Wow! This looks like an amazing device. Now, will this work if you are not administrator on work machine? Also, what will this show up as if connected to work laptop.
You don't have to be admin on the device. For the device it acts like keyboard, video (monitor), mouse = KVM and transfers everything over ethernet to a device somewhere else.
1 Like
Now that would be so freaking awesome!! Put me down for device like that!!
Hey, so can you give a rundown on your experience? What did you end up using/setting up and how did it go? I am in your situation in the future and this thread has been very helpful.
You guys all need to invest in a YubiKey for 2FA, which I mainly use. Make sure to keep it on your person, have a secured backup YubiKey, if possible. This way, you can forget about your Microsoft/Google/Authy Authenticator leaking your public IP/location from your mobile device or your Duo/OKTA SSO + 2FA somehow getting a leaked IP/location from your mobile device.
I always use my work devices hardwired. You can typically remove the WiFi card on a business laptop and that solves it from being turned back on. I'm sure there are companies that gather the local WiFi networks, but it's not very common at all. I am fully remote at my company, so it doesn't matter from where I work, but I always use my Gl.iNet devices to remote back into my house when I am travelling, even for work. It's safer that way.
If you really want to get crafty, you could use GL.iNet's upcoming product "Comet (GL-RM1)": Comet (GL-RM1) - GL.iNet
Or, you could use something like a PiKVM v3 or better yet, v4. I have the PiKVM v4 Pro on a server in another location and it works wonderfully. I am looking forward to & have preordered the Comet, too.
2 Likes
Hi!
I have stopped using my personal iPhone since I’ve posted this message.
I have bought a Google Pixel and rooted it to install all my company app but it was a pain to do to be honest as it requires a lot of extra features for your device to be « approved » by the company security check if I can call it this way.
I took back an old iPhone XR I had and installed ExpressVPN on it. I am rarely working from outside but when I do, I activate the VPN and turn on the « block internet when the connection is interrupted ». I also deactivate WiFi and Bluetooth. Not sure if this is enough but that’s the best I could find for the moment.
Brx10: I have bought a Google Pixel and rooted it to install all my company app but it was a pain to do to be honest as it requires a lot of extra features for your device to be « approved » by the company security check if I can call it this way.
Your company should just have a work profile that gets installed on your Pixel if they're worth their salt. That way your personal and business storage isn't intermingled. Your personal storage is supposed to be invisible to the business profile and that is the way that the company, for whom I work, has their device security setup.
This is also on a company device, but if it is your own personal device and you've already gone through the trouble of rooting it, why not just go and install GrapheneOS? you have TOTAL control of the Pixel phone that way. You could also use CalyxOS and it's along the same lines.
The benefit with Graphene is that it is based off of ASOP Android, except everything is compartmentalized and you can control the permissions for EVERY app, including the default Google frameworks. This would give you total control over your device AND should allow you to have a work profile.
Alternatively, I know there are ROM loaders so you can have multiple OSes on an Android. I haven't played around with that since I had a Motorola phone, but it could come in handy for your case.
Stay safe, guys!
2 Likes
I personally don't need to hide my location because I'm lucky enough to be fully remote, but on a purely technical level, I find the topic interesting and like to know I could do it if I wanted to.
The problem with something like the Comet, while it would obviously work because the location stays the same, is that when working remotely, you have to go on video calls at times. So how would you get around that problem, seeing as you're no longer in the physical vicinity of the laptop?
I have re-imaged a couple of phones with /e/OS.
Based on Lineage and with a cutom module to allow access to a play store, so you don't lose access to your paid apps.
Use a USB over IP if you can't just join on your phone or something: FlexiHub: Top solution to share USB Over IP
That's an example of one solution, but most remote stuff like TeamViewer allows you to forward audio, you could even use something like this:
- GitHub - VirtualDrivers/Virtual-Audio-Driver: Add a virtual speaker and mic to your windows 10/11 device! Works with VR, OBS, Sunshine, and/or any desktop sharing software.
- VB-Audio Virtual Apps
- Virtual Audio Cable (VAC) - connect audio applications, route and mix sounds
I used number 3 a few years ago to link a discord and mumble server together with a forwarding agent.
Luckily, as you, I am fully remote and can work from anywhere.
@truespeed /e/OS is a good choice, too. I like GrapheneOS since I have Pixel devices, like @Brx10 . He can definitely use anything to control what and how much access an application has to location services and many other services.
1 Like
Give your office phone to some friend (or parents) in that company's country and ask them to authenticate or share the OTP. If you find a responsible kid, pay him 100 dollars every week for doing it right.
Everything doesn't need tech and engineering solutions. For laptop, yes, you'll need a proper solution.