An auth token would be great, coincidentally it's a Google service i need a password for. @JP: Wouldn't a finder of a lost phone have access to the user's Google account in the first place? From what i know, the signing in is done automatically after setup.
On Sat, Feb 7, 2009 at 8:18 PM, JP <[email protected]> wrote: > > > > On Feb 7, 9:43 am, Christoph Studer <[email protected]> wrote: > > (Note that rooted devices do not provide this security, because any > > application can possibly become root and do whatever it wants on the > > phone, AFAIK. But that's the user's risk when rooting a device.) > > Suppose user loses phone. Finder then roots it and uses adb to pull > the database and preferences files -> Damage done. I consider it good > practice to assume *anything* that's stored on the device is "up for > grabs". > > Even with encryption things may be dicey. Finder may have success > retrieving the original password through a reverse lookup. Just by > what Google does (crawling the web), they've indexed a sizeable number > of MD5 passwords for a reverse lookup. > > > > -- Teo (a.k.a. Teominator a.k.a. Teodor Filimon) site www.teodorfilimon.com | blog www.teodorfilimon.blogspot.com GMT +2 --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "Android Developers" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [email protected] For more options, visit this group at http://groups.google.com/group/android-developers?hl=en -~----------~----~----~----~------~----~------~--~---
