Yeah, you read that right. Basically i'm trying to either find a tablet without internet functionality (which i assume is impossible in 2019) or disable all internet connectivity (or wi-fi connection, same thing) from a "normal" tablet.
Simply put i have ADHD (medicated) and tend to find access to the internet very distracting for my work, but i still need a device to write documents on. Problem is, most places where i work or study have wi-fi around, so i end up wasting hours of time, which i cannot afford to.
So, back to the topic: is there a way i can disable internet access from a tablet, maybe by deleting some file? I'm down to rooting the device, if necessary.
Thanks to anyone who can help me!
What your asking for is a bandaid in my opinion. I have the same issue as well, ADHD. What I've learned is just to focus on the task in your life. Such as the documents you need to type up of to look at the weather if it's part of your day.
Put it in like airplane mod or smth,or either,there are some apps for that,you give them the device administrator right,after that they control your daily internet usage,or if you want to block it you can simply do,but after giving an app the administrator rights,you can uninstall it
OptimisticShaggy said:
What your asking for is a bandaid in my opinion. I have the same issue as well, ADHD. What I've learned is just to focus on the task in your life. Such as the documents you need to type up of to look at the weather if it's part of your day.
Click to expand...
Click to collapse
Thanks for your advice, but i was kind of expecting this answer. Still, anedoctal evidence has taught me that i'm much more productive in environments where i simply have no ways of accessing the internet. Also, i've been trying to "learn to just focus" for the past 30 years, and i've always failed, so i'm at the point where i'm fine with relying on bandaids.
SpeedAimer said:
Put it in like airplane mod or smth,or either,there are some apps for that,you give them the device administrator right,after that they control your daily internet usage,or if you want to block it you can simply do,but after giving an app the administrator rights,you can uninstall it
Click to expand...
Click to collapse
This looks ingenious but quite convoluted; I find it weird that with all the ways you can brick a phone there isn't some file i can just delete to make internet connection imbossible. Thank you for your answer though, if nobody comes up with anything i'll try your method.
Related
Someone mentioned this in another thread, but this is a topic that should have it's own separate thread.
Some of you may have already read the news: Michigan: Police Search Cell Phones During Traffic Stops
Don't assume it won't come to your town.
I can't say I plan to do anything that would warrant police suspicion, yet I don't like the idea of anyone being able to easily pull data from my device. And we know cops won't be the only ones with these devices. So I've been wondering, how can we protect our Android devices from the CelleBrite UFED?
Check out this video that shows some of the features it has, keep in mind it does much more and can even extract DELETED data.
See the company's product page here: http://www.cellebrite.com/forensic-products/ufed-physical-pro.html
This research paper talks about the CelleBrite UFED and other extraction methods. (CelleBrite UFED is talked about starting on page 9.) I doubt there's a means to prevent all of those methods given some involve long term handling of the device, but CelleBrite UFED can extract data when a device is retained by the CelleBrite UFED user for a short period of time. It looks like HTC Android type devices can only be extracted from via the (micro)USB Port and it requires USB Storage and USB Debugging turned on. The CelleBrite UFED has to gain Root Access. It can get by screen passwords and root even a device that was not yet rooted.
There's another thread where someone was requesting a ROM that would not work with the CelleBrite UFED. I'm not sure how to make a ROM or anything else that would not work with the CelleBrite UFED without limiting certain features we all may use from time to time.
Over on Slashdot, someone said they hacked their device (Nexus One) to not do USB client mode. This is another option that would limit some features many of us may use.
So, how can we protect our privacy and our data? Does it mean sacrificing some features like USB storage mode?
The biggest problem is what's missing from Android itself. Meego might be protected but not Android.
You would need an encrypted boot loader that retains root for some users.
A kernel and os files that support different users so the default user is not root like Linux and a prompt with a password for superusers not just an Allow like now for Android.
Encryption libraries that would support truecrypt encryption of both internal and external (SD card) encryption in toto not just individual files.
A true trash system that overwrites files like srm in linux and sswap for wiping the swap file after every system reboot.
Ultimately I don't see it happening. In theory if you were running Ubuntu on your phone then yes cellbrite would just crap out not knowing what to do with your phone. Same possibly with meego. But then no real app support, no navigation and driver support is crap even for ROMs using the same os let alone a different OS like true linux.
It's amazing how many don't even bother deleting thumbnails hanging around on their computers or securely wiping files on their computer. Same with swap files retaining passwords or even website cookies that have the same password as their computer.
Best thing to do, don't keep anything that could be bad on your phone. Use a cloud system or home server sync that requires a seperate login every time and keeps no local files. Or as I do, encrypt the hell out of anything you find valuable, which currently is only my complete backups...
Sent from my Xoom the way it should be, rooted and with SD card.
This is where that cheap Boost Mobile phone comes in, or any other prepay phone. Just hand the officer that one. Store your personal data on your smartphone.
chbennett said:
Best thing to do, don't keep anything that could be bad on your phone. Use a cloud system or home server sync that requires a seperate login every time and keeps no local files. Or as I do, encrypt the hell out of anything you find valuable, which currently is only my complete backups...
Sent from my Xoom the way it should be, rooted and with SD card.
Click to expand...
Click to collapse
Hello, All. This is my first post at xda-developers!
Since I'm new to Android, data security has concerned me. Climbing the learning curve of rooting and tweaking my SGH-T989, I've focused on control, security, and privacy. So far pretty good, thanks largely to members' posts at this site. Thank you very much!
Then this thread crushed me. Visions of "1984", "THX 1138", "Terminator", etc.
I considered the suggestions here. Thoughts about the OS seem right to me, but that's beyond my abilities. I did try following chbennett's advice: I enabled encryption in my backups and moved them to the internal SD.
But I don't yet know how to do the 'home server / log in on demand' scheme for contacts and calendar. I will appreciate any help with that.
Meanwhile, I looked for a way to make a 'panic button' that would let me wipe my phone immediately. What I chose was making a contact whose phone number is the USSD code for Factory data reset.
Maybe Tasker, etc. could streamline this approach; but my trials showed that, unlike MMI codes (e.g., to toggle caller ID blocking), USSD codes cannot be submitted to the OS indirectly. So swiping a contact, direct dial shortcut, etc. did not work. On my phone, all that worked was either 1. manually dialing the code, or 2. dialing the contact name, then tapping the contact.
So the routine to use this 'panic button' is:
1. launch Dialer
2. dial the contact name
3. tap the contact name in the search results
4. tap "Format USB storage" in the "Factory data reset" dialog
5. tap "Reset phone" button in the "Factory data reset" dialog.
It sounds clunky, but it's actually pretty quick. I named the panic button contact "XXX" to avoid confusability when dialing (it needs only "XX" for a unique match.)
If you can suggest improvements to this scheme, or think it is misguided, please let me know. Thanks.
Any updates on this? I'm curious as to how to guard against ufed.
I think an instant hard brick option would be better so theres nothing to recover as i dont believe the factory reset is a secure wipe
Possibly a voice activated secret phrase or keypress u could say/do super fast in a tricky situation that autoflashes a corrupt/incompatible bootloader and recovery to device after secure superwipe that should stump them for awhile
im still interested in this i disabled usb debugging on my phone but unsure if the UFED can still access anything on my ICS full encrypted passworded evo3d im assuming they could dump the data at most but i highly doubt they could access the decrypted data unless you used an insecure pass
If you have encryption enabled for your data partition, then all you need to do is to turn off your phone when you see a cop. If they take it from you, they can turn it on and hook up their device, but they will only be able to snarf the system partition, which does them no good. They'd need your password to mount the data partition.
If you look around on this forum, you can find the steps necessary to switch the lock screen back to a simple pattern lock while leaving the disk encryption enabled.
Are you sure Cellebrite and UFED or w/e can't access encrypted data partion? I know it can take an image of the phone "hard drive". They then can run password tools against image to unlock it no?
dardack said:
Are you sure Cellebrite and UFED or w/e can't access encrypted data partion? I know it can take an image of the phone "hard drive". They then can run password tools against image to unlock it no?
Click to expand...
Click to collapse
I'd like to know about this too. I am about to set up encryption on my device and I'd like to know more about what type of attacks it can beat.
Edit to add: I assume brute force attack protection is like any other type of encryption.....dependent on the strength of your password. But, assuming we all know that already, I'm still curious about this.
If the question is how to protect your device when you think someone would scan your phone, you'd have to have some sort of inclination that a scan is about to happen. I'm assuming this is many people's concern as they're considering wiping their device through a quick process. In that scenario, just turn off your device. Unless you warrant suspicion of something fairly bad, they wouldn't be confiscating your cell phone.
smokeydriver said:
...Unless you warrant suspicion of something fairly bad, they wouldn't be confiscating your cell phone.
Click to expand...
Click to collapse
We all wish all law enforcement was just and honest, but so far in world history that has not been the case. Even a pretty woman may have her phone scanned by a curious cop snooping for pics.
Sent from my HTC One using Tapatalk 2
I would still like to know if there is an answer here...
So I recently had some dealing with assisting in a Cellbrite search. We initiated and enlisted the help of law enforcement for an employee who was doing some illegal activity which is not relevant to this discussion other than the person used an iphone. Anyway, the investigator came in and wanted to know if I can enable the bypass for the automatic screen lock in 5 minutes because when it locked, it disabled the Cellbrite copy.
Now, couple things here, he was only doing what he was "allowed' to do in the local municipality, and he did say they sell a more expensive Cellbrite device which would be able to crack it. I did find it interesting that the simple corporate Activesync policy I have set up was actually having this effect. Anyway I removed the policy and it worked. Funny thing is he could have done it himself had he known anything about that kind of thing. He was presented to us as an expert but I guess that mainly covered a basic Cellbrite expertise.
So, I do think encryption would be a great answer as the partition would be hard to bust in to. Nothing is impossible but I would rather not smash my phone on the highway next time I get pulled over so I would like to know definitively that this is the right approach. This is definitely not paranoia as there are at least 3 states where it looks like it happens regularly.
Time to look at a 2600 group for stuff like this I guess. I am early in my investigation
Later
Hello to you all people of XDA, firstly I must state that I've scoured the forums far and wide and have yet to find some valuable info regarding my problem.
So what we're doing is developing (or trying to, as is obvious from this post) a custom rom for the Galaxy S2 which would be used for a single medical application for sensor tracking and the processing and displaying of said data on the SGS2, while at the same time sending it to his/her doctor.
What we need to be able to achieve with this rom is to put it into the hands of the end-user (a chronical patient which will in turn be able to stay at home instead of being hospitalized) and be able to completely lock down the phone for his use (I know, it sounds terrible) so that he loses the phone/sms/games/youtube/internet functionality as we need the phone to run as stable and for as long as possible without any additional battery stress (the constant sending, processing and processing of data seems enough of a problem for now).
I've searched into some custom roms but we eventually came up with the need for a stock Samsung rom which could be modified as we want to.
See this is where the problem begins, we can't seem to get the phone rooted, the ROM customized and then unrooted again so that the phone can't be fiddled with anymore, except when it's completely dead and we need to fix it.
So to cap it all up:
It needs to allow for a custom load and bootscreen (I almost got this to work)
It needs to be completely locked down for the end user.
It has to have full BT, NFC and WiFi functionality
It has to be able to call out and reciev calls, but only to/from specific numbers (911, doctor, etc..)
It has to basically allow for 2-3 programs to be running, while the others simply don't exist on the phone.
I am terribly sorry if anything like this has been asked about before, I swear I put 2 days of me life into researching already.
Any help, any help at all, ideas and solutions, but mostly links are welcome.
Thank you and good day to all.
Just a detail, but the SGS2 doesn't have the NFC functionality. Project seems to be possible, I would look into CyanogenMod sources if I was you.
Sent from my GT-I9100 using XDA App
Why are you afraid of leaving the phone rooted and in hands of the patient?
Is he so uncritical that he can search the web and find means of unrooting a mobile phone and then get around to actually doing it?
LucLucLuc said:
Hello to you all people of XDA, firstly I must state that I've scoured the forums far and wide and have yet to find some valuable info regarding my problem.
So what we're doing is developing (or trying to, as is obvious from this post) a custom rom for the Galaxy S2 which would be used for a single medical application for sensor tracking and the processing and displaying of said data on the SGS2, while at the same time sending it to his/her doctor.
What we need to be able to achieve with this rom is to put it into the hands of the end-user (a chronical patient which will in turn be able to stay at home instead of being hospitalized) and be able to completely lock down the phone for his use (I know, it sounds terrible) so that he loses the phone/sms/games/youtube/internet functionality as we need the phone to run as stable and for as long as possible without any additional battery stress (the constant sending, processing and processing of data seems enough of a problem for now).
I've searched into some custom roms but we eventually came up with the need for a stock Samsung rom which could be modified as we want to.
See this is where the problem begins, we can't seem to get the phone rooted, the ROM customized and then unrooted again so that the phone can't be fiddled with anymore, except when it's completely dead and we need to fix it.
So to cap it all up:
It needs to allow for a custom load and bootscreen (I almost got this to work)
It needs to be completely locked down for the end user.
It has to have full BT, NFC and WiFi functionality
It has to be able to call out and reciev calls, but only to/from specific numbers (911, doctor, etc..)
It has to basically allow for 2-3 programs to be running, while the others simply don't exist on the phone.
I am terribly sorry if anything like this has been asked about before, I swear I put 2 days of me life into researching already.
Any help, any help at all, ideas and solutions, but mostly links are welcome.
Thank you and good day to all.
Click to expand...
Click to collapse
Block all internet access apart from ones you want or you can just setup iptables rules, shouldnt need root apart from when setting it up
As far as removing programs, just delete the apks from the zip, or before you remove root. My sig has a list of all apks in a upto date rom and what they do.
You can use gemini app manager to control autoruns (stop them etc) also to block (hide and disable apps)
As far removing root, your best bet is to once you are done, use adb (from the android sdk) to remove the superuser.apk then flash the stock kernel back, as far as I know without superuser apps cant grain root permisions.
OR
This app will allow you to block any app behind a password
This app will block incoming and outgoing sms and calls on white and blacklists
Custom boot logo (the first screen before the animation)
Custom boot animation need to go into system/media, I am not sure about the format but there are loads around, like this thread has loads, stock kernel should support them.
I hope that helps
Most of that is easily possible.
If you listed the apps needing removed, the apk files just need deleted.
To control calls, you can use a third party app from market for that.
It's possible to have the custom rom unrooted, and easily flashed, regardless of how badly the phone gets rooted
Boot animation is easy anyway... If you can provide it in a zip like other ones (zip containing numbered png's) then it's a piece of cake.
A little bit of clever firewall stuff would prevent any web traffic, in or out, except to your defined server, which is obviously a concern when a phone is handling sensitive medical info.
genieass said:
Why are you afraid of leaving the phone rooted and in hands of the patient?
The phones are going to be used by around 500.000 people in a year, it's not that we want to take anything away from the user, it's more about not having any problems with the firmware - like ever.
Thanks for all the help!
Click to expand...
Click to collapse
genieass said:
Why are you afraid of leaving the phone rooted and in hands of the patient?
The phones are going to be used by around 500.000 people in a year, it's not that we want to take anything away from the user, it's more about not having any problems with the firmware - like ever.
Thanks for all the help!
Click to expand...
Click to collapse
LucLucLuc, not sure where you live, but you're entering the patient confidentiality minefield with big, big boots.
Apart from the legal considerations, your question is definitely OS related and not device related.
I see what you want, but legally - where I live anyway - it's too much of a grey area to get involved with.
I use call recording a lot for referrals and info from other doctors, but I've always asked the other party if they're OK with it. I won't record patient conversations, and I won't accept any files whatsoever that have seen RIS or PACS first - not worth it.
Can't see it's worth your while, but I'd appreciate it if you keep me informed should you decide to work on it.
Big boots indeed
We are from Slovenia, Europe.
I'm actually just a student doing the research and some basic Android programming, thank god I wasn't let into the bigger of the projects
But yes, this project is a colaboration of several european firms and you can read more about it at chiron-project.eu - it's a very very interesting project afaic.
I don't think we'll be swimming with lawyer piranhas soon though, the project uses sensor data (which sorta is a privacy issue) which will be monitored on a tablet running Android (currently testing the Galaxy tab 10.1 - we were lucky to order one before Steve had another one of his fits), proccessed in real time and then stored on the central server, from where it will only be accessible by the patients doctor.
Patient consents are dealt with before we even start talking about mobile hospitalizations.
It's very encouraging to see some actual interest, if anyone wants to know more about anything related to this project contact me at [email protected]
Thanks again for all the help.
I'm not interested in limiting the ability of an app to access the internet, there's enough ways to achieve that.
What I'm interested in is finding out if there is anyway to use an "online only" app while offline. Essentially is there a way to set up a fake access point using cached data to simulate being online? I'm looking to use a personal assistant such as google now without needing to blow through my extremely limited data plan that I'm grandfathered in on. Anyone know if such a thing is possible? I've not figured out the best way to phrase this question quite yet so let me know if it doesn't make sense.
Google Now simply won't work that way. I'd suggest you use something like utter! that doesn't actually send every command to Google (which requires internet access) to determine what to do with it.
Yeah I've been trying utter out of and on and I find it really drains my battery. That said its amazing for being in beta. I am actually keeping my fingers crossed for a more developed version of Indigo, I just like setting the cards on Google Now.
mentioned as a sort of derail in this older post
http://forum.xda-developers.com/showpost.php?p=58810816&postcount=3
but no replies so just wanted to re-post with a specific, appropriate subject line.
so, supposedly I should be able to go into settings->wireless->bluetooth and change the "bluetooth name" of the device, and also choose discoverable on/off/timeout.
a. can't change the name of the device; there's no sort of default name shown, and when I tap the left side of the very first line, all I get is bluetooth turns on.
2. turning bluetooth on makes it permanently discoverable, no options to disable or set a time out. if I try tapping the left side of the first line, all that happens is BT shuts off.
is this pure pilot error? does this work / not-work for others?
I have the 4.5.3 update installed.
one thing I wonder about, is that I did disable a bunch of safe-seeming Amazon packages (check out the other thread about PM blocking) including the launcher and some other things. seems unlikely this would have any effect, but in the worst case I can try unblocking stuff and see.
also, haven't been able to find any realy mention on xda or google, but might as well ask: does anyone know if PM or AM are able to manipulate bluetooth settings?
also also, getprop shows:
[net.bt.name]: [Android]
net.hostname = kindle-blahblahgibberish (the usual)
(even weirder, when I pair it with a win7 PC, it shows up as the custom name I put in settings->device options->"change your fire's name")
and the bluetooth settings page still shows none of the above, zero name at all.
again, is this all normal behavior? it's kind of a security flaw (yes, I was still required to enter a PIN on the keyboard, which is good, but there are other ways permanently-discoverable can be bad.)
Don't have your device, so can't say how bluetooth shd work, but as far as blocking I wonder if the debloater tool by @gatesjunior will work with your device. No root required on KitKat, (but of course Sangria is very different.) If it works, it'll show you everything you blocked, let you easily unblock some or all, and also find out if you can pm block bluetooth.
http://forum.xda-developers.com/android/software/debloater-remove-carrier-bloat-t2998294
thanks, but I may have already heard of that one...
http://forum.xda-developers.com/showpost.php?p=58820407&postcount=6
and if it somehow wasn't clear, I'm NOT trying to block bluetooth. otherwise I could simply leave it turned off to same effect.
Hey, sorry. I searched around and didn't see your post
DoLooper said:
Hey, sorry. I searched around and didn't see your post
Click to expand...
Click to collapse
nah, I was just having a laugh, no worries. I was actually glad you posted it because that program is so seriously friggin' useful, the more people know it will work with their firehd, the better.
like, if my lazy carcass ever gets around to trying re-enabling stuff I've blocked and see if that changes anything in the BT settings, I can do it one by one, but first export/save the list of blocked stuff - so much easier to import/restore the saved blocklist file, instead of writing it down or trying to remember.
tarvoke said:
nah, I was just having a laugh, no worries. I was actually glad you posted it because that program is so seriously friggin' useful, the more people know it will work with their firehd, the better.
like, if my lazy carcass ever gets around to trying re-enabling stuff I've blocked and see if that changes anything in the BT settings, I can do it one by one, but first export/save the list of blocked stuff - so much easier to import/restore the saved blocklist file, instead of writing it down or trying to remember.
Click to expand...
Click to collapse
Right on! Too many text files with notes of mods to everything, not just KFs. lol.
And hey, thanks for getting Fire 6 to Gran--lots of promises, but you came through. Good man! Guess you saw this: https://plus.google.com/+GranPC/posts/SkUo5AUDMAy
Hi,
Apologies if this is in the wrong thread category.
I'd like to permanently remove internet access from either a whole phone or from selected apps. This would create a dumbphone with a touchscreen. This is to tackle a net addiction, yet leave me with the capability of communicating with family via SMS. Existing dumbphones don't have touchscreens and often cause me excruciating pain to use, because of a condition I suffer from called fibromyalgia, which mimics the symptoms of RSI. Autocomplete on touchscreen phones reduces the number & intensity of finger-touches I need to make to type an SMS and are thus relatively freeing.
Would anyone know how this could be done, please? I rooted a phone once or twice but am not capable of following any instructions which require judgement. Please don't take more than a couple of minutes over this because there's a strong chance any advice will go over my head.
With thanks in advance for your thoughts
Jonathan
joanthan75 said:
Hi,
Apologies if this is in the wrong thread category.
I'd like to permanently remove internet access from either a whole phone or from selected apps. This would create a dumbphone with a touchscreen. This is to tackle a net addiction, yet leave me with the capability of communicating with family via SMS. Existing dumbphones don't have touchscreens and often cause me excruciating pain to use, because of a condition I suffer from called fibromyalgia, which mimics the symptoms of RSI. Autocomplete on touchscreen phones reduces the number & intensity of finger-touches I need to make to type an SMS and are thus relatively freeing.
Would anyone know how this could be done, please? I rooted a phone once or twice but am not capable of following any instructions which require judgement. Please don't take more than a couple of minutes over this because there's a strong chance any advice will go over my head.
With thanks in advance for your thoughts
Jonathan
Click to expand...
Click to collapse
Root your phone based on your past experience.
Install Xposed Installer app.
Install xposed framework by clicking install button in the app.
After a few minutes, your phone would ask for permission to reboot.
Reboot it.
It will take around 10 minutes or more to reboot.
Open the Xposed Installer app and click the menu icon on top left of the screen.
Select Downloads.
Search for XFirewall and install it.
Reboot.
Open XFirewall.
Select which apps you want to have net connectivity.
OR
You can try any other normal firewall app if you think it to be better than XFirewall
Augustoandro said:
Search for XFirewall and install it.
Reboot.
Open XFirewall.
Select which apps you want to have net connectivity.
OR
You can try any other normal firewall app if you think it to be better than XFirewall
Click to expand...
Click to collapse
Thanks Augusto! Much appreciated.
Do you or does anyone on here please know of any firewall apps which allow the user to commit to a period (24 hours, a week, a year, permanently) without network access? Unfortunately without this kind of restriction I can't trust myself to stay off the web. Five minutes reading the news or Twitter always turns into five hours.
Thanks