Hello All,
I've been searching how to bypass the Exchange security policy on our device and was unable to really find anything.
This is a MOD that exists for Vanilla roms easily, and is also available for many other ROMs in the form of modified APK's.
After a bunch of searching I was able to find a MOD that would patch up the APK's on many ROMs, including TW ROMs.
I have nothing to do with this work, and all credit goes to its creators in the link below.
You will have to download this to your computer, and have Java SDK (JDK) installed on your machine.
When you run it - it will say that it cannot identify the EMAIL APK and ask you to type the APK name.
On our phone it is: SECEMAIL_J.APK
(It is located in /systems/app folder, if you care, though you don't need to know this)
The program will also create a backup of this APK file, as well as the SecExchange.APK which it modifies as well.
Good luck to you all!
LINK:
http://forum.xda-developers.com/showthread.php?t=1117452
Everything seems to line up just fine except it seems the security policies were applied anyway...
Note: FRESH BRAND NEW PHONE
1) Rooted device.
2) Setup my exchange mail settings, device asked me to accept policy changes, I closed it (not agreeing).
3) Downloaded the attached file (on that thread) "email-policy-patch-3.3.zip"
4) Extracted it...
5) Plugged up my phone.
6) Ran apply-patch.cmd
7) Said "Can't find Email app. Enter the name of your Email apk or press <Enter> to exit:"
8) Typed in "SECEMAIL_J.APK"
9) Finished patch successfully.
10) Phone rebooted and I open the mail app accepting the security policies. Then it made me set a PIN instead of my pattern.
Note: I did try to delete the email account and re add it with no success..
Now I'm confused... Why do I have to use a 7 char PIN? I thought the whole point of this was to avoid the security settings.
Ideas?
I hope this did not work. otherwise it is a huge security risk for the exchange server.
Sent from my SGH-M919 using XDA Premium 4 mobile app
skesseks said:
I hope this did not work. otherwise it is a huge security risk for the exchange server.
Sent from my SGH-M919 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
It's been working for a lot of people... I have said it before and I'll say it again...
If you want to control the data fine... But NO ONE, will control my phone but me. To give a single company access to my entire phone is ludacris! There is no reason they need access to remote wipe my entire phone. If they need the ability to wipe the exchange account and all the relevant data with it fine, i'm ok with that... Now if they want to pay the $600 for my phone then we will talk ...
It worked!! I can't believe it. Thank you so much.
Apollo Eldon said:
It worked!! I can't believe it. Thank you so much.
Click to expand...
Click to collapse
What device Apollo?
arvo.bowen said:
It's been working for a lot of people... I have said it before and I'll say it again...
If you want to control the data fine... But NO ONE, will control my phone but me. To give a single company access to my entire phone is ludacris! There is no reason they need access to remote wipe my entire phone. If they need the ability to wipe the exchange account and all the relevant data with it fine, i'm ok with that... Now if they want to pay the $600 for my phone then we will talk ...
Click to expand...
Click to collapse
True enough. But then I don't have to let you use my exchange server if you don't abide by the policy I set forth, do I? This is not about your phone.
Sent from my SGH-M919 using XDA Premium 4 mobile app
skesseks said:
True enough. But then I don't have to let you use my exchange server if you don't abide by the policy I set forth, do I? This is not about your phone.
Sent from my SGH-M919 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
hehe, if you want me to work on my off hours you do.
arvo.bowen said:
Now I'm confused... Why do I have to use a 7 char PIN? I thought the whole point of this was to avoid the security settings.
Ideas?
Click to expand...
Click to collapse
Got it working fine at http://forum.xda-developers.com/showpost.php?p=47125823&postcount=1189, includes patched apks.
I thought I saw xposed modules for this.. why dont you guys use that? Its much cleaner and will survive rom flashing and it gets updates too
Don't enable security during offwork
Pretty simple. If you're not paid during off, then don't enable security on your phone. Or create an app that disable your security during off hours.
Related
Can someone please upload the new Citbank.apk 4.0 released February 2012. The android store does not allow download unless you are in the USA.
I'd be careful at using a banking app not directly obtained from the bank/market securely...
Use market unlocker
Sent from my Blade using xda premium
pulser_g2 said:
I'd be careful at using a banking app not directly obtained from the bank/market securely...
Click to expand...
Click to collapse
Good advice. One simple check is to enter false details the first time you use it. If it's a phishing app the chances are it will just accept them. Not foolproof but better than nothing
madferret said:
Good advice. One simple check is to enter false details the first time you use it. If it's a phishing app the chances are it will just accept them. Not foolproof but better than nothing
Click to expand...
Click to collapse
Probably better not to install it whatsoever imo as who knows what else it may be up to...
Better safe than sorry and all that...
Sent From My Fingers To Your Face.....
Personally, I would just use google to find a US proxy server. Google Play will think you are in the US if you use a proxy server.
Just set up the proxy in your wifi and you can download directly from play to your phone the way you normally do with apps. It will just pass through the proxy server untouched to your phone.
And you can thank me if you want!!
QuantumFoam said:
Use market unlocker
Sent from my Blade using xda premium
Click to expand...
Click to collapse
i agree.. use " Use market unlocker " from google play and choose a USA region and it should work. I do use market unlocker all the time when certain apps are blocked.
The market unlocker app probably does just the same thing. It uses a proxy to connect to the market.
madferret said:
Good advice. One simple check is to enter false details the first time you use it. If it's a phishing app the chances are it will just accept them. Not foolproof but better than nothing
Click to expand...
Click to collapse
Yeah, a thinking thief will pass the credentials on as usual, but just log them...
So this wouldn't really help against any sensible attack imo
85gallon said:
Personally, I would just use google to find a US proxy server. Google Play will think you are in the US if you use a proxy server.
Just set up the proxy in your wifi and you can download directly from play to your phone the way you normally do with apps. It will just pass through the proxy server untouched to your phone.
And you can thank me if you want!!
Click to expand...
Click to collapse
THANK YOU! Do I do that on my Android phone? Or from a computer? And how is it exactly done? Much appreciated
thanks for sharing
I know with Gingerbread there were some email.apk files floating around (not gmail) that removed the security enforcement on Exchange servers, such as requiring a PIN or password to lock the phone, remote wipe, etc. Has anyone done this on the latest leak? I ran the first leak we got, and the email.apk app interface was different than the one in UCLD2. I can make the edits myself but I cannot get the .apk to compile, so I come to you guys for assistance.
Thanks
Give this a shot..Exchange worked for me:
https://play.google.com/store/apps/details?id=com.google.android.apps.enterprise.dmagent
But then again I am using XWLP4 GT-I9100 build
I can send you the APKs when I get home.
From what I can read, that app just allows the policies (from Google Apps, it seems).
Basically the process for GB (and ICS I'm pretty sure) is to pull the email.apk from /system/app/ folder, unpack it with apk tool, modify a SMALI file (which I can do just fine), recompile the .apk and push to phone. The modification to the SMALI file is to always return "policy enabled" when asking for certain permissions, such as remote wipe enabled, PIN lock enabled, etc.
Somebody had mentioned to me once to try that for Exchange. In any case the APKs I have work flawlessly. Email.apk and Exchange.apk. Theyre on my dev machine so when I get there ill send them to you
Sent from my SGH-T989-IcyS-RC1 using xda premium
yaldak said:
Somebody had mentioned to me once to try that for Exchange. In any case the APKs I have work flawlessly. Email.apk and Exchange.apk. Theyre on my dev machine so when I get there ill send them to you
Sent from my SGH-T989-IcyS-RC1 using xda premium
Click to expand...
Click to collapse
Hmm, the apk files you have, are they modified or simply pulled from UCLD2? I can pull just fine, I just cannot compile.
The edit I am making is similar to this: http://forum.xda-developers.com/showthread.php?t=775007
But obviously on the latest leak's email.apk. It looks different than any other ICS email.apk.
When I try to compile on my own, I get an error similar to:
http://forum.xda-developers.com/showpost.php?p=23909183&postcount=5
I will try one of the thread's suggestions in using the latest aapt.exe file, but I haven't made any progress on it I'd like to contribute to the forum by providing this fixed apk file though lol
Theyre pulled from GT I9100 build XWLP4. Exchange policy support out of the box
Ill upload in 10 minutes.
EDIT : i think i misread your post in a rush. Are you looking for APKs that dont require device admin priveleges? Trying to bypass allowing the exchange server control?
Sent from my SGH-T989-IcyS-RC1 using xda premium
yaldak said:
Theyre pulled from GT I9100 build XWLP4. Exchange policy support out of the box
Ill upload in 10 minutes.
Sent from my SGH-T989-IcyS-RC1 using xda premium
Click to expand...
Click to collapse
Oh, no... all of the existing email.apk files do have exchange policy support... the issue is preventing the policies. I don't want to have to use a PIN to unlock my phone, but my exchange admin requires it, and it forces my phone to use it. Same with remote wiping.
The hack I am trying to do (or find if someone already did) would be to always say the phone is utilizing these features, when in reality it is not.
EDIT: Caught your edit. Yes, exactly.
Aha. Sorry about that. Misread it in class. Ill play around with it if i can.
Sent from my SGH-I727 using xda premium
yaldak said:
Aha. Sorry about that. Misread it in class. Ill play around with it if i can.
Sent from my SGH-I727 using xda premium
Click to expand...
Click to collapse
I know exactly where to make the edit, at least for the PIN/Password requirement, but not for the remote wipe/anything else.
I just can't get the stupid thing to recompile.
If you want, you can PM me the file along with the necessary edits; I will edit/recompile/resign it for you.
Hi all - any progress on the email.apk and exchange.apk files from ICS being altered and shared, without exchange policies governing?
Many thanks.
marcyspark said:
Hi all - any progress on the email.apk and exchange.apk files from ICS being altered and shared, without exchange policies governing?
Many thanks.
Click to expand...
Click to collapse
Yes. I I fixed my fix and will be in the next update of my rom DIGITAL EVOLUTION 2.
:: DARKSIDE ::
"I am turned into a sort of machine for observing facts and grinding out conclusions..."
A few months ago, when I had to send a big video to a friend's phone and realized that Bluetooth really sucks, I found out about WiFi Direct.
I googled a lot, but could not find a way to get it to work on my phone, although the I9000 was officially called the "first phone certified with WiFi Direct".
As I'm interested in programming, I started to research what I could do to develop an app that could send files at similar speeds and finally found out WiFi Tethering could work in combination with a simple HTTP server.
I started to write on the app in my free time, got it nearly ready, but stopped working on it because it became quite busy at school.
In the meantime I had switched my phone, but in the holidays I picked up the project again, finished the app and published it on Google Play. It's available there since about two months and received an update recently.:laugh:
I want to share this app with you guys now. It's free and I hope you'll find it useful.
The app allows for speeds of up to 32 Mbit/s, which means e.g. 1 Gigabyte in just over 4 minutes (depending on devices)
Features:
✔ Up to 20x speed of bluetooth
✔ The receiver is device-independent
✔ No need for a common Wi-Fi connection
✔ No data usage for file transfers
✔ The receiver does not have to have the app installed
✔ Send single or multiple files
✔ Easy to setup: Use QR codes to allow the receiver to easily connect to the wifi and open the receiving URL
Play Store Link:
https://play.google.com/store/apps/details?id=com.floriandraschbacher.fastfiletransfer
APK: http://bit.ly/FastFileTransfer
I hope you find this useful!
link doesn't seem to be working
JSH12345 said:
link doesn't seem to be working
Click to expand...
Click to collapse
Works now, sorry for that
Thanks a lot
but can u give us a mirror
Google bans Google Play in my Country
working link
https://play.google.com/store/apps/...bacher.fastfiletransfer&feature=search_result
JSH12345 said:
Thanks a lot
but can u give us a mirror
Google bans Google Play in my Country
Click to expand...
Click to collapse
I've uploaded the APK to my Dropbox and added the link in the first post
gonna try
Sent from my GT-I9000 using xda premium
Hi FD_
in next CM10 nightly WiFi direct will be removed.
Is this thing will affect your app ?
everlethal said:
Hi FD_
in next CM10 nightly WiFi direct will be removed.
Is this thing will affect your app ?
Click to expand...
Click to collapse
No, this won't affect Fast File Transfer.
As mentioned, the app uses WiFi tethering (and not WiFi direct) and therefore will still offer fast file transfers.
So don't worry if the next CM10 does not have WiFi Direct, just use Fast File Transfer instead :laugh:
thank you very much, galaxy i9000 was first device with wifi direct but i had never use it, will try it tomorrow with friend of my. thank you one more time...
Is it possible to make out a way to receive files also... would be more useful then...
Btw the app is very good as now i can shut the mouth of my frnds who show off...
Edit : had to install app in frnds phone and all good in receiving too...
Is there any chance that in future versions, the step of opening the browser or QR code, no need to do it ?
I mean, I do not see the need to open the browser on your second device because the two devices are "connected".
The way that this now appears that the second device downloads the file and not the first device sends it.
I hope I have explained.
Sorry for my english
try the app and it seems working for me
CM10 20121025
Modem KF1
Awesome work Thank you!
Sent from my GT-I9000 using Tapatalk
Awesome work love work perfectly
sbnaul said:
Is it possible to make out a way to receive files also... would be more useful then...
Btw the app is very good as now i can shut the mouth of my frnds who show off...
Click to expand...
Click to collapse
You could send multiple files once and create a bookmark to the index page in the browser on the recipient device.
Maybe I'll implement a simple receiving part in the next version.
Nexxusel said:
Is there any chance that in future versions, the step of opening the browser or QR code, no need to do it ?
Click to expand...
Click to collapse
This is technically impossible without having an app installed on the recipient's device. Maybe the receiving part mentioned above will help you, but it will require the receiver to have the app installed, if he wants to benefit from the "fast receiving" function.
Thanks for all your praise :laugh:
Very nice and handy app. Thank you.
Very nice, thnk you.
Thanks for this!
sounds nice
going to try
Is there a way (mod) to UNLOCK the phone by just pressing the password and skipping the OK like it is on the iPhone ?, thanks
Use a swipe password. Much faster.
Sent from my Note 2
Please could you explain how
Sent from my SAMSUNG-SGH-I317 using xda premium
brosenz said:
Please could you explain how
Sent from my SAMSUNG-SGH-I317 using xda premium
Click to expand...
Click to collapse
face unlock is the best
Yeah, try Face unlock, its soooo cool. There are plenty of unlock options, just go to Settings>Lock Screen>and/or Lock Screen Options.
Yeah but,
Great ideas everyone, but none of these options are available if you have an Exchange account. Depending on your Exchange policy, the user may not even have the Settings entries described above.
Assuming you want to (Or are forced to) keep the PIN pad, is there any way to change the behavior to what the OP described?
Use a third party email client -- I use Touchdown (I have no affiliation with them, other than having paid them $$$ for the privilege to use their product). This allows you to ignore device policies for the whole phone EXCEPT the contact with the exchange server. And my solution works reasonably well.
Alternatively, you could root and then fake out your exchange server -- there is a separate thread about this floating around these forums (Note 2 forums) somewhere.
In any case, good luck.
Fitipaldi1 said:
Great ideas everyone, but none of these options are available if you have an Exchange account. Depending on your Exchange policy, the user may not even have the Settings entries described above.
Assuming you want to (Or are forced to) keep the PIN pad, is there any way to change the behavior to what the OP described?
Click to expand...
Click to collapse
well im using ( folding keypad lock screen )
and i like it is cool
Hello,
I would like to know if there any way to remove security from exchange email. I really hate to put a security or pin number when I need to look at my phone''. Any help?
Thanks
Sent from my Nexus 7 using xda app-developers app
Cool way = tasker+ autoloction + auto+auto input
You can make your phone enter the pin automatically when you are in specified locations ie home, at work or in car.
Other than that I don't know.
=]
PostMeridianLyf said:
Cool way = tasker+ autoloction + auto+auto input
You can make your phone enter the pin automatically when you are in specified locations ie home, at work or in car.
Other than that I don't know.
=]
Click to expand...
Click to collapse
do you have a guide for this? I have tasker.
I've never had the need for a pin on my email so I couldn't tell you exactly what tasks to make.
=]
No!!!! Well thanks anyway. I'm sure google knows the answer.
Of course there is a way... this is android
Here is a flashable zip which is a modded Mail.apk. It works on all android devices
http://forum.xda-developers.com/showthread.php?t=1749921
Here is a mod which also contains an option to disable exchange security requirements. It works on atnt and tmobile galaxy s4
http://forum.xda-developers.com/showthread.php?t=2293951
Just be careful which coworkers you show off to