Delay auto reboot -- only when unlocked by Owner

dc32f0cfe84def651e0e

Hi,

I'd be happy to have an additional security layer implemented to the auto reboot feature: the rebooting can only be cancelled by logging in to Owner userspace, not the secondary users.

The scenario is simple. I adopted the "tidy owner" approach and multiple user profiles are running in background. One of them is "Calls only" containing no additional apps and only being used to place calls from within dangerous environments. When seized by LE, it could prevent the auto reboot thus possibly compromising other running profiles.

Thank you.

treequell

dc32f0cfe84def651e0e As long as the phone is locked, having a secondary user profile running will not delay auto-reboot.

dc32f0cfe84def651e0e

treequell There is a secondary profile with no data, but easy unlockable by third party thus preventing the auto-reboot.

treequell

dc32f0cfe84def651e0e I don't think I quite understand.

It's not any easier for a third-party to unlock the secondary user profile, than it is for them to unlock the owner profile, unless you've given it a weaker password. Encryption works the same way for the owner profile and secondary user profiles.

What specifically is the threat that you have in mind that applies only to secondary user profiles, and not to the owner profile?

dc32f0cfe84def651e0e

treequell The owner profile is kinda empty: only being used to handle privileged settings and secondary users. One of the secondary profiles also is empty and is only being used to make calls. That profile is subject to use under surveillance cameras, as an example, so the passcode can be easily intercepted. While there is nothing inside that "calls only" profile, unlocking it would prevent the auto-reboot.

There are other profiles I only unlock in safe conditions, but they're running in background.

treequell

dc32f0cfe84def651e0e I now understand your rationale, thanks for clarifying.

Enhanced PIN privacy and PIN scrambling might help protect against snooping somewhat.

You could always open a feature request on GitHub, making sure you describe carefully the justification for such a feature.

Skyway

I believe auto reboot can only be stopped by opening owner profile .
If auto reboot is set for 1hr and your in a user profile for 1 hr it will still reboot. Even if some has access to a user profile it won't interrupt auto reboot timer .

treequell

Skyway I believe auto reboot can only be stopped by opening owner profile .
If auto reboot is set for 1hr and your in a user profile for 1 hr it will still reboot. Even if some has access to a user profile it won't interrupt auto reboot timer .

That's incorrect, unlocking any profile including secondary user profiles will reset the auto-reboot timer.

Skyway

treequell yes my bad just tested to confirm .
Would be nice to have that as an option .