Hi guys,
First of all, I think this is the place to ask this, but if it weren't, please feel free to move to somewhere more adequate.
My bank has blocked its app on rooted phones. Is something that I don't agree with, but I understand why they do it (even when I think it's pointless). I also use a couple of apps that require root, and as of now, I prefer to be rooted than using the banking app. I was wondering if it would be possible, due to android's multiuser support, to have two users, one with root, one without, and use the unrooted user for the banking app. I searched a bit and come with nothing, with either means that is not possible, or that I am terrible at searching. Has somebody tried this?
Hi everyone:
i gonna buy 35 Samsung devices. i want to use them as a par-code devices in pharmacies and medical warehouses only to count the incoming and outgoing medicines. i need to install just single app developed by some developer i hired before, for this process. the question is how to block installing apps for google play or any other stores on these devices. if there is a feedback would you provide it to me ?
thanks
Note: i used to work in mobile phones maintenance two years ago . so i know a lot about software and root ........, i hope this tip make things more easier for you
Hi,
I'm looking to get a secured space where I can launch some android apps with my personal data.
That a way I can separate personal data of work data.
I know samsung provide "knox" which is the best solution, but it's not working in others brand device.
Earlier, I had on my Nexus tab, the possibility to use an owner account and to swype to an "guess" account which can also a solution,
but it seems to not be available on recent release of android.
So anyone can give me some solution availabe ?
Cheers?
donete said:
Hi,
I'm looking to get a secured space where I can launch some android apps with my personal data.
That a way I can separate personal data of work data.
I know samsung provide "knox" which is the best solution, but it's not working in others brand device.
Earlier, I had on my Nexus tab, the possibility to use an owner account and to swype to an "guess" account which can also a solution,
but it seems to not be available on recent release of android.
So anyone can give me some solution availabe ?
Cheers?
Click to expand...
Click to collapse
Which version of Android are you using? I have android n stock and there is the user option if you go to the settings app, there you can find the guest option and other options as well.
Well, I didn't find it on android 6 on my Xperia M4 Aqua.
On my Samsung S6, there're android 7, after many research I dind't find it. This phone is a very good device with knox but after a falling ugrade
the knox count rise to 1, so knox saw that as a security issue and it can't still running on.
So are are you sure it's always remains on android 6 and 7 ?
I recently bought a Pocophone with the idea of installing LineageOS. Actually, I was looking for models where I could install it, since I want to remove google and vendor bloat apps.
Just after unboxing it, I went to check how to unlock the bootloader, and I faced a really cumbersome process:
- Register an account, providing email, phone and wait an SMS to confirm.
- Login your phone and wait 72h with the phone powered on and Synced with MI cloud (wtf?)
- Download an unlock tool that only works in Windows. I'm a Linux user so I had to setup a VirtualBox VM to proceed.
I didn't want to use my brand new phone and add all my contacts and stuff and then Sync everything to Xiaomi servers. To me this looks like a data collection policy to get as much as they can from Google et al. forcing users to Sync with a long enough wait time window.
Why don't use a more user friendly process like Motorola and others do???
I totally regret choosing Xiaomi, and now I'm going to try to sell it just because of this.
vdo1138 said:
I recently bought a Pocophone with the idea of installing LineageOS. Actually, I was looking for models where I could install it, since I want to remove google and vendor bloat apps.
Just after unboxing it, I went to check how to unlock the bootloader, and I faced a really cumbersome process:
- Register an account, providing email, phone and wait an SMS to confirm.
- Login your phone and wait 72h with the phone powered on and Synced with MI cloud (wtf?)
- Download an unlock tool that only works in Windows. I'm a Linux user so I had to setup a VirtualBox VM to proceed.
I didn't want to use my brand new phone and add all my contacts and stuff and then Sync everything to Xiaomi servers. To me this looks like a data collection policy to get as much as they can from Google et al. forcing users to Sync with a long enough wait time window.
Why don't use a more user friendly process like Motorola and others do???
I totally regret choosing Xiaomi, and now I'm going to try to sell it just because of this.
Click to expand...
Click to collapse
Just use a 3rd party app to sync your data or just backup them. There are tons of apps on the PlayStore.
And about the unlocking procedure, this is just a standard procedure and it is for safety measures. Like confirming that your Xiaomi Model has bounded to its real model number because there are tons of fake and clone Mi Phones on the market and registering your phone on their servers that your phone model is unlocked. Good thing though that the unlocking for Poco is only for 3 Days, other models I heard is about 1-3 months.
Darklouis said:
Just use a 3rd party app to sync your data or just backup them. There are tons of apps on the PlayStore.
And about the unlocking procedure, this is just a standard procedure and it is for safety measures. Like confirming that your Xiaomi Model has bounded to its real model number because there are tons of fake and clone Mi Phones on the market and registering your phone on their servers that your phone model is unlocked. Good thing though that the unlocking for Poco is only for 3 Days, other models I heard is about 1-3 months.
Click to expand...
Click to collapse
To start with, even for Poco F1, the wait time was 3 months. Then they shortened that step by step and it is now 72 hours. The official explanation was that since the phone was not launched simultaneously in all the countries, some retail vendors (in countries where it was not then launched) bought the phone in bulk, unlocked the bootloader and installed various apps (in addition to the pre-installed bloatware) including malware and then sold them in retail. It was to avoid this and to ensure that a genuine owner is using the phone before allowing the unlock that they devised this method.
These all sound so horrible but I am still using my phone because motorola which you champion cannot build a decent phone like pocophone offers.
oppo and vivo didnt have ubl , asus and samsung void waranty, huawei not cheap to ubl.. thank god poco only have to wait 72h, you gibe ip ur privacy when usinh android, if u dont want data colection from vendor, use apple..
I decided to root ky Pixel 6 and found out that i couldn't get around the security from germans banking apps.
simple soloution. have magisk/zygisk installed and set the root mode to "user" in the settings of magisk manager.
then go to your settings and setup a second user (wont have root) install your banking apps and enjoy the ability to use them with an rooted device
edit: this method was tested for Sparkasse app's
• S-Push Tan
• Mobiles Bezahlen
IndubidablyStoned said:
I decided to root ky Pixel 6 and found out that i couldn't get around the security from germans banking apps.
simple soloution. have magisk/zygisk installed and set the root mode to "user" in the settings of magisk manager.
then go to your settings and setup a second user (wont have root) install your banking apps and enjoy the ability to use them with an rooted device
Click to expand...
Click to collapse
I'm not being critical of your choices but why would anyone chance having a banking institution or any financial app including
GPay on a rooted device? Isn't there a much greater chance of being compromised by an app or inadvertent web link? And if the banking institution sees that a bogus user was created what are the chances of recovering funds obtained through fraudulent activity? I understand why people want to root don't get me wrong, but money transfers and transactions on that device seem a little reckless to me. But I could be wrong, just curious of the thinking here.
i Understand, but if you want to have an custom DAC like Viper4Android you kinda need root. my intention isnt to do fraudulent activity, as i mentioned in the Post you dont have Root access on that second user
IndubidablyStoned said:
i Understand, but if you want to have an custom DAC like Viper4Android you kinda need root. my intention isnt to do fraudulent activity, as i mentioned in the Post you dont have Root access on that second user
Click to expand...
Click to collapse
You misunderstood my concern wrt banking activity. I didn't suggest that you were doing anything fraudulent but if you were the victim of fraudulent activity would the bank still cover you with a bogus account you created? I don't know if what you did was entirely proper or not but that was not the issue I thought you might be concerned about.
As I said, I completely understand your desire to root be it V4A or DAC or even ad blocking. I just wonder the benefit vs the exposure if you are using banking apps. Without financial transactions occurring on the phone I doubt there is much to worry about other than what we are all concerned about root or not.
bobby janow said:
I'm not being critical of your choices but why would anyone chance having a banking institution or any financial app including
GPay on a rooted device? Isn't there a much greater chance of being compromised by an app or inadvertent web link? And if the banking institution sees that a bogus user was created what are the chances of recovering funds obtained through fraudulent activity? I understand why people want to root don't get me wrong, but money transfers and transactions on that device seem a little reckless to me. But I could be wrong, just curious of the thinking here.
Click to expand...
Click to collapse
Considering DirtyPipe exists and has not been patched yet (plus how long it already took to even acknowledge the problem in the first place), rooting is the least of our worries when it comes to monetary transactions/banking and android.
Bear in mind that DirtyPipe is only one elevation exploit that we've heard about. And for every disclosed vulnerability there are dozens of others that nobody's aware of. The market for rooted android users is very small compared to the overall android phone-user market. Creating exploits specifically targeting rooted phones would be a waste of time and effort compared to working on privilege escalation on non-rooted devices; from a hacker's perspective you want to hit the largest volume of targets in cases like these.
I've been rooting my phones for 10 years now, and my usage of banking/fintech apps on my devices has increased consistently. Applying common sense opsec/infosec practices can negate a large percentage of the perceived risk that root access exposes you to.
On the other hand, if someone wants to target you specifically, as an individual, you're screwed, root or no root, unless you're aware of the risks that come with technology and the pitfalls of android (iOS can be perceived as more secure but when it comes to individual targeting/attacks, there are expensive tools made by some of the world's top intelligence organizations that can wreck havoc on iOS as well)
TL;DR you're never truly safe, root or no root.
Unfortunately that doesn't worked for me
I tested the following apps:
SecureGo
VR SecureGo
Mobiles bezahlen
Every App doesn't launch. Sparkasse is quitting instantly and SecureGo Apps are stuck with their logo.
On the rootet user I get the Browser-warning (of SecureGo) that my device doesn't meet the security requierements. So far so good, but on the non-rooted uses i would have expect that they're working.
Any Idea? I'm on April Build.
i dont know currently, i dont have root anymore since i had to update to the April Update. i'll update if there is something that can be done
Maybe you could confirm that these Apps launch on April build without root? That could help to research the problem a bit. Thanks!
hanni2301 said:
...but on the non-rooted uses i would have expect that they're working.
Any Idea? I'm on April Build.
Click to expand...
Click to collapse
Maybe these apps are not supporting fully Android 12?
I have an app which, until recently, was freezing when the location was enabled. To be exact, when "Use precise location" was enabled. Only location access the app was not freezing, but couldn't get the coordinates.
Maye this is a similar situation here.
Cheers
Tom
hanni2301 said:
Unfortunately that doesn't worked for me
I tested the following apps:
SecureGo
VR SecureGo
Mobiles bezahlen
Every App doesn't launch. Sparkasse is quitting instantly and SecureGo Apps are stuck with their logo.
On the rootet user I get the Browser-warning (of SecureGo) that my device doesn't meet the security requierements. So far so good, but on the non-rooted uses i would have expect that they're working.
Any Idea? I'm on April Build.
Click to expand...
Click to collapse
I managed to get the VR Secure Go app working by doing the steps in the op plus using ice box and freezing magisk and the bank apps. I'm on April, too and I'm using radioactive kernel. Rooted stock kernel works as well on my device, but I had issues with the bank apps on some other kernels.
So to confirm, you need to freeze magisk on the rooted user and you're able to use the bank apps on the second (non rooted) user?
On which user you would freeze the bank apps? I doesn't have them installed on the rooted user.
Thanks in advance that you can definitely confirm its not the fault of April built.
hanni2301 said:
So to confirm, you need to freeze magisk on the rooted user and you're able to use the bank apps on the second (non rooted) user?
On which user you would freeze the bank apps? I doesn't have them installed on the rooted user.
Thanks in advance that you can definitely confirm its not the fault of April built.
Click to expand...
Click to collapse
I only have one user (the rooted user). I've done the following steps:
1. Configure magisk: activate Zygisk and setup deny list for the banking apps
2. Hide magisk app
3. Freeze magisk and banking apps with Ice Box
ok, that is the normal way which is different to the approach the thread starter has chosen.
I use deny list plus hide my applist and works fine with Sparkasse, s-push and mobil bezahlen no need to freeze or use a second user profile
How do you do that, hide applist?
You can bypass it by
Download App Named Shelter from Play store.
The App will create work profile and you can bypass any bank or app you facing issue with it.
When completed create work profile you can clone Bank App and use if.
As Information, It works out of the Box with Magisk denylist,
You only need to Install Ice Box and hide Magisk Manager, even if it is using a random name, "Mobiles Bezahlen" would detect it.
Magisk + Ice Box is sufficient on latest Miui 13 as well!
Regards!
Not sure but I think island could help not sure though as I'm not rooted the app is made by greenify
Only as info, these 2 Apps, Postbank Finanzassistent and Postbank BestSign working by default on a rooted device.
I like Postbank