I recently got my SGS2 GT-i9100, and I wonder about all the things the different apps want to hava access to... Either they are simple games or apps...
Your location
Coarse (network-based) location, fine (GPS) location
Network Communication
Full Internet access
Phone Calls
Read phone status and ID
Storage
Modify/delete USA storage contents
...and many more I have not yet familiarized with.
I'm just thinking about whether allowing some apps to have access to all of these things can be harmful in any way, or if I should be concerned in any way. F. ex why should Fruit Ninja be allowed to read phone status and ID? ... I don't get it.
I need a clarification to exactly what all these permissions stand for and mean, what exactly they will have access to if I permit them, and whether to avoid some apps to have access to these, or if it is "safe". I hope you all understand my concerns.
//Steria
Phone status: So the game can pause when the phone rings
Stuff like location would be for location based stuff like checkins or finding out whats in your area.
Phone ID can be used as a personal ID for your phone, aka for building a profile on you for targeted adverts.
Storage: lots of apps, games mostly, put there data on the SD card to save space on the data partition, aka a game might have 700mb of data and your phone only 1gb of app storage.
If you want to block apps from accessing things, on stock roms there is LBE privacy guard or even better Pdroid (which needs a rom patch)
You don't need to post the same question twice in different subfora.
Related
Hi everyone!!
I am freshmen android - thats is just converted from iOS to android to see what the hubbub was all about with my new samsung galaxy s4 - anyway there are a few things that abit concerning to me - I have the australia version of this phone and sadly the "Dock apps" at the bottom are locked and cannot be changed nor rearranged and so to remedy this I have decided to download a launcher (apex launcher) and one thing I noticed before i clicked install wass it requested access to pretty much everything on my phone including my personal details which leads me to my question:
- Does the launcher have access to ALL my personal details? If I install my banking app on this and start doing online banking, will they have access to this information such as my account numbers and everything? Same with facebook - will they have access to that information i.e my username and pw and so on?
Thankyou in advance everyone!
Probably not,
Theoretically yes,
Stick to the market and do not download apps from untrusted sources,
Same goes for any system,
Ever have a program ask for admin privledges to make changes to this computer on Windows? Same thing, except on Android that data the apps get access to is divided so that apps don't gein universal privlages to just access everything, they have to specify exactly what info they need.
Edit:
Android is very paranoid, which is why I hate it. I can't even hack my own phone let alone someone elses. It would take some serious social engineering and redirection of web traffic to get them to download a malicious app. Alot of work unless you put them up like all those free apks that u usually have to pay for are probably some form of malware in em.
Ok so this is a question for lets say hardcore developers, lately Ive taken an interest in android security after the Snowden revelations, (not that any of us have anything to hide), but mainly due to the simple principle of privacy in the digital age... anyhow in my research ive found various ways and sites that can help harden ones security on android , and there are also tools that have been developed to purposely get around these same security precautions on android. My question is to various developers that design security related apps, those who design custom recoveries (TWRP, CM, etc), and even those that work on fastboot (Google).
1) I know there are plenty of apps that are made for security, but are developers sure they are cleaning up (read "wiping ram, on say an app FC, a reboot, or upon receiving a fastboot request from a host")? In the age of NSA and everyone else wanting all in your business, are developers making sure that keys, and other secure info is destroyed, and not still in memory or God forbid in some file on the SD card?
2) Is there any way to make/modify the bootloader so that before you could even get to the bootloader menu (ie. fastboot/recovery/boot/etc..) the bootloader either nukes the entire RAM or fills it with random data? Granted there are always ways to get to ones data, but i was just wondering if there was consideration for the lifespan of said 'security' once one is done with some secure app are the keys tossed(?) ram cleared before deallocation, etc?
3) And... in the interim is there a way users can auto clear/wipe deallocated RAM and SD/internal storage space (as well as within the system area on rooted devices) every so often using something like the Tasker app, remote wipe or something similar?
@steve_77 RAM (at least the RAM we have in phones at the moment) is volatile, meaning it only retains data when powered, therefore there's no need to go to any lengths to wipe it. A reboot will do that. Besides, if any data is being loaded into memory at all in the first place, the NSA probably already have it . Just kidding of course, if you have measure in place already like encryption; I don't think it's possible to retrieve data from memory like that anyway, but I'm no expert.
I understand that the measures mentioned are extreme, but there is already a way to break encryption via reading the keys out of the RAM as outlined in the link provided in the previous post from a German university that was able to do it.
I'm sure this is also not the only type of tools designed to hack into peoples phones and bypass encryption, but if exiting an app does not erase/wipe the RAM allocated to that app, all that data is up for grabs. Sure in this particular case someone would have to physically have your phone, but what if there were some new way, say in the future that could use some sort of exploit to access your data, and what can be done now to mitigate this potential pitfall and make our phones more secure?
As you all know, modifying files on microSD card feature like allowing to delete rename move files is not more supported by android kit Kat 4.4.2 and later versions of android...
I already know that there's a solution and it's rooting and installing SDfix app from Google play and solve it all,, but duo to my own concerns Oki don't preffer that way...
Please answere as much questions as I have and u can ??????
1. Why Google just disabled this key fearure?
2. Is there any hope that this key feature will come back in later android version if customers do show their remonstrance ??
3. Is there any where I can email Google official operators about this problem and ask them why whom responsible for deleting this key feature in android developement department of Google? - as I searched didn't found any where to chat or ask my problem...
4. Do HTC, Samsung, Sony and other mobile manufactures have the legal rights to add this key feature to there android builds of their own in the contrast of Google android developers way?
And can they include this key feature (or better to say exclude this crazy ban) from their own android roms and just include it in an update for their phones for us to get rid of his ban ??
Salar.m said:
As you all know, modifying files on microSD card feature like allowing to delete rename move files is not more supported by android kit Kat 4.4.2 and later versions of android...
I already know that there's a solution and it's rooting and installing SDfix app from Google play and solve it all,, but duo to my own concerns Oki don't preffer that way...
Please answere as much questions as I have and u can ??????
1. Why Google just disabled this key fearure?
2. Is there any hope that this key feature will come back in later android version if customers do show their remonstrance ??
3. Is there any where I can email Google official operators about this problem and ask them why whom responsible for deleting this key feature in android developement department of Google? - as I searched didn't found any where to chat or ask my problem...
4. Do HTC, Samsung, Sony and other mobile manufactures have the legal rights to add this key feature to there android builds of their own in the contrast of Google android developers way?
And can they include this key feature (or better to say exclude this crazy ban) from their own android roms and just include it in an update for their phones for us to get rid of his ban ??
Click to expand...
Click to collapse
If you are rooted there is a way around this. Its is not that big of a issues unless you can not obtain root
Google, for the most part, doesn't like external storage expansion. They consider it a security flaw. Keeping everything internal keeps all your data more secure. Plug it into a computer, and you can't access anything unless you unlock the phone (PUT A LOCK CODE OR PATTERN ON YOUR PHONE!), but if there's a microSD card with sensitive data (app info, dirty pics, whatever), all you have to do is take out the card.
I can understand Google's position, but I also hate it too. Especially when so many phones without expandable storage have such limited internal space (ie: Nexus devices). Even if you don't have a bunch of music/video on your phone, it only takes a couple of big games like Asphalt or GTA to use up all your space. IMO, Google should figure out how to move certain apps to SD storage, even if they don't allow all. Keep sensitive data on the device, but allow the hefty stuff to be stored on card.
Planterz said:
Google, for the most part, doesn't like external storage expansion. They consider it a security flaw. Keeping everything internal keeps all your data more secure. Plug it into a computer, and you can't access anything unless you unlock the phone (PUT A LOCK CODE OR PATTERN ON YOUR PHONE!), but if there's a microSD card with sensitive data (app info, dirty pics, whatever), all you have to do is take out the card.
I can understand Google's position, but I also hate it too. Especially when so many phones without expandable storage have such limited internal space (ie: Nexus devices). Even if you don't have a bunch of music/video on your phone, it only takes a couple of big games like Asphalt or GTA to use up all your space. IMO, Google should figure out how to move certain apps to SD storage, even if they don't allow all. Keep sensitive data on the device, but allow the hefty stuff to be stored on card.
Click to expand...
Click to collapse
You mean after all of these experiences they had till releasing Android 4.4.2, Couldn't they find out any other solution to that matter but to restrict the permissions on microSD card??
I don't have any special skill in software and computer programing but there has to be some other solutions like adding firewall, or setting an unbreakable master password (while accepting just NTFS formatted sd cards) on devices using a default app from Google for it (like the condition we see WD uses to secure its external HDDs)
lacoursiere18 said:
If you are rooted there is a way around this. Its is not that big of a issues unless you can not obtain root
Click to expand...
Click to collapse
Rooting is not a permanent solution for this matter at last!!!!
It does look like they're (officially!!) forcing their customers to root their device witch they not approve rooting way by not supporting guarantee conditions... And it doesn't make sense...
I'm completely aware that the rooting highway is widely open and rooting is a piece a cake...
But, the company should establish ways that don't put its customers to rooting highway!! ,, cause it doesn't make sense...
Salar.m said:
You mean after all of these experiences they had till releasing Android 4.4.2, Couldn't they find out any other solution to that matter but to restrict the permissions on microSD card??
I don't have any special skill in software and computer programing but there has to be some other solutions like adding firewall, or setting an unbreakable master password (while accepting just NTFS formatted sd cards) on devices using a default app from Google for it (like the condition we see WD uses to secure its external HDDs)
Click to expand...
Click to collapse
I can't speak as to why that couldn't or can't or aren't. I'm not a programmer or developer. I'm merely repeating information that I've read regarding SD cards and security. Rumor is that Android L might open things back up.
Planterz said:
I can't speak as to why that couldn't or can't or aren't. I'm not a programmer or developer. I'm merely repeating information that I've read regarding SD cards and security. Rumor is that Android L might open things back up.
Click to expand...
Click to collapse
Really? I hope so...
If you heard anything else about it, share it with us...
And, BTW, I heard that Z2 doesn't have this problem with its Android 4.4.2 Rom... Is that true? Why?
My plan is to modify permissions for almost every app on my phone including system apps.
There will be 2 categories:
1. Apps that need to be able to phone home (Internet access, I guess).
(For those I want to block access to all my personal information / data.)
2. Apps that don't need to phone home.
(For those I just want to make sure the apps can't leak my data/information.)
Now let's say I want to prevent an app from accessing the Internet:
Is it enough to just tap the according check box? Because some of the 'functions' listed under that category don't get a check mark by default. Which of these functions do actually make sending/receiving data over the Internet possible?
I'm not an Android developer, so I don't know what all the 'functions' can potentially do/expose. What is your advice for people like me? Should I just disable all functions under a category that I want to restrict and see if it works? Or am I truly expected to become an Android developer and understand every single class member listed in the app? It would be nice to have a short explanation and assessment for each function.
How to redefine app "system permissions" ? Or if not possible howto make app that ...
Hi Everyone,
I'm new to android, and having 2 different phones (running 5.1.1 and 6.0.1 versions, both rooted) and numbers I have quite some issues with apps (paying gps outdoor app, whatsapp,...) and since I travel a lot many connections issues to accounts on other apps "you seem to not be...." with codes I don't get because I'm roaming
In order to find a way to use them with the same accounts and settings on both phones and to solve the authentication issues, I took different angles to solve it, but none worked. In doing so I discovered many ways to enforce permissions through the code that where disabled by the user (worse than I thought). Well I dislike and want to change it.
Anyway to make things shortne approach is to completely limit the app access all localisation approach, phone ID, number, carrier, IP number, other accounts on the phone....
On the 5.1.1 I tried:
App Ops => allows to "change" if one looks in the App, but changes are not effective (way apps work and according to "Explorateur de permissions")
Apk permissions works but only on some user installed apps, I tried moving system apk to other folders, change them through the Apk permissions and reinstall them, didn't work
Decompiling the apk with Apk Studio, changing manifest, recompiling, reinstalling seems to not be enough, if I understood it right if the code contains specific rights and there not in the manifest, it doesn't work. Right
next step would be to dig into the code and change it...
All this is extremely time consuming even if it would be the "clean way"
On the 6.0.1 :
I removed the bloatware with Root Uninstaller,
Modified the permissions apps had, incl system apps
And since some apps still seemed to exchange some information over data or wifi, I limited all background data usage over data or wifi.
All this make my phone much less user friendly and does not solve my issues
So please, I you know of a reliable "easy" way to really manage permissions, or to generate a master permission file that overwrites apps permissions? removing all weird "granted", or if you have any idea on how you'd start it, please let me know
From this "clean approach" I got to spoofing, which seemed to be a solution to work around some issues using several different apps that would change the location, the IP, the network, VPN, spoof caller ID, ...
Well... since I had discovered all kind of right that can be given to an app, I checked their manifests before installing them. They might solve some issues, but generate worse problems (billing?!!all social media accounts?! create social accounts?!?)
So is there a clean app that lets you temporarily "clone" phone1 on phone 2 considering they are not at all the same (manufacturer, android, phoneID, carrier, phone number) and change the location and this only to some apps? Still have to use SIM carrier.
If not, any hints on how to write this?
thx :laugh:
---------------------
Hasbeen developper, totally new to Android who still believes that technology should allow to increase productivity and respect FREEDOM and PRIVACY.