Related
Hello
The other day i surfed to google from my XDA exec.
mobile internet rocks!!
i was wondering how does google know that i surfed in from a pda, cause i think it sent me to
www.google.co.uk/pda
the web page probably detected your screen size and redirected you to a page that was more friendly to you PDA browser. i wish more sites would do this.
www.google.com/pda for us US residents.
LOL
Not the screen size but the type of your internet browser, in this case Pocket IE.
Correct--it's not the screen size.
Although a LOT of your information is sent over the wire, much more than most of us realize, your resolution information is unknown to most websites, unless you explicitly allow it to be given via some kind of an executable that transmits such information. An example would be an embedded ActiveX object in IE for Windows.
Back on topic, yes, your browser information is known, not only to Google, but to every other website you visit. Not only that, the website also knows where you came from (i.e. the http addy) and where you went when you left it. There's a whole bunch of information deemed to be private that we would rather keep to ourselves (such as our surfing habits) that's known to any website that installs a cookie (a common thing nowadays) on your computer.
This is also how Google knows where you are. For example, when I log on, Google send me to the local Saudi page at http://www.google.com.sa/ It knows this information by doing a reverse lookup on your IP address, and comparing it against known databases of geographically assigned IPs. Since IP addresses are assigned and tied to geographical locations, it's easy enough to do, although it's still very disconcerting to see.
Be careful folks, even your searching habits are being tracked by Google. I have nothing to hide, so I don't care, but many folks do. Witness the recent Federal inquiry into the searching habits of the users of major search engines. Yahoo and MSN gave up that information quickly enough but Google is resisting. I don't think it will be able to hold out for very long though.
Imagine...now the fact that you searched for p0rn on the 'net is well known to anyone in the know. Scary, isn't it?
This Privacy Newsbyte brought to you courtesy of XDA-Dev's online donation campaign. Donate or be left in the dust!
thanks monakh
so google can detect both my mobile ip address (is there such a thing?) and my browser, correct?
monakh said:
the website also knows where you came from (i.e. the http addy)
Click to expand...
Click to collapse
Correct, through the referrer...
monakh said:
and where you went when you left it.
Click to expand...
Click to collapse
Only if you click a link on the site itself, -and- it is handled via a special handler.
No information is sent to a website when you leave it through e.g. a bookmark in your browser, or by typing in a new URL.
Please correct me if I'm wrong
You are correct.
hey i mailed myself (google account) using my adsl modem and using the gprs/3g connection to check the header to see if i could spot an originating ip address
i found one common ip address
Received: by 10.xy.za.b with HTTP; Sat, 18 Feb 2006 05:34:45 -0800 (PST)
i guess this is the google server, correct?
is there any way to prise the originating ip address from an email
That's why there is a registry hack to set Pocket Internet Explorer works like Internet Explorer 6.0.
Tuningszocske said:
That's why there is a registry hack to set Pocket Internet Explorer works like Internet Explorer 6.0.
Click to expand...
Click to collapse
Not entirely... I mean, you could - of course. But it also means that many sites will fail to send you PDA-specific content - which, with most plans/top-ups, means heavy costs.
Identifying PIE as IE6 is more used for stupid websites who check whether the browser is IE6 or above, regardless of whether that is actually required by the site.
There's three parts, the compatibility bit ('(Default) = Mozilla/4.0'), the browser string ('Version = MSIE 6.0') and the platform ('Platform = Windows NT 5.0'). If you leave the last bit intact ('Platform = Windows CE'), then you should still be able to get into stupid sites, while having PDA-friendly sites send you the PDA content.
oh i had not thought about the popups
i guess we wont get(suffer) popups with mobile ie5?
i just posted to this bulletin board to check my ip address
from the pc it looks like this 82.1a.bcd.efg
and fro my cda it looks like 193.abc.def.ghi
That's fine because presumably your mobile device and your home PC are on different networks so they sport different IPs.
IPs are a dead giveaway. In many cases, your position can be 'somewhat' and primitively triangulated to within 5 square miles of where you are. This may not be necessarily true for mobile networks, but those networks know where you are at all times anyway. In fact, there is now regulation in the US that mandates all handset makers to manufacture hardware with GPS functionality built-in. Between the two and a half dozen GPS satellites and your cellular network, you can run but you can't hide
This is, of course, so emergency services can reach you in time of need (in case you are unable to make the call to 911/999).
Of course...
monakh said:
This is, of course, so emergency services can reach you in time of need (in case you are unable to make the call to 911/999).
Click to expand...
Click to collapse
off-topic...
Technically it's so they can find you if you do call 911/999/112/whathaveyou but are unable (due to injuries, or duress, etc.) to state your location.
Being able to find you at any time is an added perk but it needs court orders even if you have been reported and officially designated a "missing person". Getting such a court order can take many hours, being declared a missing person can take 24 hours up to 48 hours (depends on the country and exactly what reasons you have to believe the person in question is truely missing).
ZeBoxx said:
monakh said:
This is, of course, so emergency services can reach you in time of need (in case you are unable to make the call to 911/999).
Click to expand...
Click to collapse
off-topic...
Technically it's so they can find you if you do call 911/999/112/whathaveyou but are unable (due to injuries, or duress, etc.) to state your location.
Click to expand...
Click to collapse
Ahh yes, I stand corrected.
It's so we CAN make the call and are unable to state the location. That WOULD make sense. However, like you said, there are legal hurdles, although at least in the U.S., they are fewer and far between.
is there any ip address list out there which tells me which ip addresses are allocated to which country?
are ip addresses bunched like telephone numbers
e.g. +1 is north america
+3 and +4 is europe
+96 & +97 middle east
nope, that's not how they work
organisations can get an IP from their service provider, who get blocks from their service providers, who get bigger blocks from places like RIPE, who in turn get huge blocks from ARIN.
But if it's a specific IP you're interested in, try VisualRoute
My company runs an exchange server for email, and I was wondering if anyknow knows how to connect to them, using the mogul. I went through the setup on the phone, with no success...Are their any additional steps required to connect to the server when you are not on the same network as the server?
Missing Certificate ?
I think you'll have to install the certificate from your Mailserver on the phone to get it working.
Do you get any active-sync error code when you're trying to sync ?
In general you get an error-code in ActiveSync which is telling you what's wrong...
IMHO the best idea would be: aks your IT-Stuff in your company
you need to add a server in active sync with your companys exchange server addy and your username/password
To be clear you need to enter your companies OWA server address. At most small companies this is your Exchange server and at most large companies it is your ISA server.
Example:
You access OWA using https://exchange.mycompany.com/exchange
You enter: exchange.mycompany.com in the activesync settings and you use your username, password and domain to authenticate
You also need to make sure Outlook Mobile Access is enabled on the Exchange Server and on your Exchange Mailbox. You will need to contact your IT Admin to verify these settings.
I'm in the same boat as the OP. I had been trying to hit the mail server directly or via VPN, with no luck, probably due to no certificate. Never thought about OWA. I set this up as indicated in the prior post, and checked 'Tasks' only (just to run a quick test), and it sync'ed fine. I then checked email and calendar, and now it takes me to a company sign-in web page (same page I encounter when using web access to OWA). Weird thing is the page is in the ActiveSync window and does not appear to be rendering correctly or completely (e.g. no 'submit' button). Nonetheless, I sign in and click where the submit button "should be" and the page goes away and it appears to start syncing, only to take me back to the sign-in page again after 15-20 seconds. Any suggestions on how to get past this point? I've tried logging in to OWA from IE, but ActiveSync still brings up this sign-in page. And yes, I've got my userID, pswd, and domain properly set up as well. Thanks.
BTW, my company IT won't help because they only support handheld access for specific company-issued devices.
try using mail.yourcompanymailserver.com/oma
its a lightweight version that handles easy in mobile browsers (only if your IT guys have enabled it)
as for the OP your exchange settings could vary depending on how your admin set it up, ssl (requiring a certificate) or not. to get the certificate from your company you can dl it from the server mail.yourcompanymailserver.com/cersrv
you log in using your mail credentials and you select download certificate chain and select a der 64.
save it to your phone and just install.
chances are though if your company is using a lot of treo's they dont require ssl because you can't install self issued certificates on them (good work palm). so if you want to ask your IT guys their setup and post it here i can try to walk through it with you.
this is my situation and how i got it to work.
Although i tried to internal address of 1x01po2s.domain.name, that didn't work.
I thought about it for a while, and reasoned if i can access my companies exchange server outside the network through a http://mail.domain.name address, then maybe that'll work hahaha
BAM! it did and now it works perfectly fine. Conincidentally, since i started trying to get this going last week, i emailed a few guys i know and the last one who got my email (it was forwarded to try to solve the problem) said that because of security policies, i am not allowed to do this. Ooops!
Here is a quick run down of my settings:
server address: mail.domain.name
ssl is selected (checked)
username: exchange/nt workstation login name
password: user password
domain: network domain (we have different domains)
save password is selected
under advanced you can select whatever options you like
next select e-mail, and any other options you want
and you're done!
I also enabled the push email icon and get my email regularly on my phone throughout the day.
Well, i hope that this helps some of you out.
server address: mail.domain.name
Click to expand...
Click to collapse
just so folks know there is no standard for this, its whatever subdomain your company decided to put OWA on, for my company its webmail.companywebsite.com
best thing to do would be to ask someone in your company how to access email from outside the office using internet explorer, thats the address your lookign for
Sprint mogul (Titan) WM6.1 Rom update killed exchange server activesync
(Sorry in advance for the long Email) I purchased a Mogul from RS about three weeks ago. For the first week, it worked great! I logged into my company exchange server down loaded and synced email, cal,contacts,tasks ... was very excited. I also got very excited when I started t read threads in this blog .... it seems like there are some pretty smart members maybe someone can help!!
Noticed that there was a new Rom (Sprint TV and improved connection) installed the ROM.
Have spent endless hours with HTC technical support, sprint technical support (not an appropriate name). At times managed to get the email to load but never again Cal, Tasks, contacts. Always able to get sent emails to load (by checking option) . I'm left with a couple of alternatives (any others would be greatly appreciated (actually I really like this phone but I need my email,schedule,etc to work) The error is 0x8503001C there is no exact description about this from MSmobile it seesm to be an awh**** code. Searching on the web provides 1000s of hits unfortunately not just my issue.
o Go to an early Rom WM6.0. So far it seems like to do this I need to unlock the phone then flash the earlier rom?? Since no SIM card I need to hack the registry?? There are several products out there which is best (I do not mind paying for somethng that works well). I down loaded several "Oficial ROm versions ... unfortunately did not write down the number of the one the phone came with.
o Find some way of getting this thing to work well to keep the extra features
o My grace period ends in a week ... cancel with Sprint go to Att but there is not a 3G phone I like ... only Iphone ... it has issues for exchange server??
o I got my wife a Touch at the same time (it runs WM6.1) same issue. Downloaded once my corp email no cal, etc.
o I was told that this Rom was cooked up by MS & Sprint what a disaster
Please, please help ... Thanks in advance
Scurfer
Exchange email and Skype not working after Upgrading Sprint Touch to Wm6.1
The Exchange activesync died at connection and never can sync my company emails after I upgraded Touch to 6.1 Sprint/HTC ROM. Skype also does not work, no sound after first ring, even with 2.2.0.45. I like the GPS and Rev.A speed, and do not want to risk downgrading the ROM. Anybody encounter ssimilar situation?
Hello,
Problem concerns one of the biggest polish banks (www.mbank.pl) and its internet transaction system.
Usually when you I am logging to the system it is encrypted connection (small padlock visible), and site address is http://www.mbank.com.pl - and this is standard situation.
2G/3G - Default Browser
Now when I am trying to log in using default 2.2 Nexus browser there is no small padlock visible and site address is: http://10.158.226.75/www.mbank.com.pl
I can typy in credentials but when hit LOGIN I receive information that my browser does not accept cookies (cookies are enabled).
2G/3G - Delphin Browser
Same issue as on Default Browser
WiFi - Default Browser
Everything works fine.
2G/3G - Skyfire Browser
Everything works fine.
Most suspicious from my perspective is this IP address http://10.158.226.75....its like he can not use secured connection...but only on 2G/3G?
EDIT:
Now I discovered that putting https://www.mbank.com.pl solve the issue....
What could be the reason of such behaviour?
You have just possibly fallen a victim of "phishing" - a site trying to disguise itself as another site. This is not about browser, but about the site itself.
I've tried to trace 10.158.226.75, but it's not visible - so I guess it might be a proxy of your cellular data provider. But it might be something worse.
1) Just in case, please change your password for the banking site, and never write your credentials when you see that the address is different from what you've expected.
2) Try to use trace route sites from the phone to understand, what is this IP and whom does it belong to.
If there is a padlock - you're using HTTPS, not HTTP. Always, without exceptions. You might just be automatically forwarded to HTTPS site.
[edit] Checked things a bit. The site is www.mbank.pl, not www.mbank.com.pl - and it's not secure. When pressing "Log in", you get to https://www.mbank.com.pl, and it's secure. Put attention - HTTPS, not HTTP.
And lastly, it doesn't have anything to do with browser security.
Could be a proxy provided by your network provider as it only occurs when using 3G.
Thanks Jack for the answer.
To be honest I dont think its phishing but just in case I will change the password.
I think there is something wrong with the link between http://www.mbank.pl/ and https://www.mbank.com.pl/ (link is under LOG ON button).
When I am trying to open https://www.mbank.com.pl/ using LOG ON button I open http://10.158.226.75/www.mbank.com.pl (please note it is not secured). Its like browser automatically does not accept some certificate or something.
However when I open https://www.mbank.com.pl/ directly (typing in address) it works fine and I can login to the system.
Most suspicious is that on the WiFi it works just fine....
brachson said:
Most suspicious is that on the WiFi it works just fine....
Click to expand...
Click to collapse
That's the reason I supposed that it might have something to do with your cellular data provider.
Here's the problem.
When I try to connect to my University's network , the Galaxy S is able to connect JUST fine. However, when I open a browser it says the incoming certificate is not secure and then I have NO INTERNET on any page.
What the network is supposed to do is redirect me to the login page so that I can register the device to the network. My phone can't do that apparently and just sits connected to the network with NO INTERNET connectivity. How can I fix the problem?
This is the university network and the instructions how to get on it for Android devices:
http://www.colorado.edu/its/docs/wireless/androidwireless.html
I connect to it just fine but am UNABLE to get to that device registration/login page.
This is NOT just for my university. ANY public network which requires me to accept an "agreement" before it lets me have internet access, my phone KILLS ITSELF and CANNOT pull up the agreement page but instead tells me there is no internet. I'm SURE its a software problem or something with settings but can't figure out just what it is. Help?
Just about the only networks I can connect to on Wi-Fi are home networks. It SUCKS.
Are you manually trying to type the page address into the browser (https://dhcp.colorado.edu/Public/forceresponse.cgi?SelectAccessData=true)?
No. I tried other websites. The phone browser is IMMEDIATELY redirected to that page and after 0.5 seconds it says "Communication Failed" or something similar and loads NOTHING. Hence my problem is that it can't get to that registration page.
I am not sure then. I have had no issues connecting to public connections that require logins. Maybe call the tech # listed on the instructions page and see what they say. I did notice the screenshot in the guide seems to be 2.2 so maybe this has something to do with it (probably not but who knows)
Sigh
That's not good.
EDIT: The EXACT error I get is:
"There is a problem with the security certificate for this site. This certificate is not from a trusted authority." I get this AS it attempts to load the redirect login page (both university and at work now). Same issue. It's browser/certificate related. And its ANNOYING as hell.
EDIT 2: Found the problem. It's that stupid certificate.
"This is a result of your corporation using an in house Certificate Authority to provide SSL encryption on your mail server and clients.
Basically....the computer that issued the certificate isn't trusted by the android phone. I'm new to android so I'm not sure if you can add a trusted CA (I haven't seen any options for it).
I don't know about future updates like the above poster mentioned.
Most companies will purchase a certificate from one of the major Certificate Authorities on the internet, which are pre-programed into most operating systems to be trusted. Internal CA's are trusted by the domain environment at your work, but not by anyone else. External (Internet) CA's are trusted by everyone.
if you want an example, open up IE (gross I know) and go to your options. Click the content tab, then there should be a button label certificates. inside the certificates window select Trusted Root Certification Authorities.
That is a list of all the builtin trusted CA's provided by Microsoft and the companies that govern the internet. "
I STILL have no idea how to fix it and to make the phone accept the certificate though.
Forgive my noobness if this sounds stupid but was looking at the company apps setting on my Lumia 928 and was wondering if it could be exploited in anyway as far as sideloading homebrew? Out of curiosity, not that I expected it to work, I emailed myself a .xap file and got an error saying there was something wrong with my company app and to contact the company's support person. So went to company app settings and it asks for email,password, username,domain, and server but does it actually check the authenticity of the domain and/or server for a legitimate company or could someone simply set up a server hosting .xap files to be downloaded simply by registering and logging in with these settings? Even wondered if I simply used this info from the email server if it would install through email but seems too simple and haven't messed with it.
tonbonz said:
Forgive my noobness if this sounds stupid but was looking at the company apps setting on my Lumia 928 and was wondering if it could be exploited in anyway as far as sideloading homebrew? Out of curiosity, not that I expected it to work, I emailed myself a .xap file and got an error saying there was something wrong with my company app and to contact the company's support person. So went to company app settings and it asks for email,password, username,domain, and server but does it actually check the authenticity of the domain and/or server for a legitimate company or could someone simply set up a server hosting .xap files to be downloaded simply by registering and logging in with these settings? Even wondered if I simply used this info from the email server if it would install through email but seems too simple and haven't messed with it.
Click to expand...
Click to collapse
this would work, but theres a lot you have to do to set it up:
There are some general steps that companies must follow to establish a company account, enroll devices, and distribute apps to their enrolled devices. The following sections provide an overview of this process:
1. The company registers a company account on Windows Phone Dev Center and acquires an enterprise certificate from Symantec.
2.The company creates an application enrollment token (AET).
3.The company develops a Company Hub app.
4.The company prepares their apps for distribution.
5. Employees (or other users) enroll for company app distribution on their phones and install the company apps by using the Company Hub app.
you have to use intune director. Companys have to register with windows phone dev and aquire an enterprise cert. This *could* be a way to install homebrew apps, but it'd be easier if there was some kind of workaround.
more info here..
http://msdn.microsoft.com/en-us/library/windowsphone/develop/jj206943(v=vs.105).aspx
Thanks aclegg2011 and my apologies to the Forum Administrator as I just saw a similar post in a different section.