Database Users

Protecting Privacy - Compiling TaintDroid into Kernel to find leaky apps

Most people don't yet know that many Android software leak all sorts of information to the internet with only scant user acknowledgement (basically what you accept when you install the app).
Due to this and the fact that there are already privacy information harvesting apps for Android on the marketplace - a team of security experts have created TaintDroid:
What is TaintDroid?
From the project's web page: "A realtime monitoring service called TaintDroid that precisely analyses how private information is obtained and released by applications "downloaded" to consumer phones."
From: http://appanalysis.org/index.html
How can I install TaintDroid?
As TaintDroid is currently compiled into the kernel, you cannot easily install it, but you have to cook your own kernel. Instructions (for Nexus 1) are available at the project web site: http://appanalysis.org/download.html
How does TaintDroid work?
Here's a video demonstrating how TaintDroid works once it is installed and configured:
http://appanalysis.org/demo/index.html
Why would you want to install this?
There can be many reasons for installint TaintDroid:
- You want to learn about privacy features and play with Android kernel
- As it is currently impossible to differentiate between innocent and sneaky Android apps based only on what access rights they request, you may want to dig in deeper
- You are worried about what apps are doing behind your back and you want to know which apps to uninstall
- You want to help create Android a more secure and privacy-protected platform, instead of the swiss cheese it currently is
What can you do?
As compiling kernels is mostly beyond the reach of mere mortals currently, consider cooking TaintDroid into your kernel, if you are cooking one yourself and offering it available for others to try and use.
Hopefully increased awareness and usage will bring this program eventually into other modders and perhaps even Google's attention and something more easily accessible is offered for the public at large.
BTW, I'm just a user, interested in getting TaintDroid on my own Galaxy S. I'm not affiliated with the research program, but I like what they are doing. This information is purely FYI.

+1 for the idea
Sent from my GT-I9000 using XDA App

+1
Since we cannot expect information gatherer Google to come up with a good privacy protection mechanism soon I think we are forced to take measures ourselves.
I also learned that several of my bought applications are constantly forcing me to enable synchronisation and/or 3G internet. They either randomly uninstall (Asphalt 5), their icons disappear (for example: Mini-squadron) or won't start, with (Schredder Chess) or without a message. Angry Birds Beta2 lite (free game) and Hungry Shark are 2 more examples. So much for an incentive to buy games...
It would be great if applications used a well-defined mechanism to check their validity on-line, and not have this sneaky, lingering attack from all sides to any privacy or battery consumption aware user.

I can not cook Kernels, but this is something i want to use.
Not that i am worried, but i dont know what apps are sending when you open them. Thats something i want to know!
I am sure i am not the only one.

+1
Yes please... This should be in all android phones... as a security option you could turn on!!!

Antonyjeweet said:
Not that i am worried, but i dont know what apps are sending when you open them. Thats something i want to know!
Click to expand...
Click to collapse
And do some of these applications only send stuff when you open them?
--
From a user perspective it currently is really difficult to judge applications that need to start at boot-up and deal with many facets of your computer (Launchers, tools combining lots of divers features).

Do you know some ROM where Taindroid is included?

I've posted in hardcore and laststufo kernel threads to ask if they could add it.
We just need more people wanting it so they think about adding it

exadeci said:
I've posted in hardcore and laststufo kernel threads to ask if they could add it.
We just need more people wanting it so they think about adding it
Click to expand...
Click to collapse
glad you did that

+1 support the idea. hope some of our hardworking kernel builders will add this in.

My concern is how much another real time service will affect battery life. For people trying to make the leanest, fastest kernel I'm not sure it's viable.

I have been wanting TaintDroid built into android by default since the day it was announced, but I really do not think google cares about this, so please, please ROM cookers out there (Maybe Doc?), lets add this into our galaxy S roms.

Well, this seems to work only on android 2.1

Make it so.
+1
Combined with walldroid (or other firewall) this could put back power into users hands. Would really love to see this inside hardcores kernel. Maybe as an option for the stable releases?

+1
This should be the next standard in aAndroid

idea about spoofidroid application
how about a program to spoof or make the phone send fake:
GPS location,
IMEI,
phone number,
simcard id,
etc... information to applications that ask without permission.
this way you can feed these application with information they want but without breaking your privacy. (both end sides are more than happy)
-----
nice option to have:
1) enable/disable auto generate different id every time.
2) allow list / ban list of application to have real or fake id.
3) enable/disable notify for application request.
-----
there are all ready applications that fake your simcard PLMN mobile network codes without the need of kernel rights, but you need to enable disable the flight mode to restore the default code.
===========
good luck to spoofidroid or similar applications.

Jumba said:
My concern is how much another real time service will affect battery life. For people trying to make the leanest, fastest kernel I'm not sure it's viable.
Click to expand...
Click to collapse
I hope there will be developers out there who prioritize privacy/security over speed/battery and storage usage.

I'm the project lead of the TaintDroid system. We are currently working on a few extensions of TaintDroid but unfortunately are short on engineering resources to port TaintDroid onto other systems than Nexus One that we originally developed. We'd greatly appreciate it if XDA developers would take on this effort! Many ongoing projects would hugely benefit from having easy-to-run TaintDroid ROM available for many different devices and upcoming Android systems let alone user benifit.
Thanks,
Jaeyeon
Research Scientist @ Intel Labs Seattle

Ettepetje said:
I also learned that several of my bought applications are constantly forcing me to enable synchronisation and/or 3G internet. They either randomly uninstall (Asphalt 5), their icons disappear (for example: Mini-squadron) or won't start, with (Schredder Chess) or without a message. Angry Birds Beta2 lite (free game) and Hungry Shark are 2 more examples. So much for an incentive to buy games...
Click to expand...
Click to collapse
beta2 lite? i think that was malware, make sure it came from rovio otherwise it's fake and you should delete it.

It's really scary to see with the lookout app how many apps can access to your imei, telephone number "Read Identity Info", can access your contacts, track your position, and can send out all this data.
Here a HTC Desire user, asking for some privacy.
Best regards!

Removing/disabling features of GS4 without rooting/flashing ROM

Hi all,
I am part of an IT Client team and we are trying to prep for the deployment of the GS4. The S3 is our current standard and was received pretty well, but some of the features are overwhelming to our sales force. Is there any way that we can disable some of these features perhaps even automatically via ADB and a USB cable?
Also, we are wanting to have our company app preinstalled. Currently it resides in the marketplace but apparently some of our sales force don't understand the Play Store and that they actually have to go find the app and install it. Is there a way to automatically sideload our app? We were also discussing a launcher like launcherpro with an xml file included that contains default locations for icons, data, etc.
Has anyone tried this before? Please advise with ideas/suggestions. We don't want to flash a ROM generated by our company because that would require too much overhead on our part to manage because thousands of phones need to me maintained. We also don't want to root the NatureUI/Touchwiz stock rom that comes with the S4.

metroidnemesis13 said:
Hi all,
I am part of an IT Client team and we are trying to prep for the deployment of the GS4. The S3 is our current standard and was received pretty well, but some of the features are overwhelming to our sales force. Is there any way that we can disable some of these features perhaps even automatically via ADB and a USB cable?
Also, we are wanting to have our company app preinstalled. Currently it resides in the marketplace but apparently some of our sales force don't understand the Play Store and that they actually have to go find the app and install it. Is there a way to automatically sideload our app? We were also discussing a launcher like launcherpro with an xml file included that contains default locations for icons, data, etc.
Has anyone tried this before? Please advise with ideas/suggestions. We don't want to flash a ROM generated by our company because that would require too much overhead on our part to manage because thousands of phones need to me maintained. We also don't want to root the NatureUI/Touchwiz stock rom that comes with the S4.
Click to expand...
Click to collapse
I'm not quite sure about disabling features on the stock ROM. I know there's an Easy mode that can be used for first time smartphone owners. As far as preloading your company app, you can write a script to do so. However, that requires you to manually enable developer mode and USB debugging on every single phone. I'm not sure how practical this is, considering you have so many phones. A better way might be to send a mass text message or email to each of the phones with the play store link to the app. Once again, considering the employees might be unfamiliar with the phone, a text would probably be the simple way to go. I would use side-loading as a way of installing your app in the event that someone had an issue with the text. I believe you'd run into the same issues with preinstalling LauncherPro and associated xml files. It doesn't seem there's a way you can properly deploy what you need to w/o going hands on on all units.

Please read forum rules before posting
Questions and help issues go in Q&A and Help section
Thread moved
Thank you for your cooperation
Friendly Neighborhood Moderator

Depending on what functionality you would like to disable, you can go to the App Manager heading in the Settings menu, and disable system apps you don't use. In terms of disabling parts of functionality in certain system apps, that probably wouldn't be possible on stock unrooted devices.

metroidnemesis13 said:
apparently some of our sales force don't understand the Play Store
Click to expand...
Click to collapse
...
I'm not sure how to solve your problem. I was going to say once you are willing to ADB and USB debug you might as well cook up the ROM the way you want it and blast it on with Odin.
However, one thing to be concerned about is the OTA software updates that you probably want your users to be able to receive. If you mod the stock software (either with ADB or a modded ROM) in such a way to make the phone status 'Custom' your users won't be able to get updates and bug fixes from Samsung.
I would just try to hold their hand through getting the app installed (ie. email them a link to it when they get a phone so all they have to do is tap the link and hit install) and leave the rest of the phone alone.

[Q] Corporate Android Usage

Hello Guys,
before I start: My apologies for this, I am not quite sure if I am even in the right Topic.
I think of myself as pretty new to Android, but got some experiences in Rooting, Custom Roms and such. But that is already as far as it gets.
Now my Problem: We lost our BES and now my Company decided to go with Android (SG4 I9505) and I have to make it happen :angel:.
1. I Need some Kind of Freeware tool to administer Android Devices (Basic: find device, delete data, restrict Apps)
2. If something like this dont exist (which I dont think-I just havent found it)), I would Need to know if I can use CM 10.2 as our Standard Rom and before you start rolling your eyes with experimental and such....
I have to restrict the phone solely to Telefone, Exchange and some preselected (mostly travel)Tools. NO GAPPS!!! and I think that nightly CM provides this with no problems
To realize this I downloaded the nightly from 18th, I think. I then added some APK´s into \System\app Folder and installed the ROM. This actually worked fine until I updated to phone afterwards via build in updating tool - all Tools were gone.(what did I miss?)
Now, our Standard is SG4 I-9505.
Any ideas on how I could do this? (I couldnt find what I was looking for)
1. Adminster a fleet of androids (free)
2. Customize a Custom ROM for corporate Identity (How to pre-setup Exchange Boot Logo, Lockscreen, etc.)
3. or customize a ROM to the Point it cannot do much except what is in the \System\app Folder and turn off updates
Any link is much appreciated. Sadly there is sooooo much andoid articles out there that I seem to get lost while searching for the right one. Thanks in advance!!!!

AccEss-dEniEd said:
1. Adminster a fleet of androids (free)
2. Customize a Custom ROM for corporate Identity (How to pre-setup Exchange Boot Logo, Lockscreen, etc.)
3. or customize a ROM to the Point it cannot do much except what is in the \System\app Folder and turn off updates
Click to expand...
Click to collapse
My guess is I'll get flamed for saying this - but here goes.
Android corporate (MDM) leaves a lot to be desired next to iOS, at least as far as I've been able to find. We manage a lot of iPads and obviously minus the custom ROM we've been able to do it all for little to no cost. We've shied away from Android a lot because of the limited MDM control.
But, since you asked:
1. Meraki Systems Manager (and the accompanying app from Google Play)
2. Good luck with that
3. See number 2
I think the reality is you're going to need to do something to the effect of either cook your own ROM and deploy it or use a tool like CWM to create an "image" that you would then restore to the devices. I did that with a batch of 60+ Nexus 7s and it worked out pretty well.
Edit:
With all that said - I would urge your management to reconsider their approach as the world has changed since Blackberry was the only game in town. Yes, still stick with MDM, device location, remote wipe etc. But unless you're dealing with highly sensitive information (exp banking), let people actually USE the device you're giving them. Don't lock it down to where its basically a first generation iPhone. I'm a big fan of giving someone a good tool and letting them use it the way that works best for them, while still keeping the device and more importantly the data under corporate control.

Assuming you have Exchange, does this not provide the management part?
AccEss-dEniEd said:
Hello Guys,
before I start: My apologies for this, I am not quite sure if I am even in the right Topic.
I think of myself as pretty new to Android, but got some experiences in Rooting, Custom Roms and such. But that is already as far as it gets.
Now my Problem: We lost our BES and now my Company decided to go with Android (SG4 I9505) and I have to make it happen :angel:.
1. I Need some Kind of Freeware tool to administer Android Devices (Basic: find device, delete data, restrict Apps)
2. If something like this dont exist (which I dont think-I just havent found it)), I would Need to know if I can use CM 10.2 as our Standard Rom and before you start rolling your eyes with experimental and such....
I have to restrict the phone solely to Telefone, Exchange and some preselected (mostly travel)Tools. NO GAPPS!!! and I think that nightly CM provides this with no problems
To realize this I downloaded the nightly from 18th, I think. I then added some APK´s into \System\app Folder and installed the ROM. This actually worked fine until I updated to phone afterwards via build in updating tool - all Tools were gone.(what did I miss?)
Now, our Standard is SG4 I-9505.
Any ideas on how I could do this? (I couldnt find what I was looking for)
1. Adminster a fleet of androids (free)
2. Customize a Custom ROM for corporate Identity (How to pre-setup Exchange Boot Logo, Lockscreen, etc.)
3. or customize a ROM to the Point it cannot do much except what is in the \System\app Folder and turn off updates
Any link is much appreciated. Sadly there is sooooo much andoid articles out there that I seem to get lost while searching for the right one. Thanks in advance!!!!
Click to expand...
Click to collapse

I currently work in the infrastructure of a good sized corporation. We're using IOS with a mixture of android hardware and there's some good news and bad news for what you want to do.
Good news is, like Jpcurrie said, exchange will handle remote wiping and locking the phone down. you can require the phone to use a PIN, remote wipe and and a bit more. As for locating the phone, Google actually has finally built in remote locating of your device and remote wipe as well. There's a couple good apps out there (lookout) will turn on your GPS and allow you to locate the phone and they're free. If you happen to have a virtualized environment with VMware, you could also use VMware View Horizons which builds in a secure sector on the phone and you can remotely manage which apps and files the user can use. the best part of View is you can use a BYOD model and keep corporate data secure. The biggest issue is if you don't happen to already use a VMware architecture it gets pricey quickly.
Here's the rub now. you want to install your own logos on the bootup which you could do by installing a custom ROM. This will void your warranty on the hardware and as it isn't 100% stable you'll be spending a LOT of time trying to keep a consistent environment.
Like netsyd said, talk to management about an MDM, and the branding of the devices, maybe even talk to them about using a BYOD to reduce costs of hardware and administration of that hardware.

Isn´t Knox supposed to allow administrators to only delete the data that belongs to the Corporate account (emails, calendars, tasks, etc.), or an administrator can still force a full device wipe? Sorry if the questions is too basic, I've tried searching around for info on Knox but couldn't find anything besides press releases.
I'm not a network administrator, I'm just a user and my school secure wifi installs a device administrator.
I'm sorry to deviate the topic a little bit from the original.

At Delta we use Air Watch but it's far from free. You can however manage devices and remote wipe. You can also view installed apps and remove what should not be there. Options for device profiles also. I help maintain these devices everyday. Not Free but an MDM is your best bet.
Sent from my SAMSUNG-SGH-I337 using xda app-developers app

long time - no see
Hiya,
sorry I didn t answer - kinda was overwhelmed with this Task.
Wanted still to thank you: I did what you suggestet and wanted to let you know where I am now.
1. Meraki = implemented - now runnning 160+ devices. (at no costs)
2. CM12.1 implemented (without GAPPS/no SU)
3. Standard Image/w Apps defined. (Mostly Offline capable Tools like "here" etc.(which actually reduced costs))
4. Since Android has limited capability to be administered in a "real" professional Fashion we mitigated this issue by creating a policy to forbid the user to temper with the device (e.g. Installation of Software/SU etc) yet to allow the Installation of Software manually by us via creating a ticket. We check the Software mainly for "sanity" and malware and install it if ok.
This has been working so far like a charm for us. None of the user were happy to loose the Gapps obviously - but once they had their Software and settled in, all was ok. For the Administering part: Meraki can tell me if Software is beeing installed without our Knowledge, also we see if SM doesnt speak with us anymore. So, for now, we got the most out of the System and I am happy to say: I got minimal Control in a Quality sense. No no more "KO Critera" - and we have implemented Android. Tracking etc. is forbidden in Germany anyway - so we use Meraki mainly to wipe if lost and to check if someone goes against policy.
What is still open:
- I am still working on a way to have the user enter his credentials and automatically enter These in all respective config files. (haven't had much luck - with the absense of SU obviously.
- a Little cosmetics still open (I am still trying to figure out how the theming really works ... I usually f**k up the Pictures and sounds.... but so far making Progress
- with less and less good Android devices coming out (now, I am probably beeing flamed now ) that suits our needs (open bootloader, known/supported CPUs, removable battery, SD Card Slot) - I think we might Switch by Q4/2016.
netsyd said:
My guess is I'll get flamed for saying this - but here goes.
Android corporate (MDM) leaves a lot to be desired next to iOS, at least as far as I've been able to find. We manage a lot of iPads and obviously minus the custom ROM we've been able to do it all for little to no cost. We've shied away from Android a lot because of the limited MDM control.
But, since you asked:
1. Meraki Systems Manager (and the accompanying app from Google Play)
2. Good luck with that
3. See number 2
I think the reality is you're going to need to do something to the effect of either cook your own ROM and deploy it or use a tool like CWM to create an "image" that you would then restore to the devices. I did that with a batch of 60+ Nexus 7s and it worked out pretty well.
Edit:
With all that said - I would urge your management to reconsider their approach as the world has changed since Blackberry was the only game in town. Yes, still stick with MDM, device location, remote wipe etc. But unless you're dealing with highly sensitive information (exp banking), let people actually USE the device you're giving them. Don't lock it down to where its basically a first generation iPhone. I'm a big fan of giving someone a good tool and letting them use it the way that works best for them, while still keeping the device and more importantly the data under corporate control.
Click to expand...
Click to collapse

PrivateOS on OnePlus X?

Hi everyone. I'll explain you. After i watched the documentary about Edward Snowden, i feel that someone is spying on me. I found the blackphone online, and his PrivateOS is awesome! I'm not a porter, so if someone may port the PrivateOS to our OnePlus X, it would be awesome!! Some guys, wanted to port it on xperia (sauce: http://forum.xda-developers.com/android/general/privatos-rom-1-0-1-t2833178)

If you want privacy buy a BlackBerry.

Hi, I had it on my Wiko Wax. I didn´t like it because de UI it´s not nice and it has a lot of security apps that I think it´s unnecessary for users like us. We have decent protection with security patches and the best security is the user. Maybe the blackphone rom is very secure yeah but if you want 100% security with this ROM just buy the blackphone, I don´t think it will be useful on our OPX. And yeah someone is spying on you. Google.

Exodusche said:
If you want privacy buy a BlackBerry.
Click to expand...
Click to collapse
Respect his idea, don't make fun.

sheraz1015 said:
Respect his idea, don't make fun.
Click to expand...
Click to collapse
Thank you so much sheraz1015!
Yesterday, i found a video on youtube. This guy was explaining how to get your search history of Google.
I found that Google, was spying on me...they recorded with microphone of my OnePlus X my voice, every 2h!!
I was surprised that they recorded me also when i was sleeping!!!
I found also that they tracked my position, but my gps is always switched off!!
I didn't know that, but everyone who has google play services on the phone, they keep in history when you open
or close any app that you have. I'm pissed off!
Will someone try to port it, or make a secure rom, maybe not based on google apps?

WithoutValorFreedomDies said:
Thank you so much sheraz1015!
Yesterday, i found a video on youtube. This guy was explaining how to get your search history of Google.
I found that Google, was spying on me...they recorded with microphone of my OnePlus X my voice, every 2h!!
I was surprised that they recorded me also when i was sleeping!!!
I found also that they tracked my position, but my gps is always switched off!!
I didn't know that, but everyone who has google play services on the phone, they keep in history when you open
or close any app that you have. I'm pissed off!
Will someone try to port it, or make a secure rom, maybe not based on google apps?
Click to expand...
Click to collapse
Can you send me the link please..

sheraz1015 said:
Can you send me the link please..
Click to expand...
Click to collapse
Here it is dude
Sauce: https://www.youtube.com/watch?v=TtmR9L0ITlM
Go to minute 2:03 also

Wasn't trying to be rude just herd blackberry has best security. But In this case I don't think it would matter. Thanks for sharing this don't think too many people know about it.

okay first: appreciate, that obviously there are other people concerned about their privacy.
second: there are people even more concerned about their privacy, like i.e. German's chancellor, making them pay 10,000$ for a cell phone - hacked. so how secure can som cell phone for some 100$ be?
next: about BlackBerry: where is ur privacy when all ur communication is routed through a private companies servers? As long as u do not fully trust such a company i'd call that surveillance too...
that being said: what do u consider to be secure regard ur privacy? first answer urself this question before making any progress. keep in mind, that ur cellphone is basically a full featured tracking system (which isnot a bad thing per se).
What do I mean?ˋWell for instance personally i don't consider photos synced to dropbox/google drive/microsoft's whatever to be private. they're located on servers inside the use, and as such accessable by officials whenever there's desire. also I do absolutely not consider my passwords to be safe when synced to my google account. Next i will not consider any call to be secure in a matter of "no one can listen"- that wont change unless u use end-to-end encryption which requires the called person to have an according setup. etc etc
i came to the conclusion that my phone simply is NOT secure! So if u do not intend to just keep ur hands off any device connected to the internet/gps u can be tracked. Just a matter of the effort to achieve that....
Now how can i just keep calm with all that. well i actually don't. its a compromise for me, as i just don't want to miss certain points which are provided by smartphones.
However I totally disagree with just handing over my private data making it needless to spy on me cause i instafacetweet**** whenever i'm at starbucks taking a coffee or sending private photos using services, that claim property of such (needless to call it by name..)
finally, to shorten this and maybe give u one or two hints especially regarding google apps etc:
- y handing google my actual name (u certainly won't be able to hide ur identity just because of this!! but referring to the last paragraph above this is step no1)
- personally i use opengapps pico which shrinks the amount of spyware down a bit (however there are some packages included safe to uninstall)
- regarding the "google tracks my app usage": well this is because u grant playstore/play services permission to do so (settings-->security-->app ausage access)
- also i have restricted access to pretty much anything for google apps as i only want playstore running(privacy guard or similar)
- using greenify (xposed required i guess) u can "uncover hidden synchronizations" which will (what a surprise) a HUGE list of syncs to be disabled in settings -->accounts-->google-->whatever
- also take a look in google settings (ads/"security")
- system administrator
etcetcetc...
if u want to minimize the chance one can create location profiles: mac spoofing (i guess thats the english term). also when u use buetooth headset, u ar visible for any near device. same goes for wlan search, nfc bla.
These are just a few things that make me personally feel a bit more comfortable using such devices. a huge part in this takes NOT using whatsapp/facebook or anything like that. i'm convinced computers don't understand social interaction, and as such they should only take a minor "transmitting" role in this and not tell me who/what i might like or what the f***
I actually do have friends and they will know if theres sth worth to know, which works the other way round too.
I hope I somehow stuck to the read thread (do u really say so? ) and maybe there were 1 or 2 points of use for u.
Whats most: the more u use/rely on such technology, the more of ur life can/will be exposed OR the more effort u will have to put into it to prevent that. (with the only result u increase the effort in spying on u/whatever).
Gesendet von meinem ONE E1003 mit Tapatalk

tet-bundy said:
okay first: appreciate, that obviously there are other people concerned about their privacy.
second: there are people even more concerned about their privacy, like i.e. German's chancellor, making them pay 10,000$ for a cell phone - hacked. so how secure can som cell phone for some 100$ be?
next: about BlackBerry: where is ur privacy when all ur communication is routed through a private companies servers? As long as u do not fully trust such a company i'd call that surveillance too...
that being said: what do u consider to be secure regard ur privacy? first answer urself this question before making any progress. keep in mind, that ur cellphone is basically a full featured tracking system (which isnot a bad thing per se).
What do I mean?ˋWell for instance personally i don't consider photos synced to dropbox/google drive/microsoft's whatever to be private. they're located on servers inside the use, and as such accessable by officials whenever there's desire. also I do absolutely not consider my passwords to be safe when synced to my google account. Next i will not consider any call to be secure in a matter of "no one can listen"- that wont change unless u use end-to-end encryption which requires the called person to have an according setup. etc etc
i came to the conclusion that my phone simply is NOT secure! So if u do not intend to just keep ur hands off any device connected to the internet/gps u can be tracked. Just a matter of the effort to achieve that....
Now how can i just keep calm with all that. well i actually don't. its a compromise for me, as i just don't want to miss certain points which are provided by smartphones.
However I totally disagree with just handing over my private data making it needless to spy on me cause i instafacetweet**** whenever i'm at starbucks taking a coffee or sending private photos using services, that claim property of such (needless to call it by name..)
finally, to shorten this and maybe give u one or two hints especially regarding google apps etc:
- y handing google my actual name (u certainly won't be able to hide ur identity just because of this!! but referring to the last paragraph above this is step no1)
- personally i use opengapps pico which shrinks the amount of spyware down a bit (however there are some packages included safe to uninstall)
- regarding the "google tracks my app usage": well this is because u grant playstore/play services permission to do so (settings-->security-->app ausage access)
- also i have restricted access to pretty much anything for google apps as i only want playstore running(privacy guard or similar)
- using greenify (xposed required i guess) u can "uncover hidden synchronizations" which will (what a surprise) a HUGE list of syncs to be disabled in settings -->accounts-->google-->whatever
- also take a look in google settings (ads/"security")
- system administrator
etcetcetc...
if u want to minimize the chance one can create location profiles: mac spoofing (i guess thats the english term). also when u use buetooth headset, u ar visible for any near device. same goes for wlan search, nfc bla.
These are just a few things that make me personally feel a bit more comfortable using such devices. a huge part in this takes NOT using whatsapp/facebook or anything like that. i'm convinced computers don't understand social interaction, and as such they should only take a minor "transmitting" role in this and not tell me who/what i might like or what the f***
I actually do have friends and they will know if theres sth worth to know, which works the other way round too.
I hope I somehow stuck to the read thread (do u really say so? ) and maybe there were 1 or 2 points of use for u.
Whats most: the more u use/rely on such technology, the more of ur life can/will be exposed OR the more effort u will have to put into it to prevent that. (with the only result u increase the effort in spying on u/whatever).
Gesendet von meinem ONE E1003 mit Tapatalk
Click to expand...
Click to collapse
Thank you very much for your dedication on a precise answering. All that you said.....you are right. Damn

I'm just trying out Nameless ROM. I noticed it has privacey guard as mentioned above. Whether it actually does anything who knows.

I'm paranoid about google services aswell.
Hence i installed a fresh build of CM13 / AOSP CAF
Installed F-Droid as primary market and replaced apps with open source replacements. (Replaced Chrome/AOSP browser with chromium etc.).
I also installed Firewall, adblocker+ and system manager for monitoring malicious apps and processes. Privacy guard & app ops also works wonders together
this not only gives u ability to customize android your way but also provides good level of security.
If you are still paranoid about identity, u can use orbot and tor network for anonymous identity. (Both found on F-Droid).
This also greatly improves battery life and keeps the phone snappy.
Hope this helps

In all honesty, just use Sailfish and remove everything you find funky. Private OS isn't worth porting. Another alternative would be to just flash any ROM without flashing GAPPs
---------- Post added at 04:02 AM ---------- Previous post was at 04:01 AM ----------
At the end of the day though, you are still at the mercy to some company... We have already lost this fight.

karan5chaos said:
If you are still paranoid about identity, u can use orbot and tor network for anonymous identity. (Both found on F-Droid)
Click to expand...
Click to collapse
I agree... in theory. however if u assume to be under surveillance, u better assume that u are not the only one inside the tor network to be under surveillance. u just need to observe a not too small amount of tor servers (which is still a relatively small amount, taking the capacity of todays intelligence services into consideration) to be able to reconstruct the whole path of any communication routed through that network. now also seeing that bandwidth is just lousy, there's just no point in using tor (except u want to access services, that require u to do so).
To cut a long story short, if u want ur internet traffic to be secure, u'll have to go for a vpn provider! (of course u have to trust that provider, as they are able to read anything u pass through that gate)
regards
t
P.S.: if u're interested in vpn service, pm me and i'll tell u my hoster which i think is one of the most trustworthy around and also provides some advanced methods other just don't.
(just to stick to the rules and not advertise here )

How to get rid of LeEco Spyware?

1.
I would like to get rid of as many LeEco apps as possible because I am convinced that they phone home and steal my personal data. Have you successfully installed any LeEco apps without triggering any issues and, if yes, please let me know the names of the system apps that can be safely uninstalled with an unintaller having root access.
2.
Does anyone know where I can download AOSP dialer/sms/contacts? Thanks.

Just replace the launcher, install Google Camera and disable the LeCloud services

-Tiz- said:
1.
I would like to get rid of as many LeEco apps as possible because I am convinced that they phone home and steal my personal data. Have you successfully installed any LeEco apps without triggering any issues and, if yes, please let me know the names of the system apps that can be safely uninstalled with an unintaller having root access.
2.
Does anyone know where I can download AOSP dialer/sms/contacts? Thanks.
Click to expand...
Click to collapse
Sorry but lmao really. If you are sure they steal your data, why the hell did you buy the phone, i dont understand

Veidas said:
Sorry but lmao really. If you are sure they steal your data, why the hell did you buy the phone, i dont understand
Click to expand...
Click to collapse
Why not? Hardware is good and phone is cheap. Once CM or a clean ROM is installed, the LeEco software doesn't matter. Do you understand or shall I explain in more detail. It's not really that complicated.

-Tiz- said:
Why not? Hardware is good and phone is cheap. Once CM or a clean ROM is installed, the LeEco software doesn't matter. Do you understand or shall I explain in more detail. It's not really that complicated.
Click to expand...
Click to collapse
Dont be smartass for me buddy, im not the one unable to debloat a rom, so maybe i should explain it to you in more details? Its really not that complicated. For someone trying to teach me about custom roms you sure know little. Whats even more funny, is you acting like you know anything about leeco or their software stealing your data, then acting as if your personal data is reaaaally important to you, and then still buying the phone dispite it having zero development so far. Amusing, please continue

Veidas said:
Dont be smartass for me buddy, im not the one unable to debloat a rom, so maybe i should explain it to you in more details? Its really not that complicated. For someone trying to teach me about custom roms you sure know little. Whats even more funny, is you acting like you know anything about leeco or their software stealing your data, then acting as if your personal data is reaaaally important to you, and then still buying the phone dispite it having zero development so far. Amusing, please continue
Click to expand...
Click to collapse
Sorry that I bruised your ego. You are a hero and to the god of custom roms for sure

-Tiz- said:
Sorry that I bruised your ego. You are a hero and to the god of custom roms for sure
Click to expand...
Click to collapse
Lol, my ego has nothing to do with anything here. Its the way you are thinking, or the complete lack of logic. And ofcourse you resort to insults, when have nothing else clever to say.
If you are still sure leeco is stealing your data(which is complete nonsense and you have exactly zero facts to back you up) and you dont know how or what to delete(despite being so clever and knowning so much about custom roms) you could just block all leeco IP's in hosts file. Im sure being the pro you are, you know how to get these ip adresses and what hosts file is

Joms_US said:
Just replace the launcher, install Google Camera and disable the LeCloud services
Click to expand...
Click to collapse
Thanks Joms. I already did and, moreover, I blocked LeeCo apps with a firewall. However, I would like to completely uninstall them and I am sure that other users want this, too.
In fact, I already did uninstall a few of them and - so far - I did not get any error messages. It might be nice to have a list of LeEco apps that can be safely uninstalled because there are so many of them.

Veidas said:
Lol, my ego has nothing to do with anything here. Its the way you are thinking, or the complete lack of logic. And ofcourse you resort to insults, when have nothing else clever to say.
Click to expand...
Click to collapse
You laughed at me (re-read your first post) and now your are whining and complaining. I did not insult you at all. You did this all to yourself.

-Tiz- said:
You laughed at me (re-read your first post) and now your are whining and complaining. I did not insult you at all. You did this all to yourself.
Click to expand...
Click to collapse
I laughed at your non existing logic, not you personally. And you did try to insult me with your smartass expressions and 100% sarcasm replies, which implies you were the one with hurt ego lol. And im not whining and not complaining, not sure what you are talking about lol. Anyways, not gonna waste my time (or yours) here anymore, goodluck fighting against SPYware lol

Veidas comes off as the ass in this scenario....

I used this app to uninstall most of the LeEco system apps: https://play.google.com/store/apps/details?id=com.jumobile.manager.systemapp&hl=de It comes with a restore function.
I need to check in more detail/need a few more days in order to confirm that there are really no issues. (Uninstalling the dialer/contacts app was not a good idea though.)

-Tiz- said:
I used this app to uninstall most of the LeEco system apps: https://play.google.com/store/apps/details?id=com.jumobile.manager.systemapp&hl=de It comes with a restore function.
I need to check in more detail/need a few more days in order to confirm that there are really no issues. (Uninstalling the dialer/contacts app was not a good idea though.)
Click to expand...
Click to collapse
Hi Tiz
Do you see any clashes in rom after uninstalling system apps?

Hi!
If you want you can additionally add the LeEco servers to your hosts file to prevent that any app can contact them. I collected a list of all hostnames I found in the system applications and/or logcat in this posting here.
Additionally here a list of (system) apps I have disabled (via "pm disable") command:
Code:
[email protected] ~> adb shell pm list packages -d
package:com.letv.android.FuseWire
package:com.letv.android.quicksearchbox
package:com.letv.android.agent
package:com.letv.android.zxing
package:com.letv.android.account
package:com.letv.android.wallpaper
package:com.letv.android.wallpaperonline
package:com.letv.leui.sdk.data
package:com.letv.android.letvlive
package:com.lesports.glivesports
package:com.letv.android.note
package:com.le.android.webview
package:com.letv.android.usermanual
package:com.letv.letvshop
package:com.android.browser
package:com.le.share.zl1
package:com.letv.android.personalized
package:com.baidu.input_letv
package:com.letv.app.appstore
package:com.stv.stvpush
package:com.android.mms
package:com.letv.android.backup
package:com.letv.android.client
package:com.letv.android.setupwizard
package:com.android.calendar
package:com.letv.android.backupclient
package:com.letv.walletbiz
package:com.android.VRAdmin
package:com.letv.gallery3d.syncservice
package:com.lvr.wizzard
package:com.android.gallery3d
package:com.letv.agnes
package:com.letv.games
package:com.letv.wihd
package:com.letv.lesophoneclient
package:com.letv.android.fannation
package:com.letv.android.bugreporter
package:com.letv.android.accountinfo
package:com.letv.wallet
package:com.letv.android.filemanager
package:com.letv.android.cloudservice
package:com.android.music
package:sina.mobile.tianqitongletv
package:com.letv.android.videoplayer
package:com.sohu.inputmethod.sogou.leshi
The only limitation I noticed so far, is that the media control buttons (Previous/Play/Next) in the control center stop working, when you disable/remove the LeTv Music player (package name "com.android.music") because the buttons do not broadcast Android standard media Intents but instead LeEco-specifiic ones (which are only received by LeEco Music player which then performs the desired actions - even controlling 3rd party players).
I changed the behaviour of the media buttons with this Xposed module here: Xposed-module-EUI-MusicControls.

xsystem1 said:
Hi Tiz
Do you see any clashes in rom after uninstalling system apps?
Click to expand...
Click to collapse
Not yet. (Except for the dialer/contacts app.) It's probably best to freeze apps first and take androchecks list as a guideline.

i dont understand why you suspect that the phone ( lepro3) steals your data? i have been using the phone for banking, share trading, etc, and i never found any issues. i also install a 360 antivirus on day 1 , and let it to run in the background to secure the phone. when i first bought the phone, it had customer rom 019s, when i first run 360 antivirus, there was one virus found. had it removed, since them, no more trouble. later i re-flashed the factory rom ( chinese version 018s), plus google play, etc. i have no issues at all. for those phone apps which you dont need them to access internet ( such as LeEco's apps) , you can also disable them from the phone's manager ( no access in both data and wifi). leEco is a company on stock list ( Hong Kong). i wont think it will risk its reputation adding some spywares in the phone. as it can be found easily. unless you have 3rd party app with virus....

can try
from here http://bbs.ydss.cn/thread-711361-1-1.html
Based on the original system to streamline official 18s, first download the following unloader, showing sequential streamline my list is the same
Security system program uninstaller .apk 832.48 KB,
Open unloader, remove the hidden core application of the hook, and restart the unloader, the effect is as follows

cacimbo said:
from here http://bbs.ydss.cn/thread-711361-1-1.html
Based on the original system to streamline official 18s, first download the following unloader, showing sequential streamline my list is the same
Security system program uninstaller .apk 832.48 KB,
Open unloader, remove the hidden core application of the hook, and restart the unloader, the effect is as follows
Click to expand...
Click to collapse
Is this a debloater (does this remove all of the unnecessary apks that LeEco installs, and would probably release some ram)? Thanks for showing us this, I can only browse those forums with google translate, and that leaves a lot to be desired.

masterofstuff124 said:
Veidas comes off as the ass in this scenario....
Click to expand...
Click to collapse
In only this scenario????

just ordered Le Eco S3, not the Pro, haven't received it yet, but do you need to have this phone rooted (is it even possible??) in order to disable/uninstall apps?