My company allows for a work email app to be used on my personal phone only if it isn't rooted. I don't use it for that reason. I have recently updated to a rooted NC5. Should I be able to use Knox to allow secure use for my company info and still get the benefits of being rooted on the personal side? Am i understanding the functionality of Knox correctly?
dbell525 said:
My company allows for a work email app to be used on my personal phone only if it isn't rooted. I don't use it for that reason. I have recently updated to a rooted NC5. Should I be able to use Knox to allow secure use for my company info and still get the benefits of being rooted on the personal side? Am i understanding the functionality of Knox correctly?
Click to expand...
Click to collapse
You are misunderstanding.
If you want to use your phone for work email that keeps their stuff separate, checkout TouchDown.
http://www.nitrodesk.com/androidplatform.html
It's what I have been using for years.
My employers like/liked it because it is separate.
I like it because they an wipe the mail and leave my home alone.
The app we use is not my option. Reason for my question is I think they should be able to eliminate the requirement for phone to not be rooted if Knox would allow the company data to be kept separate.
Sent from my SCH-I545 using XDA Free mobile app
dbell525 said:
My company allows for a work email app to be used on my personal phone only if it isn't rooted. I don't use it for that reason. I have recently updated to a rooted NC5. Should I be able to use Knox to allow secure use for my company info and still get the benefits of being rooted on the personal side? Am i understanding the functionality of Knox correctly?
Click to expand...
Click to collapse
Gotta love how Samsung has confused everything by calling it all "Knox".
OK, what you're asking about is the Knox Secure Container service.
You should be able to use that even if rooted as long as you haven't tripped the Knox Warranty Void flag by trying to flash a custom kernel.
I think you can still use it even if the phone has the Knox SEAndroid enforcement disabled (which is what gets turned off when you allow SuperSU to "disable Knox".) The container service is separate. However, there's a chance that the container service will fail if the enforcement service is disabled. You can turn that enforcement service back on, but it's going to be a pain to be rooted while that keeps killing off rooted processes.
Related
Before purchasing the S3 I read up about it and found one called "Pray anti-theft" which was supposed to be pretty good.
I installed it onto my S3 and it seems in order to track it my phone needs to be connected to the internet with the SIM card in tact..
Who is going to find a phone and leave the SIM card in?
Can anybody recommend a better one?
There is no "anti-theft" thing.
Anyone with good knowledge of android can easily flash a new ROM in your stolen phone and factory reset it which will remove whatever you have installed there.
Avast is imo the best, it can track with gps and when the sim gets replaced you get the simcard number send to a chosen number.
Also with root they can't remove the app, go into settings, and with a factory reset it keeps active.
you can also give commands via sms to your phone.
Send from my GT-I9300 with Tapatalk
Avast antivirus integrates a module that used to be a standalone app called Theft Aware. This installs as a system app (if rooted), hides itself from the app drawer and you can only show it by dialling a PIN in the dialer. It can be set up so it will send an SMS to a trusted number when the SIM card is swapped, and from there you can control the phone by SMS commands. You can request GPS updates, make the phone call you, wipe remotely, turn on a siren... This all works through SMS - no mobile data or wifi necessary, and it works if they ditch your SIM. The recent version also added web-based tracking and control. And it's free! But of course if the thief does a firmware flash you're out of luck. The thing is, I think most petty thieves aren't android experts.
DashingGentleman said:
Avast antivirus integrates a module that used to be a standalone app called Theft Aware. This installs as a system app (if rooted), hides itself from the app drawer and you can only show it by dialling a PIN in the dialer. It can be set up so it will send an SMS to a trusted number when the SIM card is swapped, and from there you can control the phone by SMS commands. You can request GPS updates, make the phone call you, wipe remotely, turn on a siren... This all works through SMS - no mobile data or wifi necessary, and it works if they ditch your SIM. The recent version also added web-based tracking and control. And it's free! But of course if the thief does a firmware flash you're out of luck. The thing is, I think most petty thieves aren't android experts.
Click to expand...
Click to collapse
I would be very surprised if anybody in my area has even heard of rooting
you think Samsung would have some sort of security feature for the best phone on the market.. (a good one, not the one it comes with)
Thanks guys, so on a rooted device I can just install avast from the google store and it will install as a system app?
https://play.google.com/store/apps/details?id=com.lsdroid.cerberus&hl=en
Cerberus. www.cerberusapp.com - you can install the application in the ROM if bootloader is unlocked so it will survive a factory reset (along with it's settings files).
Cerberus can remotely record audio, video and take pictures of the person using it. GPS location, remote lock and wipe. A few euros for a lifetime licence. Cerberus is the plain simple best.
Why not just use Samsung dive that is pre installed. Works perfectly, can track the phone, even on intervals. Can lock the phone, forward calls and texts, and more.
All this works even when the sim is changed.
Sent from my SGS3 on Omega v9.0 using XDA Premium
ticktime said:
There is no "anti-theft" thing.
Anyone with good knowledge of android can easily flash a new ROM in your stolen phone and factory reset it which will remove whatever you have installed there.
Click to expand...
Click to collapse
It is there, don't talk about things you don't know about :good:
---------- Post added at 08:14 PM ---------- Previous post was at 08:02 PM ----------
UrbanDesigns said:
I would be very surprised if anybody in my area has even heard of rooting
you think Samsung would have some sort of security feature for the best phone on the market.. (a good one, not the one it comes with)
Thanks guys, so on a rooted device I can just install avast from the google store and it will install as a system app?
Click to expand...
Click to collapse
It won't install as a system app, but it makes an file that Avast won't be removed when you factory reset the phone, the app will stay installed because of that back-up.
It also blocks usb-debugging, so you can't flash another rom, It will remain protecting your phone whatever they try do delete or modify.
They can't even get into settings
Cerberus doesn't provide that, and needs to be flashed to survive a factory reset, with Avast you aren't even allowed to do actions...
Avast is free, and if rooted it gives you the best protection possible!
I have question , i have rotoped phone and flashed cerberus, if have disabled data connections and phone isnt on wifi . Can i control and track device?
Sent from my XT910 using xda premium
Marwvek said:
I have question , i have rotoped phone and flashed cerberus, if have disabled data connections and phone isnt on wifi . Can i control and track device?
Sent from my XT910 using xda premium
Click to expand...
Click to collapse
I found this for you, which answers many questions and has contact info.
Yes. You can enable Data & Wifi via individual SMS commands.
https://www.cerberusapp.com/help.php
here use "Samsung Dive"
http://www.samsungdive.com/
Actually dont use samsung dive. It pops-out notifications when the device is being tracked, etc., so every thief will know that you are tracking him and will do factory reset.
I'm not saying that you should not set-up this. Do it, but use it as a last resort.
I suggest cerberus, its cheap, easy to hide (however I personally make it a system application using titanium backup, so that it's not shown in normal app managers), and somehow reliable. I miss for it the function to turn on data and wifi automatically after sim-change.
ticktime said:
There is no "anti-theft" thing.
Anyone with good knowledge of android can easily flash a new ROM in your stolen phone and factory reset it which will remove whatever you have installed there.
Click to expand...
Click to collapse
What about remapping the phone's physical keys so the thief will have a lot of trouble on entering the recovery mode?
It's not a 100% safe solution, but pretty decent for forcing the thief to use the phone while he can be tracked by an anti-theft app.
I'm not sure if this can be done on my rooted Galaxy Note, but if it would be possible I'd try.
brdeveloper said:
What about remapping the phone's physical keys so the thief will have a lot of trouble on entering the recovery mode?
It's not a 100% safe solution, but pretty decent for forcing the thief to use the phone while he can be tracked by an anti-theft app.
I'm not sure if this can be done on my rooted Galaxy Note, but if it would be possible I'd try.
Click to expand...
Click to collapse
not possible
Judging from this conversation avast seems to be better than all the others. Has anyone tried using avg antivirus?
If it is only anti theft, then, Android Device Tracker Free is better than all apps in its class.
It can be used as a system app (for rooted devices, for non-rooted devices can be used as a normal app) which will not be affected even if thief wipes the data and it will send sms to your configured mobile number when he tries to change the sim.
It doesn't consume battery. Because, it acts only when sim is replaced.
Link: https://play.google.com/store/apps/details?id=com.appzdevelopers.androiddevicetrackerf
GotYa best anti theft app ever>>https://play.google.com/store/apps/details?id=com.myboyfriendisageek.gotya
Take pic and upload on your mail with location and time.
[email protected] when someone geeks with your phone
Can you disable or freeze Elm Security along with Knox using Titanium, with out doing any damage Have Verizon galaxy S4 with 4.3 and MK2 build and rooted. I keep getting a block when trying to access SqlLite Editor
truckerd said:
Can you disable or freeze Elm Security along with Knox using Titanium, with out doing any damage Have Verizon galaxy S4 with 4.3 and MK2 build and rooted. I keep getting a block when trying to access SqlLite Editor
Click to expand...
Click to collapse
I frooze the KNOX security with no issues. The ELM, are you referring to ELM Agent? I left that alone.
Know remove and ELM
oconnell84 said:
I frooze the KNOX security with no issues. The ELM, are you referring to ELM Agent? I left that alone.
Click to expand...
Click to collapse
Yes the ELM agent. I removed both [along with KNOX ] with Titanium and had no issues. Still trying to get SqlLite to work. Have used it for the past 3 years but I keep getting the ERROR Message: An error occurred while opining the database. unable to open database file [code 14]:while compiling: Select* from sqlite_master WHERE type in ['table,view] ORDER BY name. Not sure how to get around this. Ultimate goal is to goal is to go in and change the wifi hot spot.notification panel if possible to get hot spot to work.
I've spent a month with KK on 2 phones, and ultimately contacted Verizon after my work phone left me unable to email, and then died only 3 hours after unplugging the charger.
I went through the exercise of doing a factory reset (which did not fix any of the issues, surprise surprise) and Verizon agreed to send me a replacement phone.
But what I did notice is this:
On both phones, after doing a factory reset, most of the bloatware was *not* on the phone until I gave it my gmail address... then they began downloading (isis, nfl, allshare, print services, audible, and on and on.)
I re-reset, rebooted, and did NOT give my gmail (or any other email) and the downloads did not start. After a few hours, I gave it my gmail, and the downloads started. And I would like to point out... these downloads are NOT restoring or synching any of my play store apps, these are all of the junk that were pre-installed when I got the phones (for example - nfl live, or nfl direct, or whatever it is called is NOT on the phone until after it is downloaded and installed automatically.)
So today I have a new Galaxy S4 with JellyBean 4.3 (I545VRUEMK2)
After activating it, it started downloading a "software update", KK I presume.
I didn't let it finish; I restarted the phone and re-factory reset it, and immediately turned off wifi.
I've not given it my gmail, but had to give it my work email (exchange).
So far, no updates... It is just a vanilla system with nothing more than my work email (which is working fine.)
Is there any way that I can, at this point, prevent it updating or installing all of the Verizon garbage?
I know the knee-jerk answer will be "root it" but I want to avoid that if possible... this is my employer's phone, and I don't want that to be an issue if there are any problems with the phone.
If it's owned by your employer why do you care about bloatware?
sent by bajarom v2.2 kitkat
decaturbob said:
If it's owned by your employer why do you care about bloatware?
sent by bajarom v2.2 kitkat
Click to expand...
Click to collapse
Multiple reasons... I would like to be able to have a phone that works properly, without a lot of garbage getting in the way.
Secondly, because my personal phone is being replaced as well, and I would like to keep it running as smooth as possible as well.
You can disable most of the apps under settings. And they are already present on the phone, they are simply being upgraded to newer versions when you enter your Google account information.
Sent from my SCH-I545 using Tapatalk
snurfle said:
Multiple reasons... I would like to be able to have a phone that works properly, without a lot of garbage getting in the way.
Secondly, because my personal phone is being replaced as well, and I would like to keep it running as smooth as possible as well.
Click to expand...
Click to collapse
(About your personal phone)
Since you are still running JB you should be able to root. Once rooted, you can simply uninstall the bloatware with SDX software romoval app. It is NOT in the google play market, but if you google it you should be able to find it. What I do is "freeze" the app with Titanium Backup Pro. Once frozen, the apps do not load nor update. Freezing gives you the ability to update the phone to the new FW when the time comes. Just unfreeze all apps, update, then freeze them again. Downside is that NC5 still has NO native root. So, you could just keep it JB instead of upgrading to KK and losing root. There are other options out there for upgrading to 4.4.2 and keeping root, but if you are looking for simplicity, just keep it JB. Lastly, VooDoo OTA root keeper works MOST of the time. However, with 4.4.3, you still lose root.
I am sure there is a list of apps somewhere in the S4 forums for you so you know what to freeze. From my experience, I froze all verizion apps minus "My Verizion Mobile", all bloatware like Isis, NFL, IMDB, ect., and even SDM(the app that controls OTA updates). Hope this helps.
I rooted all of the phones I have had since my first Android phone. However, a few apps that I use either would not work or would not work correctly with root, even when it was possible to still use Magisk hide.
Meanwhile, the only thing I was actually doing that needed root was using an adblocker, so I decided to try using this new Pixel 6 without root.
I have to say that I do miss having an adblocker.
Try the Brave browser, it will take care of website ads at least.
[CLOSED][APP][6.0+] NetGuard - No-root firewall
NetGuard provides simple and advanced ways to block access to the internet - no root required. Applications and addresses can individually be allowed or denied access to your Wi-Fi and/or mobile connection. Blocking access to the internet can...
forum.xda-developers.com
joedp2 said:
I rooted all of the phones I have had since my first Android phone. However, a few apps that I use either would not work or would not work correctly with root, even when it was possible to still use Magisk hide.
Meanwhile, the only thing I was actually doing that needed root was using an adblocker, so I decided to try using this new Pixel 6 without root.
I have to say that I do miss having an adblocker.
Click to expand...
Click to collapse
Nothing beats a true hosts adblocker. Works universally. Also nothing beats being able to perform a full proper backup of your phone in case something happens. And finally, nothing beats being able to rid your phone of all that "gapps" spyware/tracking/backdoors.
As you can tell, I'm an advocate for root. But weild it with responsibility.
Search 'DNS' in settings. Then enter 'dns.adguard.com' into 'Private DNS' and you'll have onboard adblocking!
I am also in the position you are as I have rooted all my phones since HTC Desire, primarily as I hate ads. This is a lifesaver and means I don't need root for the first time.
Hi guys,
I got my S22+ few days back. My previous device was rooted OnePlus 5.
I was planning to root S22+ too, but then I seen that there is some kind of e-fuse in the device to mark is as Warranty void.
This causes device to be permanently marked as unlocked, Knox will be disabled and Samsung Pay + some other features will stop working forever.
Is this true even if I want only Magisk systemless root? I was using Google Pay on my OnePlus 5 what was also rooted by Magisk.
Samsung Pay looks promising to me, because I moved to Samsung ecosystem also with buying new Samsung watches and I would like to use it at 100% potential.
What would you recommend me? Root or leave as is? I personally need the root just to be able to remove bloatware, restore apps with data, disable ads in some games and have ability to use e.g CLI (Web server and things like this, occosionaly)
PS: Google Pay, banking apps etc. will still work even with Knox disabled, or not? They were working on the OnePlus 5
CZBaterka said:
Hi guys,
I got my S22+ few days back. My previous device was rooted OnePlus 5.
I was planning to root S22+ too, but then I seen that there is some kind of e-fuse in the device to mark is as Warranty void.
This causes device to be permanently marked as unlocked, Knox will be disabled and Samsung Pay + some other features will stop working forever.
Is this true even if I want only Magisk systemless root? I was using Google Pay on my OnePlus 5 what was also rooted by Magisk.
Samsung Pay looks promising to me, because I moved to Samsung ecosystem also with buying new Samsung watches and I would like to use it at 100% potential.
What would you recommend me? Root or leave as is? I personally need the root just to be able to remove bloatware, restore apps with data, disable ads in some games and have ability to use e.g CLI (Web server and things like this, occosionaly)
PS: Google Pay, banking apps etc. will still work even with Knox disabled, or not? They were working on the OnePlus 5
Click to expand...
Click to collapse
If you want your device to function as if it's stock, then leave it stock. If you're willing to compromise some features for the sake of having root, then root away. "Pay to play" is essentially the bottom line of all modifications, whether software or hardware. Losing the ability to use some features is always a risk when you modify a device, including root.
V0latyle said:
If you want your device to function as if it's stock, then leave it stock. If you're willing to compromise some features for the sake of having root, then root away. "Pay to play" is essentially the bottom line of all modifications, whether software or hardware. Losing the ability to use some features is always a risk when you modify a device, including root.
Click to expand...
Click to collapse
I just do not understand why Knox and Samsung Pay gets disabled forever... Thats kinda Apple style of doing stuff seems to me...
Is there any other way of restoring backups with data without root btw? I see that Helium and oandbackup are deprecated
CZBaterka said:
I just do not understand why Knox and Samsung Pay gets disabled forever... Thats kinda Apple style of doing stuff seems to me...
Is there any other way of restoring backups with data btw? I see that Helium and oandbackup are deprecated
Click to expand...
Click to collapse
Swift Backup (root version) can back up and restore app data.
V0latyle said:
Swift Backup (root version) can back up and restore app data.
Click to expand...
Click to collapse
I know, but I asked about way to restore app data without triggering e-fuse and disabling Knox
CZBaterka said:
I know, but I asked about way to restore app data without triggering e-fuse and disabling Knox
Click to expand...
Click to collapse
Ah. Well, Android has always incorporated application segregation, where any one app cannot access data belonging to another app, with the exception of common storage (such as photos/media) or certain system information (location, call history, messages, etc). Therefore, it's not possible for an application such as Swift to backup app data without root.
Whether or not rooting your device will trip Knox is another question entirely, one that I unfortunately do not have the answer to; I haven't been active in the Samsung scene for quite some time. I would assume that it does, given how it's worked in the past.
Edit: I'd like to point out that it may be possible to pass SafetyNet after rooting by using Magisk modules such as Universal SafetyNet Fix and MagiskHide Props Config, but there are no guarantees. This may also only work for applications that depend on CTS and basic integrity, so while GPay may work, Samsung Pay may not.
I had my previous S8+ rooted and that caused knox to be tripped (0x1) and recently my company decided to start using Intune from Microsoft to separate work and personal data but Intune kept complaining about the fact that my device was no longer 'official'. I never found a way to bypass that (even though Google Pay and my banking app was working with Magisk). I ended up buyiung a new phone (S22+) and decided to not root anymore or use custom roms.
There was an ongoing Github to attempt to root S22 without tripping Knox, they were able to get SE Linux permissive but that's pretty much it for now. They said that Samsung security (DEFEX) is blocking them from gaining root but maybe at some point someone will succeed in breaking that security. That being said it only works on march patch and if you've updated to may patch or above it's undoable at all because you can't even downgrade
S22 · Issue #3 · polygraphene/DirtyPipe-Android
Could this same method work on s22, i assume it woukd require mymod.ko be built in s22 kernel source but can it work
github.com