Related
Hi,
I started developing an XMPP/Jabber/GoogleTalk/... client for Android that is designed as a replacement for Google Talk app.
Currently it does not support Google Talk however it is a good jabber client with conferences.
It is in deep development - so there are many buttons that do not work properly - but i would like you to test it
I have no screenshots yet - but imagine google talk ones here - it looks and behaves like it.
source: https://github.com/mar-v-in/XMPP-for-Android
latest test version download (might be unstable): https://github.com/mar-v-in/XMPP-for-Android/raw/master/bin/xmpp.client.apk
Notes:
Before you start the app the first time, create an account in settings/accounts&sync
The app only supports conferences saved server-side. However some popular XMPP-clients store them offline (what is not what they should do!) - use Gajim on your pc to setup. - http://gajim.org/
Hope you like it.
MaR-V-iN
Here’s the gist of a thread I started @ WPCentral that I wanted to bring over to XDA to get an additional perspective.(Let's be honest...XDA is a bit cooler than WP Central good )
How about allowing for users to create 2 custom Hubs? The Custom Hub would have two panes – the default being a notifications list, and the second being a list of all the apps added to that hub.
How about allowing Kids Korner to be a Hub where parents can add in apps and other educational stuff for the kids to look at (then at the bottom of Kid’s corner, put a menu option that allows the parents to put in a password to get into the rest of the phone)?
How about expanding the Lenses idea to give third party apps the option to pick one key feature of their app that gets integrated into a Hub?
How about tighter integration between Hubs? For example taking the option of in the phone dialer to hit the phonebook icon and get sent to the People Hub and using it this way…if I’m in the Calendar Hub and make a reminder note to meet with someone, or to call someone, that note shows up under that person’s name in the People Hub. If I want to edit that, when I am in the people hub I hit that note which sends me back to the Calendar to change it.
These are just some thoughts I had on how MSFT could flesh WP8 out and give it an edge. I think RIM is trying to do that in its BlackBerry 10 Blackberry Hub, but MSFT has more resources in WP8 to make things more seamless and less cluttered.
Here’s the link to the original thread:
http://forums.wpcentral.com/windows-phone-8/220854-hubs-over-folders-lenses-improve-core-apps.html
But I’d love to get feedback here on XDA.
HMm not so sure this is really worth it. Besides, to integrate an app with a specific hub is a specific job the developer needs to do. In order to integrate with the music+video hub, for instance, you need to do specific thing. Same goes for people/photo/whatever hub.
Having a custom hub is very difficult for the apps to integrate properly with it and sloopy developers might actually ruin the entire experience with poor integration.
While i see where you are going with this (notification center), the need is really not that big.
The kids corner is a completely different thing and is not similar to a hub in any way.
EDIT: the news/notification thing in the hub is something the apps do, and not the hub itself. The hub just centralizes them in a ... hub. In order for the hub to know what to centralize and from who, the apps must call specific APIs.
mcosmin222 said:
HMm not so sure this is really worth it. Besides, to integrate an app with a specific hub is a specific job the developer needs to do. In order to integrate with the music+video hub, for instance, you need to do specific thing. Same goes for people/photo/whatever hub.
Having a custom hub is very difficult for the apps to integrate properly with it and sloopy developers might actually ruin the entire experience with poor integration.
While i see where you are going with this (notification center), the need is really not that big.
The kids corner is a completely different thing and is not similar to a hub in any way.
EDIT: the news/notification thing in the hub is something the apps do, and not the hub itself. The hub just centralizes them in a ... hub. In order for the hub to know what to centralize and from who, the apps must call specific APIs.
Click to expand...
Click to collapse
Ok. I think I follow along with you comment.
But MSFT does have these some of these elements in play in the OS itself, so why not use them more effectively? I know Apple has a more stringent control of apps that get approved before going in the app store, so could MSFT enforce these add-ons?
Sent from my Galaxy Nexus using xda premium
Microsoft regularlly provides the Options and in my experience developers will use them by themselves, simply because it increases the usability of their Apps a lot more than it adds required effort. It's rather a problem how to implement this in a way that does prevent a badly written App from affecting the system's Performance and stability.
That especially gets a Problem when Apps are allowed to surface data somewhere as could be seen by the problems Skype originally caused with the People Hub Integration.
I'm pretty sure Microsoft will add more Integration Points into the System with the next API update - let's just wait and see.
As for making usage of some of those Integration Points mandatory. I don't believe that to be a good idea. I also don't believe that it is necessary. Developers regularly complain that they can't integrate somewhere so I really believe that if they were allowed to do it they would do it by themselves. This is also necessary because the Integration regularly involves the Transfer of data to the invoked App (Images, Files, etc.)
Stevie, I think what you've said is fair. I suppose MSFT could just use their own apps like Photosynth and Skype as a way to sure more seamless integration instead of making that a mandatory process for all devs.
Do people even see the need for such integration in the platform going forward?
Sent from my Galaxy Nexus using xda premium
In general I believe that it can make for a more fluid experience if there are well done Integration points. Camera Lenses or the Image editing capabilities are a great example for this. Another is the possibility to have an App specific contact store (like Skype does it now).
What I believe would greatly improve the concept would be Message Integration into the Messaging Hub and the ability to create an app specific calendar store that is also availble inside the Standard calendar App.
Also nice would be the possibility to register Apps for all filetypes. Currently you can only consume files inside your App that are not assigned to System Apps (e.g. MP3 or JPEG Images).
So in short: yes, those integrations can greatly improve the workflow and I'd love to see Microsoft in the end deliver on the promise of Hubs they gave when introducing them. When you want to do something with Images, open the Image Hub. If you want to message someone open the Messaging Hub, etc.
If it were up to me, here’s how I’d organize the Hubs in WP8. I’d love to hear other’s thoughts:
Store: Same. Just better Secondary links from the all the other Hubs. This and People Hub should be the two primary Hubs where all other Hubs have shortcut links to.
Photos: Same. Shortcut Links to Store, People, Search, Content Manager
Music and Videos. Same. Shortcuts to Store, People, Search, Content manager
Games: Same. Better shortcut links to Store. Also links to People, Search, Content manager
Productivity: Office + Calendar + Note Apps + Voice Personal Assistants here (allow Tell Me to be an app where you can add commands to it).
- 3rd party apps list include: any note, calendar, language, Office Assistant Apps.
- Secondary shortcuts to People (especially Rooms), Content Manager, Wallet, Store
Content Manager: Skydrive and a page showing list of downloaded content here...not a full file manager where you can move stuff around on the phone itself, but a general downloads folder.
- 3rd part apps include Box and other upload apps
- Secondary Hub links – Photos, Music + Videos, Office
People: You manage contacts and social media here.
- Me Tile: Notifications...and have the option to reply to an individual tweet or FB post or Skype message from a listed contact here.
- 3rd party apps include: All social media apps
- Secondary shortcuts: all the other hubs.
Messaging: Emails, SMS, Skype IM is here.
- 3rd party apps include all IM apps, FB messenger, shortcut to Skype.
- Shortcuts to People, Store, Phone
Navigation: All Maps and Transit apps here.
- Some of Local Scout functionality here (also accessible in the Search Hub).
- Secondary Shortcuts to Search, People, Store.
Search: Same, except adding one more page to list search related apps.
- Secondary short cuts to Navigation, People, Store, Content Manager
Phone: Skype (calling features, video chat) and Dialer are primary options here. Other apps that tap into this Hub (or get listed here) are 3rd party Video Apps
- Secondary shortcuts to People, Messaging.
Wallet: Holds Credit Cards and Financial Apps
- Secondary shortcuts to Search, Store, Productivity (in particular – calendar), People
Corporate: Same. Allow Corporate IT to do their thing. Better links to the Productivity, Office
Custom Hubs: Users are allowed to create only two. A two pane look – default page with app related notifications and a second page with the app list.
It is still a hybrid mix of hubs and apps – if you don’t want to use a Hub, don’t use it.
Sent from my Lumia 810 using Board Express
My head hurts. It is just too complicated.
This implementation can go wrong in soooooooooooooooo many ways, it will be a wonder if a developer manages to get it right for every scenario.
I believe you're making it more complicated than it needs to be and a lot of what you are talking about is already there. I don't need an explicit link to go from Calendar to people. If I open an appointment and swipe to attendants I can tap on any of them to be taken to their contacts page inside the people Hub (as it should be).
It's a good idea to have those kinds of shortcuts around that are contextually aware but adding a load of Buttons to jump somewhere else is mainly getting the UI cluttered or getting confusing/annoying.
Some of those connections you mention are already there - e.g. Store in Music/Videos.
What actually would be a nice idea is to allow productivity Apps to tie into the Office Hub similarily to how it works with imaging Apps in the Pictures Hub.
Some of the other stuff you mention is also there. Cloud Storage applications can integrate themselves into the system for automated Uploads similarily to SkyDrive but currently limited to Pictures so it can definitely be improved upon.
TellMe is also extensible to allow Apps to tie into it and use voice command functionality. Audible would be one App that takes advantage of this. It doesn't really make sense for all Apps though. E.g. a picture taking App will require the ViewFinder etc. so it would not benefit that much from Voice Control (and it is quite a hazzle to implement this - especially if the App is getting localized in several languages).
As for search - if there would be something like a search charm on Windows 8 it should tie into the Bing App which already has a permanent shortcut in the search button.
I guess your idea would be to allow people to jump easily from Hub to Hub without going to the Homescreen. Having Links for this in every other Hub just isn't the way to go there. A possibility would be to add all the Hubs at the bottom of the Task Switcher Screen. So you would long press on the back button and would get the Thumbnails of running Apps and at the bottom the icons for People, Calendar, Messaging, Pictures, Music/Video and Office. I'm not sure if that would be an improvement over just going via the Home screen though.
So in short: more integration of Apps into the OS: yes, more context aware integration of Apps with each other: yes, adding loads of shortcuts: no
StevieBallz said:
I believe you're making it more complicated than it needs to be and a lot of what you are talking about is already there. I don't need an explicit link to go from Calendar to people. If I open an appointment and swipe to attendants I can tap on any of them to be taken to their contacts page inside the people Hub (as it should be).
It's a good idea to have those kinds of shortcuts around that are contextually aware but adding a load of Buttons to jump somewhere else is mainly getting the UI cluttered or getting confusing/annoying.
Some of those connections you mention are already there - e.g. Store in Music/Videos.
What actually would be a nice idea is to allow productivity Apps to tie into the Office Hub similarily to how it works with imaging Apps in the Pictures Hub.
Some of the other stuff you mention is also there. Cloud Storage applications can integrate themselves into the system for automated Uploads similarily to SkyDrive but currently limited to Pictures so it can definitely be improved upon.
TellMe is also extensible to allow Apps to tie into it and use voice command functionality. Audible would be one App that takes advantage of this. It doesn't really make sense for all Apps though. E.g. a picture taking App will require the ViewFinder etc. so it would not benefit that much from Voice Control (and it is quite a hazzle to implement this - especially if the App is getting localized in several languages).
As for search - if there would be something like a search charm on Windows 8 it should tie into the Bing App which already has a permanent shortcut in the search button.
I guess your idea would be to allow people to jump easily from Hub to Hub without going to the Homescreen. Having Links for this in every other Hub just isn't the way to go there. A possibility would be to add all the Hubs at the bottom of the Task Switcher Screen. So you would long press on the back button and would get the Thumbnails of running Apps and at the bottom the icons for People, Calendar, Messaging, Pictures, Music/Video and Office. I'm not sure if that would be an improvement over just going via the Home screen though.
So in short: more integration of Apps into the OS: yes, more context aware integration of Apps with each other: yes, adding loads of shortcuts: no
Click to expand...
Click to collapse
Stevie, I like much of your suggestions. The goal here isn't to clutter the OS - if it were up to me I would use the contextual menus and a few other existing options in the OS to facilitate moving from Hub to Hub instead of adding extra buttons.
Based on how the OS is, there may not be a need to have list of all the hubs at the bottom. The goal is to jump from certain Hubs to each other based on "common user tasks that would involve multiple Hubs or steps that can be reduced". Now if you want to do things the current way, fine. More I think some would welcome more intuition.
I was just trying to describe a smoother way to leverage the existing strengths of the OS and to see where MSFT could make the quickest improvements. No question, the OS is smooth but if they build out these extensions, you can have an improved user experience. My apologies if my explanation was convoluted.
Sent from my Galaxy Nexus using xda premium
Should MSFT eventually push an all Hub version of WP8?
Sent from my Galaxy Nexus using xda premium
What do you mean by "All Hub"? The Hubs are a thematic grouping but I guess we will always have certain use cases that don't exactlly lend themselves to being integrated into one of those Hubs so putting everything into the Hubs probably isn't the best idea. Giving developers the integration points to integrate their data into the Hubs if it is suitable should be the priority.
I agree. Apps are mostly isolated programs running on their own. If apps could talk to each other more easily we can have more interesting behaviors and abilities that no other mobile os has. For quality control, just give the user a on off switch for each app just like the background task.
A little intro:I spent a lot of time with malware on windows and which apps/settings can actually protect you. By working with malware you also get a lot of background info on how people / companies / governments can steal your privacy from you and how to protect yourself against it. When I decided to care about all that, I noticed that a lot of "security forum experts for PCs" have no clue about Android and its risks although probably the same if not more data is stored on our phones than on our PCs. So I decided to do some background research, worked with Android malware and played around with the different ways and options that can protect your security & privacy.
When I am looking for a security setup then I want one that is reliable & easy-to-work-with but also lightweight on the system. I don't want my security setup to cripple down my system.
I have done similar guides for Windows and as I haven't seen anything likewise for Android I thought I would give it a go.
What can you do to protect your security & privacy:Security - Firewall: To block incoming / outcoming traffic per app or per IP/DNS/Port. Can drain the battery and be a pain to configure on Android.
Security - Antivirus: To scan files after they have been downloaded or to scan files after they have been installed. Due to the way how Android is coded it is not possible to scan in real-time (while downloading, while installing) which means you can't detect malware based on their behavior. AV's on Android can only detect malware by their signature which is easy to bypass. However is still better than nothing and a one-time scan of downloaded files or an on-demand scan while your phone is charging won't hurt your battery or slow down the device. A lot of AV-Products come with multiple features built in. Some of them are often useless (e.g. maybe anti-theft), others are worth the usage (e.g. security audits for non-fixed exploit vulnerabilities or bad system settings e.g. USB-Debugging enabled).
Security - SuperSU: To actively manage which apps will get "unlimited" root access.
Security - Password manager: Use a password manager for all your passwords. Built in password managers (e.g. browser, ftp, mail ,etc) aren't really a save solution (even with the so called "master password"). Apps like KeePass offer a lot more than just having all your passwords stored safely. It lets me open apps + automatic login with just 2 clicks (e.g. FTP, SSH, Mail, Browser,...). It let's me create unique password so that I won't be using the same password on all websites. And there is still a lot more.
Security & Privacy - DNS: Change the DNS-Server you use to something like NortonDNS which will protect you from malware/phishing sites as well as semi-bypass the tracking of browsing behavior by your phone/internet provider. The DNS provider/resolver that you use (usually your phone/internet provider) will transform the domain you want to access into the IP adress of the desired server (the one which hosts the website you want to visit). This means that what ever domain you are going to browse will be transmitted to your DNS provider... so choose one carefully ! Also the better the connection to your DNS provider is (and the better the providers connection to the world-wide-web is) the faster your domain requests will be processed.
Security & Privacy - VPN: An easy way for attackers in your network (especially open & free wifi's) to steal data from you are MITM (Man In The Middle) attacks. They can modify SSL certificates which means even using HTTPS might not always be safe or simply read your network activity (such as logins which includes accounts + password). By using a VPN all the traffic that leaves your device will be encrypted and routed directly to a safe receiver which means no one can interrupt your traffic and sniffs (read) it.
Security & Privacy - SSH-Tunnel: Using an SSH-Tunnel has pretty much the same effect as using a VPN but the difference is you have to configure each app that you want to use the SSH-Tunnel. I prefer this method on Windows as I can encrypt only the traffic of my browser/mail/communicator while playing games or other apps will use the non-encrypted (and often faster) internet connection. Sadly there is no app on Android that in my opinion works flawlessly as SSH-Tunnel client.
Security & Privacy - Adblockers: We all know adblockers. They block ads and trackers to protect your privacy and some of them (e.g. mdl-malwaredomainlist) also protect you from malware & phishing websites.
Privacy - App Ops: App Ops or similar apps let you block permissions per app which means whatever app is installed / running can be forced to not use specific permissions. E.g. you can block Facebook from using your GPS and tracking your location.
Privacy - Android 5.x disable allowed certificates: Every website and every (good) app will have a certificate that Android and also AV's check online to see if the website/app is trustworthy. Out-of-the-box Android allows many questionable certificates from governments and companies that might sell their certificates to websites/app that are not so trustworthy. Since Android 5.x you can remove/add certificates to disallow governments or companies that sell their certificates to questionable websites/apps.
Privacy - Encrypt your phone: By encrypting your phone you ensure that no one who finds your phone will be easily able to read anything saved on your phone. Not even by entering the recovery mode. It may slow down the performance a bit and increase battery drain slightly, but for me (Nexus 6) I had no troubles so far.
You can make that list longer by using only secure apps for communication (e.g. encrypted chats with Telegram or using Firefox and add-ons such as HTTPS-Everywhere) but I think that is more advanced and takes away the freedom and choice of readers/users. So I will stop here as I think I have covered the basics and most important things.
Which setup should you choose?Well first of all I recommend using only apps/services of companies that you can trust. E.g. companies that exist for a long time but haven’t done any questionable actions in the past. I have been a long-time-user of Comodo but looking at what Comodo has allowed itself in the past made me choose something different. On Android a good example are sms/call blockers. There are many options to choose from for example one is produced by a company named "NQ Security". Now do your google work and you will find some details that either makes you think of this company as trustworthy or not. Or maybe there are other companies with the same product which you would rather trust?
One thing to notice is that in the end your setup should cover most if not all aspects that I have mentioned above. Now you can either choose to use many different products (e.g. if they are free) or use on paid solution that covers everything at once. In any case, don't forget about stuff that might get installed but be useless to you. E.g. at some point I found my setup to have 3 different call blockers and 4 different sms blocker installed.
I have made a list of a few picks that I would recommend:
Must-HaveSuperSU / Rooted device (Click for Google play): 99% of all apps & configurations listed here will need your device to be rooted. Also SuperSU gives you a good overview about which apps have root access and is a good tool to configure those apps.
Override DNS (Click for Google play): It automatically changes the used DNS Server for 2G/3G/4G/WIFI to whatever you want (e.g. NortonDNS which has malware & phishing protection but also is one of the fastest DNS providers available world wide). Currently it is the only app that works with Android 5.x.
AdAway (Click for download link): Lets you block ads, tracking, malware and phishing sites. I recommend the standard sources + www.malwaredomainlist.com/hostslist/hosts.txt
App Ops (Click for Google play): App Ops lets you block permissions per app which means whatever app is installed / running can be forced to not use specific permissions. E.g. you can block Facebook from using your GPS and tracking your location.
KeePass2Android online/offline (Click for Google play): KeePass2Android comes as two different apps that you can choose from in the GooglePlayStore. One supports online syncing via various services so that you can sync your password database on all your devices (Android, Windows, OSX, Linux, iOS,... ). The other option is called "KeePass2Android offline" which completely removes all features that would require an internet connection. The App doesn't even have permissions for internet connections ! If you don't know KeePass, it is one of the oldest password managers around. It is opensource, has a lot of plugins and the leightweight but feature rich app supports nearly every device & operating system. On Android you can even log into websites from the browser via KeePass2Android by clicking -> Share -> KeePass2Android -> Log into your database -> it will automatically get the right login data for the website you are currently browsing and pastes it into the login fields. My personal setup: KeePass2Android offline with another syncing/backup app that will sync my passwords via my own server. On my laptop I use KeePass with a plugin which replaces my browsers built-in password manager with KeePass.
GSP - Good Security Practice (Recommendations)Disable untrusted certificates (Android 5.x) (Mozilla Firefox list of allowed certificates): Use a source you trust and check what certificates they usually allow in their software (e.g. Mozilla Firefox). Then check that with what is enabled in your Android's security settings and disable whatever Android has enabled but e.g. Mozilla Firefox doesn't.
A very recommended app is "Trust Manager (Click for Google play)" by Bluebox. It lists all certificates on the phone and sorts them by categories which makes it easy to disable all untrusted certificates within two clicks.
Encrypt your phone: Enable encryption of your Android device.
Antivirus: You can check AV-Test.org for monthly security reviews on mobile security products and choose from there. But I recommend either "Bitdefender Free" for a simple file-scanner of downloaded files and installed apps as well as on-demand scanner or "ESET Free/Premium" which includes file-scanner, security audit, sms & call blocker as well as phishing protection and even anti-theft if needed. Both companies are in my option very trustworthy and provided good results over the past month/years (not only on the mobile market but also the PC market). Avast is a free option with lots of features from another trustworthy company but I found it to be heavier on my system than Bitdefender or ESET.
VPN if you use public WIFI: I also recommend the use of a VPN from a trustworthy VPN provider. They don't cost too much and improve your security & privacy on public wifi a lot. Avast offers a great VPN service. Actually their app makes their services superior to me comlared to other VPN providers and apps. You might want to try the Avast VPN 14-day-trial.
Firefox (HTTPS-Everywhere + Adblock Edge) > Chrome: Firefox seems to be the winner in terms of privacy and security. But on my system Chrome is a lot faster than Firefox.
TextSecure > Telegram > WhatsApp > Facebook: Telegram was my favorite choice until @muppetmania and @bmstrong informed me about flaws and trust issues with Telegram. Instead it is highly recommended to use TextSecure. It is available on iOS and Android. Feature wise it might not be as good as Telegram (e.g. missing desktop client for windows/osx/linux) but I believe that this is a fair trade for privacy.
The bottom line
I tried to give a little overview of what kind of protection is available and what it does. I also added my choice of tools which will provide you with protection. It is up to you to decide whether it is useful in your case (based on your phone-behavior) and if you are willing to pay money for it or rather use free services. I will gladly help you with any questions or configuration/setup related things. Please let me know if you have any suggestion or corrections so that I can improve this thread !
Useful resources / links
http://droid-break.info/
https://prism-break.org/en/categories/android/
https://guardianproject.info/apps/
https://people.torproject.org/~ioerror/skunkworks/moto_e/
https://blog.torproject.org/blog/mission-impossible-hardening-android-security-and-privacy
https://medium.com/backchannel/why-i-m-saying-goodbye-to-apple-google-and-microsoft-78af12071bd
http://crashoverridenetwork.tumblr.com/post/109948061867/account-security-101-passwords-multifactor
http://dimitritholen.nl/how-to-reclaim-your-privacy-on-the-internet/
http://www.alternet.org/print/news-...ng-encryption-isnt-enough-protect-our-privacy
https://youtu.be/seNHe5oMquw
https://pack.resetthenet.org/
https://jrruethe.github.io/blog/2015/03/29/protect-yourself-online/
http://www.privacytools.io/
https://tacticaltech.org/projects/security-box
https://bluebox.com/technical/quest...into-the-root-certificates-on-mobile-devices/
https://securityinabox.org/en
http://www.infoworld.com/article/29...managers-for-pcs-macs-and-mobile-devices.html
https://www.reddit.com/r/trackers/comments/30xtk9/trackers_security_and_you/
AV tests & comparisons:
http://www.av-test.org/en/antivirus/mobile-devices/
http://www.av-comparatives.org/mobile-security/
Thanks to:
Yuki2718 @wilderssecurity.com for teaching me a few things
@bmstrong for useful links and suggestions
@muppetmania for pointing out flaws and trust issues with Telegram !
Changelog:
01.08.2015 - Removed Telegram and replaced it with TextSecure
28.06.2015 - Updated useful resources & links
08.06.2015 - Updated useful resources & links
06.06.15 - Added "Trust Manager" by Bluebox to quickly and easily disable a punch of root certificates. Also added Avast VPN app
22.05.15 - Added a good link/explenation on non-trustworthy certificates that are installed on mobile devices out of the box ( https://bluebox.com/technical/quest...into-the-root-certificates-on-mobile-devices/ )
18.04.15 - Added ressources for AV tests and comparisons
07.04.15 - Added more useful resources & links
21.03.15 - Added more useful resources & links; fixed a typo in the changelog
14.03.15 - Added more useful resources & links; also changed the thread title to give an easier view for new updates
10.03.15 - Added useful resources & links
06.03.15 - Added "password managers" and "KeePass2Android online/offline" as recommended password manager
01.03.15 - Added a more detailed description of DNS and why you should care about it
28.01.15 - Fixed typos and grammar
zakazak said:
Changelog:
28.01.15 - Fixed typos and grammar
Click to expand...
Click to collapse
Interesting. Would like to see sections on GPG, U2F, 2FA applications, Android with Yubikey, etc.
bmstrong said:
Interesting. Would like to see sections on GPG, U2F, 2FA applications, Android with Yubikey, etc.
Click to expand...
Click to collapse
Thanks, I might add those later but I wanted to keep this guide as "easy" as possible so that every "normal" android user could increase his security and privacy with simple tools in a short time. E.g. yubikey is awesome and a very interesting topic but not very handy for the average guy?
01.03.15 - Added a more detailed description of DNS and why you should care about it.
http://crashoverridenetwork.tumblr.com/post/109948061867/account-security-101-passwords-multifactor
Really decent overview of general security.
bmstrong said:
http://crashoverridenetwork.tumblr.com/post/109948061867/account-security-101-passwords-multifactor
Really decent overview of general security.
Click to expand...
Click to collapse
Good suggestion, I have a few more and will add both (your link) and my stuff to the thread
KeePass2Android offline + KeePass on desktop + syncing via own server = win !
bmstrong said:
http://crashoverridenetwork.tumblr.com/post/109948061867/account-security-101-passwords-multifactor
Really decent overview of general security.
Click to expand...
Click to collapse
Aaaaand it's done ! Added password managers to the OP.
zakazak said:
Aaaaand it's done ! Added password managers to the OP.
Click to expand...
Click to collapse
Cool. You might want to touch on the open source vs. proprietary philosophy. Just being open source isn't necessarily better but I feel transparency is important part of security.
http://droid-break.info/
https://prism-break.org/en/categories/android/
https://guardianproject.info/apps/
https://people.torproject.org/~ioerror/skunkworks/moto_e/
https://blog.torproject.org/blog/mission-impossible-hardening-android-security-and-privacy
https://medium.com/backchannel/why-i-m-saying-goodbye-to-apple-google-and-microsoft-78af12071bd
http://dimitritholen.nl/how-to-reclaim-your-privacy-on-the-internet/
Another very good privacy and security article.
bmstrong said:
http://crashoverridenetwork.tumblr.com/post/109948061867/account-security-101-passwords-multifactor
Really decent overview of general security.
Click to expand...
Click to collapse
bmstrong said:
http://dimitritholen.nl/how-to-reclaim-your-privacy-on-the-internet/
Another very good privacy and security article.
Click to expand...
Click to collapse
bmstrong said:
Cool. You might want to touch on the open source vs. proprietary philosophy. Just being open source isn't necessarily better but I feel transparency is important part of security.
http://droid-break.info/
https://prism-break.org/en/categories/android/
https://guardianproject.info/apps/
https://people.torproject.org/~ioerror/skunkworks/moto_e/
https://blog.torproject.org/blog/mission-impossible-hardening-android-security-and-privacy
https://medium.com/backchannel/why-i-m-saying-goodbye-to-apple-google-and-microsoft-78af12071bd
Click to expand...
Click to collapse
Thanks ! I added all the links to the OP and mentioned you for giving such great feedback and suggestions
http://www.alternet.org/print/news-...ng-encryption-isnt-enough-protect-our-privacy
Interesting take on security in general.
bmstrong said:
http://www.alternet.org/print/news-...ng-encryption-isnt-enough-protect-our-privacy
Interesting take on security in general.
Click to expand...
Click to collapse
14.03.15 - Added more useful resources & links; also changed the thread title to give an easier view for new updates
Added your link... I will soon add a few of my links that I saved in my bookmarks. I will then split the "link category" in something like "good to know and what to do" and "privacy theory articles"... if you know what I mean
zakazak said:
10.03.15 - Added more useful resources & links; also changed the thread title to give an easier view for new updates
Added your link... I will soon add a few of my links that I saved in my bookmarks. I will then split the "link category" in something like "good to know and what to do" and "privacy theory articles"... if you know what I mean
Click to expand...
Click to collapse
Cool. Schneier has another book out now. Data and Goliath. This talk is worth the listen.
https://youtu.be/seNHe5oMquw
bmstrong said:
Cool. Schneier has another book out now. Data and Goliath. This talk is worth the listen.
https://youtu.be/seNHe5oMquw
Click to expand...
Click to collapse
21.03.15 - Added more useful resources & links; fixed a typo in the changelog
Thanks, took me some time to add the link, at the moment I don't have much time to improve the guide.
Utini said:
21.03.15 - Added more useful resources & links; fixed a typo in the changelog
Thanks, took me some time to add the link, at the moment I don't have much time to improve the guide.
Click to expand...
Click to collapse
As I'm concerned about privacy and security thanks for your thread but you forgot XPrivacy the best privacy manager I know it's not completely ready for Lollipop but works perfectly on Kitkat it's not about that fault it's Xposed it has a bug which I hope will be resolved soon.
Good luck! Regards.
Cyclu said:
As I'm concerned about privacy and security thanks for your thread but you forgot XPrivacy the best privacy manager I know it's not completely ready for Lollipop but works perfectly on Kitkat it's not about that fault it's Xposed it has a bug which I hope will be resolved soon.
Good luck! Regards.
Click to expand...
Click to collapse
You are right, XPrivacy seems to be a really nice tool but I haven't been able to try it myself (as it is not compatible with Android 5.x) which is the reason why I haven't added it to the list yet
I might give it a try on my Nexus 4 with Android KitKat !
https://pack.resetthenet.org/
https://jrruethe.github.io/blog/2015/03/29/protect-yourself-online/
http://www.privacytools.io/
https://tacticaltech.org/projects/security-box
bmstrong said:
https://pack.resetthenet.org/
https://jrruethe.github.io/blog/2015/03/29/protect-yourself-online/
http://www.privacytools.io/
https://tacticaltech.org/projects/security-box
Click to expand...
Click to collapse
Once again thanks for your input. I added them to the OP but I am still really busy with my job/reallife. I hope I can improve the OP soon.
Question about choices
Utini said:
Security - Antivirus: To scan files after they have been downloaded or to scan files after they have been installed. Due to the way how Android is coded it is not possible to scan in real-time (while downloading, while installing) which means you can't detect malware based on their behavior. AV's on Android can only detect malware by their signature which is easy to bypass. However is still better than nothing and a one-time scan of downloaded files or an on-demand scan while your phone is charging won't hurt your battery or slow down the device. A lot of AV-Products come with multiple features built in. Some of them are often useless (e.g. maybe anti-theft), others are worth the usage (e.g. security audits for non-fixed exploit vulnerabilities or bad system settings e.g. USB-Debugging enabled).
Antivirus: You can check AV-Test.org for monthly security reviews on mobile security products and choose from there. But I recommend either "Bitdefender Free" for a simple file-scanner of downloaded files and installed apps as well as on-demand scanner or "ESET Free/Premium" which includes file-scanner, security audit, sms & call blocker as well as phishing protection and even anti-theft if needed. Both companies are in my option very trustworthy and provided good results over the past month/years (not only on the mobile market but also the PC market). Avast is a free option with lots of features from another trustworthy company but I found it to be heavier on my system than Bitdefender or ESET.
Click to expand...
Click to collapse
Hi, I've been juggling this question for a few days now and I'm hoping you will have an answer to assist me. First, I have read your post and this is absolutely what I have been looking for for the past few weeks. Thanks has been given and I hope you keep this up. Second, I read the wildersecurity link but still do not have an answer to this question.
Why choose ESET Premium over BitDefender. Can you tell me what one offers that the other doesn't? I've been leaning to BitDefender only because I have and use an Android Wear device. Again, thank you for any assistance or time.
Hey guys, I plan on creating an app but I need some tips and/or tricks to help me get started. I do plan on releasing the app on here (Using XDADevelopers) first to get some attention, then release it on the Google Play store. Here are the details of the app:
App Type: Lockscreen Customization
Minimal SDK: API 16 (JellyBean)*
Testing Device: Samsung S6 Edge (Rooted, running Android Marshmallow)
IDE: Android Studio
Key Components:
The app must be able to detect weither the home button is being pressed (which makes the phone access to the launcher, we dont want that) and quickly intercept the action and return back to the locker
Allow to lots, and I mean LOTS of customability (Much like C Locker, which is the app that has inspired me ^^), some of these customizations include the following:
App widgets and custom widgets like images, text, sprites, etc
LED/Vibration/Notifcation settings for apps
Change speed of animations (Like NovaLauncher does), also be able to choose different types of animations for the lockscreen
Customize colors in app
Integrate Android Wear (make the watch vibrate or ring your phone is low on power, or when the connection is lost)
Different lockscreens that show whenever the conditions configured are met, similar to C Locker (like bluetooth connections, music playing, WiFi, SmartLock conditions ,etc)
This is the cricual part: MUST have several different unlock unlock, like fingerprint (Thanks to Android 6.0.1), pattern, pin, SmartLock, Slide-To-Unlock, and Gestures
Be able to integrate as a plugin for Tasker, like have tasker check for launched apps
Intregrate voice assistants like Google Now/Google Assistant, S Voice, and such others
Have high and steady performance for all phones like. Also not be a resource hog!
This may is maybe feature: Be able to do functions like override the system settings and bypass system lock via root
Utilize Material style (this is a personal preference tbh)
I will add in some more ideas I have for the app.. Actually, I haven't gotten a good name for the app, but I'm thinking of Trinity Locker.
As you can see, I have numerous of ideas for this app.. all I need is some help with creating it. I will warn you guys this, I am pretty new to Android development (I typically code on Minecraft, even created some pretty decent mods), so I need some guidance on what and how things work with the Android system. I do have some coding experience from coding mods for Minecraft and taking a class on the basics of C++. If you guys have some ideas or tips and tricks to give, I'm all ears. Thank you!
NOTE: Anything with a * means that it is subject to change!
Oh yeah, I forgot to mention, I did also have a chance of using MIT App Inventor so I have a small foundation of the Android development. But I am new to Android Studio, so I need some tips with using that as well.
ALSO, to crucially note, I am in high school.. So I may not have time to respond to everyone/program the app since I have majority of my classes are cross college (or to most known as Dual Enrollment or Advanced Placement (AP)) courses :crying:. Oh and I live in the Central US Timezone, so my time will be different (or the same) for most
NovaViper said:
Hey guys, I plan on creating an app but I need some tips and/or tricks to help me get started. I do plan on releasing the app on here (Using XDADevelopers) first to get some attention, then release it on the Google Play store. Here are the details of the app:
App Type: Lockscreen Customization
Minimal SDK: API 16 (JellyBean)
Recommended SDK: API 23-24 (Marshmallow and Nogaut)
Testing Device: Samsung S6 Edge (Rooted, running Android Marshmallow)
IDE: Android Studio
Key Components:
The app must be able to detect weither the home button is being pressed (which makes the phone access to the launcher, we dont want that) and quickly intercept the action and return back to the locker
Allow to lots, and I mean LOTS of customability (Much like C Locker, which is the app that has inspired me ^^), some of these customizations include the following:
App widgets and custom widgets like images, text, sprites, etc
LED/Vibration/Notifcation settings for apps
Change speed of animations (Like NovaLauncher does), also be able to choose different types of animations for the lockscreen
Customize colors in app
Integrate Android Wear (make the watch vibrate or ring your phone is low on power, or when the connection is lost)
Different lockscreens that show whenever the conditions configured are met, similar to C Locker (like bluetooth connections, music playing, WiFi, SmartLock conditions ,etc)
This is the cricual part: MUST have several different unlock unlock, like fingerprint (Thanks to Android 6.0.1), pattern, pin, SmartLock, Slide-To-Unlock, and Gestures
Be able to integrate as a plugin for Tasker, like have tasker check for launched apps
Intregrate voice assistants like Google Now/Google Assistant, S Voice, and such others
Have high and steady performance for all phones like. Also not be a resource hog!
This may is maybe feature: Be able to do functions like override the system settings and bypass system lock via root
Utilize Material style (this is a personal preference tbh)
I will add in some more ideas I have for the app.. Actually, I haven't gotten a good name for the app, but I'm thinking of Trinity Locker.
As you can see, I have numerous of ideas for this app.. all I need is some help with creating it. I will warn you guys this, I am pretty new to Android development (I typically code on Minecraft, even created some pretty decent mods), so I need some guidance on what and how things work with the Android system. I do have some coding experience from coding mods for Minecraft and taking a class on the basics of C++. If you guys have some ideas or tips and tricks to give, I'm all ears. Thank you!
Click to expand...
Click to collapse
You can only choose one minimum or target API level
Sent from my GT-S7580 using Tapatalk
DodoGTA said:
You can only choose one minimum or target API level
Click to expand...
Click to collapse
What I meant by the recommended api is the api I'm starting on first (since that's what Android Studio defaultly sets mento the develop on the latest first)
Hey I have gotten the first bits of the app started! I'm trying to work on the setup phase of the app (where the app asks for permissions and basic settings to start). I even got the code uploaded on Github. Oh also, I might create a XDA Developer project and start adding some info there
Hey guys! I've been adding lots of stuff to the app! If you guys notice something off with the coding, please let me now at Github! Thanks!
Many device manufacturers include a so-called feature in the Android OS, that optimizes or kills the background processes, alarms, broadcastreceivers of almost all third-party apps. (The few exceptions are some popular apps, such as Facebook, Instagram, etc.)
So I have started a project which aims at helping developers adding their apps to the whitelist of such optimizers, since in some cases it is necessary for our apps to work properly. Of course, there is no API provided by the manufacturers, the only thing we can to, is to instruct the users what to do, and start the intent that leads to the whilelist.
KillerWhale (as these applications kill other apps) can be found at:
https://github.com/hexadec/KillerWhale
Anyone who could test if these intents actually work (I dont have phone from most brands listed there) is welcomed, as well as those who have anything to add here!
This project has a .csv file containing known package names and activity packages needed to start the activity, with vendor names on which they should work, and an API level range. OrcaManager.class checks whether the current device is in the list, and starts all intents matching it. orca.csv needs to be put in the assets folder of the application including it.
Bear in mind that not all of these Optimizers work the same way. Samsung and Huawei, for example kill the apps in the background after a certain amount of time, whereas Sony's Stamina mode works similarly to Doze.[/SIZE]