Related
I posted this in another forum but I want to know what you guys here think about android security.
How worried are you all about security on the android platform? Don't you find it a little unnerving that anybody could upload and app to the android market and there is no verification of the app like on IOS platform. Anybody could write an app that looks legit but does devious things. All this along with there are very very few security applications and they are in the infant state. Don't you find it very dangerous? How do you try to maintain security on your android device? Don't download apps? Only download from known publishers? Or do you roll the dice and download anything? If you use a security app which one?
the_main_app said:
I posted this in another forum but I want to know what you guys here think about android security.
How worried are you all about security on the android platform? Don't you find it a little unnerving that anybody could upload and app to the android market and there is no verification of the app like on IOS platform. Anybody could write an app that looks legit but does devious things. All this along with there are very very few security applications and they are in the infant state. Don't you find it very dangerous? How do you try to maintain security on your android device? Don't download apps? Only download from known publishers? Or do you roll the dice and download anything? If you use a security app which one?
Click to expand...
Click to collapse
There are viruses for Android.....right ?
Besides , if you're smart enough you can check whether an app needs such permissions when installing , through the Mart or an .apk .
I don't like the way iOS works , they give too limited functionality .
Forever living in my Galaxy Ace using XDA App
the_main_app said:
I posted this in another forum but I want to know what you guys here think about android security.
How worried are you all about security on the android platform? Don't you find it a little unnerving that anybody could upload and app to the android market and there is no verification of the app like on IOS platform. Anybody could write an app that looks legit but does devious things. All this along with there are very very few security applications and they are in the infant state. Don't you find it very dangerous? How do you try to maintain security on your android device? Don't download apps? Only download from known publishers? Or do you roll the dice and download anything? If you use a security app which one?
Click to expand...
Click to collapse
i dont use a security app, i use common sense.
a game doesn't need access to my contacts...
notepad app doesn't need access to my private information...
this is why android phones are for the power users and shouldn't be used by soccer moms and grandmas - because they have no clue what they are doing with these phones except for when a phone call or text message comes in... let them have the iphones.
but if you are tech savvy, and want to squeeze every bit of user capability out of your phone, a high end android phone is for you.
the people that are tech savvy also have the awareness because they treat their phone like a computer, and not a phone.
just my thoughts.
I think the best thing would be if android embraced that the user can choose which permissions to give to apps. I mean, an app may want to know your location, you denies it, and the app continnues happily without using that functionality, or quits saying its essantial.
cobraboy85 said:
i dont use a security app, i use common sense.
a game doesn't need access to my contacts...
notepad app doesn't need access to my private information...
this is why android phones are for the power users and shouldn't be used by soccer moms and grandmas - because they have no clue what they are doing with these phones except for when a phone call or text message comes in... let them have the iphones.
but if you are tech savvy, and want to squeeze every bit of user capability out of your phone, a high end android phone is for you.
the people that are tech savvy also have the awareness because they treat their phone like a computer, and not a phone.
just my thoughts.
Click to expand...
Click to collapse
very well put, unfortunately most dont think like this..
It is always a good habit to check the permissions an app needs before installation.I personally think that a system should be implemented in android market where all apps are erquested to give informaation on "Why they need certain permissions?".Certain apps do that.
An antivirus program is also useful in my opinion.I use Lookout antivirus,as i find it simple to use and does not slow down my phone.I tried avg but it slowed down my phone terribly.
hiitti said:
I think the best thing would be if android embraced that the user can choose which permissions to give to apps. I mean, an app may want to know your location, you denies it, and the app continnues happily without using that functionality, or quits saying its essantial.
Click to expand...
Click to collapse
But, as a matter of degree, this just what we wish. The fact may be far beyond our imagination. Sometimes, malware still run certain functionalities even you cancel it. It's worse that some apps run secretly in system. I'm a little scared about security issue based on my PC.
cobraboy85 said:
i dont use a security app, i use common sense.
a game doesn't need access to my contacts...
notepad app doesn't need access to my private information...
this is why android phones are for the power users and shouldn't be used by soccer moms and grandmas - because they have no clue what they are doing with these phones except for when a phone call or text message comes in... let them have the iphones.
but if you are tech savvy, and want to squeeze every bit of user capability out of your phone, a high end android phone is for you.
the people that are tech savvy also have the awareness because they treat their phone like a computer, and not a phone.
just my thoughts.
Click to expand...
Click to collapse
But a game might ask for internet/network permissions which you would probably accept. How do you guard against this? How can you prevent a malicious app that asks for relavent permissions but abuses them?
I never take the time to study the permissions required when I download an app from the market.
I tend to avoid the low number of d'load apps..... partly as there is less feedback to judge.... and partly as any app thats worth the download will have high stars and many d'loads.
Works for me so far.
Netquins running in the background just in case...... but whose to say they dont upload my contacts for spamming?
Prof Peach said:
I never take the time to study the permissions required when I download an app from the market.
I tend to avoid the low number of d'load apps..... partly as there is less feedback to judge.... and partly as any app thats worth the download will have high stars and many d'loads.
Works for me so far.
Netquins running in the background just in case...... but whose to say they dont upload my contacts for spamming?
Click to expand...
Click to collapse
But what about new apps that may be legit? They won't have any reviews yet or stars. If everybody did the same as you it would never get reviews or stars? There's got to be a better way, don't you agree?
the_main_app said:
But a game might ask for internet/network permissions which you would probably accept. How do you guard against this? How can you prevent a malicious app that asks for relavent permissions but abuses them?
Click to expand...
Click to collapse
That's the only question above that can't be answered by LBE Privacy Guard.
Someone mentioned a game that wants access to your contacts. What if you really want the game? You just don't allow it access to your contacts and then play it anyway.
Most apps ask for access to your IMEI (you'd be surprised how many!) With LBE they don't get it.
Antivirus software is all well and good, but it's not the same as on a PC where pattern matching can be used. AV software on Android basically opens the apk file and has a look round to see if anything looks suspicious. Other than that, there's nothing it can do to stop a clever developer bypassing it.
Seriously, if you have concerns then get LBE and start restricting permissions access on an app-by-app basis.
johncmolyneux said:
That's the only question above that can't be answered by LBE Privacy Guard.
Someone mentioned a game that wants access to your contacts. What if you really want the game? You just don't allow it access to your contacts and then play it anyway.
Most apps ask for access to your IMEI (you'd be surprised how many!) With LBE they don't get it.
Antivirus software is all well and good, but it's not the same as on a PC where pattern matching can be used. AV software on Android basically opens the apk file and has a look round to see if anything looks suspicious. Other than that, there's nothing it can do to stop a clever developer bypassing it.
Seriously, if you have concerns then get LBE and start restricting permissions access on an app-by-app basis.
Click to expand...
Click to collapse
this.
i was JUST about to say the same thing about the android "anti-virus" scam... not really a scam, but a false sense of security. as you said, not the same at ALL. people need to get out of the PC mindset with these phones. this is not windows, it's linux.
and i'm going to give LBE a shot. seems pretty legit.
for all of those running antivirus "software" on your phone, how many of you have actually run a virus scan and had it give a detailed description of a malicious "virus"....
Liking lookout
Sent from my GT-I9100 using XDA App
ummm, anyone ever heard of antiviruses (Kapersky, maybe?)? Or at least look up the app's access to things... If it accesses something you don't want it to access (or think the app doesn't need to access it), don't install it!
I know out-of-the-box Androids aren't so vunerable to viruses, compared to rooted ones... So...?
First look up the developer of the app, then if you trust him, install, if you never heard of him, google it (or look at the comments at where you're downloading from), and if you had experience with the developer before (and if the experience is bad, like trojans, etc.), don't install!
(I don't understand half of what I'm typing XD...Don't blame me for misspellings, please )
Cant say I can rave or not when it comes to the anti virus apps.
Have used Lookout in the past and currently using netquin.... neither of which ever flagged up a virus, malware or whatever.
Its nice to think its running in the background but dont know whether it will do anything if its needed.
I was tempted to download a load of apps in a zip file but 20 secs in my Avast siad there was a virus. I'd like to think the market would have its own precautions but having searched the site, cant see any mention of its security for the apps we download.
Its a different thing altogether but we cant take the fact that its the market and relax...... the worst virus my laptop ever had came in an update from Microsoft...... and another directly from google tools.
Kapersky for Android then? You can pick up free full non-trial versions on the web...
About the Market - yes, that's true. You'd expect them to check if apps are infected or at least leave a bot to do it...
Sorta lame...
The best security is the brain.akp just like brain.exe is on windows - best thing it's free, godgiven and everyone got a copy
Zeze21 said:
The best security is the brain.akp just like brain.exe is on windows - best thing it's free, godgiven and everyone got a copy
Click to expand...
Click to collapse
yeah but not everyone got the full version. A few of my friends got a corrupted exe and then this girl I know got the 30 day trial
not that good
Prawesome said:
It is always a good habit to check the permissions an app needs before installation.I personally think that a system should be implemented in android market where all apps are erquested to give informaation on "Why they need certain permissions?".Certain apps do that.
An antivirus program is also useful in my opinion.I use Lookout antivirus,as i find it simple to use and does not slow down my phone.I tried avg but it slowed down my phone terribly.
Click to expand...
Click to collapse
I have both Lookout and AVG, neither has stopped my phone from getting up to 10 junk downloads, you have won an ipad, iphone etc., a day, not sms or email, I have to have every form of external contact turned off, the moment I get wifi or mobile access it starts downloading spam.
If anyone knows of a way to stop it I would appreciate the feedback
Moved to proper section
Ok, I am looking at an online Android/iPhone app builder. They either offer the option to build one for free with unlimited downloads or you can pay yearly with different tiers for different download limits. The difference being that the free one has ads.
Anyways, when asked about just creating the app with their site, then hosting it on your own server and having everyone download it from there instead of paying the yearly fees, the site owner made this statement.
" my personal opinion in the long run you will pay more in this case because every time when apple releaes new iOS (like 6 now) or android has new phone (like samsung galaxy S 3 now) you will have to purchase new binary code from us that supports the latest updates/fixes."
Is this true? I don't see how each new device that comes out will require an update in your app.
Also, as stated, if you pay the yearly fee for the lowest amount of downloads, I assume they can only track downloads from Google Play or the Apple app store. I don't see any way they can track downloads from my own server hosting the .apk file. Anyone have any insight on this to correct me if I'm wrong?
For the record, I'm just looking to develop an app to play my Shoutcast Streaming audio station. I make no profit on the station, so have no capital to spend over $1K a year to have an Android and iPhone app. I mainly want to give it to my friends, and make it available to anyone who visits my Website. I really like the design that I did with this site, and am willing to pay something for it, just not worth $1K./year....
Anybody?
Have you tried installing the official Android Software Development Kit on your computer, and making the app yourself? You don't need to use an online service, and you choose exactly what gets compiled into the apk (ads, Google analytics, etc.).
post-mortem said:
Have you tried installing the official Android Software Development Kit on your computer, and making the app yourself? You don't need to use an online service, and you choose exactly what gets compiled into the apk (ads, Google analytics, etc.).
Click to expand...
Click to collapse
Thank you for the reply.
I actually do have the SDK installed, and am looking into what it takes to make my own app. But, don't I have to know xml and Java to create apps using the SDK?
You do need to know those two languages.
Sent from my Desire HD using xda premium
The Lepricon said:
But, don't I have to know xml and Java to create apps using the SDK?
Click to expand...
Click to collapse
That online service allows you to write apps without knowing xml or Java?
post-mortem said:
That online service allows you to write apps without knowing xml or Java?
Click to expand...
Click to collapse
Yes, it's kind of like Appinventor, all visual, just assemble the parts and stuff.
It's nice, just kinda pricey. I once posted the job on freelancer.com and got offers for about as much as this company is asking, and with freelancer I would have owned the app afterwards.
But, again, it's kinda hard to foot the bill when it's a non profit app.
Ok, I'm off to learn XML and Java.......
Oh, almost forgot.... the original questions...
" my personal opinion in the long run you will pay more in this case because every time when apple releaes new iOS (like 6 now) or android has new phone (like samsung galaxy S 3 now) you will have to purchase new binary code from us that supports the latest updates/fixes."
Is this true? I don't see how each new device that comes out will require an update in your app.
Also, as stated, if you pay the yearly fee for the lowest amount of downloads, I assume they can only track downloads from Google Play or the Apple app store. I don't see any way they can track downloads from my own server hosting the .apk file. Anyone have any insight on this to correct me if I'm wrong?
any ideas anyone?
I think he means every time Google releases an update to Android (updated OS, not new device). So, for example, you build your app to run on Jelly Bean. But when Key Lime Pie comes out, your app may not work as expected on those devices running KLP. Then, you'd have to pay them to recompile your app with updated binaries, or risk losing market share.
If your app is really simple and would run fine on Android 2.2 and up, then that "purchase new binary" thing is not applicable.
But, hell, if you're willing to learn XML & Java... go for it!
Was just wondering what peoples thoughts were on using the Android Licensing copy protection in their apps? Do you use it and do you spend a lot of time on it or have any creative ways to help enforce it?
As we all know any kind of drm will always be cracked but I just wanted to know if people found it worthwhile to have..
I'm using In-app-billing, because I found that even licensed apps can be copied.
And yes, all apps can be cracked eventually, but most of the publishers of cracked apps remove them if you ask to. So that's what I'm gonna do!
Sent from my Nexus 4 running Android 4.2 JB
I don't like license checks that force you to be online, but I do like to have 'something' in place...
Recently I started working with some OEMs in India who wanted to pre-load my apps on their devices. Very exciting obviously, but I didn't know if I could trust them as I'd never heard of them.
So what I did was get the app to load a web page on one of my servers off the screen (9000%x...) so that it couldn't be seen. The page it linked to was empty, but if I wanted to I could modify the code to include a redirect that would send it to another page. Then in my 'onPageOverride' event I just said if URL = 'stopapp.htm' then do whatever it was I wanted to do.
What I actually have it do in that event is to fill the entire screen with that web page. The user then can't interact with the app underneath, but they get a message that I can create at the time saying 'This app has been illegally distributed' or whatever else I want to say. I can even forward them on to the download page if I want this way.
This works well too because if the user isn't online, the page just doesn't load and nothing happens. But if I want to stop offline use as well I can save a file in File.DirInternal and have the app check for that. 'SwitchOff.txt'. They get caught once, then they can't use the app.
Obviously this doesn't work quite like a license check, but what you *could* do with it is to have the app pop up with a message to people using an old version that's not updated. That's probably downloaded off of some file sharing site, so you could then just keep pestering them to 'update' and send them to the Play Store to do so. You can also check how many of the users on that version of your app are legitimate by looking at your Play Developer Console.
One thing to note is that the redirect URLs you use will need to be different in every version of your app that you release.
Hope this helps someone! I wish I'd done it sooner, one of my apps is all over the web grrrr...
pretty much the same as what I'm doing atm except I just ping a server in the background and display a popup if the result meets certain conditions.. I don't disable the app either as I can't be 100% certain it's pirated, instead I display a "scary" popup saying if they're using a pirated copy this is illegal etc.. your average user won't know how the popup was generated so it should be enough to make them think "someone" is onto them and go the proper route.. With the added bonus a genuine user can just press ok and carry on using the app
Sent from my Nexus 4 using Tapatalk 4
Currently, none of my apps use licensing.
For one of my paid apps, about 5% of the downloads are from non-Google Play sources, meaning, I'm not seeing any revenue from those 5%.
There is an Android API, that allows developers to see which platform their app was downloaded from. So, I've been thinking about adding that hidden feature to my apps and maybe do something fun with it. But, haven't got around to it yet. My thinking has been that if somebody downloaded a pirated copy of my app, then they probably weren't going to pay for it in the first place. And, hopefully, they will tell their friends about it and maybe one of them will actually purchase it through Google Play.
I already have all my licensing code in place and commented out. Since my app is pretty new I want to see how it does before adding licensing. Since the app is free and income is from IAP its not too bad. I'd only turn on licensing in the next release if I see a pressing need for it.
Currently, none of my apps use licensing.
I run a site where users can download free apk files, it gets kind of popular...
I am looking for an affiliate program that would pay to distribute certain apk files, I cannot find a decent one, I am sure there must be a good service for this but I am relatively new to mobile websites and apps.
Any tips?
Thank you.
adrianTNT said:
I run a site where users can download free apk files, it gets kind of popular...
I am looking for an affiliate program that would pay to distribute certain apk files, I cannot find a decent one, I am sure there must be a good service for this but I am relatively new to mobile websites and apps.
Any tips?
Thank you.
Click to expand...
Click to collapse
You can register your product in Mycommerce ( Regnow) . or other similar sites to find your affiliaters.
By the way. My Regnow ID is 55714.
I used RegNow to sell software ~8-10 years ago, are there any .apk games and apps there now ?
Hello forum; I have used your post a lot for many years but I had never been encouraged to write anything; First of all, I would like to apologize if someone offends that the first post I publish is a petition; but a little story below
The company PIQ was previously dedicated to developing sports products that used an application and due to the covid 19 pandemic they have simply gone bankrupt and many of the people who bought their devices simply cannot use it anymore.
PIQ
PIQ. 13,521 likes. Intelligence leads to Victory Get your Winning Factors with PIQ ROBOT
www.facebook.com
The application uses an authentication system with an SMS code to the cell phone where it is installed and all its servers are closed; which leaves all its users swimming in nowhere; I have read in various forums that some athletes have lost up to 5 years of training history which is really unfortunate; (Although it is also regrettable not to make a backup of your files it is not the case of the post)
I'm not sure if the app cannot be downloaded from the play store so it will be put here:
Mobitee and PIQ for Android - APK Download
Download Mobitee and PIQ apk 3.1.7.5005 for Android. The Mobitee and PIQ mobile app provides unique insights to golfer of every level
apkpure.com
The application cannot be logged in or if the athlete loses their phone they will not be able to use the device again; with which it would be good to have any of the following options:
1. Is there any way in which you can bypass the login; it wouldn't matter if you couldn't track the statistics if you could at least use the hardware;
2. Is there any way in which the data packet sent by the NFC sensors can be used in another APP ???
finally; the application could be modified so that it does not work with an API on a private server, but rather save the local statistics:
I've been playing around a bit; I'm not really an expert; I have decompiled a couple of files and it seems to me that the one that might be of interest is called AccountManager.java located in
\ com \ mobitee \ base \ core \ managers
I appreciate it if someone can give me a hand since my knowledge is limited; Could you suggest to me where to start reading to get to some point:
Several users and even brands that worked with the company joined to request that they submit an open-source code or a GitHub project but I have not been able to find a clear answer to the issue yet.
Welcome to XDA
So you're saying it's a side loaded apk?
Here it is uploaded, Thanks for asking!
Yeah you didn't answer my question.
I don't download any unknown apks and very rarely side load and then only if vetted.
Hopefully someone here will help you...
blackhawk said:
Welcome to XDA
So you're saying it's a side loaded apk?
Click to expand...
Click to collapse
Sorry for not answering; yesterday was too late for me... if you are asking if they can be only installed via Apk file; unfortunately yes; it is out now from the play store...
LEP4To said:
Sorry for not answering; yesterday was too late for me... if you are asking if they can be only installed via Apk file; unfortunately yes; it is out now from the play store...
Click to expand...
Click to collapse
No worries.
That should be a warning in itself. Getting away from this app is the best solution. The data may just be lost.
I lost 2 websites because I used Google Picasso to create them. Wasted time.
th
blackhawk said:
No worries.
That should be a warning in itself. Getting away from this app is the best solution. The data may just be lost.
I lost 2 websites because I used Google Picasso to create them. Wasted time.
Click to expand...
Click to collapse
the problem is not leaving the application aside; The boring thing is that almost 250usd was paid for a sports system that in this case was golf and it was useless when changing phones ...
LEP4To said:
th
the problem is not leaving the application aside; The boring thing is that almost 250usd was paid for a sports system that in this case was golf and it was useless when changing phones ...
Click to expand...
Click to collapse
That sucks. Was that in the EULA?
You may have legal recourse. Try nice first.
There probably is a way to trick it by editing it's code but that's beyond my capabilities.
However this is a site full of hawkers...
blackhawk said:
That sucks. Was that in the EULA?
You may have legal recourse. Try nice first.
There probably is a way to trick it by editing it's code but that's beyond my capabilities.
However this is a site full of hawkers...
Click to expand...
Click to collapse
I know, Maybe somebody could help here...
On the other hand, I can not find EULA since the page is down now, but on the web page too many times a banner says "unlimited updates for life"; I think those guys were pretty confident to not go to bankruptcy
I can check for something on the web cache...
LEP4To said:
I know, Maybe somebody could help here...
On the other hand, I can not find EULA since the page is down now, but on the web page too many times a banner says "unlimited updates for life"; I think those guys were pretty confident to not go to bankruptcy
I can check for something on the web cache...
Click to expand...
Click to collapse
Sounds like a lost cause if the site is down.
Sometimes you need to copy your data any way you can even writing it down by hand.
Been there, lost data...
Any Help?