like for example, why does media hub need to know my gps location for me to watch a video. is it possible to prevent that app from pinging my location, or any other app from looking up my contacts list/ address book or list of known accounts ?
even if it caused the app to force close, would be better than allowing them to know my address or what i buy on online, ...
Try LBE Privacy Guard. I've used it for a long time and really rate it...
https://play.google.com/store/apps/details?id=com.lbe.security.lite
Only proviso is that you're rooted, but you won't get any app that does what you're asking unless you are.
Archer said:
Try LBE Privacy Guard. I've used it for a long time and really rate it...
https://play.google.com/store/apps/details?id=com.lbe.security.lite
Only proviso is that you're rooted, but you won't get any app that does what you're asking unless you are.
Click to expand...
Click to collapse
wonderful suggestion.
the only thing i dont see is preventing apps from accessing all the accounts on the fone.
Related
Hi Guys,
I have a question/idea. Maybe its already done and you give me a hint on how to install it.
There are a bunch of apps that I really like but I dont like their security requirements like accessing Contacts, System settings, account data.
I agree that some may need it for their functionality, but some apps abuse it or have unnecessary rights.
I wonder if someone could write an app that intercepts those requests and returns dummy or empty data. For example, the app wants access to my contacts, it gets a dummy contact or an empty list returned but not my real list etc. Making the app think its is getting live data. The new app should allow to choose which app will get real and which get blank data or dummy data for sensitive things like accounts, contacts, system stuff.
That way the app would still work but my data is safe.
I guess it would almost have to work like a Rootkit hooking into system functions and figuring out the calling app.
Does this exist? Would this be something for CM7?
I read a lot of ppls reviews out there saying I am not installing this app until you remove such and such security right. This should be the best solution.
Let me know.
spacev said:
Hi Guys,
I have a question/idea. Maybe its already done and you give me a hint on how to install it.
There are a bunch of apps that I really like but I dont like their security requirements like accessing Contacts, System settings, account data.
I agree that some may need it for their functionality but some apps abuse the it or have unnecessary rights.
I wonder if someone could write an app that intercepts those requests and returns dummy or empty data. For example the app wants access to my contacts, or it gets a dummy contact or am empty list etc. Making the app think its is getting live data. The app should allow to set which app will get real and which get blank data for sensitive thing like accounts, contacts, system stuff.
That way the app would still work but my data is safe.
I guess it would almost have to work like a Rootkit hooking into system functions and figuring out the calling app.
Does this exist? Would this be something for CM7?
I read a lot of ppls reviews out there saying I am not installing this app until you remove such and such security right. This should be the best solution.
Let me know.
Click to expand...
Click to collapse
This should be in Q&A.. And there is an app for this.. LBE or LBE Lite.. Also, yes it is a function of CM7. While I'm answering though, I will say that I block almost all permissions that are unnecessary and I've never had a problem with any of the 125 apps I use.
LBE vs CM7
Well, as outlined above, CM7 and LBE are the two best options. I figured I might as well outline the pros and cons of each.
CM7 Application Permission Removal:
Pros - Built-in, no popups, technically faster.
Cons - Not all-in-one interface per say, more annoying to set a large number of apps permissions.
LBE:
Pros - Available on more phones, popups allow you to decide on a situation by situation basis whether to grant permissions, all in one interface, nice looking UI.
Cons - Not built in, popups CAN be annoying, different color scheme from stock android.
P.S. I'm not sure if this happens for everyone, but it probably does just because of security system conflicts in CM7 and LBE, but LBE doesn't seem to be able to start and run on CM7, so you can't have the best of both worlds
thanks guys for the quick responses!
I am trying LBE and so far like what I am seeing
THANKS!
I like LBE Privacy Guard, especially for its on-demand permission requests when an app asks to access my SMS Inbox or whatnot; I like that I can ensure that it never accesses it, always does without asking, or continues to ask each time.
I'm also using the firewall with mixed results; I don't like having to choose each app and whether it's allowed to access the internet via 3g/wifi ahead of time. I'd like a popup request with similar options (though I guess it would be more like a timeout rather than per-session, e.g. "yes it can access the internet over my 3g connection but only for the next 10 minutes."
Is there already an app that does this? I've checked a few firewall apps like Droid Wall (and a few similar apps) and they don't offer this on-demand (or on-app-accessing-internet, I suppose!)
I'm rooted, of course, so I'm not constrained there.
+1!!! Looking for the same thing! Trying to hunt the hog that sucks my data!
Thanks!!!
Ahri said:
I like LBE Privacy Guard, especially for its on-demand permission requests when an app asks to access my SMS Inbox or whatnot; I like that I can ensure that it never accesses it, always does without asking, or continues to ask each time.
I'm also using the firewall with mixed results; I don't like having to choose each app and whether it's allowed to access the internet via 3g/wifi ahead of time. I'd like a popup request with similar options (though I guess it would be more like a timeout rather than per-session, e.g. "yes it can access the internet over my 3g connection but only for the next 10 minutes."
Is there already an app that does this? I've checked a few firewall apps like Droid Wall (and a few similar apps) and they don't offer this on-demand (or on-app-accessing-internet, I suppose!)
I'm rooted, of course, so I'm not constrained there.
Click to expand...
Click to collapse
Goldenmeadow said:
+1!!! Looking for the same thing! Trying to hunt the hog that sucks my data!
Thanks!!!
Click to expand...
Click to collapse
I reckon that LBE Privacy Guard should help you with that: you can switch on traffic monitoring and get a listing of how much data each app has used.
I'd advise you to do this for a week and then switch it off (after you've worked out what's costing you money), as the data monitor drains battery faster!
Thanks. I already use LBE and My Data Manager. Turning APS ON one by one I try to find the sucker
But it would be easier with pop-up type app.
Ahri said:
I reckon that LBE Privacy Guard should help you with that: you can switch on traffic monitoring and get a listing of how much data each app has used.
I'd advise you to do this for a week and then switch it off (after you've worked out what's costing you money), as the data monitor drains battery faster!
Click to expand...
Click to collapse
Sent from my LG-SU760 using xda app-developers app
I have not used the maps app at all today, and my usage shows its been used for an hour and a half. Other than Google now, what should be using maps that often?
bugeyeblue said:
I have not used the maps app at all today, and my usage shows its been used for an hour and a half. Other than Google now, what should be using maps that often?
Click to expand...
Click to collapse
It's not like that. Just like whatsapp which stays always on to keep you connected, Google maps also stays on even though you don't open it as a system background process although you don't need it. The best way to remove this is to root your phone and uninstall this 'bloatware'
Sent from my Micromax A87 using xda premium
RazaVakil7995 said:
It's not like that. Just like whatsapp which stays always on to keep you connected, Google maps also stays on even though you don't open it as a system background process although you don't need it. The best way to remove this is to root your phone and uninstall this 'bloatware'
Sent from my Micromax A87 using xda premium
Click to expand...
Click to collapse
There's no need to delete Google Maps. You just need to regain some control from the app. By default it sends location data to Google. This periodic data 'seepage' also seems to have the affect of 'waking' the phone from deep sleep. Silly, especially since Google wrote the damn OS.
Anyway, this issue has been covered in other threads; you should search, there are more precise instructions out there
...or you can rely on my questionable memory; as I recall-
- Go into Google Maps
- Choose Settings
- Choose Location Settings
- Un-check "Report From This Device"
Also, make sure (on same screen) that Enable Location Sharing is NOT checked and that any of the other location-specific items on the same screen are un-checked.
If you're wondering about 'Location Reporting' under Background Location Reporting, mine is set to 'Detect your location' (thus I think this setting is OK).
Try this out. For me, Gmaps no longer uses data (or wakes the phone) unless I'm explicitly using it.
Capp5050 said:
There's no need to delete Google Maps. You just need to regain some control from the app. By default it sends location data to Google. This periodic data 'seepage' also seems to have the affect of 'waking' the phone from deep sleep. Silly, especially since Google wrote the damn OS.
Anyway, this issue has been covered in other threads; you should search, there are more precise instructions out there
...or you can rely on my questionable memory; as I recall-
- Go into Google Maps
- Choose Settings
- Choose Location Settings
- Un-check "Report From This Device"
Also, make sure (on same screen) that Enable Location Sharing is NOT checked and that any of the other location-specific items on the same screen are un-checked.
If you're wondering about 'Location Reporting' under Background Location Reporting, mine is set to 'Detect your location' (thus I think this setting is OK).
Try this out. For me, Gmaps no longer uses data (or wakes the phone) unless I'm explicitly using it.
Click to expand...
Click to collapse
Awesome. Thanks for the help. I set it up the way you suggested and I'll see how it works over the next day or so.
You could the free app Greenify as well. Anything that runs in the background without your permission will get shut down by it.
maddog00 said:
You could the free app Greenify as well. Anything that runs in the background without your permission will get shut down by it.
Click to expand...
Click to collapse
Excellent app, but it does require root privileges.
Sent from my Galaxy S4
maddog00 said:
You could the free app Greenify as well. Anything that runs in the background without your permission will get shut down by it.
Click to expand...
Click to collapse
It's desirable (to many) to have at least some background apps able to run/consume data. Yes, you can disable all (or ration out when they're 'allowed' to run, but then you lose out on the full capabilities of the device.
Trust me, having come from Sprint and a GS2, I am well versed in shutting down and restricting apps. What I LOVE about my GS4 is that I can let virtually all apps run (within reason, and w/exception of Gmaps as noted above) and I still have 28-40 hour battery cycles.
Just be wary of 'out of control' apps. Tame them, freeze them, or delete them, but only as a last resort would I disable all background apps.
Capp5050 said:
It's desirable (to many) to have at least some background apps able to run/consume data. Yes, you can disable all (or ration out when they're 'allowed' to run, but then you lose out on the full capabilities of the device.
Trust me, having come from Sprint and a GS2, I am well versed in shutting down and restricting apps. What I LOVE about my GS4 is that I can let virtually all apps run (within reason, and w/exception of Gmaps as noted above) and I still have 28-40 hour battery cycles.
Just be wary of 'out of control' apps. Tame them, freeze them, or delete them, but only as a last resort would I disable all background apps.
Click to expand...
Click to collapse
I agree. Just saying. Those apps that you don't want to run, you can tell Greenify which ones to disallow access. A one stop shop, as it were.
maddog00 said:
I agree. Just saying. Those apps that you don't want to run, you can tell Greenify which ones to disallow access. A one stop shop, as it were.
Click to expand...
Click to collapse
My bad. For some reason I thought your response said "disable all background apps". Thx for the app tip.
I'm always very careful about what apps I install and their permissions, but I got this doubt for a long time. I already know what some Android permissions do and which of these are potentially dangerous.
Now let's assume an app asks for permissions to read my contacts, access the internet, read the identity of the phone, read the user position, etc.
When I use an app (mostly games) I always turn off wifi, bluetooth, gps and sometimes even the sim via airplane-mode. Now that app can easily collect all the data it wants but would never be able to send them. Am I correct?
My doubt is, when apps can send data? Is it only when the app is effectively running (also in background) or can do the same while, for example, updating the app via Google Play?
If it doesn't, I would probably download most of the apps I discarded because of their stupid permissions...
App permissions are always headache!
apps will always ask for various stupid permissions.even though they not require such permissions.
I think,,
how the apps collect and send data is upto the developer!!
Even though you put ur phone in AirPlane mode.the apps may or may not collect the contacts details frm your phone & may update to their server when data connection is detected..
Some applications will run in background as a seevice, even though they are not opened or running in foreground.
when u install an app you must be aware of the permissions granted.dont install apps that requires suspicious permissions.
if u are rooted there are some apps which can block permissions requisted by apps.
good luck....
motoshan said:
if u are rooted there are some apps which can block permissions requisted by apps.
Click to expand...
Click to collapse
I already heard of such apps but never found one. Could you please tell me some of them?
Thanks for the answer, anyway it really sounds like "I don't know and we'll never know"... it's sad
Is there anybody really sure about what the apps can do and give a nice rest to my neverending question?
Yes.. I already mentioned.
the permission requirements by the app can be explained only by the developer of that particular app.
I had developed an app myself 9 months before.which requires gps location along with hardware control permission etc...
as a developer of this app I can steadly says that my app will update ur device location soon after u switch on ur data conn.
you can find some apps and their reviews here... http://www.howtogeek.com/115888/
Oh, so my hopes are totally crushed.
Looks like they are more problematic than I imagined. I'll keep skipping 90% of the apps on the market.
Thanks a lot for that link!
Edit: I'd add, Jesus Christ, how funny to see that on Android spyware is legalised:
"Angry Birds Space – along with many other apps – has permission to view the device’s serial number and monitor the phone numbers you call."
A few days ago, tired with unsatisfactory battery life, I decided to take a good look at what the phone was doing while "asleep".
One of the things I did was to install Network Log to have a complete picture of networking activity.
What I discovered, with considerable surprise, is that the stock cm torch app was sending and receving packages continuosuly to/from two google ip's.
The amount of traffic isn't what worries me, meaning that from the logs it's not a high activity app, but just the fact that it does have such activity makes me wonder about the purpose.
So i "untrusted" torch and noticed that it has a full set of permissions ranging from call listening to networking aamof.
My question thus is "why does this app require such permissions"?
I blocked networking for torch and it seems to work without any problems so...what's the deal?
Can't give you the answer you want, but Torch is a system app, and system apps usually have crazy permissions. That doesn't mean the torch app is sending or receiving anything you should worry about, but i understand that it's weird. The only things you can do is to either deny its permissions or delete it and download a 3rd party flashlight app from the Play Store (without persmissions).
Thank you for your reply.
I know system apps have crazy permissions, but they usually make sense..this one doesn't really
Removing permissions with lbe didn't work as it is still logging..app ops doesn't show a networking permission..
Maybe blacklisting this particular google ip through iptables?
I know it isn't a major security issue, but unmonitored network activity really bumms me out...
Blacklisting the IP might have some consequences for other system apps? I don't really know. Wouldn't it be easier to just remove it and install a third party flashlight app? Or maybe you could email or send the CM team a PM on Twitter, asking about the permissions and the data traffic?
Sent from my C6833 using Tapatalk