[Q] Rooting Your Device - T-Mobile Samsung Galaxy S6

So for the past few weeks I have been debating whether I should root my device or not. The only thing holding me back is the T-Mobile Jump program, Samsung Pay, and other key features.
T-Mobile staff on their forums have claimed that rooting your device, then sending it in for a jump upgrade will require you to pay a insurance deductible fee. However knowing T-Mobile, and past experiences from people here at XDA; I doubt T-Mobile cares that much and allows you to do the upgrade as long as the phone is working.
Samsung Pay and other key features were also holding me back, as I've heard rumours of rooting your device may cause Samsung Pay to be unusable due to KNOX being tripped. However my want of rooting my device has led me to not care that much of this feature, and go on to continue to root my device.
Now here is my main question, I've read about key features such as private mode being disabled due to KNOX being tripped. Is this true? If it's not true with private mode, is it true with other key features in the phone? If someone could help me out with getting those two questions answered, I'd appreciate it. Thanks in advance for those who spent their time reading this, and for those who responded!

Every device I've ever sent back to T-Mobile has been rooted and ROMd and I've never heard a word from them. I don't even bother putting them back to factory state. I don't think anyone can answer the Samsung Pay question because it isn't out yet. Me personally, I don't care, I find it just as much as a hassle to dig my phone out vs my wallet so I'd rather have the control and customizability that rooting offers.

0dBu said:
Every device I've ever sent back to T-Mobile has been rooted and ROMd and I've never heard a word from them. I don't even bother putting them back to factory state. I don't think anyone can answer the Samsung Pay question because it isn't out yet. Me personally, I don't care, I find it just as much as a hassle to dig my phone out vs my wallet so I'd rather have the control and customizability that rooting offers.
Click to expand...
Click to collapse
Yeah glad to hear T-Mobile doesn't do much if the phone is rooted. Do you know whether rooting your phone allows you to still use private mode, and the fingerprint reader with knox tripped?

Fingerprint scanner works fine, I have no use for private mode so I haven't really checked it out.

Related

[Q] rooting without voiding warranty?

not sure if it's too early to ask this yet, but is there already a root method that doesn't trip knox or whatever thing that can void the warranty?
dn3g3l said:
not sure if it's too early to ask this yet, but is there already a root method that doesn't trip knox or whatever thing that can void the warranty?
Click to expand...
Click to collapse
Short answer, no.
We all know t mobile don't check for root so why bother yourself with this
g3 soon to be NOTE 4
its all these IBone converts that are flocking to this phone..
They're so used to Apple telling them what they can and can not do, that they dont yet know how to handle the freedom of Android/T-Mobile..
i'm just going to assume you're directing that at someone else. i've been using using android for quite some time. there was no knox when i rooted my phone before.
i don't buy insurance from tmobile so they won't be the one that's handling my warranty issues if something happens.
Like the OP, I refuse to waste money on Carrier insurance, and my previous phones did not have Knox. So it remains an important issue if you are relying on Samsung warranty. It's clear that existing root will trip Knox. My question is - what is the chance that there will be a root that does not trip knox in the future. Is it worth waiting or is knox considered to be bulletproof?
Edit: and no, I never owned an iPhone, and all my Androids have been rooted so far.
From what I read nobody has been able to break the Knox that Samsung share this knowledge with Google.
If the phone died and no fault of your own, Samsung will not take it back even if Knox is tripped?
Im not expert but I think that Samsung has to have a way to remove " tripped Knox flag " or any phone with hardware failure and Knox flag tripped would have no resale value if, for example, usb port is replaced.
Sent from my SGH-T889 using xda app-developers app
dn3g3l said:
not sure if it's too early to ask this yet, but is there already a root method that doesn't trip knox or whatever thing that can void the warranty?
Click to expand...
Click to collapse
it IS too early to ask; the phone has been out for a few days, so if you're paranoid about rooting because of tripping Knox, you'll have to just wait around and see, or develop an exploit and share it with the rest of the folks who feel they need it..
I've given back a Note 2 and a Note 3, KNOX wasn't out for Note 2 but it was rooted. Note 3 had a counter of like 12, as stated above, T-Mobile doesn't check.
BACARDILIMON said:
We all know t mobile don't check for root so why bother yourself with this
g3 soon to be NOTE 4
Click to expand...
Click to collapse
This couldn't be any more true. I've rooted every phone I've had with them that could be rooted and never once had them turn me down for an exchange or replacement unit. Hell I think I replaced my old one s maybe seven or eight times over the years I had it and I even stopped flashing it back to stock and just sent it back. Not like it's super hard for them to clean it all back up to stock.
I'm certain that when you return a phone to most vendors, they just throw it into the "defect" pile, and those phones either gets wiped and re-imaged, or they send them to some 3rd party who buys them cheap and does that on their own.
after spending many years as a director of sales for a consumer electronics company, I know how expensive it is to try and inspect/repair returns, so I cant imagine that Samsung/t mobile/att and who ever else even bothers to look at them.
If you think about the thousands of phones coming back as returns every day, handling them any more than absolutely necessary is a major losing proposition for these companies, and they only care about profit. When you return your rooted/knoxed/bricked phone, they NEVER repair it, you just get a new or rebuilt one sent out to you.
But hey, if you want to worry about tripping Knox or sending in a rooted phone, and that you will be in trouble/charged/punished for that, then you just go ahead and keep thinking that!:cyclops::cyclops:
By week 2 we should have about 8 of these threads. Should have at least 2 about triangle away and a few about screen saturated.
NOTE 4
BACARDILIMON said:
By week 2 we should have about 8 of these threads. Should have at least 2 about triangle away and a few about screen saturated.
NOTE 4
Click to expand...
Click to collapse
@BACARDILIMON it wont even take that long!

Questions about bootloader relock

So here's my situation, I have an at&t nexus 6 for as long as the phone is sold on at&t. I actually work for at&t and it's my company phone and I'm never going to switch out. But eventually when the phone goes end of life, I'll have to give it back. So if I unlock the bootloader and root, I will have to give it back to them and they will see that one of their employees voided the warranty, because I don't think I can relock the bootloader without some kind of message letting the entire world know that it was unlocked at some point. I'm also worried that the unlock/relock will have some sort of timestamp so they will be able to see when I do it. I tried searching for the answer to my ultimate question but found nothing, so I ask you fine people: is there a way to relock the bootloader while somehow hiding the fact that I tampered with it?
Thanks everyone! I'd really love to greenify and grab a battery friendly kernel when one is available, battery life has been a little subpar to this point, imo.
Accidental double post, disregard
On nexus, there's usually not a flag tripped if you unlock the bootloader. I'm not sure if Motorola did it for AT&T or not, but I doubt it. Just flash factory images, and fastboot oem lock and you should be good to go. Unlocking the bootloader doesn't automatically void the warranty on Nexus devices.
Sent from my Nexus 6
Also make sure you put the death Star splash screen back when flashing the factory images.
When you unlock usually it sets tamper flag to let warranty departments know the bootloader has been unlocked in the past. This app https://play.google.com/store/apps/details?id=net.segv11.bootunlocker&hl=en allowed Nexus users to relock and reset the tamper flag in the past but I'm not sure if it works or has been updated for the new devices yet.
AndrasLOHF said:
When you unlock usually it sets tamper flag to let warranty departments know the bootloader has been unlocked in the past. This app https://play.google.com/store/apps/details?id=net.segv11.bootunlocker&hl=en allowed Nexus users to relock and reset the tamper flag in the past but I'm not sure if it works or has been updated for the new devices yet.
Click to expand...
Click to collapse
Thanks for this, I'll email the developer and see if I can find out more about it [emoji106]
So in case anyone else ever needs to research this topic I figured I'd update, I emailed the developer of bootunlocker and haven't received anything back yet. It's only been a day so I'm still hopeful, but I also haven't seen a single ago review from anyone using the nexus 6. Since this is my company phone I am afraid to test but if I come across anything I will add it here.
Here's my opinion:
I really really doubt that your employer is going to be check (or care) whether the tamper flag was tripped or not. They will likely check for physical damage, custom ROM, encryption status and your bootloader status. Unless you pissed off your IT person and he just wants to find some problem and decides to check anything more, it is unlikely they will bother. And even if they did, plead ignorance (play dumb).
I (in all likelihood) do not work for your employer, so please use your better judgement.
jj14 said:
Here's my opinion:
I really really doubt that your employer is going to be check (or care) whether the tamper flag was tripped or not. They will likely check for physical damage, custom ROM, encryption status and your bootloader status. Unless you pissed off your IT person and he just wants to find some problem and decides to check anything more, it is unlikely they will bother. And even if they did, plead ignorance (play dumb).
I (in all likelihood) do not work for your employer, so please use your better judgement.
Click to expand...
Click to collapse
Well I'm a sales consultant in a store. As far as I know when they send them back it's the same process as warranty. You send it back, they check for damage, they flash stock firmware, and refurb it for use as a warranty exchange, as you stated. However, if I'm wrong I could potentially lose my job for tampering with company property. That's why I haven't done it yet and it's why I probably won't. I need a 100% guarantee that there will be no evidence of tampering and there's no such thing in this world. This could still have good info if someone needs to research the topic of bootloader relock but I think until a few more services get art support anyway I really don't need unlock/root that badly. I just need to keep my turbocharger handy for now.
pokedroid said:
Well I'm a sales consultant in a store. As far as I know when they send them back it's the same process as warranty. You send it back, they check for damage, they flash stock firmware, and refurb it for use as a warranty exchange, as you stated. However, if I'm wrong I could potentially lose my job for tampering with company property. That's why I haven't done it yet and it's why I probably won't. I need a 100% guarantee that there will be no evidence of tampering and there's no such thing in this world. This could still have good info if someone needs to research the topic of bootloader relock but I think until a few more services get art support anyway I really don't need unlock/root that badly. I just need to keep my turbocharger handy for now.
Click to expand...
Click to collapse
Any phone sent back is checked by a tech for if it has damage, water damage, and the number matches so they can mark the account as having it returned, if it boots, they are going to immediately flash it to stock and then verify it works, and move on to the next phone .... Really.
It's just above the conversation of a person with a unlocked rooted phone who has actually bricked it (not thought so in 99% of cases here in which members have resurrected it), if it was turned in bricked, they verify it doesn't even boot at all, and it gets scrapped for parts for other refurbs to get assembled, busted screens, etc. and then they move on to another phone return.
I know this because I've worked with people who used to do it for Asurion ... I wouldn't worry about it.
pokedroid said:
Well I'm a sales consultant in a store. As far as I know when they send them back it's the same process as warranty. You send it back, they check for damage, they flash stock firmware, and refurb it for use as a warranty exchange, as you stated. However, if I'm wrong I could potentially lose my job for tampering with company property. That's why I haven't done it yet and it's why I probably won't. I need a 100% guarantee that there will be no evidence of tampering and there's no such thing in this world. This could still have good info if someone needs to research the topic of bootloader relock but I think until a few more services get art support anyway I really don't need unlock/root that badly. I just need to keep my turbocharger handy for now.
Click to expand...
Click to collapse
While there shouldn't be a problem, there are a lot of 'what ifs' to consider. What if you end up with a broken screen or major water damage where your phone doesn't even turn on? If the IT team is able to change the screen/battery, they will see the unlocked bootloader - etc. Anyway, given your concern, I agree - play it safe.
Personally, the main reason I root are for Xprivacy (not possible at the moment because XPosed/ART issues), and for adaway. (For example: XDA forums using chrome are very very cluttered with ads and I find it almost unusable. Yes, I could use tapatalk or similar apps, but the ads are on almost all sites. I find adaway to be a must have.
jj14 said:
While there shouldn't be a problem, there are a lot of 'what ifs' to consider. What if you end up with a broken screen or major water damage where your phone doesn't even turn on? If the IT team is able to change the screen/battery, they will see the unlocked bootloader - etc. Anyway, given your concern, I agree - play it safe.
Personally, the main reason I root are for Xprivacy (not possible at the moment because XPosed/ART issues), and for adaway. (For example: XDA forums using chrome are very very cluttered with ads and I find it almost unusable. Yes, I could use tapatalk or similar apps, but the ads are on almost all sites. I find adaway to be a must have.
Click to expand...
Click to collapse
I agree. Same here the main reason I root is for greenify (that one makes sense) and xposed (if your devices' screen is over 4.7" check out a module called "flying android", its a game changer!! True one-handed operation). I think if/when xposed gets art support I'll just go buy my own. I'm in love with the nexus 6 and my only complaint is the front facing camera quality, but unless my wife is around I don't touch that camera anyway haha
is there a fast boot command that allows you to check the tamper status like the nexus 5 'fastboot oem device-info' ?
pokedroid said:
Well I'm a sales consultant in a store. As far as I know when they send them back it's the same process as warranty. You send it back, they check for damage, they flash stock firmware, and refurb it for use as a warranty exchange, as you stated. However, if I'm wrong I could potentially lose my job for tampering with company property. That's why I haven't done it yet and it's why I probably won't. I need a 100% guarantee that there will be no evidence of tampering and there's no such thing in this world. This could still have good info if someone needs to research the topic of bootloader relock but I think until a few more services get art support anyway I really don't need unlock/root that badly. I just need to keep my turbocharger handy for now.
Click to expand...
Click to collapse
It is a VERY long stretch to assume that you'll get in any kind of trouble for using the device ***AS INTENDED***. Bootloader unlock, ESPECIALLY on a Nexus device, DOES NOT VOID THE WARRANTY!!! (even if they warn you that it *might* -- that warning is really there just to tell you that you are losing SOFTWARE SUPPORT). I.e., if you eff up the system image so it won't boot, then you send it back for warranty, they will tell you that you effed it up yourself and send you a repair bill. THAT IS ALL IT IS FOR.
Even the device INSTRUCTIONS tell you how to unlock it!
https://developers.google.com/android/nexus/images
Nobody can possibly claim that this is anything besides INTENDED USE, because the instructions explain how to do it!
doitright said:
It is a VERY long stretch to assume that you'll get in any kind of trouble for using the device ***AS INTENDED***. Bootloader unlock, ESPECIALLY on a Nexus device, DOES NOT VOID THE WARRANTY!!! (even if they warn you that it *might* -- that warning is really there just to tell you that you are losing SOFTWARE SUPPORT). I.e., if you eff up the system image so it won't boot, then you send it back for warranty, they will tell you that you effed it up yourself and send you a repair bill. THAT IS ALL IT IS FOR.
Even the device INSTRUCTIONS tell you how to unlock it!
https://developers.google.com/android/nexus/images
Nobody can possibly claim that this is anything besides INTENDED USE, because the instructions explain how to do it!
Click to expand...
Click to collapse
Its true that Google play purchased devices will not be voided by unlocking, but pretty much any other carrier or retailer will void your warranty. This was true on the nexus 5 too. Play devices fine, but anything going back to LG would be voided if unlocked. There's no reason to assume its different on the 6.
I specifically bought from Play this time to prevent this being an issue for me.
but does locking the bootloader hide any signs of tampering, at least that Motorola would look for...........?
what is status code 2, someone must know....?
just bumping this up.............
any experts out there know how to check the nexus 6 for tamper flags?
do you know what the bootloader: locked status code: 2 means....
looking for reassurance..............
mediaman123 said:
just bumping this up.............
any experts out there know how to check the nexus 6 for tamper flags?
do you know what the bootloader: locked status code: 2 means....
looking for reassurance..............
Click to expand...
Click to collapse
Please don't bump threads within 24 hours. Its against the rules.
I see you're asking similar questions all over the place. I'm going to answer what I hope is all of your questions in 1 post.
How can you check the Tamper flag? We do not know. There seems to be no fastboot command to check it.
What is status 2?: We don't know. We assume it means "locked" but we can't be sure. Unlocked seems to be status 3.
What is the most I can do to ensure warranty? Relock your bootloader.
Is this enough to get warranty? If you bought from Google directly, it doesnt matter if it is locked or not. Anywhere else, we dont know.
Thanks for the reassurance......
rootSU said:
Its true that Google play purchased devices will not be voided by unlocking, but pretty much any other carrier or retailer will void your warranty. This was true on the nexus 5 too. Play devices fine, but anything going back to LG would be voided if unlocked. There's no reason to assume its different on the 6.
Click to expand...
Click to collapse
Absolutely (a) nonsense, (b) illegal of them.
Those LG "service reps" (aka India), are trained to try to avoid paying out warranty claims. Hence manufacturing details that are in direct violation of the laws where the devices are sold, and even the INTENTION of the manufacturer. Some people (you) just need to try a little harder to escalate matters before giving in to that kind of tactic.

Rooting without tripping knox

I know ive heard that knox is here to stay on the note 4 forums but the galaxy s6 has root without tripping knox i just wanted to start a discussion on this matter and ask the simple question....
If it can be done on s6 why not note 4 ....
Now ive already tripped knox and probably dont care if i ever have a clean knox but i know there's plenty of people who would love to root but cant because they need knox... I just dont see how it can be as cut and dry as the note 4 forums have portrayed. It can be done obviously so is it a lack of necessity becuase so many have already tripped knox that they just arent interested in working it out or what.
I kno its been talked about before but not that ive seen has it ever been rationalized that the s6 has it why not us
why does knox even matter? most of the CS reps dont check KNOX and it isn't required other than for business purposes.
Well thats exactly where it does matter to the rest of us its absolutely pointless we don't care..but I've seen at least a few threads of users asking about it. So it has to matter to some users. And hell usualky just the thrill of the chase is reason enough to modify something to suit our needs after all isnt that why we all root and mod our phones , becuse we can..
And ultimately just interested in why it hasnt been done yet. Seeing it usually done on most other phones.. Plain curiosity i guess. Because it doesn't matter to me i would never utilize anything knox offers
Note 4 is not S5 or S6. Its different with a lot of scripting things. Not sure about this whole "chase" thing you mention. A lot of us here aren't into being criminals or feeling a thrill out of it, just wanting to modify our phones and have freedom to do so. Has nothing to do with being able to get away with it, etc. Retaining KNOX would be nice, but I don't think that's why a majority of the users are trying to do it
I have no idea where your taking things but way out in keft field obviously
I know exactly why we all mod our phones ive been here for quite a long time i never said anything remotely close to anything' criminal and am annoyed at someone implying i was. And as are all mankinds endeavors these are a challenge we rise to becuase we can thats what i meant. You really should be sure of the lines your reading in between before implying things
I was merely interested to know why its not been done in the note which is the most business savvy of all the galaxy line and you would think since knox is a corporate or business feature for the most part tthe business oriented phone would be the one to do it to
Michael Scott would be disappointed in you
My note 4 has a tripped knox, the GPS seems to be defective and since I'm not with the t mobile, I can't take it to the mobile for warranty. Samsung wouldn't take it, Or would they? Anyone have experience?
Sent from my SAMSUNG-SM-G925A using Tapatalk
Odin to stock + factory reset has worked for us every time.
neofreek01 said:
I was merely interested to know why its not been done in the note which is the most business savvy of all the galaxy line and you would think since knox is a corporate or business feature for the most part tthe business oriented phone would be the one to do it to
Click to expand...
Click to collapse
Simple answer: The Galaxy S6 had a kernel exploit, the Note 4 did not. You cannot just will an exploit into existence, you either find one, or you don't.
Also, for wanting or needing knox intact on your phone for business needs or whatever, you will want to be aware that rooted S6 users with intact knox will have to stay on 5.0.1 forever, or until a new exploit is found. I am sure any smart businesses incorporating knox would ask you to kindly update your S6, saying bye bye to your root.
T-Mobile don't care about knox being tripped.

Just need a yes or no, please..

I just want a quick answer as I keep finding people claiming to be able to root t-mobile s6 sm-g920t ver. 5.1.1. I cannot find anything to support this without a lot of headaches, much less being able to find and download needed files for root.
Can I successfully root this Samsung Galaxy s6 SM-G920t?
Or should I go back to my HTC phone?
Thanks,
chevy383surfing
FYI: I got this phone yesterday as a promotional and did not have to pay for it. I have always strayed away from Samsung because of all the hassles involved in rooting any Samsung device over the course of the last 10 years or maybe a little less. As soon as I signed in to my Google account the damned phone automatically updated. "Thanks for the options Samsung!!! I didn't have any choice but to go through with the update.
Yes, you can root it easily but you will void your warranty by tripping Knox.
KaneHusky said:
Yes, you can root it easily but you will void your warranty by tripping Knox.
Click to expand...
Click to collapse
I am not worried about warranties. I root all of my android devices. I pay the phone companies a lot of money every month. I usually buy all my devices straight out too. So Samsung can do what they need to, as long as they stay out of my way, I will stay out of their way. Anyway, my other main concern is all the calling problems and the finger print phone lock. Will these break regardless?
Thanks for the fast reply, too!
chevy383surfing said:
I am not worried about warranties. I root all of my android devices. I pay the phone companies a lot of money every month. I usually buy all my devices straight out too. So Samsung can do what they need to, as long as they stay out of my way, I will stay out of their way. Anyway, my other main concern is all the calling problems and the finger print phone lock. Will these break regardless?
Thanks for the fast reply, too!
Click to expand...
Click to collapse
The only downside to rooting the latest firmware versions is you cannot use Samsung Pay with Knox tripped. Other than that, I haven't experienced calling problems or any issues with the fingerprint reader. Haven't heard of call problems as a result of rooting but the fingerprint sensor not working was a result of using the engineering bootloader (to maintain Knox warranty status) on a previous firmware release.

Is there some secret way to hack or bypass Knox without triggering it?

Hi all.
I'm asking this question because a friend of mine told me that he knows someone who could crack and unlock pretty much any phone's anything, for a price.
Just the other day, my friend took back his phone from another person (why he took it back is another story) who had been using that phone of his. So obviously before my friend could use it he'd need to factory-reset it. But at the last step the phone asked him for the email password of the previous user, the person he took the phone back from. Instead of contacting that person, he sent his phone to the... well, hacker. Then the next day he went to take it back and it was unlocked already! He paid about 40 dollars for it.
How?!
He also told me the hacker could even crack or bypass iPhone X's lock screen, but that would cost about 500 dollars. For Note 8's lock screen, he said he could do it with his eyes closed.
So what is all this?? Is all this possible?
And Knox? Is there really some way to crack Knox?
Please enlighten me. Thank you.
About knox, there is no way to reset it once tripped, because it is a fuse, (an e-fuse), I know
that cracking the lock screen can be done, but it involves resetting the phone
The topic question is about NOT tripping Knox while cracking it. Whether there is such a way, or tool. Because I was told by someone that someone else could do it.
Cracking the lock screen can be done but involves resetting phone? Reset how?
Love stories when it's pertaining to someone knew someone that could or did something. My neighbors friends daughters step dad's uncle Ron, reckons he can hack any phone including bypassing Knox.
Sent from my SM-N950U using Tapatalk
I'm not saying I believe it. That's why I'm asking here. I wouldn't have if I believed. At least explain how he cracked the FRP.
So I'm taking your response as "no, Knox can't be hacked".
Next person.
Knox is made as it is for this exactly purpose, you can get through it, yes, but leaves the trace 0x1, which means someone tampered with it, so the owner(individuals or corporations) can know for sure it has been compromised, and take the adecuate meassures about it, as for unlocking a device without the propper passwords or biometrics, that is something that can be done, but nobody even knowing how-to do it, will teach you how to do it here, as it could provide a way for potentially illegal practices, and try not to be so adammant in yor post
Lol and I'm not even asking to be taught how to do it. I'm only asking to know whether there is or isn't such a way (or ways). That would already be satisfying. Because right now something that I trust a lot (Knox) is, apparently, crackable. I of course wouldn't believe what I was told so easily, and so I'm here.
What I'm saying is that I understand pretty well how Knox works, and I know what I'm looking for. I'm just here requesting input from anyone who might know a bit about this topic, and I thank anyone who responds.
Well, you got the answer, no, there is no way to crack it without showing 0x1, that's it
Yes, I want to believe "no" as well. And that's what I'd believe for now. I also personally do not think it's possible. But considering it was coming from someone who cracked the FRP....... That was what made me to make the effort to start this thread.
OP, you've raised a few different issues here...password unlocking and Knox...
Knox can't be reversed once tripped, period. Fuse-based or something similar to that anyways, no way to undo that.
Breaking lockscreen passwords in another matter entirely...I'm sure you could Google that but I don't think it's appropriate for discussion here.
sefrcoko said:
OP, you've raised a few different issues here...password unlocking and Knox...
Knox can't be reversed once tripped, period. Fuse-based or something similar to that anyways, no way to undo that.
Breaking lockscreen passwords in another matter entirely...I'm sure you could Google that but I don't think it's appropriate for discussion here.
Click to expand...
Click to collapse
I understand tripped Knox can't be reversed. I know. And if a hack attempt trips it, then the hack has failed. But my question here is whether it's at all possible (even theoretically) to crack Knox without tripping it.
Yes. Lockscreen can be bypassed or broken. But what about FRP? My friend's phone's FRP has just been broken. Hmm...
Discussions about knox have been around in xda for years, no, there is no way around it, never have been, I doubt there will ever be, as it would render samsung pay as not trustworthy, that is why tje e-fuse is a physical security flag
Voidity said:
I understand tripped Knox can't be reversed. I know. And if a hack attempt trips it, then the hack has failed. But my question here is whether it's at all possible (even theoretically) to crack Knox without tripping it.
Click to expand...
Click to collapse
Ok I understand now... Anything is possible in theory I suppose, but if anyone ever cracked enterprise-grade security like Knox it would essentially render it useless for all (because it could no longer be considered secure). Samsung has millions of dollars, if not more, riding on preventing exactly that. No one has cracked it yet, and it has only become more secure over time...so I doubt they ever will.
winol said:
Discussions about knox have been around in xda for years, no, there is no way around it, never have been, I doubt there will ever be, as it would render samsung pay as not trustworthy, that is why tje e-fuse is a physical security flag
Click to expand...
Click to collapse
sefrcoko said:
Ok I understand now... Anything is possible in theory I suppose, but if anyone ever cracked enterprise-grade security like Knox it would essentially render it useless for all (because it could no longer be considered secure). Samsung has millions of dollars, if not more, riding on preventing exactly that. No one has cracked it yet, and it has only become more secure over time...so I doubt they ever will.
Click to expand...
Click to collapse
Thanks. The ways both of you put it make lots of sense. I'm regaining my confidence. After all, Knox is something that has gained the approval of many governments and organizations around the world and is declared fit for government work.
Then again, I learned that the Snapdragon Note 8 could be rooted without tripping Knox right? (Is this still the case?) Does this mean anything in terms of Knox security? (Mine is an Exynos by the way, and AFAIK Exynos Note 8 doesn't have this issue.)
Lastly, well... this concern isn't exclusive to Knox because any security system may have yet-to-be-discovered potential exploitable flaws, but Knox also has its share of flaws in the past, such as http://www.wired.co.uk/article/samsung-knox-security-vulnerabilities. I guess we can't really do anything about this individually.
Voidity said:
Thanks. The ways both of you put it make lots of sense. I'm regaining my confidence. After all, Knox is something that has gained the approval of many governments and organizations around the world and is declared fit for government work.
Then again, I learned that the Snapdragon Note 8 could be rooted without tripping Knox right? (Is this still the case?) Does this mean anything in terms of Knox security? (Mine is an Exynos by the way, and AFAIK Exynos Note 8 doesn't have this issue.)
Lastly, well... this concern isn't exclusive to Knox because any security system may have yet-to-be-discovered potential exploitable flaws, but Knox also has its share of flaws in the past, such as http://www.wired.co.uk/article/samsung-knox-security-vulnerabilities. I guess we can't really do anything about this individually.
Click to expand...
Click to collapse
Most of the Note 8 Snapdragon variants have a locked bootloader, so the root method is different there and do not affect Knox as far as I know. Other differences though, like not being able to charge past 80%, etc. Exynos bootloaders are not locked and use the standard root methods.
Hello all i think i have managed to turn off the samsung secure boot. i can write to the recovery without blowing the bootloader fuse i tried write the s8 snapdragon twrp to my recovery in past always just getting secure boot fuse blown resulting in having to odin
---------- Post added at 03:07 AM ---------- Previous post was at 03:04 AM ----------
back to samfail v3. Somehow this time all i get is a screen saying please take phone to att authorized retailer we knoticed you have unauthorized software on recovery. I reboot phone boots back into the pre rooted stock rom samfail v3. My knox is not tripped i also can do full back up and restore on flashfire pro no problems all partitions i was to afraid do bootloader partitions but can all the other protected ones modem efs ect. Am i losing my mind or is something going on here i have the full backups 6 gig worth saved so if so maybe someone more qualified can look at it.
Cash that i odin it back samfail v3 if only that easy
Just throwing in my 2 cents...
I believe there is a hack whereby the kernel is replaced when rooted. This will show that KNOX Warranty void is 0x0...
In reality KNOX has been triggered and Samsung pay won't work but the bootloader screen does say that KNOX hasn't been tampered with. Flashing a stock rom with ODIIN will reveal this trick however...
sefrcoko said:
Most of the Note 8 Snapdragon variants have a locked bootloader, so the root method is different there and do not affect Knox as far as I know. Other differences though, like not being able to charge past 80%, etc. Exynos bootloaders are not locked and use the standard root methods.
Click to expand...
Click to collapse
What I meant was if rooting could be done undetected by Knox, essentially does that mean Knox has... failed?
smokeyb4201 said:
Hello all i think i have managed to turn off the samsung secure boot. i can write to the recovery without blowing the bootloader fuse i tried write the s8 snapdragon twrp to my recovery in past always just getting secure boot fuse blown resulting in having to odin
---------- Post added at 03:07 AM ---------- Previous post was at 03:04 AM ----------
back to samfail v3. Somehow this time all i get is a screen saying please take phone to att authorized retailer we knoticed you have unauthorized software on recovery. I reboot phone boots back into the pre rooted stock rom samfail v3. My knox is not tripped i also can do full back up and restore on flashfire pro no problems all partitions i was to afraid do bootloader partitions but can all the other protected ones modem efs ect. Am i losing my mind or is something going on here i have the full backups 6 gig worth saved so if so maybe someone more qualified can look at it.
Click to expand...
Click to collapse
smokeyb4201 said:
Cash that i odin it back samfail v3 if only that easy
Click to expand...
Click to collapse
All this is beyond me as I don't have knowledge of those inner workings of them.
ultramag69 said:
Just throwing in my 2 cents...
I believe there is a hack whereby the kernel is replaced when rooted. This will show that KNOX Warranty void is 0x0...
In reality KNOX has been triggered and Samsung pay won't work but the bootloader screen does say that KNOX hasn't been tampered with. Flashing a stock rom with ODIIN will reveal this trick however...
Click to expand...
Click to collapse
One of Knox's primary jobs is to monitor and protect the kernel, no?
I guess if in reality Knox has still been tripped then Knox has done its job...
No I have a Knox checker it says Knox is valid and see linux is in permissive. I'm on a att n950U but my stock recovery is for a n950X but I can load it and be rooted . I assume all v3 samfails are same.

Categories

Resources