I have seen a couple of stories on the news about the Iphone storing user locations and also stories about the cops being able to 'extract' user data from the phone without the owner's permission. I am wondering if the same is true for android phones, and if there are any apps available to encrypt data to prevent such things.
gregeberts said:
I have seen a couple of stories on the news about the Iphone storing user locations and also stories about the cops being able to 'extract' user data from the phone without the owner's permission. I am wondering if the same is true for android phones, and if there are any apps available to encrypt data to prevent such things.
Click to expand...
Click to collapse
You optionally turn on the location data setting under "location& security", the setting is "use wireless networks". If you leave it on, anonymous location data is collected. I only put it on when I need a stronger gps lock.
I was reading about this JUST this morning, I will direct you here regarding the info extraction
fiscidtox said:
You optionally turn on the location data setting under "location& security", the setting is "use wireless networks". If you leave it on, anonymous location data is collected. I only put it on when I need a stronger gps lock.
Click to expand...
Click to collapse
Spot on. But as stated, this is anonymous data (for Google statistics and such) so I wouldn't worry about it.
Jesus there are many people happy to give up their privacy at the drop of a dime... I feel like we as a population don't respect our civil liberties nearly as much as we should. 1984 is coming...
Oh God, here we go. This is no different than the anonymous CyanogenMod reports, or any online services that we use every day. We should be worrying about the Patriot Act and Facebook, not anonymous Google reporting.
kxhawkins said:
Oh God, here we go. This is no different than the anonymous CyanogenMod reports, or any online services that we use every day. We should be worrying about the Patriot Act and Facebook, not anonymous Google reporting.
Click to expand...
Click to collapse
I'm not talking about that....
Did you read what he posted? The thread about celebrites and police being able to use them more freely?
http://forum.xda-developers.com/showthread.php?t=1045464
They can take a scan of EVERYTHING on your phone, from passwords, pics, internet files, etc....
I agree with you though, the patriot act is insane. Especially since I'm canadian so I'm seeing it from the outside looking in
Right, I thought you had debunked the police thing by clarifying "anonymous" data. Obviously the police can't do anything to your phone without a warrant, and if they had one, they could physically access you phone so that would be irrelevant anyway.
Now, sometimes the system does fail, but that's outside the scope of this dicussion. As stated in the linked post, you have a reasonable expectation of privacy regarding your phones content, which excludes it from unlawful search and seizure. That's in the US anyways, I'm not familiar with Canadian law.
They can always pull call, sms, and mms logs from the carrier, but again- only with a warrant.
kxhawkins said:
Right, I thought you had debunked the police thing by clarifying "anonymous" data. Obviously the police can't do anything to your phone without a warrant, and if they had one, they could physically access you phone so that would be irrelevant anyway.
Now, sometimes the system does fail, but that's outside the scope of this dicussion. As stated in the linked post, you have a reasonable expectation of privacy regarding your phones content, which excludes it from unlawful search and seizure. That's in the US anyways, I'm not familiar with Canadian law.
They can always pull call, sms, and mms logs from the carrier, but again- only with a warrant.
Click to expand...
Click to collapse
From what people were mentioning though, they seem to be trying to make the use of the celebrite machine much easier (perhaps without warrant, as in your example of the "patriot act").
I was just saying that from reading that link he posted, it seems as if people will gladly hand over their civil liberties like candy for the illusion of security.
It's scary how open and willing people are to giving up their freedom, that's all.
kxhawkins said:
Right, I thought you had debunked the police thing by clarifying "anonymous" data. Obviously the police can't do anything to your phone without a warrant, and if they had one, they could physically access you phone so that would be irrelevant anyway.
Now, sometimes the system does fail, but that's outside the scope of this dicussion. As stated in the linked post, you have a reasonable expectation of privacy regarding your phones content, which excludes it from unlawful search and seizure. That's in the US anyways, I'm not familiar with Canadian law.
They can always pull call, sms, and mms logs from the carrier, but again- only with a warrant.
Click to expand...
Click to collapse
Now, you're talking about the US. Don't forgot there's a world outside the US too. There are countries out there where the government can do a lot more than you would like them too. Things that go even beyond the Patriot Act (yes, that's possible).
but if you have a latitude account then ur getting followed anyway as its a feature
Is this...
Is this communism?
Related
After reading the article about TaintDroid (http://www.digitaltrends.com/comput...oid-apps-secretly-sharing-your-personal-data/), and how a significant portion of the apps were sending back data when not required to....I must admit, I am a bit concerned about security on my Nexus.
What are you all doing to be safe with your information on your phone? Is there a firewall that any of you are using to deny apps the ability to transmit data?
And please no responses like "don't log into anything or enter any passwords for anything on the phone" ...because then we might as well be rocking blackberries and not a phone like this with a capable browser.
"Name and shame" is the best way for an open system to eradicate this stuff
Damn alarmist journalism. Scare everybody into a corner, and then come out with a product that magically makes it all right.
Personally, I don't do anything different. I don't see why you should.
there's a firewall app that will let you block internet access to specific apps
i think it's called droidwall
Wallpapergate...
This whole issue is a joke, I agree something to monitor outgoing information would be great, I doubt however that someone who want to steal your info would sent it out unencrypted so catching this may not be easy at all..
As for this new episode of the WallPaperGate again, the info this application send is common on any platform, if you ever paid for an app on handhango or such site, the first thing they do is to ask your imei so that the app can be linked (ie DRM) to your phone… in this case the guy use imei as a cookie so that he can offer the correct screen resolution.
I would like to point out that one of the sponsor of this “studies” that target only android device is Intel who have interest into many thing including MeeGo and off course MeeGo is much safer than android…
My 2 cents…
I'm finding a lot of threads about changing from pin/password to pattern unlock, but not having any luck in completely disabling the security feature BS...
Is it possible to completely eliminate the password lock required by my exchange server? I have tried lockpicker and no lock, neither of which worked.
I would like to keep syncing but am not going to deal with this unlocking all the time (they JUST started enforcing it)...any help would be appreciated.
BTW, running Calkulin's EViO 2 v 1.7 (sense, so HTC mail)
Nope, this is tightly integrated down to the OS in order to pass MS requirements, and it reports the control level back to exchange so it can make sure it's in compliance with their mobile device policy.
In theory you can make an app that proxies the API and lies about what the phone can do ... but it wont be done with a simple APK/market app ... it's integration goes much deeper.
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Option 2: if you have a buddy on the exchange team he can put you on the same policy he undoubtedly created for himself and his team, that's 10x as lenient so he can mess with his little pet projects he plays with on the side.
Justin.G11 said:
Nope, this is tightly integrated down to the OS in order to pass MS requirements, and it reports the control level back to exchange so it can make sure it's in compliance with their mobile device policy.
In theory you can make an app that proxies the API and lies about what the phone can do ... but it wont be done with a simple APK/market app ... it's integration goes much deeper.
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Option 2: if you have a buddy on the exchange team he can put you on the same policy he undoubtedly created for himself and his team, that's 10x as lenient so he can mess with his little pet projects he plays with on the side.
Click to expand...
Click to collapse
Thanks...I figured it wouldn't be that easy but I had to ask.
Justin.G11 said:
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Click to expand...
Click to collapse
I get complaints all the time about policies. 99.999% of the time, the policies are created/approved by steering committees, the legal department or executive management. There is usually nothing IT can do about it as the policies are put into place for legal reasons or company security.
Additionally, if IT departments are not compliant in company policies there could be legal ramifications if the company has to comply with certain government guidelines.
And IT staff don't hate dealing with people...it sounds like your work environment is not like others.
Check out this thread to see if it does what you are looking for.
http://forum.xda-developers.com/showthread.php?t=775007
They modified the actual email.apk app to remove the security requirement that was hardcoded in it.
It was taken from CM7 which is AOSP, so I cannot say whether or not it will work on sense.
EDIT: After searching some more, droidforums has a modified email.apk file that you can install, that you use instead of the HTC mail, which tricks your exchange server into thinking that you have your security enabeled.
http://www.droidforums.net/forum/dr...onal-froyo-bypass-exchange-server-policy.html
Just download the zip, and extract the apk from it, then place the apk on your SDCard and install it just like a regular app.
Khilbron said:
Check out this thread to see if it does what you are looking for.
http://forum.xda-developers.com/showthread.php?t=775007
They modified the actual email.apk app to remove the security requirement that was hardcoded in it.
It was taken from CM7 which is AOSP, so I cannot say whether or not it will work on sense.
EDIT: After searching some more, droidforums has a modified email.apk file that you can install, that you use instead of the HTC mail, which tricks your exchange server into thinking that you have your security enabeled.
http://www.droidforums.net/forum/dr...onal-froyo-bypass-exchange-server-policy.html
Just download the zip, and extract the apk from it, then place the apk on your SDCard and install it just like a regular app.
Click to expand...
Click to collapse
Will look into that. Thank you very much!
I ended up using the modified email.apk from CM7...works like a charm!!! The Droid forums version kept coming up with security errors. THANKS AGAIN Khilbron!!!
awenthol said:
I ended up using the modified email.apk from CM7...works like a charm!!! The Droid forums version kept coming up with security errors. THANKS AGAIN Khilbron!!!
Click to expand...
Click to collapse
Can you please post a link to the one you used?
Sent from my PC36100 using XDA App
Justin.G11 said:
Nope, this is tightly integrated down to the OS in order to pass MS requirements, and it reports the control level back to exchange so it can make sure it's in compliance with their mobile device policy.
In theory you can make an app that proxies the API and lies about what the phone can do ... but it wont be done with a simple APK/market app ... it's integration goes much deeper.
Honestly your best best: this is clearly a new policy. complain repeatedly to your IT staff. You're probably not the only one upset ... and noise will result in policy change ... because reality: IT staff hate dealing with people. They want to deal with servers.
Option 2: if you have a buddy on the exchange team he can put you on the same policy he undoubtedly created for himself and his team, that's 10x as lenient so he can mess with his little pet projects he plays with on the side.
Click to expand...
Click to collapse
Yes..this reply really isn't correct. There have been some sqlite modifications that can be made or using the mail.apk from this link (http://forum.xda-developers.com/showthread.php?t=775007) works perfect, even with the new CM7-RC2
Bypassing Exchange security
I had this same issue with my work email. My way of bypassing it and still using the stock Mail app is by installing widgetlocker. Unfortunately the newest version does not bypass your encryption, but the older version before the most recent update does. Also it allows you to fully customize your lockscreen and add widgets and what have you. All in all pretty cool app.
widgetlocker.teslacoilsw.com/general/widgetlocker-1-2-9/
(unfortunately because i have never posted before i cannot post links so pm if the link does not work)
Amazing! So you guys have a device in your pocket that has complete access to your work mail server (something you don't own), and you apparently don't care if that falls into the wrong hands?
I don't want to get preachy but this is serious stuff:
1. Are you aware of the damage that can fall on an organization, its IP and reputation if a hacker/spammer has access to a mail account?
2. Your company's mail server is an assett of the company. Gaining access and leaving it unlocked is like borrowing something from work and leaving it on the street.
I understand that IT policies are annoying to the end user, but they are there for good reason.
Would you leave the company vehicle unlocked because it is annoying to get the key out? No.
Oh, and by the way, you can be held directly liable for damages for disabling/ hacking around policies. I have seen employees get fired for it.
Sent from my device.
ramiss said:
Amazing! So you guys have a device in your pocket that has complete access to your work mail server (something you don't own), and you apparently don't care if that falls into the wrong hands?
I don't want to get preachy but this is serious stuff:
1. Are you aware of the damage that can fall on an organization, its IP and reputation if a hacker/spammer has access to a mail account?
2. Your company's mail server is an assett of the company. Gaining access and leaving it unlocked is like borrowing something from work and leaving it on the street.
I understand that IT policies are annoying to the end user, but they are there for good reason.
Would you leave the company vehicle unlocked because it is annoying to get the key out? No.
Oh, and by the way, you can be held directly liable for damages for disabling/ hacking around policies. I have seen employees get fired for it.
Sent from my device.
Click to expand...
Click to collapse
The issue I have is with the idea that the company gets to dictate how my entire device functions. Your points are valid, but why not just require a password on the email app, not on the whole phone? Why do I have to consent to allowing them to order a full device wipe, instead of just a wipe of the company data?
bkrodgers said:
The issue I have is with the idea that the company gets to dictate how my entire device functions. Your points are valid, but why not just require a password on the email app, not on the whole phone? Why do I have to consent to allowing them to order a full device wipe, instead of just a wipe of the company data?
Click to expand...
Click to collapse
Those are some good points and questions:
If you just locked the mail app then the app would need to encrypt/decrypt all data, which would make it MUCH slower. However, the main reason is that the app lock approach is much more hackable..one simple example would be to load a proxy on the phone to intercept communication before it could be encrypted.
The idea behind the device lock is that it happens on a deeper level and is the most secure answer.
The question about having a choice with your device is actually a simple one to answer...if you don't agree with the work policy then don't use your personal device for work email.
The other thing is that, besides not having a choice, the forced answer is beneficial for everyone....if I lose my device then I definitely don't want strangers crank calling my family or getting personal info. I have read about some horrible stories.
The real question is...If your phone is lost why would you NOT want it to be secure and erased asap??
Sent from my "locked" device.
ramiss said:
Those are some good points and questions:
If you just locked the mail app then the app would need to encrypt/decrypt all data, which would make it MUCH slower. However, the main reason is that the app lock approach is much more hackable..one simple example would be to load a proxy on the phone to intercept communication before it could be encrypted.
The idea behind the device lock is that it happens on a deeper level and is the most secure answer.
Click to expand...
Click to collapse
Yes and no. There are approaches that are easier if you aren't securing the whole device, but that doesn't mean it can't still be hacked.
The question about having a choice with your device is actually a simple one to answer...if you don't agree with the work policy then don't use your personal device for work email.
Click to expand...
Click to collapse
Overall I agree with that, although I think at a company that offers mobile email, there's a sort of "peer pressure" to use it. Not to say that's a good reason. I'd imagine that it'd be hard for a company to actually require you to use mobile email on your personal device -- if your job truly requires it, I'd think they'd have to provide you a device if you don't have a compatible device or aren't willing to use it that way. So yes, you're probably right that you have the choice. It doesn't mean that we can't complain though.
The other thing is that, besides not having a choice, the forced answer is beneficial for everyone....if I lose my device then I definitely don't want strangers crank calling my family or getting personal info. I have read about some horrible stories.
The real question is...If your phone is lost why would you NOT want it to be secure and erased asap??
Click to expand...
Click to collapse
If it's really lost forever, yes. But what if:
- The exchange admin sends the wipe command to the wrong phone. ("Hi, I'm John Smith and I've lost my phone.")
- The "wipe after X invalid passcode" policy is enabled. A friend or a kid picks up the phone and tries to play with it. Whoops.
- Something else goes wrong...bottom line is that the company should have no right to wipe anything other than their own data.
I understand the need for locking the device...I really do. But, if someone does happen to find my phone (knock on wood but HIGHLY, HIGHLY unlikely, as I've never even almost forgotten any phone, anywhere, ever) they aren't going to find ANYTHING of value in my emails. I'm pretty low on the totem pole.
If I had sensitive data on my phone...no questions asked, I would keep it p-word locked.
matt2053 said:
Can you please post a link to the one you used?
Sent from my PC36100 using XDA App
Click to expand...
Click to collapse
http://forum.xda-developers.com/showthread.php?t=775007
awenthol said:
I understand the need for locking the device...I really do. But, if someone does happen to find my phone (knock on wood but HIGHLY, HIGHLY unlikely, as I've never even almost forgotten any phone, anywhere, ever) they aren't going to find ANYTHING of value in my emails. I'm pretty low on the totem pole.
If I had sensitive data on my phone...no questions asked, I would keep it p-word locked.
Click to expand...
Click to collapse
Your Exchange Admin (or you depending on the version of Exchange you're using) has the ability to remotely wipe your device in the event it gets stolen/lost.
Could anyone give a brief possible explanation of why I can connect to my exchange server easily using Touchdown, but not using the Android integrated Exchange Account Sync?
Sent from my PC36100 using XDA App
Just found this thread as I've encountered the same issue on a HTC Sensation, just setup Exchange ActiveSync, and bam, have to set up the PIN lock on the phone.
However I've noticed that once you've done it, you can then go into Settings, Security and change the timeout before it locks up to 1 hour (I think that is dependent on your company setting). Mine was defaulting to every time the screen locked, but changing it to 1 hour I find I hardly ever have to unlock the phone now apart from first thing in the morning as I tend to use it regularly through the day.
So... what with the hoohah about Idevices tracking location data and storing it locally, what do you think about on Android, location data is uploaded to Google?
If I were to create a ROM, I'd modify the source of Android to politely remove this feature / obsfucate where possible...
Considering Android is open source, if Google were doing that, someone would have found it by now. And technically you CAN do this with Android if you enable Google Latitude and allow it to report your phone's location.
Android is basically doing the same thing.
http://www.guardian.co.uk/technology/2011/apr/21/android-phones-record-user-locations
oldblue910 said:
Considering Android is open source, if Google were doing that, someone would have found it by now. And technically you CAN do this with Android if you enable Google Latitude and allow it to report your phone's location.
Click to expand...
Click to collapse
There are. Read the TOS.
Can i ask why anybody cares? I mean seriously if you have a cellphone you've always had the potential to be tracked. If google uses it who cares? Personally i like it. It would let someone locate me if i was missing and it would let me locate my phone if i lost it. Google records everything. They scan your email for key words to bring up ads on other sites and on google itself. It's not a big deal it's just one of the things you have to deal with when you have to be in the tech loop.
Google plainly give you the option to opt out when you sign in to your Google account on the phone. You can also disable location in settings at any time. Big difference between that and what iOS is doing.
Security risk!
The android location service cache can be read quite easily with root access or without.
As long as this info isn't transmitted, but only used internally for better connection time and location accuracy, the risk is low (if the phone is stolen there is much more sensitive information).
If it is transmitted, it has to be anonymized, and I have to be able to switch the transmission off without loss of on any other non-dependent functionality (i.e. I don't want to be blackmailed).
Why should we put up with everything? Why should we be like stupid sheep? Only if we care about privacy, there is a chance that we can keep some freedom.
matt2053 said:
Google plainly give you the option to opt out when you sign in to your Google account on the phone. You can also disable location in settings at any time. Big difference between that and what iOS is doing.
Click to expand...
Click to collapse
even if you opt out when first signing on, you'll get a warning saying that to use location features you have to agree to uploading location data - in the background.
matt2053 said:
Google plainly give you the option to opt out when you sign in to your Google account on the phone. You can also disable location in settings at any time. Big difference between that and what iOS is doing.
Click to expand...
Click to collapse
Agreed. CrApple doesn't even say that they collect data.
Agreed!!!!!!
I would like to complain about my current struggle with Google (since I have no one here to complain to. So I wrote Google a message and said I have a number of purchased programs that give me a download 403 error when i try to download them (geocaching, root explorer, titanium pro, gps status and toolbox pro etc.) and can they help me fix the issue. So they send me a canned response that says that I cannot install the programs because they are from a different userid of mine. So I respond and say that i have both user id's added as accounts on my phone so thats not it. So I get a canned response back that tells me there process of how apps are bought and how they are good forever and how you can install them on any devices. So I respond again telling them this is a download issue that I need help with. So I get another canned response that says during these issues you should try to wipe data on the play store and download manager. So I think, ok, this makes sense. I try that and nothing happens. So I respond again and tell them It didn't do anything but I have tried this on at least 6 different devices and it happens on all of them. So I get another canned response that says during issues like this you should delete your account and re-add it and if that doesnt work then wipe your phone to factory reset and try again. Now I am getting pissed. So I respond again and tell them that I just told them that it happens on many devices not just this device and I included a screenshot of the error this time and suggest maybe its having an issue looking up if i bought it and could they reset it so i could buy it again and see if that works. I get another canned response that says, it sounds like you are having issues with these apps, You should contact the developer so they can explain any issues that you dont understand on how their software works. NOW, each one of their responses comes with atleast a page of "We are sorry, we know this is frustrating, blah blah blah" with more detail on how to find the developers address etc." So I have this mile long email trail that's all canned bull sh!t I realize. So I responded again and told them to quit sending me canned responses and to read my damn issue so you can address it. I told them they should be working with the developer, not me, because this is their issue. Well - Stay tuned for there next canned response. I am going to blow a gasket if its another one that addressess nothing.
Has anyone else had a 403 download error in the playstore that they know how to fix?
Tried selecting the correct account before attempting to install?
JulianPaoloThiry said:
Tried selecting the correct account before attempting to install?
Click to expand...
Click to collapse
that makes sense. is there a place to choose which account?
Where it shows the account name on the left side.
JulianPaoloThiry said:
Where it shows the account name on the left side.
Click to expand...
Click to collapse
OMG dude, you just fixed my problem that i have been having for a year. I should know to ask xda before i ask google....stupid stupid stupid me..
Thanks Bro.
jbeitel said:
I hate Google Support.
Click to expand...
Click to collapse
Here's your first mistake - you assume they care down to the individual customer level. We (humans) all exist as a necessary evil that Google's dependent on because we are the plebes who own the wallets which we open after clicking links that make money by selling advertising to the companies we buy from. If they could by-pass us and connect our wallets directly to advertisers they would. Google's taken away ActiveSync support, created a holy war in the YouTube community to push G+, created another furor by linking G+ to Gmail so anyone on G+ can e-mail anyone they can find on G+. There are tons more but you get the idea that "customer first" isn't exactly their manta. If you want to see their customer support in action look at the Nexus hardware forums. Google's support is byzantine. Your only hope of getting "real" support for s/w from Google is if you happen to stumble upon a s/w issue that intrigues them Or if you unmask a newsworthy security hole.
"Don't be Evil" has long been trumped by the need to keep revenue and margin high to keep the stock high to please both shareholders and Google'rs who's fortunes rise and fall by the value of that very same stock.
Google's an oligopoly now and not benevolent or our friends.
BarryH_GEG said:
Here's your first mistake - you assume they care down to the individual customer level. We (humans) all exist as a necessary evil that Google's dependent on because we are the plebes who own the wallets which we open after clicking links that make money by selling advertising to the companies we buy from. If they could by-pass us and connect our wallets directly to advertisers they would. Google's taken away ActiveSync support, created a holy war in the YouTube community to push G+, created another furor by linking G+ to Gmail so anyone on G+ can e-mail anyone they can find on G+. There are tons more but you get the idea that "customer first" isn't exactly their manta. If you want to see their customer support in action look at the Nexus hardware forums. Google's support is byzantine. Your only hope of getting "real" support for s/w from Google is if you happen to stumble upon a s/w issue that intrigues them Or if you unmask a newsworthy security hole.
"Don't be Evil" has long been trumped by the need to keep revenue and margin high to keep the stock high to please both shareholders and Google'rs who's fortunes rise and fall by the value of that very same stock.
Google's an oligopoly now and not benevolent or our friends.
Click to expand...
Click to collapse
couldn't have said it any better. They just tricked me because the first couple canned responses sounds personal, until i started seeing a pattern and then all out ignorance.
I got the final end all be all response from google
"It appears from the apps that you are having a problem with that your device is rooted. Because of the complexity of rooted devices, we are not able to support you".
So I told them xda told me how to fix in in 5 mins. c*ck suckers.
According to Samsung customer support and some members of this forum, this device does not have a built-in way of blocking Internet access for specific applications!
Many of those apps have permissions like "storage", "phone ID", "contacts", "calendar", "camera", "microphone", etc...
Therefore, when those applications are given Internet access they will be able to send all our data via the Internet...
That's why it would be of crucial importance and vital to have a built-in way of blocking Internet access to those apps.
For example, if an application has access to your data, to your storage or your contacts, it stands to reason that it should not have Internet access...
The only explanation for the lack of such an integrated system of blocking Internet access for specific applications can only be explained by the fact that Samsung and Google intend to have all our data and info sent over the Internet ... probably for specific domains ...
Google, Samsung or any other companies should not have, simultaneously, access to our storage data, contacts, calendar, camera, microphone..., and Internet access to send out all those data and info...
Besides, most apps are proprietary... so nobody knows what info or data the app is really sending out...
(Curiously and as a side note, my son has a Huawei P10 and that device allows the user to block Internet access to specific apps).
Therefore, given that this Samsung device does not have a way to limit specific applications from reaching the Internet, the phone is a spyware device!
Niccolò Paganini said:
The only explanation for the lack of such an integrated system of blocking Internet access for specific applications can only be explained by the fact that Samsung and Google intend to have all our data and info sent over the Internet ... probably for specific domains ...
Click to expand...
Click to collapse
Its google that doesn't want to implement an internet permission, we can block apps from access to storage/location/contacts and whatnot but not the internet, blame google not samsung.
peachpuff said:
Its google that doesn't want to implement an internet permission, we can block apps from access to storage/location/contacts and whatnot but not the internet, blame google not samsung.
Click to expand...
Click to collapse
Well, blame them both. Samsung is knowingly 'accepting' the Google 'flaw' on it's phone. So Samsung is also culpable.
Talk about an Over the Top Melodramatic 1st post!
Stay off the internet - Get rid of your Smart TV - Live in a box... SMH
Sent from my SM-G955W ??
Niccolò Paganini said:
According to Samsung customer support and some members of this forum, this device does not have a built-in way of blocking Internet access for specific applications!
Many of those apps have permissions like "storage", "phone ID", "contacts", "calendar", "camera", "microphone", etc...
Therefore, when those applications are given Internet access they will be able to send all our data via the Internet...
That's why it would be of crucial importance and vital to have a built-in way of blocking Internet access to those apps.
For example, if an application has access to your data, to your storage or your contacts, it stands to reason that it should not have Internet access...
The only explanation for the lack of such an integrated system of blocking Internet access for specific applications can only be explained by the fact that Samsung and Google intend to have all our data and info sent over the Internet ... probably for specific domains ...
Google, Samsung or any other companies should not have, simultaneously, access to our storage data, contacts, calendar, camera, microphone..., and Internet access to send out all those data and info...
Besides, most apps are proprietary... so nobody knows what info or data the app is really sending out...
(Curiously and as a side note, my son has a Huawei P10 and that device allows the user to block Internet access to specific apps).
Therefore, given that this Samsung device does not have a way to limit specific applications from reaching the Internet, the phone is a spyware device!
Click to expand...
Click to collapse
I wouldn't worry about it the NSA and Google already know everything about you.
without permissions 99% of your apps won't work. want to stop tracking ?dig deep into your account, real real deep to cut off a lot of privacy issues
then when you have time, google your name
pltctytc said:
....then when you have time, google your name
Click to expand...
Click to collapse
Not much came out for me, just a Google+, Twitter, Photobucket and my company activity...
But: I must agree with OP to some extent...at the end it is weighting between functionality vs privacy.
Gregzi said:
Not much came out for me, just a Google+, Twitter, Photobucket and my company activity...
But: I must agree with OP to some extent...at the end it is weighting between functionality vs privacy.
Click to expand...
Click to collapse
Agreeing to ANY extent with the OP's RIDICULOUS and ABSURD post & a Thread Title that is Entirely Misleading and Uninformed!
While everyone is entitled to their opinion - This Thread & Particularly it's Title are perilously close to warrant being Reported to the Mods!
It's a simple process to Disable Background Data for each and every Application that you decide to disable in Settings - Apps - Permissions - Data - Background /Toggle Off.
I made reference to Smart TV's as they are constantly "listening" in order to provide functionality - Then there's Laptop cameras which could be equally used to "spy" on their users... Are we to disable the functionality offered by Ok Google - Which is also "listening" to provide the functionality that we have come to expect from our technology?
Two Tin Cans and String are the bastion of the Paranoid & Conspiracy Theorists.
Sent from my SM-G955W ??
**** this I'm going back to a Palm Pixi so the NSA can't spy on me!
What if.....
The NSA IS Google?!
Seriously? You're downloading things from F-Droid and Yalp and you're concerned with what data individual apps are sending? If you don't trust an app to have an internet connection, why on earth are you using it? If you don't trust the company behind an app to use your data appropriately, whey are you using that app? Do you shut off all data so your internet/mobile provider can't sniff out what you're doing? Tin foil is relatively cheap.
Niccolò Paganini said:
The only explanation for the lack of such an integrated system of blocking Internet access for specific applications can only be explained by the fact that Samsung and Google intend to have all our data and info sent over the Internet ... probably for specific domains ...
Click to expand...
Click to collapse
Surely this is "the only reason", surely. I'll assume you have thought through the entire process of creating a mobile phone operating system as complex as Android, and also every detail involved in creating an application ecosystem that scales to millions of user created applications access by billions of people that worldwide probably generates over a trillion dollars in overall economic revenue (including employment by business built around it, advertising money spent, etc). Surely you saw a foolproof way too easily do all of this AND follow seemingly arbitrary privacy rules? You MUST have also COMPLETELY ruled out every other innocent explanation using this model, including showing conclusively that it wouldn't cause ANRs, app crashes, or anything else. Right?
You also have data showing more than just you would revoke this permission right?
Right?
Mr. Orange 645 said:
What if.....
The NSA IS Google?!
Click to expand...
Click to collapse
You mean you only just realised this NOW???!
I have to say, I'm always amazed how little people care about the spying that's being done through their phones. Saying "live in a box" or "just don't use the app" is a stupid response. You can still want to be part of society (which nowadays REQUIRES using whatsapp/facebook/google) EVEN THOUGH you're uncomfortable with the privacy implications. Someone acknowledging and being aware of this, and trying to improve upon it (or even simpler, just demanding improvements by the companies you pay a thousand dollar for a new phone) is often ridiculed as if it wouldn't matter, or people accept it as an something that is required for the systems we use. Social networks could work totally fine without being centralized, google maps doesn't actually need to send your location to google to function, and no app that i know of needs to send your usage of the phone to their company to do whatever it promises to do. Yet many apps do. It's not so much about that it is possible, the problem is that it is allowed. It shouldn't be allowed, much of the data collection should simply be outlawed. But, since hardly anyone seems to care, I don't see that coming anytime soon. I've tried to find people interested in this, but not even on reddit /r/privacy/ this seems to be a major concern.
@the_toast
There's a difference between being responsible for the amount of privacy you have and the amount of personal information that has already been made available... long before people were even aware of the amount of personal information that was already gleaned from the Products and Services that you have been using for years. To some extent trying to reign in your personal information is like closing the barn door after the horse is long gone.
The guy who originally posted this Thread is focusing his "panic" on one device and THAT is naive and Grossly Misleading!
Whether it's FB (which I don't use) or signing up for a Loyalty card - Your personal information is everywhere! Using common sense going forward is the only rational approach, but standing on an imaginary mountain top and shouting to the world that one device is "spyware" is ridiculous and deserves to be called out ?
Sent from my SM-G955W ??
Ahh, the time of the Internet where everyone knows who you are, what you're doing, what you're buying, what sites you browse, your fetishes, etc. Most importantly, here in the U.S., your IP now can sell your internet history to anyone they please, even that time you looked up 2 girls and a cup. Sorry, Charlie, your life is no longer a private one and never will be again.
MiMtnBiker said:
Ahh, the time of the Internet where everyone knows who you are, what you're doing, what you're buying, what sites you browse, your fetishes, etc. Most importantly, here in the U.S., your IP now can sell your internet history to anyone they please, even that time you looked up 2 girls and a cup. Sorry, Charlie, your life is no longer a private one and never will be again.
Click to expand...
Click to collapse
And if you Travel into the USA... Did you know THIS?
https://www.google.ca/amp/www.cbc.ca/amp/1.4494371#ampshare=http://www.cbc.ca/1.4494371
Sent from my SM-G955W ??
@shaggyskunk True, the OP is alarmist and uninformed. I was just put off by many of the answers, which basically said "why do you use Internet then". With respect to your post about searching phones - we can easily make this a scare thread (and people would be scared for good reasons). Let me continue:
- apps that want to use your microphone without apparent reason (of course also the ones WITH a good reason to use the mic) can track you through high-pitched sounds you cannot hear, which are emitted e.g. by some retailers to track you through their store.
- You talk about 1 in 13.000 people arriving in the US getting their phone/laptop looked at and potentially copied? How about knowing for 1Bn people (1 in 7 on earth) who they talk with, when they talk with them, and in which location they are whenever their phone has internet. That's Whatsapp.
@MiMtnBiker Gnn that's exactly my problem, people just accept it and believe it's never going to change. I'm not happy they know what kind of porn I'm looking at, and even less happy that they could sell the information (although I don't live in the US). If it is that way, it CAN be fixed, you CAN prohibit selling this information. Or to collect it at all. It's definitely better to know the big 5 have all my information but won't have all future information about me than to know they can continue like this forever
@the_toast
Many of the answers - including "live in a box" - "stay off the internet" were in direct response to the careless & irresponsible comments by the OP - like = like?
Not only your phone has the potential to gain access to your personal information - But your Laptop camera - Your Smart TV (that is "listening") But this technology is something that most people appreciate and expect their tech to provide them with the functionality that they want - Being aware of the capabilities of your Tech is prudent - being paranoid & frightened by it is just sad.
The issues of Privacy are extensive and if someone decides to pull on that thread - it's going to be never ending.
Common sense & being informed is the most appropriate way to go ??
Sent from my SM-G955W ??
the_toast said:
@shaggyskunk True, the OP is alarmist and uninformed. I was just put off by many of the answers, which basically said "why do you use Internet then". With respect to your post about searching phones - we can easily make this a scare thread (and people would be scared for good reasons). Let me continue:
- apps that want to use your microphone without apparent reason (of course also the ones WITH a good reason to use the mic) can track you through high-pitched sounds you cannot hear, which are emitted e.g. by some retailers to track you through their store.
- You talk about 1 in 13.000 people arriving in the US getting their phone/laptop looked at and potentially copied? How about knowing for 1Bn people (1 in 7 on earth) who they talk with, when they talk with them, and in which location they are whenever their phone has internet. That's Whatsapp.
@MiMtnBiker Gnn that's exactly my problem, people just accept it and believe it's never going to change. I'm not happy they know what kind of porn I'm looking at, and even less happy that they could sell the information (although I don't live in the US). If it is that way, it CAN be fixed, you CAN prohibit selling this information. Or to collect it at all. It's definitely better to know the big 5 have all my information but won't have all future information about me than to know they can continue like this forever
Click to expand...
Click to collapse
I'm afraid the only way you are going to change it is to completely get off the grid. Many people are oblivious to the fact that they are willingly giving up their personal information when they have their noses buried in their smartphones pert near all day. What's worse is that the politicians only seem to cater to the wealthy, and since they are salivating at the idea of getting their grubby hands on your info, this will continue. Unless there is a huge uprising and people assemble in protest of this, it will not stop. Heck, I don't even think it will stop, then. Nope, money is the reason as to why this won't change and, unfortunately, you have no say in the matter. Unless, that is, you do get completely off the grid.