GM Volt Forum banner

1 - 20 of 20 Posts

·
Registered
Joined
·
2,635 Posts
Discussion Starter #1
Looking at this app, it says it is only compatible with Android 5.0 (lollipop) or greater. Just curious if anyone has downloaded it on kitkat and whether or not they got it to work.

Lollipop is not available for my phone model, and I know I need a new one. Just trying to see if I can postpone that transition.
 

·
Registered
Joined
·
2,795 Posts
Looking at this app, it says it is only compatible with Android 5.0 (lollipop) or greater. Just curious if anyone has downloaded it on kitkat and whether or not they got it to work.

Lollipop is not available for my phone model, and I know I need a new one. Just trying to see if I can postpone that transition.
I don't think the Play Store will even allow you to download it unless you have the proper OS. I upgraded to an S7.
 

·
Registered
Joined
·
2,635 Posts
Discussion Starter #3
I have an S4. I know I'm in serious need of an upgrade. I just hate having to re-customize everything.
 

·
Registered
Joined
·
150 Posts
Looking at this app, it says it is only compatible with Android 5.0 (lollipop) or greater. Just curious if anyone has downloaded it on kitkat and whether or not they got it to work.
JRRF, I got you beat! I still use a Galaxy S3 with 4.4.2. Play store won't let me use AA. I'm one of these weirdos that has to use something until it breaks, if it still works I'm not going to replace it!
 

·
Registered
Joined
·
678 Posts

·
Registered
Joined
·
2,635 Posts
Discussion Starter #12
JRRF, I got you beat! I still use a Galaxy S3 with 4.4.2. Play store won't let me use AA. I'm one of these weirdos that has to use something until it breaks, if it still works I'm not going to replace it!
The play store might not allow it, but I was going to try doing it right from the AA website. Just a thought.
 

·
Registered
Joined
·
49 Posts
authorization token is still a credential. its a revokable credential, but fundamentally no different than username/password. In fact, in a 2FA world, it be worse for an attacker to get that token than to get your username/password.
 

·
Registered
Joined
·
2,635 Posts
Discussion Starter #16
authorization token is still a credential. its a revokable credential, but fundamentally no different than username/password. In fact, in a 2FA world, it be worse for an attacker to get that token than to get your username/password.
If you lose your phone you change your password and the token is worthless.

If you have 2FA you don't even need a token.
 

·
Registered
Joined
·
3,299 Posts
OK, so I managed to get my HTC One M9 to work with Android Auto in USB "charge mode". The problem is that as soon as I tried to switch from music to navigation it dropped the Bluetooth connection and refused to reconnect until I turned the MyLink system off and then back on. I also discovered that the music players that work with AA are seriously restricted in trying to find the 50 GB of music and Podiobooks stored on my phone. Uninstalled AA and all the music players that work with AA from my phone and turned AA off in the car. I then figured out how to mount my old phone mount in a place that is out of my way when not in use and only slightly in line of sight while my phone is in the cradle. It's also where I can point the driver's inboard HVAC vent to blow cold air on the phone to avoid phone overheat.

My opinion of AA is that it's alpha quality code at best. I gave it a one star on Google's Play store because of these issues.
 

·
Registered
Joined
·
49 Posts
I'm not sure I've been clear about the threat. download a bad app or go to a bad webpage and an attacker can exploit your phone without you knowing it. these old phones have known exploits. Once your phone is exploited, an attacker can see everything you do and be able to impersonate you to google (or whatever other services you access through your phone)
 

·
Registered
Joined
·
3,299 Posts
I'm not sure I've been clear about the threat. download a bad app or go to a bad webpage and an attacker can exploit your phone without you knowing it. these old phones have known exploits. Once your phone is exploited, an attacker can see everything you do and be able to impersonate you to google (or whatever other services you access through your phone)
It's worse than this. All versions of Android are vulnerable to a bug in the "display over all other apps" feature that Android Auto uses. This vulnerability was disclosed just last week.
 

·
Registered
Joined
·
2,635 Posts
Discussion Starter #20
It's worse than this. All versions of Android are vulnerable to a bug in the "display over all other apps" feature that Android Auto uses. This vulnerability was disclosed just last week.
The best defense against this is to not run your life out of your phone.
 
1 - 20 of 20 Posts
Top