Related
Greetings,
This is my first post here, so forgive me for posting in the general forum and not in the dev forums (I have to accumulate 10 posts to use the dev forums). I have a very important and worthwhile project that I'm hoping will interest a few devs here.
I am attempting to build a proof-of-concept for a very large educational institution that is considering implementation of ebook readers. Obviously, stock ebook readers are not up to what we need, and more robust tablets like the Galaxy Tab are cost prohibitive given the goal of distribution of these devices to tens of thousands of K-12 students. I don't want to be stuck with a single book distribution method, so I am looking for some standard Android flavor rather than a Nook-like interface.
So, here's my challenge to you. I would like to use the Nook Color (the $250 price point is perfect) to build a proof-of-concept low-end, semi-restricted Android tablet. I am looking for:
- Android 2.2
- Flash Support
- Ability to run:
- Dolphin Browser
- Regular Nook Android App
- Kindle App
- Google Book Reader App
- Adobe Reader App
- Some (undefined) Calculator App
- Stock Android Calendar App
- Stock Android Mail App
- Google Maps App
- Google Earth App
- Stock Android Gallery App or Equivalent
- Some (undefined) File Manager App
- Some (undefined) Note Taking App
I would also like the ability to load APK files (that we write) without the use of the Android Market. And . . . I need the final installation to *NOT* have root capability.
Anyone have a ROM to start this?
Also, while I'm somewhat familiar with rooting other Android devices, I'm not a developer and not a linux expert. I employ developers that have written a few Android apps, so they can handle the installation if necessary.
Any takers?
You can contact me off-list if you like at Dwayne at leeschools.net.
Thanks,
Dwayne
Wouldn't a $200 netbook be a far more usable tool to a student?
good thing you didn't post this in development.
once nook is updated to 2.2 this will basically all be possible with just root.
supposed to be released soon....
if you want a custom rom those will be around soon as well.
--edit--
i see you want this all without root. i don't believe that is possible. good luck though
There are specific reasons we are not considering netbooks for this project, beyond the scope of this discussion. For the purpose of this POC, we are only looking at touch-based slates.
I can't think of a way to fully disable root without someone being able to add it back. With that said would you be able to just delete the marketplace to make it "locked down" after installing everything? Possible disable super-level access as well?
I've not seen any confirmation that they are going to update to 2.2. I've only seen rumors to that effect. Do you have evidence to the contrary, because that would be great.
Additionally, the reason I'd like to involve the devs is because it is highly unlikely that B&N will release it with anything close to a stock 2.2 install. It will likely still require quite a bit of work to function normally. Hopefully I'm wrong on that account, but based on B&N's business model, I anticipate that they will do their best to prevent it from being used as a full tablet. They want to sell books. I don't think they want to sell devices without books. Not enough margin in the devices.
Perhaps I'm wrong related to their business model. I have approached B&N and requested an NDA to work with the Nook product team to see if they are interested in working together with us on a customized version. My feeling is that if they make very little on the device (with the goal of making the majority of their profit from content), they'll decline this offer.
MattJ951 said:
I can't think of a way to fully disable root without someone being able to add it back. With that said would you be able to just delete the marketplace to make it "locked down" after installing everything? Possible disable super-level access as well?
Click to expand...
Click to collapse
We could remove super user, but I'd also like to prevent users from killing services. I anticipate that we'll need some additional security apps that need to run full-time. One of our big challenges is that, by law, whenever we provide an Internet-capable device for students to take home, we are required to filter Internet. That's a huge task. On a PC, we an lock it down and force traffic through our filters from outside. From an Android device, we don't know how to handle that yet. We have a few approaches. I'm in discussion with M86 regarding an Android equivalent to their mobile client.
But . . . we have a lot more experience locking down a Windows or Mac PC than a phone OS. Most phone OSes are built from the perspective of a consumer, where the user is free to add/remove apps. We need a way to deal with that. Haven't gotten that far yet. The first order of business was to see if we can build our base functionality in a $250 device.
DwayneA said:
I've not seen any confirmation that they are going to update to 2.2. I've only seen rumors to that effect. Do you have evidence to the contrary, because that would be great.
Additionally, the reason I'd like to involve the devs is because it is highly unlikely that B&N will release it with anything close to a stock 2.2 install. It will likely still require quite a bit of work to function normally. Hopefully I'm wrong on that account, but based on B&N's business model, I anticipate that they will do their best to prevent it from being used as a full tablet. They want to sell books. I don't think they want to sell devices without books. Not enough margin in the devices.
Perhaps I'm wrong related to their business model. I have approached B&N and requested an NDA to work with the Nook product team to see if they are interested in working together with us on a customized version. My feeling is that if they make very little on the device (with the goal of making the majority of their profit from content), they'll decline this offer.
Click to expand...
Click to collapse
Dude, all of those hings are capable. Have you done any reading in this forum. Just get a nookie froyo 2.2 card set one up the way you want. uninstall super user and market. make lotsa copies of card and stick it in nook. If you really want you can also trash the firmware on the internal memory so it will not even book the stock nook firmware.
enjoy!
Consideration should be taken that rooting technically voids the manufacturer's warranty. Other than that, using the NookColor as a tablet is still a gamble in terms of getting a rock-solid and reliable device. Supporting the devices may be problematic.
Fortunately, the devs here are doing great work and I fully expect (hope) that it will be a rock-solid reliable device very soon.
You will probably also want to avoid booting from the microsd because they are easy to remove.
Filtering could be done with a VPN.
to avoid removal of micro sd, just put a little sugra on the break where the nook opens for the micro sd, sort of lieka warrenty sticker
If you need help. Let me know.
The Nook Color already has a Froyo image that can be installed. DSP currently doesn't work. That is responsible for video decoding not only for local files, but for Flash video as well.
Other than that, Flash will still run, but not on all occasions, and the rest of your requirements have already been accomplished (ie. apks can be installed and already exist on the Market or from the Internet).
You can install the Froyo image (it consists of a boot image and a system image) to your Nook easily, and afterward install all of the "G" apps with a quick copying of a folder.
Check here: http://forum.xda-developers.com/forumdisplay.php?f=864
- Do a little reading
- Possibly try installing Froyo on your memory card first.
- PM me if you need any guidance. I'm feeling pretty PRO at this after using adb all weekend to work with my Nook.
FYI: You can completely hose your internal installation and still be good (As long as you don't actually corrupt your memory physically). The Nook can always be booted off of a microSD card and restored to a fresh installation.
Edit: I just read some of your other posts. Just a thought: You could uninstall or disable the browser by default, thus not having to worry about Internet filtering. Later, users could still install apks from the sdcard (All that you have to do is tick a box in "Settings"). You can also do all of this without touching the stock rom. Of course you'd want to disable that from booting ever, so... after you were booted into your microSD card OS you could use adb to delete the content of the mmcblk0p1 (boot) partition. But I think that still might go against BN's warranty rules.
I understand the reasoning of wanting to lock it back down but if your students are capable of finding XDA (I'd imagine 1 or 2 of them is, at least) then that person would probably root the systems for anyone who was so inclined. I mean, B&N wasn't able to stop it, it's not likely that you would (without some sort of remote supervision app that could monitor and detect rooting).
gallahad2000 said:
I understand the reasoning of wanting to lock it back down but if your students are capable of finding XDA (I'd imagine 1 or 2 of them is, at least) then that person would probably root the systems for anyone who was so inclined. I mean, B&N wasn't able to stop it, it's not likely that you would (without some sort of remote supervision app that could monitor and detect rooting).
Click to expand...
Click to collapse
that was going to be my 2cts. A student would just have to pop in an sd card. And it would be a little unfair not giving student that right? And even then, they could always push something over via adb.
Have you looked at other options like the Archos line of Android tablets?
Otherwise, the SD Card install of Froyo works well - just superglue the opening
Why would any school district buy tablets with no warranty? Doesn't seem that feasible to me.
blackderbyhat said:
Why would any school district buy tablets with no warranty? Doesn't seem that feasible to me.
Click to expand...
Click to collapse
He's only looking for a proof of concept right now, and is trying to work with Barnes and Noble directly.
I forsee many broken nooks in our future.
Hi Guys, the browser hack that wipes Samsung phones is not limited to just those handsets. These guys do a better job of describing the whole thing:
http://www.theverge.com/2012/9/26/3412432/samsung-touchwiz-remote-wipe-vulnerability-android-dialer
Here is a direct link to the exploit test:
http://dylanreeve.com/phone.php
I'm running MavRom4 with the China telco radio image and my device is vulnerable. Just wanted to share the info so people are aware; having two dialers and no default will force the exploit to ask you to actively pick a dialer; this would neutralize most cases but that is a pretty annoying work around.
Maybe people can post D3 Roms that aren't vulnerable.
majatt said:
I'm running MavRom4 with the China telco radio image and my device is vulnerable. Just wanted to share the info so people are aware; having two dialers and no default will force the exploit to ask you to actively pick a dialer; this would neutralize most cases but that is a pretty annoying work around.
Click to expand...
Click to collapse
Also, installing DialerOne and making it the default will protect you as well - you do not have to leave it without a default dialer set. DialerOne is actually a good dialer - I used to use it with my Droid Eris with CyanogenMod ROMs, in order to have the dial by name function that the Sense dialer supported back. And you can still leave the stock dialer set in a home page or on the launcher dock - it will still work if you call it up. It will not be called up if you launch the dialer from another app, though, if you make DialerOne the default.
The stock dialer is vulnerable - a predictable result, based on the vulnerability of MavRom, but I did want to say that I tested it. I haven't tested any other ROM - at this point, I don't have much time to try some out, and I think I recently deleted my most recent Liberty and Bionic Nandroid backups.
Let's see how long before Moto releases a critical patch update for stock.
Thanks, this is good to know. I thought it was only Samsung phones that had the issue, but since I'm still on stock 2.3.4 it appears I'm vulnerable. I have GrooveIP Lite installed on my phone, an app that allows you to make voice calls with using your Google Voice number. With this app installed I get a complete action using Dialer or GrooveIP window so I should be safe if I get a random popup Ill be sure to not select Dialer.
I heard about this "wipe" problem and when I saw it was just passing dialer codes to the fone I knew it would affect more than just Samsung.
Does anyone know if they have a list started of fones that might be vulnerable?
I read somewhere (though haven't tested it...) that the D3 does not have a dialer code that resets the phone, as the Samsung phones do/did. So, the D3 fails the display the IMEI test, but I believe that the reset code does not work with the D3.
FYI: CM10 kexec isn't vulnerable. Probably b/c it's JB (I think they fixed the vulnerability in JB). I go to the site and dialer pops up w/ *#06# No IMEI displayed
Sent from my AOKP JB GT-P3113 using Tapatalk
It's supprising how few people use sip at least those who own Razri. I found it very useful and money saving, especially when travelling.Unfortunatelly Razri uses proprietary phone.apk as a part of Motoblur and Motorola stripped off the entire Internet calling part from the application. It was the case in previous ICS and it remains in JB. Other manufacturers which opt for the similar solution use predictive way to remove android.software.sip.xml from the system and change sip value to false in framework-res.apk. But not Motorola. It obviously used more sophisticated approach. Both above mentioned files remains intact as far as the sip is concerned.
There is an application on the Google Play named Sipswitch which enable widget to enter voip credentials. In previous ICS you couldn't activate the connection. Suprisingly with JB the system accepts the credentials and communicates with the VOIP provider. And the SIP app appears as an extension of the Motorola Phone.apk. But unfortunatelly the SIP is not triggered though it is enabled. There is still the missing link remains. Is the failure result of the fact that Sipswitch is not the system application?
I'm aware that there are many SIP applications on the market. I tried most of them but with Razri they have voice issues. I have best experience with native Voip from previous phones. Does someone else plays with SIP or has otherwise useful advice how to proceed?
piskr said:
It's supprising how few people use sip at least those who own Razri. I found it very useful and money saving, especially when travelling.Unfortunatelly Razri uses proprietary phone.apk as a part of Motoblur and Motorola stripped off the entire Internet calling part from the application. It was the case in previous ICS and it remains in JB. Other manufacturers which opt for the similar solution use predictive way to remove android.software.sip.xml from the system and change sip value to false in framework-res.apk. But not Motorola. It obviously used more sophisticated approach. Both above mentioned files remains intact as far as the sip is concerned.
There is an application on the Google Play named Sipswitch which enable widget to enter voip credentials. In previous ICS you couldn't activate the connection. Suprisingly with JB the system accepts the credentials and communicates with the VOIP provider. And the SIP app appears as an extension of the Motorola Phone.apk. But unfortunatelly the SIP is not triggered though it is enabled. There is still the missing link remains. Is the failure result of the fact that Sipswitch is not the system application?
I'm aware that there are many SIP applications on the market. I tried most of them but with Razri they have voice issues. I have best experience with native Voip from previous phones. Does someone else plays with SIP or has otherwise useful advice how to proceed?
Click to expand...
Click to collapse
Nobody engaged with the SIP? OK, since I'm not a programmer I'm kindly asking developers to take a close look to the attached applications. The first is Motorola's Blur Phone.apk, the second is original ICS Phone.apk. My question is: supposed I root the phone, if I delete Blur Phone.apk and install the original one (which has SIP option included) into the system, do I solve the problem or this is not the appropriate method? Perhaps because of diferrent apk frames or something else? Or must I replace the appropriate (original) Contact.apk as well? Thanks.
Aw: [q] sip/voip
Hi, i have the same problem. I'd like to use my VoIP number with the standard phone app.
I hope that someone can help with this.
Sent from my XT890 using xda app-developers app
me too!
Hi,
I have same problem (ThL W8 phone JB4.1.2 with mt6589 cpu) great phone, but SIP capability has been crippled somehow. Its in the framework-res.apk and the other setup files are there, it seems to be in the code for phone.apk, but there is nothing visible in the menu's and the SIP tester app reports no sip or voip capability. I'd love to know what has been done and how to undo it. It seems somebody has spent quite a lot of time and effort hiding this capability and the only reason I can see is bowing to pressure from the 'airtime sellers'.
I hope someone will point us in the right direction and soon.
gmincca said:
Hi,
I have same problem (ThL W8 phone JB4.1.2 with mt6589 cpu) great phone, but SIP capability has been crippled somehow. Its in the framework-res.apk and the other setup files are there, it seems to be in the code for phone.apk, but there is nothing visible in the menu's and the SIP tester app reports no sip or voip capability. I'd love to know what has been done and how to undo it. It seems somebody has spent quite a lot of time and effort hiding this capability and the only reason I can see is bowing to pressure from the 'airtime sellers'.
I hope someone will point us in the right direction and soon.
Click to expand...
Click to collapse
Well, you missed the forum, but regarding your problem it is not quite the same as here. If the SIP tester doesn't recognize the necessary conditions for SIP, you can try this method: http://forum.xda-developers.com/showthread.php?t=1592890
Motorola as the most qualified phone company uses more sophisticated and dirty methods to screw its customers: the SIP tester does detect sip capability and all necessary files and settings are enabled. But the SIP part is simply stripped off from the core phone.apk.
If you don't dare to try the suggested method you could always use Keyyo voip which has been updated recently and works flawlessly: https://play.google.com/store/apps/...DEsImNvbS5rZXl5b21vYmlsZS5hbmRyb2lkLnZvaXAiXQ..
piskr said:
Well, you missed the forum, but regarding your problem it is not quite the same as here. If the SIP tester doesn't recognize the necessary conditions for SIP, you can try this method: http://forum.xda-developers.com/showthread.php?t=1592890
Motorola as the most qualified phone company uses more sophisticated and dirty methods to screw its customers: the SIP tester does detect sip capability and all necessary files and settings are enabled. But the SIP part is simply stripped off from the core phone.apk.
If you don't dare to try the suggested method you could always use Keyyo voip which has been updated recently and works flawlessly: https://play.google.com/store/apps/...DEsImNvbS5rZXl5b21vYmlsZS5hbmRyb2lkLnZvaXAiXQ..
Click to expand...
Click to collapse
Hi,
Thanks, but the whole point of my posting is because all of the sip information in post 1592890 is already in place, everything looks as though SIP should work, but SIP tester doesn't recognise sip or voip capability and there is nothing in the menus. As for sip/voip apps yes there are countless of them good and bad, but this capability is built into Android and I want to be able to use it as I did on my old 2.3.6 phone. I'm just completely lost as to how to get it enabled.
So thanks, but really not much help so far.
gmincca said:
Hi,
Thanks, but the whole point of my posting is because all of the sip information in post 1592890 is already in place, everything looks as though SIP should work, but SIP tester doesn't recognise sip or voip capability and there is nothing in the menus. As for sip/voip apps yes there are countless of them good and bad, but this capability is built into Android and I want to be able to use it as I did on my old 2.3.6 phone. I'm just completely lost as to how to get it enabled.
So thanks, but really not much help so far.
Click to expand...
Click to collapse
If you have both files set correct (SIP enabled in framework-res.apk and xml) than you have virtually the same problem as it is with RazrI. The core phone.apk is rebuild in the manner that the sip part is stripped off. I prefer native SIP too, regarding my previous experience is the best, but I'm afraid that the only solution in our case is to get AOSP Phone.apk (or similar with SIP as CM) and reconstruct the framework-res.apk accordingly. I'm not the programmer, I'm not sure if it could be done with this method or the whole system is to be replaced with AOSP or CM since Phone.apk is a core application cross related with a lot of other stuff.
What you can try eventually is to deploy two apps: SipSwitch Widget and Zeynalov's Call Manager (Google Play). Sip Switch Widget enables inserting your voip providers credentials and Call Manager supposed to serve as sip trigger. For me the combination wasn't work and I doubt that it would in your case since in your case sip is even not recognised as existed. But it cause no harm to give them a try.
Just use this method, works for me:
http://forum.xda-developers.com/showpost.php?p=24710862&postcount=2
Just recently pulled my old DS7 out of the corner and after seeing, nvflashed this really great Unofficial CM10.1 for Dell Streak 7 ROM on it. Works great, apart from the one tiny problem - it thinks it's a phone ... I already used Uninstall Master to remove some Phone features, such as: SIM Toolkit(it's called Mobile Data i think?), Messaging and Mobile Network Configurator. Was wondering how or where can I change or modify the settings related to how the Cyanogenmod acts as a Phone or a Tablet so that many apps from Play Store wouldn't default to the portrait mode.
On a sidenote - thanks to giveen and anyone involved in making this really awesome CM port to DS7 :good:
karlis1989 said:
Just recently pulled my old DS7 out of the corner and after seeing, nvflashed this really great Unofficial CM10.1 for Dell Streak 7 ROM on it. Works great, apart from the one tiny problem - it thinks it's a phone ... I already used Uninstall Master to remove some Phone features, such as: SIM Toolkit(it's called Mobile Data i think?), Messaging and Mobile Network Configurator. Was wondering how or where can I change or modify the settings related to how the Cyanogenmod acts as a Phone or a Tablet so that many apps from Play Store wouldn't default to the portrait mode.
On a sidenote - thanks to giveen and anyone involved in making this really awesome CM port to DS7 :good:
Click to expand...
Click to collapse
The reason why it is that way is because there are 4G models of the DS7
giveen said:
The reason why it is that way is because there are 4G models of the DS7
Click to expand...
Click to collapse
Understandable, but since I have a Wi-Fi only version I wanted to know if It's possible to change this in form of a setting or a few lines inside a configuration file without involving compiling. I even faintly remember stumbling upon something like this on a CM9 version I had on my old Xperia MT15i Neo ... if only I could remember or find where or how (currently strolling through the developer and CM10 related menus) - deleted my Xperia related bookmarks when I sold it.
p.s. - people mentioned some problems with the on-screen keyboard disappearing as described in one of the posts on the main CM10.1 thread, I've noticed them myself too and they tend to be application specific ... it feels like the keyboard crashes or force-closes due to not enough memory, like in lighter applications the keyboard works fine, but when trying to use the keyboard for writing for example a post in the comments section in a website will most likely result in keyboard disappearing after first input character.
So I am still trying to figure out why you started a new thread about this and what your question is.
To remove mobile data completely requires a new compile, something that cannot be done right now for a variety of reasons.
I guess I simply went too far off topic while trying to explain why I'm writing here... sorry.
So, to clear things up, the question still remains the same - what can I do to make it act more like a tablet and less like a phone on my Wi-Fi only DS7. So what I'm trying to find in the developer and CM menus is if I can more or less simply switch between some sort of "phone" and "tablet" mode so that some applications from Play store wouldn't default to portrait view mode.
And I noted that I've already uninstalled/disabled (call it how you want - I can restore them from the Unnstallers Recycle Bin if something weird starts to occur) some of the system .apks and as You already pointed out:
To remove mobile data completely requires a new compile, something that cannot be done right now for a variety of reasons.
Click to expand...
Click to collapse
... so thanks for clarifying that and no need to do any special versions - it's just fine how it is now. I didn't come here to request anything to be compiled or modified for me but just to ask for info, heck, I wasn't even expecting You to be answering on this thread.
karlis1989 said:
I guess I simply went too far off topic while trying to explain why I'm writing here... sorry.
So, to clear things up, the question still remains the same - what can I do to make it act more like a tablet and less like a phone on my Wi-Fi only DS7. So what I'm trying to find in the developer and CM menus is if I can more or less simply switch between some sort of "phone" and "tablet" mode so that some applications from Play store wouldn't default to portrait view mode.
And I noted that I've already uninstalled/disabled (call it how you want - I can restore them from the Unnstallers Recycle Bin if something weird starts to occur) some of the system .apks and as You already pointed out: ... so thanks for clarifying that and no need to do any special versions - it's just fine how it is now. I didn't come here to request anything to be compiled or modified for me but just to ask for info, heck, I wasn't even expecting You to be answering on this thread.
Click to expand...
Click to collapse
I make it my special concern to answer questions, even if it with sarcasm
I'm not sure what more you can do besides deleting the phone. Comment out in build.prop the rild stuff
I wonder if he is referring to TabUI? Which I as well am trying to relocate the flash able .zip which enabled this display difference. I have been running cm10.1 2/12 because of the sensors not working on the 2/14 build.
Sorry to piggyback the thread, but is there an answer for where the tab ui .zip is for the 2/12 build?
Sent from my Galaxy Nexus using xda premium
Is there an application that can password protect certain apps that I choose?
And please do not say Kids Corner as it does not do what I am asking.
It's probably possible (though far from easy), but I'd actually be more inclined to help if you hadn't opened a duplicate thread about this.
Only made second thread about this to attract some attention, 7 months passed since that guy opened his thread and nobody could give a good answer.
To me it's weird that nobody tried to make an app like this still, it would be very popular and help users very much.
Anyways, thank you for replying.
Really, just bumping the other thread was enough, but since we're here anyhow... my idea for how to approach it (and this would take a *lot* of hacking) goes something like this:
1. Create an app (call it X) that has the capability to launch other apps, and filesystem write access.
2. Have X take another app (call it Y) and encrypt its binaries. This prevents anybody from launching it by any means.
3. Tweak the app database to make it so that when you try to launch Y, it instead launches X and passes the id of Y as a parameter to the launcher.
4. X prompts the user for a password to Y. On getting the right one, it decrypts Y's binaries and writes them back to the correct location, then launches Y.
5. When the user (or OS) closes Y, a background process of X notes that Y is closed and re-encrypts it.
Currently we know how to do... well, some of #1, and we think the rest is possible. Given that, #2 isn't too hard. #3 is something I don't have the least notion how to do *right now* but I'm sure it's possible. #4 shouldn't be too hard given #1 and #2. #5 will be a trick - currently, apps have no way to know what other apps are running - but I'm sure it can be done.
It's a large engineering problem blocked by an even bigger research and hacking problem, though. Nothing we'll have soon. You'd never be able to publish it in the store, either, and it would only work for people with hacked phones. It's exactly the kind of *useful* thing that would be possible if Microsoft were willing to let up the restrictions on third-party developers a bit, of course, But for the time being, there are *reasons* nobody has done it yet.
Well the word that I actually was thinking after reading your post was "crap".
It seems only with time (and a whole [email protected]#$ing lot of it) will wp become a true competitor to android, but to be honest I don't think it will come to that.
Thanks for replying GoodDayToDie, I'm freakin' sad that there is no app that can suit my needs, I even tried with kids corner but the screen still needs the password entered like the normal one. Nothing really can make up for what I have in mind.
Cheers mate.
as soon as we can interop unlock all WP devices, it will be pretty easy... if you're able to provide the XAP (uncrypted of course )
i'll be able to "mod" this in for you... which app are we talking about?
@GoodDayToDie: i do'nt think he is looking for real data security here, so encrypting the whole thing shouldnt be required... i think it's more about preventing his gf to read his private messages or something like that
oh btw.: you would need a dev-unlock to deploy the modified XAP then...
tfBullet said:
as soon as we can interop unlock all WP devices, it will be pretty easy... if you're able to provide the XAP (uncrypted of course )
i'll be able to "mod" this in for you... which app are we talking about?
@GoodDayToDie: i do'nt think he is looking for real data security here, so encrypting the whole thing shouldnt be required... i think it's more about preventing his gf to read his private messages or something like that
oh btw.: you would need a dev-unlock to deploy the modified XAP then...
Click to expand...
Click to collapse
You're right tfBullet! I need it for whatsapp, photos, message and games app, mostly to prevent from friends but gf too.
I was thinking it might be possible to mod an app and add password before it can be accessed, although I have no experience in this domain. Many apps in store have this function, like wallet or prive photo apps.
My phone is dev-unlocked as I started a few days ago to study and try to create a simple app for me and my friends.
Modding an app like that would actually be quite hard, because it would break the signature and prevent the app from running. The encryption thing really isn't too hard, although you could skip it anyhow too.
If there was a way to run a program in the background that monitors when certain apps are selected and then prompts when its activated would work, but it would need an unlocked phone. And even under home brew I don't know if its possible to run apps in the background. Yet.
Sent from my Nokia 521 using XDA Windows Phone 8 App
The encryption thing really isn't too hard
Yea, but that's a little extreme. If you can create that password program that runs in the background you could probably have it watch files, apps or pretty much anything. You'd have to password protect the cofig file. And maybe if you can't remember the password after so many attempts you can have the program email the passwords to your email. Just some ideas.
Sent from my Nokia 521 using XDA Windows Phone 8 App
Running software in the background is actually shockingly easy. The trick is getting it to run with better-than-app-sandbox privileges. We're still working on that one. In the meantime, apps can't even read, much less write, to the install location of other apps.
GoodDayToDie said:
Modding an app like that would actually be quite hard, because it would break the signature and prevent the app from running.
Click to expand...
Click to collapse
@GoodDayToDie: actually these .NET apps are pretty easy to decompile, if you're willing to fix the bugs that the decompiler leaves you with...
so there is not really a need for a valid signature, if you're able to compile & sideload the app yourself
the only thing is: you need the decrypted XAP, as far as i know these get decrypted while installation and can be pulled from a interop unlocked device?!
It would be nice to get my fingers on some OEM (Nokia etc..) XAPs, to see if we can find any exploit in them
I know better than probably 95% of this forum what it takes to decompile managed code; I have reverse engineered huge numbers of apps. However, you are missing several important points.
1) Modifications like you suggest are very complicated to automate. It's certainly possible, but it's not simple.
2) Re-installing the app would be a pain. You would really want to do this as an in-place modification, and that means (for store apps) that it would still be signature-checked.
3) Not all apps are managed code; WP8 supports purely native code.
4) Even with managed code, obfuscation can make tinkering with the binary nigh-impossible.
It's just so incredibly stupid that WP is so limited. I know it's under Android big time, but I think even iOS more customizable, right?
Also, is there a message app in the store that has pass option? I searched but found nothing...
I don't believe iOS is any more customizable, no. It has some feature that WP lacks (it ought to; it's been out for years longer and Apple completely controls the hardware it runs on) but it's also missing some features that WP8 offers. In any case, this isn't the thread to have that discussion in.
GoodDayToDie said:
I don't believe iOS is any more customizable, no. It has some feature that WP lacks (it ought to; it's been out for years longer and Apple completely controls the hardware it runs on) but it's also missing some features that WP8 offers. In any case, this isn't the thread to have that discussion in.
Click to expand...
Click to collapse
But with the jailbreak and MobileSubstrate, iOS is extremely customizable, and there are tons of tweaks, that's where Apple gets its new features from
Back to topic, I think the OP would be happy with a solution that locks the "normal" user of his phone out of some apps, so it wouldn't be necessary to modify anything of it, just making the standard launcher (I don't know how it's called, but I mean when you launch the app via home screen or with a toast) ask for a password should be enough.