[APP] Samsung extended permissions (NO ROOT) - Galaxy Note 4 Themes and Apps

Hello
I'm developing a new app that enables the extra settings provided by the knox API.
You can run the app without root privileges.
Right now you can:
-View iptables rules
- Grant and revoke permissions to apps
- disable protected apps
- disable specific components of an app (activity, services, listeners, providers)
Planned features include:
- Edit firewall rules
- real user interface
- list all the changes currently enabled
If an App refuses to be disabled you can achieve the same result by disabling its main activity component
I did my best to provide a visual appealing interface
search for "it.ygopro.extendedsettings" on the google market.
Matteo

Good work.
App Works on my n910c.

Thanks.
I added the planned features on the main post.
If the app works, please share your specs (android version, launcher, knox status, phone model).
Matteo
EDIT:
Sorry.
I had to disable the app. The developer license doesn't allow so many activations. I have to wait for a developer license

Related

my app is being denied for using the same functionality as most apps

hi i have for over a year developed a navigationbar app, it has an advanced mode that requires adb permissions to work properly, this advanced mode replaces the stop navigationbar just like the xda developers app navigationbar gestures i believe it uses the same adb commands too write secure settings, my app is being denied because of these adb commands.
sons of violationIssue: Violation of Device and Network Abuse policy and sections 4.8 and 4.9 of the Developer Distribution AgreementWe don’t allow apps that interfere with, disrupt, damage, or access in an unauthorized manner the user’s device, other devices or computers, servers, networks, application programming interfaces (APIs), or services, including but not limited to other apps on the device, any Google service, or an authorized carrier’s network
does anyone knows how to solve this without taking out advanced mode entirely if so you could only get the full functionality with root

Just tweak it [S10] - debloat, plugins, battery...

S10 stock cleanup actions
yet another phone this year V30->Note9->6T->Mi9->S10, time to update guides. Goal is to have a clean phone after each update, and since reboot doesn't happen often, but defly happens during upgrade, i'm putting cleanup commands into a [boot] script.
Boot script
What it does:
* choose 8 categories of app removal, in the beginning of the file
* use more switch to disable some questionable/helpful stuff
* disable up to 100 apps (preferred method, ppl can reenable)
* remove usage access for google (this is the part not tested and disabling device/trust admins can not be scripted)
Tested ok on recent stock. Not much to put in script unlike on MIUI which used shady practices. Samsung not hiding processes, not persisting apps (except Payment triggers some soft brick - interesting), and not sending tcpdumps to china. Also not having privacy policy in every basic app. It's on you to accept Fourthsquare, Google and then Bixby 3rd party stuff. Well I initially sniffed network and saw some 3rd party sleezy connection to social networking IPs (nonstop monitoring by facebook etc), but that is obvious and well known, and is swiftly disabled by the script. Will see later if there's something that could be tweaked further.
Download: file attached
Installation:
- run in su terminal or add to any startup script
Which plugins to use for S10
Similarly to Mi9, collecting what i think is useful to keep on stock rooted firmware.
Magisk plugins:
* Riru - Core, Riru - Ed Exposed -- brings XPosed to Pie. Need also installer. Now i use old version 0.3 as i feel new SandHook/Yahfa bipolar releases make phone sluggish. This case is to be monitored.
* Bixby button remapper -- so in Samsung case, extra key is not released after Bixby debloat, so we first slap this plugin into phone and then customize via Xposed Edge
* libsecure_storage companion -- helps us keep the bluetooth pairings
* (optional) Universal GMS Doze (disappeared from repository?) or Sysconfig patches -- cools down GMS services. Questionable impact but i use it.
* (optional) YouTube Vanced black themed -- brings usable YouTube experience
* (impossible) QuickSwitch -- we can't have Quickstep+Hyperion (the most capable Quickstep launcher) as there's no pill but Samsong custom recents
* (untested) - FDE, LKT - in a short time, i wasn't optimizing battery. It's good out of the box(!).
XPosed plugins:
* Xposed Edge Pro - a must have and best plugin. Here, by the way, we will modify Bixby button once again, including double press and long press. Because why not
* XPrivacy - Screw the big brother. Must have. Disabling analytics, tracking, telephony, network, identification for all visible apps and all Google and Samsung apps with some exceptions.
* Firefds kit - so this is our main customization app, and enables the very important call recording, which is beutifully integrated into call history. Bye bye external apps. Also we will remove Restart action and replace with Recovery action and rename it to Restart
* afWall - Problems with this firewall and some VPN clients. Should by disabled in Xposed but we want to have this tool
* (optional) Exi for Swiftkey - you can make Swiftkey great again, GBoard is still the best, Samsung keyboard is very good, but too tall and leaves gap in fullscreen mode
Other stuff
- booting to non-root ok, impact could be lost pairings. So let's have it as a useful safe mode.
- after setup, never used Power+Bixby+VolUp. After shutdown, not needed. Rebooting with modified Restart command. Easy
- using TWRP to flash blank Samsung boot logos, to see files etc
- not using multidisabler as i'm on stock and i do want encryption, ROMs/MODs push it thou
- next monthly upgrade will be interesting, as it'll be time to verify what unwanted stuff is being reenabled
Battery saving:
- unknown effect of {LSpeed, Naptime, Servicely, FDE, LKT, Universal GMS Doze, Sysconfig patcher} in such a short time.
- not big impact by dozes (AOD, fp icon, dt2wake, raise2wake) - that's cool.
- having 1.0-1.2%/hr in home wifi standby, VPN, locationtracking, perma BT watch, and tons of widgets and apps
- not liking memory filling up by thrashware even after debloat. From 4GB free to 2GB free quickly.
someone try on this ?
Hi dogg,
seems to work on multiple apps, and has some exceptions thrown, but how can i enable apps again if i need?
thanks and regards.
pep086 said:
Hi dogg,
seems to work on multiple apps, and has some exceptions thrown, but how can i enable apps again if i need?
thanks and regards.
Click to expand...
Click to collapse
do you know which process has thrown fc or exception?
many ways to reenable individually, or to roll back the script, use the undo script attached
i thought i'd debloat Device Security (which i think is the Mcaffe antivirus noone uses), but it's hooking up to app installations. So when disabled, gplay installations will freeze forever. So another memory hog has to stay in memory.
Hi dog,
I will try again I think, there were apps that I don't have already on the phone maybe.
I sure had to enable Samsung experience and contacts sync only cause I needed them.
Thank you very much.
Like the way you inspect packages and traffic.
Keep sharing your knowledge with us.
Thanks.
Thank you very much! Really helpful script, pretty much what I was looking for.
doggydog2 said:
S10 stock cleanup actions
yet another phone this year V30->Note9->6T->Mi9->S10, time to update guides. Goal is to have a clean phone after each update, and since reboot doesn't happen often, but defly happens during upgrade, i'm putting cleanup commands into a [boot] script.
Boot script
What it does:
* choose 8 categories of app removal, in the beginning of the file
* use more switch to disable some questionable/helpful stuff
* disable up to 100 apps (preferred method, ppl can reenable)
* remove usage access for google (this is the part not tested and disabling device/trust admins can not be scripted)
Tested ok on recent stock. Not much to put in script unlike on MIUI which used shady practices. Samsung not hiding processes, not persisting apps (except Payment triggers some soft brick - interesting), and not sending tcpdumps to china. Also not having privacy policy in every basic app. It's on you to accept Fourthsquare, Google and then Bixby 3rd party stuff. Well I initially sniffed network and saw some 3rd party sleezy connection to social networking IPs (nonstop monitoring by facebook etc), but that is obvious and well known, and is swiftly disabled by the script. Will see later if there's something that could be tweaked further.
Download: file attached
Installation:
- run in su terminal or add to any startup script
Which plugins to use for S10
Similarly to Mi9, collecting what i think is useful to keep on stock rooted firmware.
Magisk plugins:
* Riru - Core, Riru - Ed Exposed -- brings XPosed to Pie. Need also installer. Now i use old version 0.3 as i feel new SandHook/Yahfa bipolar releases make phone sluggish. This case is to be monitored.
* Bixby button remapper -- so in Samsung case, extra key is not released after Bixby debloat, so we first slap this plugin into phone and then customize via Xposed Edge
* libsecure_storage companion -- helps us keep the bluetooth pairings
* (optional) Universal GMS Doze (disappeared from repository?) or Sysconfig patches -- cools down GMS services. Questionable impact but i use it.
* (optional) YouTube Vanced black themed -- brings usable YouTube experience
* (impossible) QuickSwitch -- we can't have Quickstep+Hyperion (the most capable Quickstep launcher) as there's no pill but Samsong custom recents
* (untested) - FDE, LKT - in a short time, i wasn't optimizing battery. It's good out of the box(!).
XPosed plugins:
* Xposed Edge Pro - a must have and best plugin. Here, by the way, we will modify Bixby button once again, including double press and long press. Because why not
* XPrivacy - Screw the big brother. Must have. Disabling analytics, tracking, telephony, network, identification for all visible apps and all Google and Samsung apps with some exceptions.
* Firefds kit - so this is our main customization app, and enables the very important call recording, which is beutifully integrated into call history. Bye bye external apps. Also we will remove Restart action and replace with Recovery action and rename it to Restart
* afWall - Problems with this firewall and some VPN clients. Should by disabled in Xposed but we want to have this tool
* (optional) Exi for Swiftkey - you can make Swiftkey great again, GBoard is still the best, Samsung keyboard is very good, but too tall and leaves gap in fullscreen mode
Other stuff
- booting to non-root ok, impact could be lost pairings. So let's have it as a useful safe mode.
- after setup, never used Power+Bixby+VolUp. After shutdown, not needed. Rebooting with modified Restart command. Easy
- using TWRP to flash blank Samsung boot logos, to see files etc
- not using multidisabler as i'm on stock and i do want encryption, ROMs/MODs push it thou
- next monthly upgrade will be interesting, as it'll be time to verify what unwanted stuff is being reenabled
Battery saving:
- unknown effect of {LSpeed, Naptime, Servicely, FDE, LKT, Universal GMS Doze, Sysconfig patcher} in such a short time.
- not big impact by dozes (AOD, fp icon, dt2wake, raise2wake) - that's cool.
- having 1.0-1.2%/hr in home wifi standby, VPN, locationtracking, perma BT watch, and tons of widgets and apps
- not liking memory filling up by thrashware even after debloat. From 4GB free to 2GB free quickly.
Click to expand...
Click to collapse
Hello sir! I'm new to all of this, but i have learned a lot by myself already, and I have researched a lot about privacy on android and how to make the phone more secure! I need some help and guidance please. I have debloated and played around with my s10 for a long time, and had to flash and root 4 times now. The first two times the AOD didn't work anymore(probably bixby related -_-), the next two times I had a soft brick because I removed payment services! I'm really annoyed as I just want to use regular phone functions and I want be as untrackable and unhackable as possible. I mostly use apps from F-DROID, almost all! I also removed google services, basically everything google is gone.
As I understand your Guide, I have to:
1. Flash/root my phone again
2. Run script in su terminal <- here I have no idea what where and how to do this.
or
1. Flash/Root my phone again
2. Install all magisk plugins
3. Install Xposed and all plugins
4. Now Run script in su terminal <- again no idea what where and how to do this.
Could you explain in which order I should proceed and how to do the scripting part? And, when I use Xprivacy, can I leave google play services on the phone for youtube vanced?(or even other nongoogle apps and feed them false data?)Right now I use NewPipe for youtube. does XMPP work?
My biggest concern is privacy, I dont want any f***ers to spy on me. Another thing, how good is LineageOS, I could buy a SDcard and I try it or sell my stupid phone!
Thank you if you could help me, I'm really annoyed by all of this, I used a normal 30 € phone for 2 years because I don't want be spied on and not forget how nice the world is without phone that knows everything, for and about me!
---------- Post added at 11:39 PM ---------- Previous post was at 11:34 PM ----------
.TanTien said:
Thank you very much! Really helpful script, pretty much what I was looking for.
Click to expand...
Click to collapse
Hi! Can you tell me how to do the scripting??? greetings
kejsix said:
Hello sir! I'm new to all of this, but i have learned a lot by myself already, and I have researched a lot about privacy on android and how to make the phone more secure! I need some help and guidance please. I have debloated and played around with my s10 for a long time, and had to flash and root 4 times now. The first two times the AOD didn't work anymore(probably bixby related -_-), the next two times I had a soft brick because I removed payment services! I'm really annoyed as I just want to use regular phone functions and I want be as untrackable and unhackable as possible. I mostly use apps from F-DROID, almost all! I also removed google services, basically everything google is gone.
As I understand your Guide, I have to:
1. Flash/root my phone again
2. Run script in su terminal <- here I have no idea what where and how to do this.
or
1. Flash/Root my phone again
2. Install all magisk plugins
3. Install Xposed and all plugins
4. Now Run script in su terminal <- again no idea what where and how to do this.
Could you explain in which order I should proceed and how to do the scripting part? And, when I use Xprivacy, can I leave google play services on the phone for youtube vanced?(or even other nongoogle apps and feed them false data?)Right now I use NewPipe for youtube. does XMPP work?
My biggest concern is privacy, I dont want any f***ers to spy on me. Another thing, how good is LineageOS, I could buy a SDcard and I try it or sell my stupid phone!
Thank you if you could help me, I'm really annoyed by all of this, I used a normal 30 € phone for 2 years because I don't want be spied on and not forget how nice the world is without phone that knows everything, for and about me!
---------- Post added at 11:39 PM ---------- Previous post was at 11:34 PM ----------
Hi! Can you tell me how to do the scripting??? greetings
Click to expand...
Click to collapse
i keep running the script without problems for months now.
to run a script, you need a terminal - use any terminal app, like 3C Toolbox or via adb. this is too generic question.
to run it, you need root, so at least magisk must be present. you normally flash your favorite image, then magisk, in magisk you load riru & exposed plugins, then in edxposed installer you load xposed plugins like xprivacy. i run strict privacy settings on every device and this requires some work. first thing i do, is press RESTRICT button on all visible apps for these permissions: identification, network, telephony, tracking, analytics, then calendars, call log, contacts, location and messages. Then i go throught individual apps and deselect neccessary permisions for some apps. on the left menu, i set 'restrict new apps'. this way i can control non-geeky users phone who install any app without thinking and accept all default choices without any hesitation. It's very hard for them to fight XPrivacy thou - they don't understand it luckily. unlike personal computers, phones are great source of snitching, as you have so much data available to the aggressive companies like SIM details (=directly identify your person via Telco), IP (=directly identify you via ISP), web services where you provided real name and phone number (to "recover account" blabla, real meaning is to identify you), tracking and analytics (to study your behaviour and share your internet presence via a token between companies). All this needs to be cloaked and more: browser should be full of privacy plugins, ad killers, fingerprinting killers, webrtc killers etc etc. VPN set, and firewall set. I also use Changer xposed plugin to cloak extra items not covered by XPrivacy.
I have zero ads in any apps. Zero suggestions by ecommerces. Getting dummy search hits without relevance. Always a blank user to each web or app. Email on the best privacy provider, with zero knowledge encryption, this and any web services paid via bishuffled bitcoin bought in person (Coinbase? really? send ID? seriously people do this?). IP is cloaked via trustful service, in case of need to express opinion on the internet (which i've given up to) in todays politically correct era, use also Tor and Psiphon. No phone numbers, IMEIs, IMSIs etc etc provided. No real names ever entered anywhere. I can have great privacy with commercial tools, and don't need to use Snowden type of blank OS. But it's difficult to set up, it takes hours and some tweaking later. I just find mobile encryption too weak, on PC an intruder (govt) needs to: enter BIOS password, enter TCG-OPAL password, enter bitlocker password, enter Windows password, enter fingerprint to USB flash drive with keys to data drive, unlock bitlocker of the same USB, then unlock data drive -- it's just 20 seconds of extra work once per day. Mobile phone: password and FBE and sensitive app locking. Don't use fingerprints (they belong to govt) or facelock (too lame). Or use fingerprints with lockdown feature (use AI button to map this action with XPosed Edge plugin), and lock it deeply when going to customs or similar checkpoint. Your data and thougts are yours and noone elses.
Yeah install instructions man.. su in terminal and then what ???
kejsix said:
Hi! Can you tell me how to do the scripting??? greetings
Click to expand...
Click to collapse
I opened the script file and picked the features i wanted to disable by manually typing the commands. Standard procedure should be starting terminal as su
Code:
chmod 777 filename.sh
and after that
Code:
./filename.sh
You should be in your file directory of course. You can get there by typing
Code:
cd /your/file/path
Will that work on Snapdragon s10?
i'm running this for 8 months now after each boot. And i didn't update firmware as the rooting process was so exhausting. Now i'm going through the horror again, hoping to keep the encryption, therefore strictly without a custom ROM.
Script should work on Snapdragon, it's not related to the root process.
easier way to run the .sh file:
1. su
2. cd /storage/emulated/0
3. sh S10_cleanup.sh

Android industry permissions

Hello,
We would like to buy few mobile devices, where we install only "Viber" app on it. The only permitted use on that mobile should be use of "Viber" and use of "Camera", all other shoud be restricted(production department). So in short, we need to restrict install new apps, browsing chrome, etc.
I have found few options like disable google play services, Package installer, enable parental control in google play - but these are all walkarounds. It would be nice to block profile/account to make it with less permissions (like in windows).
Thanks

[ROM][XZ1][A13] iodéOS = LineageOS 20 + MicroG + adblocker [04/04/2023]

{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Introduction
iodéOS is a privacy-focused operating system powered by LineageOS and based on the Android mobile platform. iodéOS aims at protecting the user's privacy with a built-in adblocker and by freeing the smartphone from snitches.
The objectives in the conception of this ROM are threefold:
To keep the stability and security level of LineageOS, by minimizing the modifications made to the system. Apart the system modifications required by the adblocker, we mainly only added a few useful options commonly found in other custom ROMs, made some cosmetic changes, modified a few default settings to prevent data leaks to Google servers.
To ease a quick adoption of this ROM by new users. We especially target users that are concerned by the protection of their privacy, but are not reluctant to still use inquisitive apps like Google ones. We thus included MicroG as well as a coherent set of default apps, and simplified the initial setup of the system. Particularly, an initialization of MicroG has been made with GCM notifications allowed by default, a privacy-friendly network location provider (DéjàVu) pre-selected, as well as Nominatim Geocoder.
To provide a new and powerful way of blocking ads, malwares, data leaks of all kinds to many intrusive servers. We are developing an analyzer, tightly integrated into the system, that captures all DNS requests and network traffic, as well as a user interface (the iodé app). Compared to some other well-known adblockers, this has the advantages of:
Avoiding to lock the VPN for that use. You can even use another adblocker that uses VPN technology alongside our blocker.
Being independent of the kind of DNS server used by the system or set by an independent app: classical DNS on UDP port 53 or any other one, DNS over TLS (DoT), DNS over HTTPS (DoH), ..., as we capture the DNS requests before they are transmitted to the system function that emits the DNS request. What we do not support, is DoH when it is natively built into applications, i.e. when an app communicates directly with a DoH server, without asking name resolution to the system. It would require to decrypt HTTPS packets between such an app and the DoH server, which may create a big security hole.
Precisely mapping DNS requests and network packets to the Android apps that emitted (or received) them.
Deciding which apps have a filtered network usage (by default, all apps), and which ones can communicate with blacklisted servers.
Since its first versions, we added many features to the iodé blocker: several levels of protection, fine-grained control over the hosts that should be blocked or authorized, displaying statistics on a map to see the quantity of data exchanged to which countries, clearing statistics... We are actively developing the blocker, and new functionalities will be regularly added.
Features
Changes in LineageOS to prevent data leaks:
Default DNS server: Google's DNS replaced by Quad9's 'unblocked' servers in all parts of the system.
A-GPS: patches to avoid leaking personnal information like IMSI to supl server.
Captive portal login: connectivitycheck.gstatic.com replaced by captiveportal.kuketz.de for connectivity check.
Dialer: Google default option replaced by OpenStreetMap for phone number lookup.
Pre-installed apps:
We included many useful default apps, but our choice cannot suit everyone; so we added the possibility to remove them. It can be done at the end of the phone setup, or at any time by going to Parameters -> Apps & Notifications -> Preinstalled apps.
MicroG core apps: GmsCore, GsfProxy, FakeStore.
NLP backends for MicroG : DejaVuNLPBackend (default), MozillaNLPBackend, AppleNLPBackend, RadioCellsNLPBackend, Nominatim Geocoder.
App stores : FDroid (with F-Droid Privileged Extension) and Aurora Store.
Browser: our own fork of Firefox (with Qwant as default search engine, many other ones added, telemetry disabled, parts of telemetry code removed) instead of Lineage’s default browser Jelly.
SMS: QKSMS instead of Lineage's default SMS app.
Email: p≡p (Pretty Easy Privacy).
Camera: our own fork of Open Camera, with a few tweaks.
Maps/navigation: Magic Earth GPS & Navigation (the only one free but not open source).
Keyboard: OpenBoard instead of AOSP keyboard.
PDF: Pdf Viewer Plus.
Personnal notes: Carnet.
{Ad/Malware/Data leak}-blocker: iodé.
News: to keep users informed about our developments, as well as a FAQ.
Meteo: Geometric Weather.
Pre-included FDroid repository:
The apps that we tweak or develop (microG services, the browser based on Firefox, the News app, Open Camera ...) are available through a repository that we included in FDroid (check the "Apps for iodéOS" category). For this purpose and to avoid name conflicts of some apps, we also had to make a few changes in FDroid.
Useful options from other custom ROMs:
Smart charging (disables charging when a given level is reached, to protect battery health).
Fingerprint vibration toggle.
Swipe down to clear all in recent apps (Android 10 only).
Installation Instructions
To download and flash our latest build, see https://gitlab.com/iode/ota.
You can also find here direct links to the latest builds.
Supported devices
Fairphone FP3/FP3+
Fairphone FP4
Google Pixel 3
Google Pixel 4
Google Pixel 5
Google Pixel 6
Google Pixel 6a
OnePlus 9
OnePlus 9 Pro
Samsung Galaxy A5/A7 2017 (a5j17lte/a7j17lte)
Samsung Galaxy S9/S9+ (starlte/star2lte)
Samsung Galaxy Note 9 (crownlte)
Samsung S10e/S10/S10+ (beyond{0,1,2}lte)
Samsung Note 10 (d1)
Samsung Note 10+ (d2s)
Sony Xperia XA2 (pioneer)
Sony Xperia XZ1 (poplar)
Sony Xperia XZ2 (akari)
Sony Xperia XZ3 (akatsuki)
Xiaomi Mi9 (cepheus)
Teracube 2e
Xiaomi Mi 10T 5G / Mi 10T Pro 5G
Xiaomi Mi 10 Lite 5G
Sources
iodéOS: https://gitlab.com/iode/os
LineageOS: https://github.com/lineageos
device tree:
https://gitlab.com/iode/os/public/devices/sony/device_sony_poplar
https://gitlab.com/iode/os/public/devices/sony/device_sony_yoshino-common
kernel: https://github.com/whatawurst/android_kernel_sony_msm8998
Bug Reporting
You can post a message in this thread or (preferred) open an issue here.
Credits
LineageOS is a free, community built, aftermarket firmware distribution of android, which is designed to increase performance and reliability over stock android for your device.
All the source code for LineageOS is available in the LineageOS Github repo. If you would like to contribute to LineageOS, please visit their Wiki for more details.
This ROM would be nothing without the tremendous work made on MicroG, and all the other open source apps that we included. We are very grateful to their authors.
Contributors
Direct contributors: @iodeOS, @vince31fr
Indirect contributors (too numerous to list): All the people that contributed to the device tree, to LineageOS, and to the included open source apps.
Sponsoring
You can help in the development of this ROM by paying us a coffee here: https://paypal.me/iodeOS.
Screenshots
Downloads : iodéOS
04/04/2023 (build 20230401):
Upgrade to iodéOS 4.1 based on Android 13 / LineageOS 20
Installation procedure: move to a fastboot script (read instructions: https://gitlab.com/iode/ota)
Blocker: improved use of blocking lists (sub-domains blocking)
FDroid: fixes an issue on apps update
LineageOS synchronized with March security patch included
All apps updated
07/02/2023 (build 20230131):
Blocker:
Improved blocking settings. You can now choose 'Standard' blocking (ads, trackers, malwares, etc) or 'Reinforced' blocking (same objective but more extensive), and then select additional categories.
The 'Porn' category has been extended to a wider 'Sensitive content' one, that also includes fake news, gambling, drugs, piracy, torrent..., with mainly child protection in mind.
The 'Extreme' category has been removed, as it is now part of the reinforced blocking.
Improved blocking lists. We merge several acknowledged and up-to-date sources, and have diversified our sources to produce more complete lists. The standard list has however been reduced a bit, to avoid as much as possible interference with apps expected behavior.
Added a new network location provider: Local NLP Backend. It is an improved version of the DéjàVu NLP backend which was already available in iodéOS. Like DéjàVu, it builds a local database connecting localizations learned from other NLP backends and apps using GPS, and mobile antennas/Wifi; but also has an active mode (not preselected) that can trigger GPS requests. To configure it: Settings -> System -> microG -> Location modules
LineageOS synchronized with January security patch included
All apps updated
New devices support: Pixel 3, 6, 6a
16/12/2022 (build 20221215):
Blocker: added multiple selection in settings / domain customization. Long-press on a domain, select several domains or all, apply actions (block all, authorize all...)
PdfViewerPlus: improved security by updating core libraries
Network settings: added a switch to disable connectivity check (and thus captive portal detection)
LineageOS synchronized with December security patch included
All apps updated
New devices support: Pixel 4 & 5, OnePlus 9 & 9 Pro
24/11/2022 (build 20221121):
Improvements in the blocker user interface (iodé app)
LineageOS synced with September security patch included
All apps updated
17/10/2022 (build 20221014):
Blocker:
Network blockings following their type (Wifi, mobile data, VPN) added
Default blockings definition for new apps
Personnalized recipients management improved
iodé's app access restrictions by password added
Search filters added in report and map
Display theme selection
Automatic and 'real-time' refresh of the whole app
Performance and fluidity improvements of the app
LineageOS synced with September security patch included
All apps updated
27/07/2022 (build 20220726):
SafetyNet certification activated: allows many apps, notably banking ones, to fully work
Setup wizard: the push notifications configuration page now also activates SafetyNet (fine-grained control in Settings->System->microG)
OpenCamera: the 'Use alternative flash method' in photo settings is no more necessary and can be disabled, allowing flash optimization
News app: German translations
LineageOS synced with July security patch included
All apps updated
21/07/2022 (build 20220530):
Upgrade to Android 12 / Lineage 19.1
Setup Wizard: new page to configure push notifications through microG
Lockscreen settings: switch added to disable fingerprint unlock when screen is off
Improved German translations
Bug fixes and improvements
LineageOS synced with May security patch included
All apps updated
02/05/2022 (build 20220408):
News app reworked
Setup Wizard: new iodé introduction
iodé blocker: pull to refresh replaced by automatic refresh in report tab
Teracube 2e 2022 batch released, video playback in browser and video recording fixed
Music app : playlist crash fixed
Open Camera : crash when tapping thumbnail of a newly recorded video fixed, photos and videos now editable
LineageOS synced with March security patch
All apps updated
03/02/2022 (build 20220126):
New iodé blocker map feature
Build mode changed to 'user' (i.e. release) mode): more apps work out-of-the-box and more secure device, but more restrictive recovery
Camera app changed to Open Camera
Wireguard kernel module included
Dark bootanimation
January security patch
Preinstalled apps updated
Beware: Play store Magisk module broken
18/11/2021 (build 20211108):
LineageOS updated (November security patch)
Preinstalled apps updated
Iodé blocker: hosts can now be customized, either globally or by app
10/09/2021 (build 20210828):
LineageOS updated (August security patch)
Preinstalled apps updated
Backup app included: Seedvault
microG now uninstallable: Settings -> Apps & notifications -> Preinstalled apps
New default accent color (clear blue from iodé logo)
03/08/2021 (build 20210729):
Upgrade to Android 11 / LineageOS 18.1
Preinstalled apps UI reworked with the introduction of categories.
Dark theme in the iodé blocker UI (next improvement will be hosts customization).
p≡p (https://f-droid.org/fr/packages/security.pEp/) is now the defaut email client, and replaces lineageOS client which is no longer maintained.
Preinstalled apps updated to their latest version.
LineageOS updated (July security patch).
28/05/2021 (build 20210525):
Different protection levels in iodé's blocker added: in addition to the default standard blocklist, we added three lists (socials, porn, extreme) that can be activated globally or on a per-app basis (more information in the FAQ).
Geometric Weather app added.
Preinstalled apps selection at setup wizard added.
Preinstalled apps including microG updated to their latest version.
LineageOS updated (May security patch).
07/03/2021 (build 20210306):
Blocker UI improved: performance at startup, statistics display (with sortable columns), DNS stream
Preinstalled apps management (uninstall / reinstall) menu added (Settings -> Apps & Notifications -> Preinstalled apps)
Latest lineageOS sources synced
Default apps updated
22/01/2021 (build 20210119):
LineageOS sources synced
Prebuilt apps updated
Activated Camera APIv2 in Snap
Force auto-update of apps in FDroid to keep in sync with iodé apps. It can be disabled.
02/12/2020 (build 20201127):
LineageOS sources synced
Prebuilt apps updated
New default wallpaper
Firefox browser renamed as iodé Browser and logo changed due to trademark restrictions
The iodé blocker can now be correctly coupled with a VPN
17/11/2020 (build 20201113):
Qwant replaced by a customized version Firefox, actually 83.1.0-rc1: Qwant or DDG as default search engine, alternate search engines added, telemetry disabled
iodé app (blocker): app switches replaced by shields around app icons, aggregated apps view in report, historical data deletion for each period by long press on an app line in report, black list updated
LineageOS sources synced
Prebuilt apps updated
Added a iodé category in FDroid, to quickly distribute the apps we customize. We had to fork FDroid for this purpose.
30/09/2020 (build 20200925):
Synced LineageOS sources and device tree (big improvements for the GPS)
microG updated to v0.2.12.203315 plus commits up to 25/09 (in-app maps now mostly working through Mapbox)
Prebuilt apps updated to their latest version
Welcome to "News": an app to keep users informed of latest iodé developments, as well a a FAQ.
05/08/2020 (build 20200805):
Synced LineageOS sources and device tree
Camera leak now solved in the sources (thanks to @derf elot)
microG updated to v0.2.11.202414 plus commits up to 05/08
AppleNLP backend working again
Prebuilt apps updated to their latest version
25/07/2020 (build 20200725):
Synced lineage (security patch r40) and device tree
Minor UI fixes and improvements in iodé adblocker
Updated blocklist
Updated preinstalled apps
Improved bootanimation
07/07/2020 (build 20200707): initial publicly available build of iodéOS for poplar.
Downloads : add-ons
phonesky-magisk.zip : Magisk module for NanoDroid patched Play Store, for those who really need to get access to their paid apps that don't work with microG. This module can be generally be deactivated when you have installed and ran once the paid apps.
NB : you may have to wait a couple of hours after activating the module for being able to install paid apps.
phonesky-magiskV2.zip : compatibility for the upcoming iodéOS 2.0 based on Android 11. It can ben installed on iodéOS 1.x based on Android 10 too.
IMPORTANT : install this module or deactivate the previous one before installing iodéOS 2.0, or you'll be caught in a bootloop.
seems interesting, great job! but.. 1) any known bugs? anything? 2) is it stock based or SODP? 3) does volte work plsplspls? 4) ok HUGE THANKS for maintaining this device, keep up the great stuff
jimmy1235 said:
seems interesting, great job! but.. 1) any known bugs? anything? 2) is it stock based or SODP? 3) does volte work plsplspls? 4) ok HUGE THANKS for maintaining this device, keep up the great stuff
Click to expand...
Click to collapse
1) Probably the same as in lineage 17 by derf elot, except for the camera. We removed the Sony camera, solved a memory leak problem, and included the stock lineage camera. There are also bugs related to microg, which has not been updated for a long time. Development on it has recently started again, so we can expect some improvements.
2) Stock, same DT as lineage by derf elot as mentioned in the OP.
3) It seems that yes.
4) You're welcome!
Location does not work with any map application. I'm not sure if micro G can fully replace Google play services so you can use Google maps but no app can connect to location, that includes the system's native app. Also, I cannot to XDA by Google account, it does nothing when I press Google+
Gmail also does not work, it closes immediate after opening, drive seems to be working, agenda does not work, YouTube is ok
pleniceanu cristian said:
Location does not work with any map application. I'm not sure if micro G can fully replace Google play services so you can use Google maps but no app can connect to location, that includes the system's native app. Also, I cannot to XDA by Google account, it does nothing when I press Google+
Gmail also does not work, it closes immediate after opening, drive seems to be working, agenda does not work, YouTube is ok
Click to expand...
Click to collapse
The developer of microG stopped working on the project for a while, some apps dysfunction.
Location provider is set to 'déjà vu', which does not use the network and might not locate you at first. Try using or coupling it with an other provider ? It should locate you.
iodeOS said:
The developer of microG stopped working on the project for a while, some apps dysfunction.
Location provider is set to 'déj
Click to expand...
Click to collapse
I know it's kinda avoiding this ROM purpose, but seeing how MicroG isn't that stable atm, can we flash gapps in this ROM? This device is my daily driver afterall
Wangan_Beginner said:
I know it's kinda avoiding this ROM purpose, but seeing how MicroG isn't that stable atm, can we flash gapps in this ROM? This device is my daily driver afterall
Click to expand...
Click to collapse
We daily use this ROM with microG, but tested before with gapps it should work, let us know
iodeOS said:
We daily use this ROM with microG, but tested before with gapps it should work, let us know
Click to expand...
Click to collapse
I flased gapps, first pico, location can be used with native GPS app but I could not install anything from Aurora store although internet was ok, good speed conection, internet browsing ok, Aurora shows apps but remains in 'downloading', no download actually.
So, I went and reinstalled the rom with micro Gapps, but the location didn't worked this time, microG menu was gone.
I gave up for now
It's great to see another privacy focused rom for this device! I do have some questions though: why not use osmand (open source nav app) for maps. Also I understand that the built in ads blocker is better than a vpn based one, but how is it compared to say AdAway? And can it be deactivated (sometimes blocklists block useful sites too or result in certain apps to not function properly)?
I'll do a backup on the weekend and check it out.
boa05 said:
It's great to see another privacy focused rom for this device! I do have some questions though: why not use osmand (open source nav app) for maps. Also I understand that the built in ads blocker is better than a vpn based one, but how is it compared to say AdAway? And can it be deactivated (sometimes blocklists block useful sites too or result in certain apps to not function properly)?
I'll do a backup on the weekend and check it out.
Click to expand...
Click to collapse
The main reasons for the choice of Magic Earth over Osmand: it is simpler to use, and has real-time traffic information. There's not perfect choice...
The blocker can be deactivated globally on its home page, or app by app on the report page. However, statistics are still collected. We will add a 'mute' function, to avoid statistics collection. Both (block and mute) will be able to be combined: mute but still block, unmute and unblock, ...
Some of the main advantages of a low-level blocker like the one were're implementing:
there's no need to root the phone (for Adaway, root is required)
VPN remains free
the blocker is a low-level system process which cannot be killed by the Android memory management
it is implemented with efficiency and security in mind (c++ with RAII principle as much a possible, multi-threaded, specific sepolicy rules)
fine-grained control over which app may be blocked (and/or muted in a future version)
very accurate statistics: we can track exactly which app makes which DNS request, which app sends or receives which packet on the network, the quantity of data exchanged, source/destination, ports, ...
in addition to DNS blocking (equivalent to a hosts file based method like Adaway for global blocking of all apps), we can also block network packets whose source or destination IP address has recently been associated to a domain in the black list.
we will be able to make even more fine-grained tuning, like deciding that a domain must blocked for a given app but unblocked for another app, and many more
Nice ROM
Does it support poplar dsds G8342 ?
Wow, this is the best rom so far, and the adblocking is nice too, looking forward to custom blocklists, more customization and maybe blocking apps' internet access using this (currently using afwall for this), as I don't want my keyboard to have internet access. Installed pop kernel too and no issues so far, bootup time is amazing!
hsheemi said:
Nice ROM
Does it support poplar dsds G8342 ?
Click to expand...
Click to collapse
thank you, we don't support poplar dsds for now, we might support it in the future.
---------- Post added at 02:01 PM ---------- Previous post was at 01:58 PM ----------
boa05 said:
Wow, this is the best rom so far, and the adblocking is nice too, looking forward to custom blocklists, more customization and maybe blocking apps' internet access using this (currently using afwall for this), as I don't want my keyboard to have internet access. Installed pop kernel too and no issues so far, bootup time is amazing!
Click to expand...
Click to collapse
thanks!
We will probably add apps' internet access blocking to the todo list, thanks for pointing out
For Xperia XZ1 SOV36
Is it compatible for Xperia XZ1 SOV36??
boa05 said:
Wow, this is the best rom so far, and the adblocking is nice too, looking forward to custom blocklists, more customization and maybe blocking apps' internet access using this (currently using afwall for this), as I don't want my keyboard to have internet access. Installed pop kernel too and no issues so far, bootup time is amazing!
Click to expand...
Click to collapse
iodeOS said:
thank you, we don't support poplar dsds for now, we might support it in the future.
---------- Post added at 02:01 PM ---------- Previous post was at 01:58 PM ----------
thanks!
We will probably add apps' internet access blocking to the todo list, thanks for pointing out
Click to expand...
Click to collapse
Thanks for your comments!
To add my two cents to Antoine's answer: there are switches for activating WiFi and Mobile data in app's settings, but even with these switches off, we found that there is still network communication (data sent). You can verify that with the iodé app. So yes, we could completely disable network communication with iodé...
vince31fr said:
Thanks for your comments!
To add my two cents to Antoine's answer: there are switches for activating WiFi and Mobile data in app's settings, but even with these switches off, we found that there is still network communication (data sent). You can verify that with the iodé app. So yes, we could completely disable network communication with iodé...
Click to expand...
Click to collapse
Why not support Google apps since micro G isn't supported anymore? Everything goes too Google...
This Rom is pretty close to stock when it comes to network signal stability for me. But I really hate not having my paid apps and some Google apps
pleniceanu cristian said:
Why not support Google apps since micro G isn't supported anymore? Everything goes too Google...
Click to expand...
Click to collapse
You should take a look at microg github... Its main author is actively working on microg. We can probably expect a new stable version in the next few weeks/months.

Application that denies clipboard access to some apps? Who was the first developer to release?

In a world where privacy is so exploited an app with this functionality would be very useful, there are many "spy apps", most of the time we need to copy some sensitive data through the clipboard, I heard news about the beta version of Android 12 with this functionality. But the verdict is: is there any way to develop an app of this category?
PS: I'm not a developer, I just found a username available to use
Devmobdroid said:
In a world where privacy is so exploited an app with this functionality would be very useful, there are many "spy apps", most of the time we need to copy some sensitive data through the clipboard, I heard news about the beta version of Android 12 with this functionality. But the verdict is: is there any way to develop an app of this category?
PS: I'm not a developer, I just found a username available to use
Click to expand...
Click to collapse
There is already one available. Using it already for years.
[CLOSED][APP][XPOSED][6.0+] XPrivacyLua - Android privacy manager [UNSUPPORTED]
XPrivacyLua Really simple to use privacy manager for Android 6.0 Marshmallow and later (successor of XPrivacy). Revoking Android permissions from apps often let apps crash or malfunction. XPrivacyLua solves this by feeding apps fake data...
forum.xda-developers.com

Categories

Resources