This post uses the a simple method to bypass the Java security restrictions imposed on the phone which require the user to accept every request for data communication, for all but Rogers signed applications.
What kind of apps could benefit from this: Gmail mobile, Google Maps, Opera mobile browser, etc.
* disclaimer: this works for the author but he can't guarantee it won't turn you phone into a pretty looking brick *
OK, here's the procedure. The first few points are the same as for ringtones.
Requirements:
- Latest BitPim software from www.bitpim.org (tested with 1.0.2)
- LG phone tools software (provided in box)
- USB cable (provided in box)
Instructions:
- Install software listed above
- Hook up phone
- Launch BitPim
- BitPim should show "Other CDMA phone on COMx" (where x is the COM port being used)
- Choose Edit, Settings
- Change Phone Type to "LG-VX8700" (this is the CDMA version Shine)
- Click OK to close
- Choose View, View Filesystem
- Click the Filesystem icon
- Click the expand button beside "/"
- It will say "Retrieving" for a minute or two
- Expand to the following directory: /LGAPP/Media/Java/cert
- Right-click on the file "rogers.pol" and select "Save ...", then save it to a location on your computer
- MAKE A BACKUP COPY OF THE ORIGINAL FILE (just in case!)
- Open the file with WordPad or another editor (Notepad does not display it correctly, not recommended)
- You will notice the file is in sections. Go to the end of the file to the section headed by "domain: untrusted"
- Delete everything under that header (but leave the header alone), and replace it with everything copied from the section "domain: C=CA;O=Rogers Wireless;CN=Rogers Wireless Test Root CA"
- Save your changes (you did make a backup, right?)
- Back in BitPim, right-click on the "cert" folder and select "New File ..."
- Select the new "rogers.pol" file you modified, and overwrite the existing file
- Disconnect and reboot the phone, you're all set to go!
A few more things you might be interested in:
- You will need to re-install existing applications. The security seems to be set at install time, so whatever apps you have installed you should remove and re-install.
- Proof that Rogers is evil - look at the cingular.pol file. It allows for application signed by any trusted source. The rogers.pol file only allows for apps signed by Rogers. This goes well beyond just wanting to protect the customer from bad applications!
- This edit makes the phone completely trust any java application, so make sure you know what you're installing before you install it!
Enjoy!
UPDATE:
For everyone else, the only way we have tried installing java apps is via the web browser. And it is working for most of the users but some out there is having some issue and that case we suggest that you put the java security back to normal and
try getting support from Rogers or LG. good luck