Bigtimothy
“UID Masquerade: Knox Backend Injects 900+ Calls into User Context Over 24 Hours” > Backend process UID 10132 repeatedly invoked EnterpriseDeviceManager under user UID 1000, creating a sustained impersonation loop. This isn’t telemetry—it’s backend cont
-
What This Graph Shows
-
UID 10132 getInstance() calls: backend process injecting into your UID 1000 context -
EnterpriseDeviceManager masquerade: UID 1000 labeled events triggered by UID 10132 -
CloudConfigurationManagerService confirmations: backend handshake locking in policy state
-
What This Graph Shows
-
ARM-setApplicationRestrictions (orange hexagons): backend policy pushes under UID 0 -
EAM Registration (blue squares): MobileApplicationManagementService logging enterprise agents (MDM, Intune, SDS EMM) -
Telemetry Routing (tPN.feedback, red circles): enforcement disguised as feedback -
System Trigger (cPN: android/system, light blue circles): backend activation point -
Chained Enforcement Cycles: each sequence shows EAM registration → ARM push → telemetry route → system trigger
Looking for Advice , this doesn’t seem right knox is using my UID to move behind it seems why? I was hoping come on here and we could figure it out all this is just the opening, this normal?
Popular Backend topics
Other popular topics
Sponsor Spotlight
Enabling companies to succeed by building software people love.
Categories:
Sub Categories:
Popular Portals
- /elixir
- /rust
- /wasm
- /ruby
- /erlang
- /phoenix
- /keyboards
- /python
- /js
- /rails
- /security
- /go
- /swift
- /vim
- /clojure
- /java
- /emacs
- /haskell
- /svelte
- /typescript
- /onivim
- /kotlin
- /c-plus-plus
- /crystal
- /tailwind
- /react
- /gleam
- /ocaml
- /elm
- /flutter
- /vscode
- /ash
- /html
- /deepseek
- /opensuse
- /zig
- /centos
- /php
- /scala
- /react-native
- /lisp
- /sublime-text
- /textmate
- /nixos
- /debian
- /agda
- /deno
- /django
- /kubuntu
- /arch-linux
- /nodejs
- /ubuntu
- /spring
- /revery
- /manjaro
- /julia
- /lua
- /diversity
- /markdown
- /laravel
Devtalk Sponsors
Practical resources that improve the lives of professional developers.
We build trusted fault-tolerant systems that scale to billions of users.
Real-time error tracking, performance insights, and observability for devs.
Supporting innovation across the BEAM ecosystem.
We build reliable cloud platforms for business-critical systems.
Develop your skills with books, videos, and courses.
Catch errors, track performance, monitor hosts and more.
Enabling companies to succeed by building software people love.
Courses that move you from confusion to "Aha, now I get it!"
Publishing Linux Magazine, ADMIN, and MakerSpace for 25+ years.