Ubuntu 20.04 Security, Fairphone 4 hacked immediately after first boot.
-
Hi everyone,
I recently installed Ubuntu 20.04 on a Fairphone 4 over security concerns about Android. Unfortunately the phone is hacked already with not at all random autosuggestions appearing on Ubuntu ONS Keyboard.
I am certain it comes down to the Android kernel. /proc/sys/kernel/taint returns 516 which is "kernel running on an out of specification system" and "kernel issued warning". In dmesg I get "i2c_geni 880000.i2c: i2c error :-107".
Could you help me mitigate this issue?
-
@randomusername said in Ubuntu 20.04 Security, Fairphone 4 hacked immediately after first boot.:
Unfortunately the phone is hacked already with not at all random autosuggestions appearing on Ubuntu ONS Keyboard.
Wait, I might have misunderstood you. Are you saying the autosuggestions appearing on your OSK are not random? And that makes you suspect your phone has been hacked?
Why would you expect the autosuggestions to be random? -
This post is deleted! -
I will happily tell you everything after I have secured my Ubuntu Touch 20.04 phone because that's what I am using to connect to the internet right now. Any ideas?
-
While I am in no way a security expert, how did you arrive to that conclusion? How is Android kernel related to OSK suggestions?
Don't worry too much about this, most of the time it's not a problem to run a tainted kernel; the information is mainly of interest once someone wants to investigate some problem ...
https://www.kernel.org/doc/Documentation/admin-guide/tainted-kernels.rst
My Ubuntu desktop also returned a non 0 value for me when I just tried.
-
@randomusername No, thank you. Let us first focus on the issue at hand raised by you. You claim your installation is hacked, and the proof is the non-random auto complete word suggestions of the OSK. So my questions to you are:
- Why do you think this is a symptom of some hack?
- Why would autocomplete suggestions have to be random? That would make them way less useful.
-
Here's one.
Because the Fairphone 4 contained personal data in the Google Keyboard autosuggestions as soon as being taken out of the box, without having been connected to a WiFi network or even having a SIM card. Google is leaking them and connecting the device to I-don't-know-where.
And here's one even more relevant. Typing the word "kernel" in Ubuntu ONS Keyboard returns the autosuggestions "kernel (bold) non-interchangeable " This is what I mean by not random.
-
@randomusername I think any word for which the dictionary can't find more matches gets highlighted as such
As for the Google Keyboard, that doesn't seem related to UT at all, so why do you mix those two?
-
@randomusername Please upload a short video where this behavior is exhibited. Also make sure it is clearly visible in the video that you are in fact running UT when the keyboard is exhibiting this behavior.
-
@randomusername Just tried typing Kernal in my FP4. When starting to type "Kernel" I get a row of suggestions. The highlighted one is the one suggested as the most likely fit for the word you are after.
If I stop typing at Ke the highlighted suggestion is Keep. Add an r and the high lighted suggestion is Kernel.
Try typing High and see what you get highlighted as you type.
At this stage I am lost to understand how your FP4 could have been hacked by you installing UT and connecting it to the internet.
