I think a possible way to set the "MaxUnsignedApps" flag is using provxml method.
For example if a carrier changes your mms settings over the air provxml method is used via wap push sms.
How does this work ?
The carrier sends a SI or SL xml file as wap push sms to your device and the device downloads and executes the file which will make the changes in the registry.
I think on a non-branded phone it should be possible to send such a file over the air, on a branded phone probably it´s blocked by security settings.
Creating a SI or SL xml file isn´t a big deal, it´s described in the MSDN documentation but how to send it ?
Many phones are capable of sending "raw" SMS that can be customized as needed. I know it's possible on Android, and I believe you can do it on WinMo and Maemo as well. For that matter, it's probably possible by writing an app that uses a homebrew COM DLL to hook into the SMS DLL on WP7.
I wonder if it would be possible to push a wap provisioning file OTA to the device. I still wonder how exactly the dev tools unlock you device, do they also push a provxml file to the device? Since providers can send those messages I wonder how this would be possible on an unbranded device.
Well, I've been looking into this a while back. In the end it seemed I was looking at the wrong notification system. Read these posts: Post 1, Post 2, Post 3 and Post 4.
I saw there were possibilities to do provxml through push notifications. So I completely hacked MSPN with a man-in-the-middle-attack. But then I found out that the provxml was for a different push-notification system. It was for WAP push sms, not for MSPN.
Anyway, look here:
Code:
HKLM\Security\PushRouter\Registrations\ByCTAndAppId\;x-wap-application:syncml.dm
and here:
Code:
HKLM\Security\PushRouter\Registrations\ByGenericId\PC5
Maybe raw-sms is the answer. Look here for more info.
Be my guest and figure it out. I'm too busy for it right now, working on WP7 Root Tools and some other things...
Ciao,
Heathcliff74