I'm running Omega ROM v16, and in Settings, Security, Encrypt Device, all but the Password option is grayed out and disabled. It says: Turned off by administrator, encryption policy or credentials storage. Under device administrators, there are 3 apps, but none of them are checked. Clear Credentials is grayed out too (I think because I don't have any non-system certificates). I don't have any VPN set up.
Any ideas?
Possible theories:
Hola - which uses VPN to work because Root mode doesn't work for some reason
SEAndroid is permissive, due to ROM settings
Help, please?
I received my Nexus 6P today, which is running Android 6.0.
By default, the device is encrypted. But it seems most apps that I try to run that require encryption don't realize that my device is encrypted and I'm getting errors and loops: Gmail, Sunrise, Mailwise, Outlook.
Is there something I can do to get these apps to work?
I don't seem to be able to disable and re enable encryption.
Is this happening to anybody else?
6P has hardware encryption. You need to encrypt it through software also.
They want this
papi92 said:
They want this
Click to expand...
Click to collapse
Thank you. That seems to fix it. For those people googling this you get there from Settings > Security > PIN Lock > Secure Start-up
Not a very intuitive fix and should probably be bundled with the encryption settings.
I skipped through the startup to unlock and root the phone immediately when I got it and I didn't get the option for secure startup afterwords, took me forever to find that setting.
In preparation for the impending upgrade to Android 6 Marshmallow, I'm trying an experiment on my Android 5 based Zenfone 2. I'm going to see how annoying it is to give up root. The first thing I did on my first android phone was root it, so I've only every used rooted Android devices.
Prologue:
Root on Android 6 (usually) requires an unlocked bootloader, because root is achieved by modifying the boot image to inject su into the system. That way the system image is left unmodified and can continue to pass dm-verity checks.
At the moment, there does not appear to be anyway on the Zenfone 2 to unlock the Marshmallow beta bootloader, and it also appears to relock any unlocked bootloader. In fact, the droidboot binary in the droidboot.img of the Marshmallow beta contains the strings rm -rf /factory/asuskey and rm -rf /factory/asussignature. droidboot also contains the strings unlock successfully...reboot after 5 seconds and **** Unlock bootloader? **** as well as other strings referring to unlock (droidboot from the .184 Lollipop also has those strings). So, my hope is that there is a simple way to unlock the bootloader, which will be revealed by Asus, or discovered by somebody.
My thought is that worst case those of us who want root will use an unlockable Lollipop bootloader with a Cyanogenmod 13.1 based ROM created with updates from the Asus Marshmallow source code.
Experiment:
I've removed Xposed and SuperSU from my phone. Making it stock Android 5. I'm documenting here the functionality that I lose. The first goal is for my own amusement to keep a log of what I'm giving up.
The second goal, and probably the major one, is to solicit suggestions on what can be done to replace the functionality I'm losing.
What I'm giving up:
AdAway - No system wide ad blocking. Firefox with uBlock Origin should cover blocking ads on the web. I usually buy apps I use frequently, but I'll have to see which ones are annoying with ads. I'm aware of the VPN based ad blocking methods, but I'll have to wait and see if it comes to that.
AFWall+ - Using root to improve security... I mostly use this to prevent some apps from using mobile data, and to prevent some apps from gaining network access at all.
BetterBatteryStatus - It works in non-root mode, but not as well.
BusyBox - Without root, there isn't much need for this anyway.
Cryptfs Password - Once again, security is harmed by removing root. This allowed my encryption pin to be different (and much longer) than my screen lock pin. I don't want to type 10 digits to unlock my screen, but it's fine for booting.
Greenify - This definitely kept some aps in check, but perhaps Asus' Auto-Start Manager will be able to replace it.
GSam Battery Monitor - Like BetterBatteryStatus, this had a root component to provide more information.
Kernel Adiutor - For some reason my phone seemed to only go to 1.8ghz instead of 2.3ghz, so I used this to fix it.
Linux Deploy - I never used the Linux chroot image for much, but it was a cute toy.
Secure Settings - This let tasker automate adjusting some things which require root to change.
Titanium Backup - This is a massive loss in functionality. Simply having backups is tremendously important. The ability to freeze unwanted system apps is also nice. I can reload many of my apps from Google, but not all of them bother to save their settings in the Google backup. Ohh, the bloat!
Trimmer (fstrim) - Probably not really necessary, anyway.
Xposed
Amplify - It saved me lots of wakeups, but I don't know if it really did much to increase battery life.
Fix Lollipop Memory Leak - I don't know if this did anything, either.
GravityBox [LP] - I didn't tweak too much, but what I did change was really useful.
NetStrength - I like replacing my wifi bars with useful information.
ProtectMyPrivacy - The permission settings in Marshmallow would make this obsolete anyway.
YouTube AdAway - Nice, but not required.
What I'm gaining:
Android Pay - I guess I can play with this now.
AFWall+ - Using root to improve security... I mostly use this to prevent some apps from using mobile data, and to prevent some apps from gaining network access at all.
Click to expand...
Click to collapse
Asus has integrated a firewall iptables recent months.
Asus mobile manager -> User Data -> Restrict (bottom of screen)
For the rest, no root is to accept to take along twice monitoring tools of an advertising billboard.
Keep in mind that Google is an advertising agency that is desperate to earn money, including harassment to get the maximum information.
Its purpose, despite what he claims, is not to improve people's lives, but his bank account.
Android is a disguised tools for Google, not for the people who is a commodity to be exploited.
I'm gonna miss Adaway and Afwall+ the most. Afwall+ is much better than the Asus built in firewall. You can disable net access by default for newly installed app. You are notified to set firewall rules when you install an app. You can filter apps to be set. If only Asus could provide a such a bunch of feature for their firewall, I won't miss root so much.
Sent from my Asus Zenfone 2 using XDA Labs
IDEDALE said:
Asus has integrated a firewall iptables recent months.
Asus mobile manager -> User Data -> Restrict (bottom of screen)
Click to expand...
Click to collapse
Thanks for the info about the functionality in Asus Mobile Manager, I didn't know that.
As far as Adaway goes, try this https://block-this.com
Sent from my ASUS_Z00A using Tapatalk
IDEDALE said:
Asus has integrated a firewall iptables recent months.
Asus mobile manager -> User Data -> Restrict (bottom of screen)
For the rest, no root is to accept to take along twice monitoring tools of an advertising billboard.
Keep in mind that Google is an advertising agency that is desperate to earn money, including harassment to get the maximum information.
Its purpose, despite what he claims, is not to improve people's lives, but his bank account.
Android is a disguised tools for Google, not for the people who is a commodity to be exploited.
Click to expand...
Click to collapse
Agree with most of that... unfortunately the ASUS mobile manager "firewall" doesn't work any more on the current marshmallow beta.
It's still there, but it seems not to work for blocking apps.
The new app permission system in MM may be used to prevent apps from connecting around, in theory at least, but I'm not sure how effective that is.
This phone without root absolutely sucks. There's a thread on the ASUS forum, guy has links to pre rooted system images but I haven't tried it.
http://www.asus.com/zentalk/thread-39487-1-1.html
Sent from my ASUS_Z00AD using XDA-Developers mobile app
The thread mentioned was opened in September '15... Didn't try downloading the files but can't imagine that there's a pre-rooted file out there already. Somebody would have known and told us, I guess
If anyone tried and it works, may you leave a line!
sent from my Binford Z00AD using tapatalk
nfc expert said:
if you want stop ad without root, you can try this : https://block-this.com/
Click to expand...
Click to collapse
kenbo111 said:
As far as Adaway goes, try this https://block-this.com
Click to expand...
Click to collapse
There are several other VPN based ad blockers as well. AdClear, AdGuard, and I think some more.
I played with some of them when they first started coming out, but always returned to the host file based blocker, because it was easy and worked fine with root. I think the phone has plenty of RAM and CPU to run these VPN ones, but I haven't been annoyed to try them again. So far uBlock Origin in Firefox has been fine. In the almost two days since unrooting I've used one app which shows me ads.
IDEDALE said:
Asus has integrated a firewall iptables recent months.
Asus mobile manager -> User Data -> Restrict (bottom of screen)
Click to expand...
Click to collapse
Thanks for the tip, I didn't know about it. This was easy enough to setup, even if it doesn't have as many features as AFWall+. I haven't tested to make sure it works.
My idea to get root on Asus' Marshmallow release is to install just the system, but keep the unlocked bootloader and ifwi from Lollipop. It should be easy enough to modify the updater script to only flash the system and boot image, while leaving the bootloader and ifwi alone. I don't know if that will work, or if the system will crash when it finds an old ifwi, or if the bootloader will fail to load the new system. With an unlocked bootloader, root is trivial.
As long as the bootloader is in place, it should be easy to recover from a broken system.
Don't take my word for it though, these are just ideas, and I'm not ready to try them yet. My warranty is over at the end of the month, so I'll unlock my bootloader then.
Filedash features comes inbuilt in OnePlus file manager, When we try to use this it renames the hotspot settings permanently and making hotspot as open
Next time when we turns on anybody can connect to our device. Seems to security threat
Using oneplus 6t device with latest January update
Hi.
I need guidance on how to decrypt and mount my phone's encrypted "sdcard" storage so I can take a backup. (Alternatively, I would like some form of statement saying that even if I dirty flash, and then log into my Google account, I would be able to access my encrypted data. I doubt this is possible; I believe encryption to be unique per installation.)
My beloved OP5 was beginning to get sluggish (and sometimes wouldn't store photos I would take without having unlocked the phone), so after ~1.000hrs uptime I rebooted it. And now, it's stuck at "Phone is starting" displayed over my lock screen wallpaper. It can't seem to get past this stage, it will stay that way even if left overnight. My daily alarm seems to function normally, and I can access the notification drop-down -- and through that the Settings app.
It's running OxygenOS 10.0.0, with the latest OTA update. It is rooted and has the latest TWRP recovery and Magisk (solely for root, no Magisk modules installed).
Through the Settings app, I can see that the Default App registered for "Home app" is "None" -- wtf? Clicking it gives me no options (pretty much just a blank screen), although there is the stock launcher as well as ADW launcher (which I prefer, and had as default prior to the reboot).
I have tried wiping the cache and Dalvik. I have tinkered with turning lock screen settings (code, pin, pattern, etc) on and off, but found that anything other than the pattern would not allow me to access TWRP because that one either shows a pattern input, or a password input that accepts neither a pin, a password, nor my Google password. That is to say, using the pattern code, I can make full use of TWRP but apparently to no effect.
I have read that a factory reset "should" fix this, but I am running with an encrypted file system and thus I cannot simply make a data dump from TWRP. Also, although I can access the "USB preferences" setting (which I have set to default to "File transfer" anyhow), I cannot get it to mount on my Linux workstation (which has not been a problem before) -- I do get a device named "20160907_11062618" with the autorun.inf and such files, but the "OnePlus" device will not mount via MTP.
What else can I try to recover my encrypted data, before I inevitably re-flash this device? Can I use fastboot to decrypt and mount the phone's "sdcard" storage on my workstation, if so with which commands?
Ahr well ... I did not find any way around this...
I did a factory reset ---losing all my encrypted data in "/sdcard"--- and started over.