Related
Simply put I want to Lock my bootloader and recovery even disabling recovery would be fine.
I'm basically asking if this is possible although I understand there are so to speak 1337 methods to bypass the Security measures I'm concerned with.
It's just most people's first approach to a phone they just found/stole is factory reset where frp would kick in, with the unlocked bootloader that would be easy af to bypass. *Not to mention frp bypass methods that are public
My goal is to set up my phone with the latest release of Pure Nexus + root and Latest TWRP, from there Lock the bootloader and then secure TWRP IE recover with a return to owner for reward with contact info.
Basically disabling/locking recovery with a return to owner screen and locking the bootloader as basic deterrent's for any common / petty their or anyone looking to upgrade to the phone they just found if you catch my drift.
-Also it would be nice to feel a little more secure with all these extra features PureNexus offers although I get that Android Security is fundamentally flawed these are just deterrents, also I'd be stoked to see this on a device I come across.
*Wouldn't hesitate to up call the owner of a phone that properly configured, although I know I could bypass it just a respect thing for me. :3
You can lock the bootloader, but it can simply be unlocked again. The only way to ensure it can't be unlocked is to encrypt it, and no Nexus device has an encrypted bootloader. Recovery cannot be disabled, though you could flash a non-working recovery image to the recovery partition. In that case however, simply unlocking the bootloader would allow someone to flash a recovery image to the device.
Your goals are laudable, but you're wasting your time here. To accomplish your end goal requires a device with an encrypted bootloader, which means you want something that isn't a Nexus and is sold through AT&T or Verizon. Both carriers encrypt the bootloader so you can't unlock it.
So basically because the bootloader cannot be secured my efforts would be in vain, are we sure I can't simply relock the bootloader in the same fashion that the stock rom is shipped out.
IE I remember having to OEM unlock in order to flash a custom recovery, with that being said after flashing a disabled recovery is it not possible to then re enable OEM lock somehow even with Pure Nexus running.
*Perhaps even only with the stock rom?
I'll make this as plain as I can. The only way to secure the bootloader is to encrypt it. Locking the bootloader and resetting the OEM Unlocking toggle in Developer Options won't help since any potential thief can simply unlock the bootloader. If you want to improve security, set a pin, pattern lock, or password after you mess around with locking the bootloader and setting the OEM Unlock toggle to off (if possible).
Simply disabling the ome toggle in developer setting doesn't relock the bootloader so would you say it's safe to run "fastboot oem lock" with Pure Nexus installed wipe data and then disable the oem toggle?
If that works wouldn't it be True to say I would need re enable the oem toggle and then "fastboot oem unlock" if I ever intended to replace the disabled recovery.
I really just wanted to shoot in the dark, although I don't want to brick my Nexus 6. Also sorry for a better lack of information on my part I don't mean to be a hassle.
JmakeITlookEZY said:
Simply disabling the ome toggle in developer setting doesn't relock the bootloader so would you say it's safe to run "fastboot oem lock" with Pure Nexus installed wipe data and then disable the oem toggle?
If that works wouldn't it be True to say I would need re enable the oem toggle and then "fastboot oem unlock" if I ever intended to replace the disabled recovery.
I really just wanted to shoot in the dark, although I don't want to brick my Nexus 6. Also sorry for a better lack of information on my part I don't mean to be a hassle.
Click to expand...
Click to collapse
Never lock the bootloader when running a.custom ROM... Bad very bad idea
rignfool said:
Never lock the bootloader when running a.custom ROM... Bad very bad idea
Click to expand...
Click to collapse
Worth asking why?
As in is this a goal worth pursuing IE a custom or unofficial build that supports such functionality.
Possibly already done: http://android.stackexchange.com/qu...4-7-bootloader-after-flashing-a-non-stock-rom
JmakeITlookEZY said:
Worth asking why?
As in is this a goal worth pursuing IE a custom or unofficial build that supports such functionality.
Click to expand...
Click to collapse
Because...
Stock ROMs are tested and tested for compatibility... To make sure you don't wind up in a bootloop (unless you have an LG)
Custom ROMs... Are not... No matter beans best intentions... He's no OEM...
You wind up in a bootloop for whatever reason... And a factory reset doesn't fix it... You're done... You have a paperweight...
So proceed as pleased, if I feel risky or got an extra Shamu I'll shoot in the dark and post the results. :3
More info:
What the consequences are really depends on your device. Most devices enable signature-verification for the boot partition (kernel) which prevents you from booting any kernels not signed by device manufacturer (unless you exploit some security breaches like 2nd boot). They also disallow you to flash any partition via 'fastboot flash' command, but not on all devices.
So no, you are not okay with relocking your phone: If you use custom firmware, you typically use a custom kernel and in this case, re-locking your bootloader via 'fastboot oem lock' will put your device in a state where it will not boot anymore! Be careful with that.
Info source: http://android.stackexchange.com/users/89475/kuleszdl
Idea: Disable signature-verification?
Note: Everyone thinks it will brick no one has said it happened, very strong possibility signature-verification is enabled. ?
are you an secret agent or something?
why the extreme paranoia about having this phone?
wase4711 said:
are you an secret agent or something?
why the extreme paranoia about having this phone?
Click to expand...
Click to collapse
I agree.
@JmakeITlookEZY, Basically, if your trying to say they want to give someone a phone that cannot be unlocked after locking it, then this isn't the device for you. There is an 'OEM Unlock' to prevent this but to hide this setting, would have no idea . And if you lock the bootloader and then someone wants to unlock it, it has to wipe the device.
Just have to live with the fact if someone wants to try and unlock the device, it's gonna get wiped no matter what. I'm no security expert but if you're worried something is going to happen to your phone, then you shouldn't be using it.
And if your really concerned, using a screen lock will prevent users from going into the recovery or booting the device anyways.
Gysper said:
?
Click to expand...
Click to collapse
It would be nice to feel confident enough to leave my device lying around or even lose it and know that it will either be returned or discarded.
I believe that level of security should be an option, not to mention have the ability to do it to begin with.
JmakeITlookEZY said:
It would be nice to feel confident enough to leave my device lying around or even lose it and know that it will either be returned or discarded.
I believe that level of security should be an option, not to mention have the ability to do it to begin with.
Click to expand...
Click to collapse
Yeah its called GPS
google Android Device Manager and use the locate device. You can even lock it if lost and erase all data.
Gysper said:
?
Click to expand...
Click to collapse
Not really a concern, if someone decided to keep the device the first step would be turn it off.
*More than likely reset from there epically considering encrypting the device would be a given.
JmakeITlookEZY said:
Not really a concern, if someone decided to keep the device the first step would be turn it off.
*More than likely reset from there epically considering encrypting the device would be a given.
Click to expand...
Click to collapse
Buy a tracking device and hack the phone. Problem solved
Gysper said:
?
Click to expand...
Click to collapse
Care to elaborate "tracking device" & "hack the phone" just dosen't seem to be what I'm shooting for.
JmakeITlookEZY said:
Care to elaborate "tracking device" & "hack the phone" just dosen't seem to be what I'm shooting for.
Click to expand...
Click to collapse
So you don't work for the CIA...
Let's be real, if you have no trust when something gets lost, then you don't deserve it. Should do your research and check out how to prevent something if it get's lost: http://www.apartmenttherapy.com/what-really-happens-when-a-smartphone-is-lost-195321
This is not a suicide hotline thread, if you're scared about losing something and not getting it returned, then I have to say you have a serious episode of OCD. Don't be that guy and learn to live with the consequences.
Gysper said:
?
Click to expand...
Click to collapse
Just to be Frank this is about information and general purpose security how you perceive it, is whatever.
*Also to address the "you don't deserve it" my concerns are the opposite it's not that I don't deserve it, more the other way around.
Update: Found more information that pretty much sums up what I hope to accomplish aswell as the implications.
Source: http://www.androidpolice.com/2011/0...ncryption-signing-and-locking-let-me-explain/
Update,
May be possible via: https://forum.xda-developers.com/an...signing-boot-images-android-verified-t3600606
Hi developers.
Please do not hate me, but I have been looking for the answer and didn't see it anywhere. I just got Galaxy S8 verizon - G950USQU4CRE9 (it was a free gift from Verizon for their mistake) and I wanted to root it, but it seems that OEM unlock is missing in the developer menu, I have tried many things, not luck, so I thought I would ask you guys. IS there any chance to root it, or downgrade it to 7 and then root it?
Thank you very much for your answers and solutions
romanko258 said:
Hi developers.
Please do not hate me, but I have been looking for the answer and didn't see it anywhere. I just got Galaxy S8 verizon - G950USQU4CRE9 (it was a free gift from Verizon for their mistake) and I wanted to root it, but it seems that OEM unlock is missing in the developer menu, I have tried many things, not luck, so I thought I would ask you guys. IS there any chance to root it, or downgrade it to 7 and then root it?
Thank you very much for your answers and solutions
Click to expand...
Click to collapse
For future reference, when you are looking for how to root a specific device, the best thing to try is to do a Google search for:
"How to root (your specific model number)"
In your case it would be:
"How to root S8 SM G950U"
If you had done a search using your model number, you would have easily found this:
https://www.skyneel.com/root-samsung-galaxy-s8-sm-g950u
Remember, when you have a question about a certain device or if you want to know how to do something on a certain model number, it is always best to use the device's specific model number in your search terms along with the thing you're looking for or along with what you want to do to the device.
Sent from my LGL84VL using Tapatalk
Thank you
Thank you for your answer. Believe me I have tried it all, that is why I have chooses this form. In the link provided there is mention OEM unlock option, now this is what I do not have on my phone.
That is why I have posted the question. I read that snapdragon version is difficult to root, so I hoped to find the answer here, where there are lot of smart developers.
I am afraid to use the method described in the link because I have not unlocked the bootloader and I am not sure if that would work without it and if it will not brick the phone.
So, is the version irrelevant when looking for the root option? It is good enough to look just for G950US instead of G950USQU4CRE9? I know I have many questions, but I am just starting the path you already walked on.
romanko258 said:
Thank you for your answer. Believe me I have tried it all, that is why I have chooses this form. In the link provided there is mention OEM unlock option, now this is what I do not have on my phone.
That is why I have posted the question. I read that snapdragon version is difficult to root, so I hoped to find the answer here, where there are lot of smart developers.
I am afraid to use the method described in the link because I have not unlocked the bootloader and I am not sure if that would work without it and if it will not brick the phone.
So, is the version irrelevant when looking for the root option? It is good enough to look just for G950US instead of G950USQU4CRE9? I know I have many questions, but I am just starting the path you already walked on.
Click to expand...
Click to collapse
Usually, the model number in device settings or the model number behind battery should be enough, what you posted looks like the baseband or build number, there shouldn't be a need for the baseband or the build number unless there is more than one android version available for the device that are different from each other. In this case, the baseband or build number might make a difference if the method to root is different for each baseband/build number.
For example, some Samsung devices that use CF-autoroot have more than one android version/baseband/build number available, for some of these devices, the version of CF-autoroot is different, you can't use the CF-autoroot that is built to work with "this" version/baseband/build number on "that" version/baseband/build number.
If you're in doubt, check which version/baseband/build number that the CF-autoroot for your model number is built to work with, if it's different than the version/baseband/build number that is currently installed on your device, you can't use it.
Now, as for the OEM unlock option. Try disconnecting from mobile data and Wifi then remove your SIM card, then disable the telephone app on your device, then reboot the device, then check settings to see if you have the OEM unlock option.
Sent from my LGL84VL using Tapatalk
Thank you
Thank you for the explanation, it is clearer to me after your explanation
As per :Noa, as for the OEM unlock option. Try disconnecting from mobile data and Wifi then remove your SIM card, then disable the telephone app on your device, then reboot the device, then chrck settings to see if you have the OEM unlock option.
I have tried that and no luck.
SO it means that until I will have the option on my phone, I can NOT do anything regarding rooting the phone, correct? Maybe I should explain what I am looking for with the root option. I am not a developer at any means, I just like to have a control over the device, so that Being said and I want be able to remove any bloatware that I do not need.
Droidriven said:
Usually, the model number in device settings or the model number behind battery should be enough, what you posted looks like the baseband or build number, there shouldn't be a need for the baseband or the build number unless there is more than one android version available for the device that are different from each other. In this case, the baseband or build number might make a difference if the method to root is different for each baseband/build number.
For example, some Samsung devices that use CF-autoroot have more than one android version/baseband/build number available, for some of these devices, the version of CF-autoroot is different, you can't use the CF-autoroot that is built to work with "this" version/baseband/build number on "that" version/baseband/build number.
If you're in doubt, check which version/baseband/build number that the CF-autoroot for your model number is built to work with, if it's different than the version/baseband/build number that is currently installed on your device, you can't use it.
Noa, as for the OEM unlock option. Try disconnecting from mobile data and Wifi then remove your SIM card, then disable the telephone app on your device, then reboot the device, then chrck settings to see if you have the OEM unlock option.
Sent from my LGL84VL using Tapatalk
Click to expand...
Click to collapse
romanko258 said:
Thank you for the explanation, it is clearer to me after your explanation
As per :Noa, as for the OEM unlock option. Try disconnecting from mobile data and Wifi then remove your SIM card, then disable the telephone app on your device, then reboot the device, then chrck settings to see if you have the OEM unlock option.
I have tried that and no luck.
SO it means that until I will have the option on my phone, I can NOT do anything regarding rooting the phone, correct? Maybe I should explain what I am looking for with the root option. I am not a developer at any means, I just like to have a control over the device, so that Being said and I want be able to remove any bloatware that I do not need.
Click to expand...
Click to collapse
If you can't unlock the bootloader then your only chance is if one of the universal android apps for rooting android devices or one of the universal PC programs for rooting android devices just happens to work on your model.
Do some searches for:
"PC tools to root any android device"
Or
"Universal rooting apps for android"
There are many different android apps and PC programs for rooting android devices, try any and all android apps or PC programs designed for rooting that you can possibly find, maybe you'll get lucky.
Sent from my LGL84VL using Tapatalk
thanks again
thanks agin for your reply, I really appreciate it, I just tried I think all of them I have found, still no luck
Droidriven said:
If you can't unlock the bootloader then your only chance is if one of the universal android apps for rooting android devices or one of the universal PC programs for rooting android devices just happens to work on your model.
Do some searches for:
"PC tools to root any android device"
Or
"Universal rooting apps for android"
There are many different android apps and PC programs for rooting android devices, try any and all android apps or PC programs designed for rooting that you can possibly find, maybe you'll get lucky.
Sent from my LGL84VL using Tapatalk
Click to expand...
Click to collapse
I guess I need to wait for OEM unlock option to appear on my phone, without it I can not do anything, Root genius was pretty close to 87% and then I got message that the phone is too solid to root
romanko258 said:
thanks agin for your reply, I really appreciate it, I just tried I think all of them I have found, still no luck
Click to expand...
Click to collapse
Mod Edit
romanko258 said:
I guess I need to wait for OEM unlock option to appear on my phone, without it I can not do anything, Root genius was pretty close to 87% and then I got message that the phone is too solid to root
Click to expand...
Click to collapse
there is no oem unlock on our devices we have bootloader locked phones Dude is not very smart and rolling off stock piles of crap
he needs to learn to search himself before making posts obviously
he is using a lg not even a samsung to post from
Depending on your firmware on your device now makes or breaks root
S8 bootloaders 1 and 2 only can be rooted 3 or higher no chance as of now and no downgrade possible
If the firmware you have listed in the title is correct you are on version 4 which is not rootable by anymeans need to get a different device
Thank you, I was suspicious about it as well, because I have researched it myself before I turned for the answer in here. The good neews is that my phone is not bricked and it works, and hopefully there will be root options sometime soon.
TheMadScientist said:
Mod Edit
there is no oem unlock on our devices we have bootloader locked phones Dude is not very smart and rolling off stock piles of crap
he needs to learn to search himself before making posts obviously
he is using a lg not even a samsung to post from
Depending on your firmware on your device now makes or breaks root
S8 bootloaders 1 and 2 only can be rooted 3 or higher no chance as of now and no downgrade possible
If the firmware you have listed in the title is correct you are on version 4 which is not rootable by anymeans need to get a different device
Click to expand...
Click to collapse
romanko258 said:
Thank you, I was suspicious about it as well, because I have researched it myself before I turned for the answer in here. The good neews is that my phone is not bricked and it works, and hopefully there will be root options sometime soon.
Click to expand...
Click to collapse
Sammy patched the only root method we had at the time
Im just glad you got the info before messing up the device Some people want to help but they dont know what is going on
TheMadScientist said:
Mod Edit
there is no oem unlock on our devices we have bootloader locked phones Dude is not very smart and rolling off stock piles of crap
he needs to learn to search himself before making posts obviously
he is using a lg not even a samsung to post from
Depending on your firmware on your device now makes or breaks root
S8 bootloaders 1 and 2 only can be rooted 3 or higher no chance as of now and no downgrade possible
If the firmware you have listed in the title is correct you are on version 4 which is not rootable by anymeans need to get a different device
Click to expand...
Click to collapse
Actually, I'm very familiar with CF autoroot.
I hate to break it to you but there are more than a few devices that can flash CF autoroot even though they have a LOCKED bootloader. Chainfire found a way around it on some devices, but those devices could only root via CF autoroot, they couldn't get TWRP at the same time. Granted, whether "this" or "that" device could use CF autoroot on locked bootloader is device specific, but that is where the user reads the CF Autoroot thread to see if their device meets that version of CF autoroots requirements, if it's one that can be used on locked bootloader, it will say so, if not, it will say that also.
Mod Edit
Also, if you look a few posts up, I actually posted the only possibilities to root if the bootloader could not be unlocked.
I understand where you're coming from though.
Sent from my LGL84VL using Tapatalk
Hey guys,
Is there any way to either reset the lockscreen password or to backup all userdata from a Moto G5S plus that's upgraded to Android 8.0, is not rooted, is running stock ROM, does not have ADB debugging enabled and has no custom recovery?
Most likely no, I've never had a Motorola phone before though, and I couldn't find any workarounds/utilities, but perhaps I wasn't using the right keywords.
Thanks in advance,
Lada
Hi, same problem here. My son can't unlock his Phone with password that was working yesterday Just fine. He has his fingerprint enabled and password. Fingerprint is not enough and it wants also the pass which is not working. Debugging is disabled, stock Rom unrooted. We cant even export data from it. Any solutions before factory reset?
Afaik there's mo such method because the whole mechanism would be pointless if one can bypass lockscreen password just like that.
You'll need to use some Forensic tools for retrieving data. Not a sure shot method and definitely not a cheap one as the software cost very much.
You can search and find Stellar Phoenix (or similar alternatives).
tarun0 said:
Afaik there's mo such method because the whole mechanism would be pointless if one can bypass lockscreen password just like that.
You'll need to use some Forensic tools for retrieving data. Not a sure shot method and definitely not a cheap one as the software cost very much.
You can search and find Stellar Phoenix (or similar alternatives).
Click to expand...
Click to collapse
I've tried several software, but they either only worked for a select few Samsung devices, or only with older versions of Android.
I was 95% sure it's a lost cause, just wanted to ask around, see if there are any Motorola-specific workarounds or whatever to try!
Lada333 said:
Hey guys,
Is there any way to either reset the lockscreen password or to backup all userdata from a Moto G5S plus that's upgraded to Android 8.0, is not rooted, is running stock ROM, does not have ADB debugging enabled and has no custom recovery?
Most likely no, I've never had a Motorola phone before though, and I couldn't find any workarounds/utilities, but perhaps I wasn't using the right keywords.
Thanks in advance,
Lada
Click to expand...
Click to collapse
Kamolot said:
Hi, same problem here. My son can't unlock his Phone with password that was working yesterday Just fine. He has his fingerprint enabled and password. Fingerprint is not enough and it wants also the pass which is not working. Debugging is disabled, stock Rom unrooted. We cant even export data from it. Any solutions before factory reset?
Click to expand...
Click to collapse
You can try this some of the method to unlock your device, i don't know if it works or not, but give it a try maybe it works.
https://www.androidphonesoft.com/resources/forget-lock-password-android.html
https://www.makeuseof.com/tag/forgot-android-passcode/
riyan65 said:
You can try this some of the method to unlock your device, i don't know if it works or not, but give it a try maybe it works.
https://www.androidphonesoft.com/resources/forget-lock-password-android.html
https://www.makeuseof.com/tag/forgot-android-passcode/
Click to expand...
Click to collapse
Yeah, those are all outdated :/
Lada333 said:
I've tried several software, but they either only worked for a select few Samsung devices, or only with older versions of Android.
I was 95% sure it's a lost cause, just wanted to ask around, see if there are any Motorola-specific workarounds or whatever to try!
Click to expand...
Click to collapse
I got to know that in an internship at an investigation agency. They use that software to solve criminal cases. It should work somehow but yes, may take significant time.
tarun0 said:
I got to know that in an internship at an investigation agency. They use that software to solve criminal cases. It should work somehow but yes, may take significant time.
Click to expand...
Click to collapse
By all means, there must be software out there that can bypass whatever lockscreen, but I doubt it's "commercially available"
I had been looking for a new phone for awhile. Settled on a Note 9 because I wanted to try using the S Pen for work and dislike the Note 10 design. However, they are still sold at full price where I live, so I bought one secondhand. Everything seems generally fine with it, minus some freezing or weird reactions when it charges for awhile or restarts. But I have been skeptical of throwing passwords (personal and for work) on it to this point. Thats because I read an article about potential root level or firmware level spyware that remains after a reset.
I did a reset AND even took it to an official service center to flash new firmware (but they said they cannot do it there, but they did some kind of more advanced reset?). I checked my Knox counter in the Download menu and it reads 0x00000, maybe more or less zeros. Samsung pass, pay, health, and secure folder all seem to work (I can register for them, use the bio sensor). That all sounds like it has not been tampered with in any way, correct?
Thanks for the help.
IqD said:
I had been looking for a new phone for awhile. Settled on a Note 9 because I wanted to try using the S Pen for work and dislike the Note 10 design. However, they are still sold at full price where I live, so I bought one secondhand. Everything seems generally fine with it, minus some freezing or weird reactions when it charges for awhile or restarts. But I have been skeptical of throwing passwords (personal and for work) on it to this point. Thats because I read an article about potential root level or firmware level spyware that remains after a reset.
I did a reset AND even took it to an official service center to flash new firmware (but they said they cannot do it there, but they did some kind of more advanced reset?). I checked my Knox counter in the Download menu and it reads 0x00000, maybe more or less zeros. Samsung pass, pay, health, and secure folder all seem to work (I can register for them, use the bio sensor). That all sounds like it has not been tampered with in any way, correct?
Thanks for the help.
Click to expand...
Click to collapse
What's the model number?
Sm-n960n. Korean exynos model, 512gb.
IqD said:
Sm-n960n. Korean exynos model, 512gb.
Click to expand...
Click to collapse
If you are worried about remaining spyware of files, download the latest rom from sammobile and then flash with odin.
Just simply search how to use sammobile or how to use odin if you need help. Hundreds of years have posted how good and answered those questions already
I used to flip phones up until a couple years ago. I've bought and sold hundreds, maybe thousands of used phones, most of which had my accounts on them at one point and time. I think as long as the phone is running official firmware, isn't bootloader unlocked/rooted, and you've reset it, it should be fine. Of course you run the risk that someone has hacked it, installed spyware at the system level, and somehow overwritten the status to show as official such that the spyware persists even after a reset, but that's highly unlikely.
Sent from my SM-N960U using Tapatalk
Bober_is_a_troll said:
If you are worried about remaining spyware of files, download the latest rom from sammobile and then flash with odin.
Just simply search how to use sammobile or how to use odin if you need help. Hundreds of years have posted how good and answered those questions already
Click to expand...
Click to collapse
Thanks for the idea. I considered this but would like to avoid just because sammobile is unofficial, so it would still leave me slightly apprehensive even if everyone is using it.
Everything I read seems to suggest that the phone was never rooted if all of the Samsung apps work and the Download KNOX counter is 0x0. Just wanting to confirm by someone more knowledgeable about this.
joshw0000 said:
I used to flip phones up until a couple years ago. I've bought and sold hundreds, maybe thousands of used phones, most of which had my accounts on them at one point and time. I think as long as the phone is running official firmware, isn't bootloader unlocked/rooted, and you've reset it, it should be fine. Of course you run the risk that someone has hacked it, installed spyware at the system level, and somehow overwritten the status to show as official such that the spyware persists even after a reset, but that's highly unlikely.
Sent from my SM-N960U using Tapatalk
Click to expand...
Click to collapse
Thanks. I don't think it has ever been unlocked or rooted, but is there a guaranteed way to know?
IqD said:
Thanks for the idea. I considered this but would like to avoid just because sammobile is unofficial, so it would still leave me slightly apprehensive even if everyone is using it.
Everything I read seems to suggest that the phone was never rooted if all of the Samsung apps work and the Download KNOX counter is 0x0. Just wanting to confirm by someone more knowledgeable about this.
Thanks. I don't think it has ever been unlocked or rooted, but is there a guaranteed way to know?
Click to expand...
Click to collapse
Go to settings > about phone > status and it should say "official". That would tell you if the phones operating system has been modified (rooted). As far as checking for bootloader unlock, I'm not sure on Samsung's but on a Google Pixel once the bootloader is unlocked it'll show an unlocked lock on the bootscreen every time that you reboot the phone. North American snapdragon variants of Note 9's do not have an unlockable bootloader so if your phone is a carrier branded phone, the bootloader can't be unlocked. You can Google your model # to figure out which one you have.
You can also check that all functions work properly. Typically apps like Samsung Pay won't work if the phone is rooted. There are ways around that where you can trick the phone into thinking it's not rooted to get those apps to work so, again, that's not a full proof way to check. For example, I'm using an AT&T variant that's been sim unlocked and flashed with Verizon firmware and it works 100% like a Verizon phone.
I'd say, reboot the phone. If you don't see an unlocked icon it's probably not unlocked. Go into settings and take note of your model #
Then go online and research about Odin and flashing official firmware via your computer. Download the latest official firmware for your phone, flash it using Odin, and then you'll know that there's no spyware on your phone. That would essentially be the equivalent of wiping a computer and reinstalling Windows.
Sent from my SM-N960U using Tapatalk
joshw0000 said:
Go to settings > about phone > status and it should say "official". That would tell you if the phones operating system has been modified (rooted). As far as checking for bootloader unlock, I'm not sure on Samsung's but on a Google Pixel once the bootloader is unlocked it'll show an unlocked lock on the bootscreen every time that you reboot the phone. North American snapdragon variants of Note 9's do not have an unlockable bootloader so if your phone is a carrier branded phone, the bootloader can't be unlocked. You can Google your model # to figure out which one you have.
You can also check that all functions work properly. Typically apps like Samsung Pay won't work if the phone is rooted. There are ways around that where you can trick the phone into thinking it's not rooted to get those apps to work so, again, that's not a full proof way to check. For example, I'm using an AT&T variant that's been sim unlocked and flashed with Verizon firmware and it works 100% like a Verizon phone.
I'd say, reboot the phone. If you don't see an unlocked icon it's probably not unlocked. Go into settings and take note of your model #
Then go online and research about Odin and flashing official firmware via your computer. Download the latest official firmware for your phone, flash it using Odin, and then you'll know that there's no spyware on your phone. That would essentially be the equivalent of wiping a computer and reinstalling Windows.
Click to expand...
Click to collapse
yeah.. i whouldint fall for that system/status official crap. as you can see in the screenshot i posted from my rooted n960n.
the only real way is to check if knox is tripped is in DL mode( turn phone off. hold bixby and vol down button while inserting a usb cable hooked to a computer.).
also flashing a stock firmware on an FRP locked phone wont do **** if someone has had their accounts logged in/registered on it and have not reset it correctly.
surprised you dont know this.
IqD said:
Sm-n960n. Korean exynos model, 512gb.
Click to expand...
Click to collapse
FYI - This phone does have an unlockable bootloader.
I'd recommend using Bobby's advice and flash the latest firmware with Odin. If the phone is not already on the latest update, you could flash one firmware less than current and then let the phone download and install an OTA to the current version. You'll know that its official if the phone successfully downloads and installs the OTA.
Sent from my SM-N960U using Tapatalk
---------- Post added at 07:35 PM ---------- Previous post was at 07:31 PM ----------
bober10113 said:
yeah.. i whouldint fall for that system/status official crap. as you can see in the screenshot i posted from my rooted n960n.
the only real way is to check if knox is tripped is in DL mode( turn phone off. hold bixby and vol down button while inserting a usb cable hooked to a computer.).
also flashing a stock firmware on an FRP locked phone wont do **** if someone has had their accounts logged in/registered on it and have not reset it correctly.
surprised you dont know this.
Click to expand...
Click to collapse
Not sure why you're trying to call me out when I clearly said there are ways for it show official if it's rooted. Also, no one said anything about FRP. If the phone was FRP locked they wouldn't be able to use it at all... Unless you know how to remove an FRP lock, which I do. At that point the phone would work/be a normal phone.
Sent from my SM-N960U using Tapatalk
joshw0000 said:
FYI - This phone does have an unlockable bootloader.
I'd recommend using Bobby's advice and flash the latest firmware with Odin. If the phone is not already on the latest update, you could flash one firmware less than current and then let the phone download and install an OTA to the current version. You'll know that its official if the phone successfully downloads and installs the OTA.
Sent from my SM-N960U using Tapatalk
---------- Post added at 07:35 PM ---------- Previous post was at 07:31 PM ----------
Not sure why you're trying to call me out when I clearly said there are ways for it show official if it's rooted. Also, no one said anything about FRP. If the phone was FRP locked they wouldn't be able to use it at all... Unless you know how to remove an FRP lock, which I do. At that point the phone would work/be a normal phone.
Click to expand...
Click to collapse
point taken on the FRP lock but the real point I was making is that the system status is bogus:
joshw0000 said:
Go to settings > about phone > status and it should say "official". That would tell you if the phones operating system has been modified (rooted).
Click to expand...
Click to collapse
bober10113 said:
point taken on the FRP lock but the real point I was making is that the system status is bogus:
Click to expand...
Click to collapse
You obviously didn't read the entire comment:
"There are ways around that where you can trick the phone into thinking it's not rooted to get those apps to work so, again, that's not a full proof way to check."
Or this comment:
" I used to flip phones up until a couple years ago. I've bought and sold hundreds, maybe thousands of used phones, most of which had my accounts on them at one point and time. I think as long as the phone is running official firmware, isn't bootloader unlocked/rooted, and you've reset it, it should be fine. Of course you run the risk that someone has hacked it, installed spyware at the system level, and somehow overwritten the status to show as official such that the spyware persists even after a reset, but that's highly unlikely."
There are a lot of ways to check. I pointed out some of the simpler ways. None of which are truly bullet proof. Hell, back in the day we could reset knox counters so if someone is going to the extreme to install some spyware and they're smart enough to install anything that would persist a factory reset, even checking knox isn't a full proof method.
And your screenshot really doesn't tell me anything. It's possible to have an unlocked bootloader AND official firmware at the same time. The operating system and bootloader are two different things. It's only when you modify the system that you have to hack the status to make it say official.
Sent from my SM-N960U using Tapatalk
joshw0000 said:
You obviously didn't read the entire comment:
"There are ways around that where you can trick the phone into thinking it's not rooted to get those apps to work so, again, that's not a full proof way to check."
There are a lot of ways to check. I pointed out some of the simpler ways. None of which are truly bullet proof. Hell, back in the day we could reset knox counters so if someone is going to the extreme to install some spyware and they're smart enough to install anything that would persist a factory reset, even checking knox isn't a full proof method.
Click to expand...
Click to collapse
fine but i mean, why ask a user to validate the state of their device via the worst possible method of them all?
he even already posted in OP that he went to DL mode to check the knox fuse status so would supersede by far the need to check via software/status.
edit
and the photo of my device status was just a way to show how i know device actual status and bootlaoder state aren't linked. especialy when rooted devices can spoof software status but none cane spoof fuse state in DL mode. so not sure why you are trying to convince me of something i just proved. u can say u agree next time.
bober10113 said:
fine but i mean, why ask a user to validate the state of their device via the worst possible method of them all?
he even already posted in OP that he went to DL mode to check the knox fuse status so would supersede by far the need to check via software/status.
Click to expand...
Click to collapse
No actually he didn't. He never said he went to DL mode, he just said the knox counter says 0x0. That can be checked via apps from the phone. If the phone was rooted, it could be manipulated to show 0x0 when it's really not.
You're focusing on one sentence dude. Get your panties out of a wod and read the whole comment.
Sent from my SM-N960U using Tapatalk
joshw0000 said:
No actually he didn't. He never said he went to DL mode, he just said the knox counter says 0x0. That can be checked via apps from the phone. If the phone was rooted, it could be manipulated to show 0x0 when it's really not.
You're focusing on one sentence dude. Get your panties out of a wod and read the whole comment.
Click to expand...
Click to collapse
lol. but i did read he went to download menu which i think we can interpret it as download mode. but hey i might wrong. can you show me anywhere in the OS where download menu is?
IqD said:
I checked my Knox counter in the Download menu and it reads 0x00000, maybe more or less zeros.
Click to expand...
Click to collapse
bober10113 said:
lol. but i did read he went to download menu which i think we can interpret it as download mode. but hey i might wrong. can you show me anywhere in the OS where download menu is?
Click to expand...
Click to collapse
What a troll.
Sent from my SM-N960U using Tapatalk
joshw0000 said:
What a troll.
Click to expand...
Click to collapse
that's the spirit!
bober10113 said:
lol. but i did read he went to download menu which i think we can interpret it as download mode. but hey i might wrong. can you show me anywhere in the OS where download menu is?
Click to expand...
Click to collapse
joshw0000 said:
No actually he didn't. He never said he went to DL mode, he just said the knox counter says 0x0. That can be checked via apps from the phone. If the phone was rooted, it could be manipulated to show 0x0 when it's really not.
You're focusing on one sentence dude. Get your panties out of a wod and read the whole comment.
Sent from my SM-N960U using Tapatalk
Click to expand...
Click to collapse
Sorry for the confusion. I was referring to the Download mode by hitting the mentioned buttons on restart. The KNOX reads 0x0000. Also, it says OEM Lock: On. Then you are both saying the phone is safe?
Also, when I first got it, it did find an update OTA and installed it.
IqD said:
Sorry for the confusion. I was referring to the Download mode by hitting the mentioned buttons on restart. The KNOX reads 0x0000. Also, it says OEM Lock: On. Then you are both saying the phone is safe?
Also, when I first got it, it did find an update OTA and installed it.
Click to expand...
Click to collapse
no confusion on my part. i read and understood you correctly the 1st time around.
at first glance your device looks ok but...
additionally, there are ways to check if the device is off a lease with a ESN check. meaning if someone sold you a device still on contract. some sell contractual phones and after a period of time they will get blacklisted since the contract is never payed off fully. so device would appear to work fine and one day they just stop getting a signal and esn/imei get blacklisted.
side note:
surprised that this was not brought up earlier in the conversation as a factor to watch out for by some "experianced in the field flipping devices" user instead of stating the obvious like device status and the unreliable means to check it. especialy since, said user stated buying and selling hundred and even thousands of phones...!? ESN state would be no. 1 in the check list if things to watch out for.
anyways back to the current case, there are ESN/IMEI check services in the web to see status of device: stolen, still on contract...etc. i cannot provide any suggestion to these services unfortunately. this is something you need to check yourself or ask around.
good luck
IqD said:
I had been looking for a new phone for awhile. Settled on a Note 9 because I wanted to try using the S Pen for work and dislike the Note 10 design. However, they are still sold at full price where I live, so I bought one secondhand. Everything seems generally fine with it, minus some freezing or weird reactions when it charges for awhile or restarts. But I have been skeptical of throwing passwords (personal and for work) on it to this point. Thats because I read an article about potential root level or firmware level spyware that remains after a reset.
I did a reset AND even took it to an official service center to flash new firmware (but they said they cannot do it there, but they did some kind of more advanced reset?). I checked my Knox counter in the Download menu and it reads 0x00000, maybe more or less zeros. Samsung pass, pay, health, and secure folder all seem to work (I can register for them, use the bio sensor). That all sounds like it has not been tampered with in any way, correct?
Thanks for the help.
Click to expand...
Click to collapse
Reading this thread I've come to the conclusion that you should sell your rootable and boot unlockable device and buy a locked down USA model.
Thank me later. Least you'll be able to sleep well now.
Sent from my SM-G975U using Tapatalk
IqD said:
Sorry for the confusion. I was referring to the Download mode by hitting the mentioned buttons on restart. The KNOX reads 0x0000. Also, it says OEM Lock: On. Then you are both saying the phone is safe?
Also, when I first got it, it did find an update OTA and installed it.
Click to expand...
Click to collapse
It's about as safe, in terms of spyware, as you'll ever get from a used phone. I would assume you checked the ESN before buying it but if not, run a check with swappa.com/esn and checkesnfree.com to make sure it's clean. Screenshot the results and save them. Depending on your carrier you can likely run a check on their website and/or call support and ask them as well. As with any unlocked phone, know that you may not get all of the features that a carrier branded phone would have (i.e. I couldn't get WiFi calling working on a Korean S10 on Verizon).
Sent from my SM-N960U using Tapatalk
It comes with a pre-configured Knox profile and I was wondering if I can get rid of it through rooting. It basically has a customized start and shut down screen, and persistent notification telling you how generous the government is and such. I could factory reset it but sadly it doesn't do anything. Note that this should be a South East Asian/Asia model, if that matters.
Let's just hope its not a Walmart Xcover situation. Would be nice if someone could help me out, thanks. I don't mind if I can only use the stock A8 roms from Samsung, I just want the government spying out of my device.
You could try to manually flash stock ROM made for other region
nisfta said:
You could try to manually flash stock ROM made for other region
Click to expand...
Click to collapse
I just hope it doesn't trip knox and brick it though, iirc this is a similar system in a telco payment locked phone right?
After doing some reading I've found some tutorial on flashing a stock Samsung rom through recovery via Odin but I don't know if the pre-configured profile would go away or not though
Alright so i tried to Odin reflash it, didn't work. I think the only way is through bootloader unlock root, but I'm afraid that Knox would get in the way and brick my phone though. Anyone else can confirm? Thanks.
nisfta said:
You could try to manually flash stock ROM made for other region
Click to expand...
Click to collapse
Just tried again with a stock rom outside of knox supported region, didn't work either.
So yeah unlocking the bootloader seems to be the only way now. Again, i'm still worried about Knox interfering with the rooting process and brick the phone
coomlord said:
Just tried again with a stock rom outside of knox supported region, didn't work either.
So yeah unlocking the bootloader seems to be the only way now. Again, i'm still worried about Knox interfering with the rooting process and brick the phone
Click to expand...
Click to collapse
I don't think it would brick the device but I don't think it will work either. Knox doesn't get erased by anything the user can do AFAIK. That's why it's called "Knox Secured". It would be useless if you could get rid of it simply by unlocking the bootloader.