LG Shine TU720 – Bypass Java security

This method let you know how to bypass the Java security restrictions imposed on the LG Shine TU720 which require the user to accept every request for data communication, for all but Rogers signed applications. LG-Shine info

What kind of apps could benefit from this? Gmail mobile, Google Maps, Opera mobile browser, etc.

* disclaimer: this works for me but I can’t guarantee it won’t turn you phone into a pretty looking brick *

OK, here’s the procedure. The first few points are the same as for ringtones.
Requirements:

  • Latest BitPim software from www.bitpim.org (tested with 1.0.2)
  • LG phone tools software (provided in box)
  • USB cable (provided in box)



Instructions:

  1. Install software listed above
  2. Hook up LG Shine TU720
  3. Launch BitPim
  4. BitPim should show “Other CDMA phone on COMx” (where x is the COM port being used)
  5. Choose Edit, Settings
  6. Change Phone Type to “LG-VX8700” (this is the CDMA version Shine)
  7. Click OK to close
  8. Choose View, View Filesystem
  9. Click the Filesystem icon
  10. Click the expand button beside “/”
  11. It will say “Retrieving” for a minute or two
  12. Expand to the following directory: /LGAPP/Media/Java/cert
  13. Right-click on the file “rogers.pol” and select “Save …”, then save it to a location on your computer
  14. MAKE A BACKUP COPY OF THE ORIGINAL FILE (just in case!)
  15. Open the file with WordPad or another editor (Notepad does not display it correctly, not recommended)
  16. You will notice the file is in sections. Go to the end of the file to the section headed by “domain: untrusted”
  17. Delete everything under that header (but leave the header alone), and replace it with everything copied from the section “domain: C=CA;O=Rogers Wireless;CN=Rogers Wireless Test Root CA”
  18. Save your changes (you did make a backup, right?)
  19. Back in BitPim, right-click on the “cert” folder and select “New File …”
  20. Select the new “rogers.pol” file you modified, and overwrite the existing file
  21. Disconnect and reboot the phone, you’re all set to go!

A few more things you might be interested in:

 

  • You will need to re-install existing applications. The security seems to be set at install time, so whatever apps you have installed you should remove and re-install.
  • Proof that Rogers is evil – look at the cingular.pol file. It allows for application signed by any trusted source. The rogers.pol file only allows for apps signed by Rogers. This goes well beyond just wanting to protect the customer from bad applications!
  • This edit makes the phone completely trust any java application, so make sure you know what you’re installing before you install it!

Enjoy!

Source: http://www.howardforums.com/showthread.php?t=1289209

LG cell Phone – Related Posts

5 thoughts on “LG Shine TU720 – Bypass Java security”

  1. i don’t find the file rogers.att!!
    i only find att.pol i followed the instruction and i modified the file but nothing changed !!!

  2. i’m connecting my phone with the usb cable. i am connecting under data service mode from the phone settings menu.
    When i follow your instructions, at step 10, i get a couldn’t find phone error. When i go to settings and try to click browse besides the com port field, i get “no com port detected”.

    what am i doing wrong? please help

  3. my lg shine970modelmobile does still support thefacebook program and anyother rellated social networks it says”the certificate URL-1 midlet isnot found” how can i fix it

Leave a Reply

Your email address will not be published.