talk to the admins to see if they can remove the camera block as that may be something they turned on without thinking.
There was an offshoot of a modified APK and then it turned into Enhanced Email, and since then I've switched to Touchdown. Instead of forcing encryption and standards on your personal device, it handles it's own secure space. Also it handles High Importance messages with recurring alerts.
I can't dig up the case at the moment, but for the record, there is absolutely president (at least in the U.S.) if a company requires you use a personal device for work, they have no legal recourse to require factory wipe access and may face steep penalties if they fire you as a result of you circumventing them.
Definitely an area where it's worthwhile to know both:
A. Your companies policies, in and out.
B. Your rights as a citizen of whichever country you reside in.
krelvinaz said:
You can try it. At where I work it is not worth it since doing so will get you fired for violating company policy which every employee signs.
The policy they use however doesn't affect the use of the camera and most employee's have a company phone so it's not theirs to begin with. Those that need email and also want privacy, have two phones.
You might want to talk to the admins to see if they can remove the camera block as that may be something they turned on without thinking.
Click to expand...
Click to collapse
Guys, I really don't need lectures on whether I should do it or not. I currently do it. I will continue to do it. I won't get in trouble at work, it is just how they set it up and they are not going to change it for me, but it is an inconvenience.
I just need to be able to do it on THIS device.
DanielNTX said:
There was an offshoot of a modified APK and then it turned into Enhanced Email, and since then I've switched to Touchdown. Instead of forcing encryption and standards on your personal device, it handles it's own secure space. Also it handles High Importance messages with recurring alerts.
Click to expand...
Click to collapse
Tried that before, hated Touchdown.
The modded one on the Rezound is the stock app, just that part taken out and it works perfectly, That's what I am after here.
SquireSCA said:
Tried that before, hated Touchdown.
The modded one on the Rezound is the stock app, just that part taken out and it works perfectly, That's what I am after here.
Click to expand...
Click to collapse
I think any mod made for jelly bean would work for you since it's all based off of aosp. I'd try the one linked below (and making a backup beforehand).
http://forum.xda-developers.com/showpost.php?p=28246860&postcount=1
Sent from my Nexus 7 using xda premium
DanielNTX said:
There was an offshoot of a modified APK and then it turned into Enhanced Email, and since then I've switched to Touchdown. Instead of forcing encryption and standards on your personal device, it handles it's own secure space. Also it handles High Importance messages with recurring alerts.
Click to expand...
Click to collapse
mwalt2 said:
I think any mod made for jelly bean would work for you since it's all based off of aosp. I'd try the one linked below (and making a backup beforehand).
http://forum.xda-developers.com/showpost.php?p=28246860&postcount=1
Sent from my Nexus 7 using xda premium
Click to expand...
Click to collapse
Cool. I just got the thing a couple hours ago, so it is not unlocked or rooted yet, and you need that to install these.
The ones for the Rezound were made to install in the OS, not from Recovery, but once CM10 is out and stable, I will unlock and go to that and then I can use it. For now, my phone has it so I do have email on the go for work.
Thanks!

Kids & The Nexus 7

Hey Nexus 7 peeps!
Santa Claus brought my kids (7 & 8yrs old) N7 tablets for Christmas. I've been researching alternatives for locking them down, and haven't found anything (yet) that really meets the needs. For reference, I've setup the kids Windows 7 PC with Microsoft Family Safety & Security & about a thousand group policies. Given all that I have no worries right now leaving them with the PC with minimal supervision. They use chrome and I have it setup to use the Microsoft FSS site to do any websearches they do.
So.. I'd like to do something similar with their tablets. I have about 3 days before they come back from their grandparents house to get these things configured. I'm currently setup as the "owner" and my kids have their own users setup. For the moment, they are hooked up to my google account. I'm not adverse to changing that, but want to figure out what the options are first.
Heres my thoughts on what they should have:
Chrome, only if I can put some kind of filtering on. Not opposed to OpenDNS (router is setup with DD-WRT already). I'm not obsessed with allowing chrome (or web browser access) right now.
Play store hidden or disabled. I've required a pin for purchase & in-game purchase, which is fine for now but not ideal.
Google now/etc fine if some parental controls can be added.
Email available only to/from people on parent managed contact list, or disabled completely.
Prefer to have a launcher that has a subset of all available apps, and perhaps drawer restrictions/etc
I'm totally not opposed to rooting or whatever would help with this, or even installing CM10 or something if it would help.
I feel like I must be missing something. All of this seems so very basic to me, yet I've not yet found what I'm looking for. There must be other people who got N7s for kids, and want to have a little bit of parental control over whats going on here. I'm looking for recommendations on how to proceed.
Thanks in advance, appreciate any advice offered.
-Blu
http://www.wikihow.com/Block-Porn-on-Android
This is to get you started, I haven't done much other research.
check out this post of mine: http://forum.xda-developers.com/showpost.php?p=35197028&postcount=2
OP was asking whether create a separate account for her daughter or not.
And answers to your specific questions:
- Chrome doesn't support any plugins, there are system-wide apps that filter content (probably root required)
- disable it with link2sd or any app that handles apps, nova launcher (and many others) can hide apps from app drawer, its still there, just not in the drawer. (though with filtering, i dont know why you would disable play store, with no credit card its harmless)
- I don't really understand what you mean, but google search does have filtering.
- either remove gmail/email completely, or filter emails in gmail filter settings (sth like anything not from dad, mom, relatives, directly remove. Can be done with no problems, the same way you would handle labels in gmail)
- any aftermarket launcher pretty much. check nova, apex (those are built on stock ics/jb launchers) both enable to hide apps from drawer, but everything can be reset with some tinkering. Google for some kid launchers or sth, I'm sure there is stuff.
I think you're panicking too much to be honest. Its not a gsm device, it doesnt send txts, so you will not get a 100$ bill at the end of the month, apps in play store are safe with filtering (I'm pretty sure you can lock that too), and if they're not tech savvy they shouldn't find their way around your little tricks, but don't underestimate them, kids are very smart, and just may surpass you sooner then you know.
If you have to set so many restrictions on devices, you shouldn't have gotten them in the first place, rather get nintendo DS or PSP.
Awesome, thanks for the advice. I'm looking through your recommendations now. This is my first experience with "Real" jellybean.... I've been using a seriously hacked CM10 for my Droid X2. So this is the first time I've had the opportunity do deal with mutliple users. The cool thing I've found is that apps can be disabled per-user, which makes things a lot easier. Many of the apps that I dont really want them to have, I've just disabled and all seems to be well. I signed them both up with their own Gmail accounts, and I'll monitor that on my own.
My kids are definitely tech savvy, I'm an application developer & generally a white-hat hacker; some of that has rubbed off on them. I think everything is cool now, your point about the google store w/o credit card is totally valid, and I hadn't even considered that. Given that, I've setup restrictions on content from store, content in chrome, and content in youtube. I still want to do a little research on content control in Chrome (plus it will give me a valid excuse to root it, everydamnthing in my house needs to be hacked in some way :good
It may well be that I've panicked too much. Its just that the windows setup is so completely perfect, that I'd like it to be on par. I trust my kids, but only so far. My elder has a form of autism that complicates discussions about what to/not to do.
Appreciate your recommendations!
-Blu
Quite sure the play store got an update recently that requires the account password when attempting to buy any pay apps. It does on mine here anyway. just checked my sons stock tablet and it looks like Google have finally got their act together and are using server side authentication for purchases.
Oh and if you do get the tablets rooted this little program is a must
https://play.google.com/store/apps/details?id=com.fivehellions.android.muappshare
Allows you to share and control apps between user accounts on same tablet. I use it to let my son play my paid games whilst restricting him from using my account.
Cheers Danny
I know that go launcher allows you to hide apps, and you can use a password program to restrict access to the go launcher settings. Just my 2¢.
Sent from my Nexus 7 using Tapatalk HD
Thanks for the appshare. That is brilliant. Haven't used it yet, but I'm certain I will. Both are now rooted w/ CWM installed. For now I'm going to leave them with stock browser.... at 7 & 8 they're not yet actively searching for things they shouldnt be. I'll address that as it comes, but I'm way glad I rooted them now, as unlocking kills user data.
My wife is an Apple junkie (yes, yes, you can save the comments) but even she was impressed with the 4.2 ability to switch users, a feature starkly missing from iThings. I explained that it was a decision brought down by the Ghost Of Steve Jobs, and not an oversight.
End of the day... getting very close to having them configured properly, and none too soon. The kidlets return tomorrow afternoon from grandparents....
-Blu
toidimaet said:
Quite sure the play store got an update recently that requires the account password when attempting to buy any pay apps. It does on mine here anyway. just checked my sons stock tablet and it looks like Google have finally got their act together and are using server side authentication for purchases.
Oh and if you do get the tablets rooted this little program is a must
https://play.google.com/store/apps/details?id=com.fivehellions.android.muappshare
Allows you to share and control apps between user accounts on same tablet. I use it to let my son play my paid games whilst restricting him from using my account.
Cheers Danny
Click to expand...
Click to collapse
It only does that when I try to use my play credit. If I use a credit card, it doesn't prompt me
Sent from my Nexus 7 using xda app-developers app
XxSHaDoWxSLaYeRxX said:
It only does that when I try to use my play credit. If I use a credit card, it doesn't prompt me
Sent from my Nexus 7 using xda app-developers app
Click to expand...
Click to collapse
Ah, I am using a debit card in the UK. It could be a card type thing or even a country thing.
Sorry it took me so long to post and you have set up the tablet, but here's what i did for my daughter's N7:
I set her up with her own Gmail account. Rooted and unlocked the N7 and set it up as hers.
I added her account to my N7 so i can see activity etc. Case, screen protector and stylus.
APPS:
Adfree of course
Avast! In case it is ever lost, & some nice anti virus etc
Smart App Protector - password protect any app....so although I got her her own email address, she can't read, or send email without password...you can lock down the browser too, which I did, because she has games with links that will open a browser. THIS app is awesome.
Parent Dashboard, because it has some fun videos and apps -
I toyed with this being her desktop for a bit but too restrictive - I do like the ability to send her video messages (shared custody).
Skype so we can video chat (only for contacts, natch).
I don't have a credit card attached to her account, but if she wants to buy, I can do a couple things...add it on my N7, buy add to her wishlist them she can d/l on her. Our i can add cc and buy on hers and remove cc.
I think that's about everything and let her go to town.
Sent from my Nexus 7 using xda app-developers app

[Q] Possible to lock phone in case of theft?

My Galaxy 1 was stolen from me in Feb, after that i went through a lent s3 and now proud owner of an s4 (i9500).
So i have two questions on this:
1) is there an equivalent for what a bios password is in a PC?
(have to go short something in hardware to bypass, only is asked upon powerup/hard reboot).
2) Is is technically possible for an app to lock on custom sim? (possibly modifying efs folder)
Thanks!
Abrojo said:
My Galaxy 1 was stolen from me in Feb, after that i went through a lent s3 and now proud owner of an s4 (i9500).
So i have two questions on this:
1) is there an equivalent for what a bios password is in a PC?
(have to go short something in hardware to bypass, only is asked upon powerup/hard reboot).
2) Is is technically possible for an app to lock on custom sim? (possibly modifying efs folder)
Thanks!
Click to expand...
Click to collapse
http://bit.ly/174zPh6
LeJolly said:
http://bit.ly/174zPh6
Click to expand...
Click to collapse
Thank you for patronizing me but that didnt answer my question, already been through pages of results when i previous galaxy was stolen (even tried locking from google play). None of the apps listed on a google search for locking and tracking do what i ask.
Centralized cloud based locking doesnt work (a blacklisted imei can get reinstated fairly easy), neither does the standard password Operating System level password.
Thats why i am asking for specific alternative ways of locking the phone that should be (if possible) more tampering resistant.
1) bios equivalent password.(requiering hardware shorting to bypass)
2) custom simlock
I use avast! free mobile security (https://play.google.com/store/apps/details?id=com.avast.android.mobilesecurity&hl=en),
the anti-theft module has option to block the phone if the sim card is changed
LeJolly said:
http://bit.ly/174zPh6
Click to expand...
Click to collapse
What a woeful answer. Try reading before you be a ****.
In answer, no there is nothing similar to a BIOS lock on Android phones, however like mist813 said, Avast is quite good. If you have root access you can install it as a system apk then even if the thief wipes your phone, it's still there.
You could also try lookout its free. Can do tracking, remote wipe and also takes a photo of anyone trying to unlock your phone.
I don't think there is anything that can prevent someone from just flashing a new firmware and wiping the phone completely.
Sent from my Nexus 10 using Tapatalk 2
I don't think there is an equivalent to BIOS lock in Android. I'm not sure if you tried Lookout or the native Samsung remote control under security settings. Both gives you the options to locate, lock, scream or wipe your data. I tried the locate and scream options and they work. Never tried lock or wipe, but they should also work! Now going to the fact of wether someone can bypass or overcome these security measures, then I personally think it's possible and whatever we do he can find a way to go around it depending on how smart and resourceful he is! If my phone is stolen, frankly speaking I won't waste my time trying to find it or just lock it. All what I'll care about is to wipe the data off, and hopefully these softwares will work if needed!
Sent from my SGS IV using Tapatalk 2
Abrojo said:
Thank you for patronizing me but that didnt answer my question, already been through pages of results when i previous galaxy was stolen (even tried locking from google play). None of the apps listed on a google search for locking and tracking do what i ask.
Centralized cloud based locking doesnt work (a blacklisted imei can get reinstated fairly easy), neither does the standard password Operating System level password.
Thats why i am asking for specific alternative ways of locking the phone that should be (if possible) more tampering resistant.
1) bios equivalent password.(requiering hardware shorting to bypass)
2) custom simlock
Click to expand...
Click to collapse
Okay lets not be a **** this time.
1) There's nothing equivalent to that bios thing
2) http://stackoverflow.com/questions/...-the-device-on-removal-of-sim-card-or-sd-card
There are also apps that just notify you if sim card is changed for example this https://play.google.com/store/apps/details?id=instigate.simCardChangeNotifier&hl=fi
And of course there are some apps that let you remotely control your phone for example http://forum.xda-developers.com/showthread.php?p=7567932
Abrojo,
You don't really need a third-party app for this.
Please check out the Samsung Dive service. (www.samsungdive.com)
You can track your phone, lock it with a custom password, sound an alarm, etc...
The problem is, the phone needs to have Internet access.
I am using the Cerberus app (https://play.google.com/store/apps/details?id=com.lsdroid.cerberus&hl=en)
This is the best rated Anti-theft app you can find for your Android.
a license costs 3USD if I remember correctly. With one license you can secure up to five Android phones.
Featuers:
Track your phone
Remote lock
Remote wipe
And a lot more options...
A couple of things that I think are extremely useful:
When a wrong password or pattern is drawn to unlock your phone, a picture is taken with the front camera and emailed to you together with the location of the phone.
When the SIM is swapped, you can configure up to three phone numbers that will receive an SMS with the new SIM card number and the location of the phone.
You can hide the app from the App Drawer.
Check it out... very useful
i use also cerberusapp 4 years now. everything is perfect. when u install as system app u can do everything.
Sent from my ThL W8 using xda premium
Apparently there is also rumors of LoJack already being built into these phones, with the possibility to activate it some time in the near future. Don't remember all the details, but I just read an article about that. Not being patronizing when I say it, but Google Galaxy S4 LoJack and look into it.
Also, I am on Verizon, and am testing out their mobile security app that is preinstalled. It's $1 a month, but they allow you to remotely lock your phone, wipe it, and track it should you lose it. I don't believe it embedded at the hardware level, but it is something that gives me a little piece of mind.
Edit: I went to switch to the Norton Mobile Security app, since I use it for all of my other devices, and discovered that the Verizon Mobile Security App - once activated - cannot be uninstalled, force stopped, you cannot clear the data, and you cannot disable it. In order to do so, I first have to go into my Verizon account online, sign in, and unsubscribe from the service. After realizing that, I have chosen to keep the Verizon security app, because it has that extra layer of security. Are there ways of bypassing that, I'm sure there are. But assuming that my phone is stolen by some low level thief and not some crazy high level criminal circuit, I should have no problem retrieving it.
Samsung Dive down?
I cant seem to have this page load up www.samsungdive.com
Is it down for you too?
Sm007hCriminal said:
I cant seem to have this page load up www.samsungdive.com
Is it down for you too?
Click to expand...
Click to collapse
It's working with me.
Sent from my SGS IV using Tapatalk 2

Factory Reset Protection (FRP) myth -- Lesson for everyone!

I did a factory reset before submitting my device to Samsung repair. But before doing it, to not have any trace of my online/offline data after reset I had to take care of ‘Factory Reset Protection’ (FRP) so that it won't ask to enter my email after reset. I removed the device security locks including fingerprints and also any Google account associated as said by 99% articles over internet (at least in my 30 mins of read thru of Google searches specifically for Samsung & also generally for android). Also had checked necessary options for all of my datas to be synced to Google. But in order to reinforce my knowledge about FRP and how it’s getting triggered I went thru some YouTube videos and articles specifically for Samsung & also generally for android prior to reset. And finally everything was good to go and ready for repair
Got my device after repair and did a reset again for Google to ask to restore my apps from previous backup of the same device. But it didn’t as you can see from the pic attached.
So what could be the reason you ask. When I removed the Google account (primary) for reset process, all the ‘App datas’ (thankfully not my contacts and other stuffs) were cleared from Google servers. Simply to say, the ‘Remove account’ option will tell Google that this device is no longer associated with this account and to delete all Android related datas associated and there is no way you can get this back.
So I don’t know whom to blame. The hundred’s of article over Internet about FRP (example: http://www.androidcentral.com/factory-reset-protection-what-you-need-know )
OR Samsung for not giving any information anywhere in internet or even in the Software (as warnings) [Their only website related to FRP is still down here in my country at least]. OR Google? For not giving any clear information regarding this action.
Anyway there is no use in crying over spilt milk. All I have to do now is manually install all my 83 apps one by one that were previously installed and who knows whether their respective datas can still be synced. There were even circumstances which most of us should have gone thru when the Google not showing yesterday app restore list but 1 week ago in the setup process.
Things like this can very well frustrate anyone if they are heaving depending on cloud. This is just one of the many little things(software, H/W dependent) in Android that may frustrate a user very much. NO WONDER WHY PEOPLE MOVE TO iOS. Because over customizability and all there are some stuffs that matters the most and iOS still excels in that. We geeks know that but it’s the freedom and exploration that makes us forget all those important stuffs.
For those of you gonna say “YOU SHOULD HAVE USED SMART SWITCH, ADB BACKUP, TITANIUM BACKUP OR SOMETHING ELSE” -- when something is meant to work it should work. I even had bad experiences with Titanium backup, could be device specific but whatever it is.
Welcoming all POSITIVE and NEGATIVE comments. LOL.
Running stock TouchWiz with the April patch. Tried a reset without removing Google account and it didn't ask for the mail ID to be entered for verification during setup process. So basically something have changed recently on how FRP works and whatever I've wriiten is what you have to take care of. regarding backup and all. Please share this thread with you friends. .
Will appreciate a thanks.
Thanks for sharing. Seems like a good warning for all of us.
Sent from my SM-G930V using XDA Premium HD app
Sorry to hear of your difficulties. My own frustrations have been building with Android as well. It is ridiculous how much we have to eff around with hidden settings and tweaks to get decent battery life. I am keeping an eye on the iPhone 7 to be honest.
Though apple ecosystem has its own share of frustrations.
Thanks for the info. I too had experience of some backup apps not working as they intended to be. Even Titanium Backup had given me tension when new android version comes or sometimes for no reason. But my go to solution(even without root I believe) is always have been Tasker+AutoInput combo. When nothing works out I just program them both to install apps from PlayStore based on the app list I manually backed up with another app. That's it. Don't know whether that will cause any bad effect on device hardware. Does it?
xxaarraa said:
Sorry to hear of your difficulties. My own frustrations have been building with Android as well. It is ridiculous how much we have to eff around with hidden settings and tweaks to get decent battery life. I am keeping an eye on the iPhone 7 to be honest.
Though apple ecosystem has its own share of frustrations.
Click to expand...
Click to collapse
I agree as i mentioned in OP. Sad to see Snapdragon 820 users struggle with battery life by removing un-wanted system packages. This even exists to an extent in my unlocked DUOS version. Google gotta have more control over Android. Hope with Android N this is not just gonna be with updates but also else where. Come on Google it's 2016.
OH gosh. This is an important piece of information. Somebody should link to this info by posting an article in xda-developer.com . Is there any way to reuquest?
Thanks BTW for a warning
Sheryl John said:
.Simply to say, the ‘Remove account’ option will tell Google that this device is no longer associated with this account and to delete all Android related datas associated and there is no way you can get this back
Click to expand...
Click to collapse
1) Disable Internet connectivity (wifi, data)
2) Remove accounts, then
3) Factory reset
Google doesn't know that about the removal so app data is still in your account, yet the device no longer has any link to the Google account so it's safe against FRP.
That said, with multi devices (and household members sharing 1 common account as the base account), I don't back app data to Google at all. TiBu has its quirks but I've yet to lose anything with it. On the contrary, I probably have too much back up (who needs Gingerbread apps back ups??? yeah, I still have them LOL).
lost_ said:
1) Disable Internet connectivity (wifi, data)
2) Remove accounts, then
3) Factory reset
Google doesn't know that about the removal so app data is still in your account, yet the device no longer has any link to the Google account so it's safe against FRP.
That said, with multi devices (and household members sharing 1 common account as the base account), I don't back app data to Google at all. TiBu has its quirks but I've yet to lose anything with it. On the contrary, I probably have too much back up (who needs Gingerbread apps back ups??? yeah, I still have them LOL).
Click to expand...
Click to collapse
That's the only way it seems for hard reset. But as I mentioned in my OP there is no need of removing the Google account for soft reset. FRP won't be triggered.

Categories

Resources