Why I stop recommending /e && why you might wanna know

My involvement in testing and even building /e has been pretty intense.

But this piece of Murena developed and now preinstalled as system app is just not okay, for me!

MDM stands for Mobile Device Management software!

In other words someone else is in charge of your device, if this gets activated via a System Profile!

I not only want my data to be mine, I 100% want my device to be controlled by me!

As an Admin I value MDM – over devices I’m legally in charge of.

Having Murena MDM pre installed on devices who’s owner don’t known what MDM is and can do, seems a great risk to me!

And regular /e users are not even informed about MDM during setup, can not opt out during setup, or uninstall Murena MDM, I will stop recommending /e

So far this is my thinking and reasoning, but things are already going wrong for other users here on the forum – so, no it’s theoretical.

4 Likes

@Manoj it would be pretty helpful if some in-depth-info about murena MDM would be made available in the documentation or howto or faq like it is provided for say Advanced Privacy

1 Like

This app is part of murena for business.

Other mobile OS also comes along with the ability to be managed by MDM out of the box (e.g. Apple).

But yes: It should be explained.

Edit:

See also https://mdm.murena.com

2 Likes

I disabled MDM using ADB root, but there should be user level control over it. Forcing it enabled for all installations is bad form. Though it’s not such a big deal for me that it would dissuade me from using /e/os.

2 Likes

I assume that would contradict the whole mdm-idea, wouldn’t it ?

What’s the command you used to do so ? I’m interested to get this software off.

Which is actually a good idea. I doubt a “corporation” would use /e/os in the first place so why force it on all the normal users. If a corpo wants a phone they can administrate then Murena could do a “special” build for them. But I’ll just disable it as it stands, no harm no foul.

5 Likes

I totally agree with you and had a similar idea. Why not creating a business build for each device ? A build with murena MDM setuped for companies or whatever.
Having this installed by default without announcement or explaination is definitly not correct for average users. I already said it and i’ll say it again : i opted for murena to be in charge of my data, and this is not the case due to this software. I understand that behind /e/ stands murena who tries to create a cloud option and a safe work environment ; however, this should not interfere with the first goal of /e/OS : providing a safe android environment.

Right now, i can’t neither install shelter nor activate parental control AND i’m not the owner of my own phone. That was the whole goal of installing /e/ and this is currently not fullfilled.

2 Likes

Good point… and presumably only devices that are rather new would be of interest for companies (?)

adb shell pm disable-user --user 0 [package name]

You can use an app called App Inspector to get the package name. You can list packages with “adb shell pm list packages” but the list can be long and unruly. Better to use the app.

I actually use a tool called ADB AppControl. It greatly simplifies the whole process.

2 Likes

Questions:

  1. Who asked for an MDM?
  2. Why putting effort in an MDM?
  3. Wouldn’t it be better to use resources for bug fixes and resolving other issues?
1 Like

It’s a Murena thing, I suppose they’re trying to be more corporate friendly by including admin tools, but the ironic thing is that most of use /e/os to get big tech corpos out of our life. In any case Google and Apple include those tools so I guess Murena thinks they should too.

Thanks ! But you have the package name as you already did the process, don’t you ? Can you tell me what its name is please ? I’m not skilled when it comes to use adb…

Edit: looks like you can find it at the bottom of the app details in the settings. You just select an app and scroll down. For MDM it is “foundation.e.mdm”.

There’s no need for an App for this.
Settings - Apps - See all […] apps - (three dot menu) - Show system - Murena MDM - (scroll down to the bottom)

foundation.e.mdm

2 Likes

Should i run this command in recovery via TWRP ? Or can it be switched on ? I hardly run adb except for the installation process :face_with_open_eyes_and_hand_over_mouth:

I know nothing about how this MDM is going to function exactly, but IMO it is a great idea to have an open source and self-hostable MDM solution.

My impression is that Murena hopes to get into the government market in Europe, and a feature like this would obviously help tremendously.

2 Likes

Why? There’s no mention of TWRP in the given steps.
(In short: No.)

1 Like

Maybe I’m missing something but mine seems to be disabled by default.
FP4 Official.

3 Likes

They can’t even properly support the consumer market. They should get that nailed down before they start looking for corporate or government contracts. In the mean time they should not be locking down that MDM app.

Also organizations are not going to be interested in last year’s models. They don’t spend money on older tech. Then there’s support. Having worked in the tech industry for a time, I can tell you that reliable vendor support is utmost priority.

2 Likes

Yes, mine is disabled too.
yet still, without having any MDM active, I get the notification as shown over here: Samsung Galaxy S7 - This device is owned by your organization - #11 by obacht
which is simply odd … Samsung devices (edit: especially S7) seem to be affected from that inconsistency

The thread starters point is a more fundamental one