That’s a good point. I wonder if there’s a way to combine the throw-wallet duress pin with the delete-everything duress pin.
Like, enter the duress pin, get the fake profile AND start a timer: if the real pin isn’t entered within 1 hr (or whatever timeframe the user set it to), then it factory resets.
Definitely would be pretty easy to figure out a fake phone profile. Unless you are constantly updating it, any photo/emails/texts call logs will have timestamps from like months/years ago. Might fool a few, but even less if it becomes a widespread thing and authorities become aware of how it works.
It’s gonna be sus when your browsing history and other stats on that profile doesn’t collate with how a normal person uses their phone.
They might confiscate the phone.
My point is that you shouldn’t assume your phone is secure.
That’s a good point. I wonder if there’s a way to combine the throw-wallet duress pin with the delete-everything duress pin.
Like, enter the duress pin, get the fake profile AND start a timer: if the real pin isn’t entered within 1 hr (or whatever timeframe the user set it to), then it factory resets.
Best of both worlds.
Definitely would be pretty easy to figure out a fake phone profile. Unless you are constantly updating it, any photo/emails/texts call logs will have timestamps from like months/years ago. Might fool a few, but even less if it becomes a widespread thing and authorities become aware of how it works.
The solution is to have a Model Citizen account that’s you’re daily driver and a Malcontent account that’s the one to be deleted on duress.
If you have something worth hiding on your phone that isn’t hidden when they look at it, they are DEFINITELY going to confiscate your phone
“it’s new”
“Didn’t you already say you got a new phone when we stopped you a month ago?”
-the cop says, while glancing at you suspiciously
“it broke”
You must enforce the principle of least prilevelege.
Not by just using SELinux in your PC, but IRL.