Related
I am concerned that Google has their tentacles all throughout the OS, and I want to take all measures to stop that. I particularly don't like their search query tracking (I use ixquick) and their nav app, as their privacy policies are atrocious.
Before someone accuses me of being a hacker or criminal, I am simply not willing to hand over my 220 year old Constitutional rights for a transient fear campaign manufactured by The Machine. And I do not want my information used for profit without permission. I used to be a cracker, and know what is possible. I'll not respond to those who call me 'paranoid'; they are oblivious.
Of course I'll not be using the apps of that-search-engine-everybody-uses. Removing them forthwith, in favor of whatever GPL open-source apps there are available for various functions. Using self-contained nav software like CoPilot or TomTom.
So, have any devs investigated whether Android phones home at any interval? Have measures been taken to privacy-enable the Android firmware?
I hear that HTC has some sort of 'phone home' function. How to neuter that?
What good is Wifi? Is it that you can use that when available, not using up 3G bytes? I am asking what use it is on a mobile in consideration of mobility and the security problems -- what uses can this be put to, and how to secure the phone?
Where is the best place to find open-source apps?
I'm curious about this as well, not so much from a privacy standpoint, but how the hell can I stop the mysterious data that is flowing out of my phone when everything like background syncing and all data connections are turned off.
http://source.android.com/
This is all you need - you could remove/modify anything you want, so... what's your problem? And actually Google apps aren't in the Android sources, so you won't have them after compiling. Yeah, two birds with one stone.
Also you could disable WiFi if you don't like it.
Tachikoma_kun said:
how the hell can I stop the mysterious data that is flowing out of my phone when everything like background syncing and all data connections are turned off.
Click to expand...
Click to collapse
Errr... what ROM and how many apps do you have installed? There is no "mysterious data" on clean system, but 25% of apps use data connection for various reasons.
I'm on the stock 2.1 ROM for the Samsung Galaxy S. I turn all the background syncing, email, and stuff like that off, and overnight it can use about 1MB of data.
I don't have any "free" apps running that might download new banners or anything like that.
The background syncing does not turn anything off as far as I know.
To my knowledge it allows 3rd party apps the ability to check if the user has flagged this, but they do not have to respect this flag.
Tachikoma_kun said:
I'm on the stock 2.1 ROM for the Samsung Galaxy S. I turn all the background syncing, email, and stuff like that off, and overnight it can use about 1MB of data.
I don't have any "free" apps running that might download new banners or anything like that.
Click to expand...
Click to collapse
Syncing is just... syncing. But there are many other things, that apps do. Spare Parts -> Battery history -> Network usage.
Brut.all said:
http://source.android.com/
This is all you need - you could remove/modify anything you want, so... what's your problem?
Click to expand...
Click to collapse
What's my problem, LOL? I am a 52yo real estate developer, not a coder. This is why I'm asking the question.
Quantumstate said:
What's my problem, LOL? I am a 52yo real estate developer, not a coder. This is why I'm asking the question.
Click to expand...
Click to collapse
i think he meant either put up or shut up, which is a pretty reasonable statement.
IMO it's anonymous user data.... let them build cybernet
otherwise say no to the T.O.S that is your constitutional right if you have "privacy" concerns
Brut.all said:
Syncing is just... syncing. But there are many other things, that apps do. Spare Parts -> Battery history -> Network usage.
Click to expand...
Click to collapse
Thanks, will give that a try.
themapleboy said:
i think he meant either put up or shut up, which is a pretty reasonable statement.
Click to expand...
Click to collapse
I meant we all have access to the sources, so we don't have to "investigate" what Android exactly does - we just know, that it doesn't do any "mysterious" things. There are many people working with these sources for many months, I doubt there are some undiscovered things.
Brut.all said:
I meant we all have access to the sources, so we don't have to "investigate" what Android exactly does - we just know, that it doesn't do any "mysterious" things. There are many people working with these sources for many months, I doubt there are some undiscovered things.
Click to expand...
Click to collapse
u know what they say about assuming...... it always makes you look like a jackass
Yeah, I mean we're not playing with iOS4 or anything.
In all seriousness, Android's been out for quite a while now and has been looked at by a LOT of people. Not saying that it's *impossible* but it's highly unlikely that anything nefarious is going on.
If you're still concerned, I suppose you could always opt not to install the Google Apps, but you'd be a bit limited, functionality-wise.
Sent from my Droid using XDA App
themapleboy said:
let them build cybernet
Click to expand...
Click to collapse
O' little do you know... many years ago I did work in Eastern Europe. You have no idea the paranoia a society can endure. For an idea, watch the old TV series Danger Man. Or the movie 1984.
If most young people share your view, it is a dark future. I'm glad I'll be dead.
herald83 said:
In all seriousness, Android's been out for quite a while now and has been looked at by a LOT of people. Not saying that it's *impossible* but it's highly unlikely that anything nefarious is going on.
Click to expand...
Click to collapse
Understand. I just can not believe though that Google is not harvesting some sort of information, as that's their business model. They never discard any info they receive, and you can build a shockingly accurate portrait of someone from their searches over time. Google's CEO recently said, "If You Have Something You Don't Want Anyone To Know, Maybe You Shouldn't Be Doing It", echoing the Bush Doctrine of a Police State.
Maybe Android is innocuous for now, and I'm sure it's been examined. But I'm wondering what the results were? Why are ppl seeing data outflows?
I smell a rat...
Quantumstate said:
...Before someone accuses me of being a hacker or criminal, I am simply not willing to hand over my 220 year old Constitutional rights for a transient fear campaign manufactured by The Machine. And I do not want my information used for profit without permission. I used to be a cracker, and know what is possible. I'll not respond to those who call me 'paranoid'; they are oblivious...
Click to expand...
Click to collapse
Quantumstate said:
What's my problem, LOL? I am a 52yo real estate developer, not a coder. This is why I'm asking the question.
Click to expand...
Click to collapse
A 52yo real estate developer, whose not a coder, but used to be a "cracker" and knows what is possible? Anyone else here think this doesn't make a bit of sense?
It's funny, but it sounds like someone is trying to stir up some FUD by making claims that Android is somehow doing an "All your data are belong to us...". I hope Apple aren't paying your cheques!
@perpetualmotionuk: Be advised that there is a difference between mathematics and decryption, and coding. Yes I can do some coding, but not at a level necessary to analyze and modify an operating system.
If Apple were paying my 'cheques', wouldn't I come in with some sort of proof that monitoring is taking place? Rather than asking what others have found?
Now, rather than trying to tear people down, why don't you use that considerable nose to investigate this yourself?
No one's seen anything about info leakage?
Quantumstate said:
Understand. I just can not believe though that Google is not harvesting some sort of information, as that's their business model. They never discard any info they receive, and you can build a shockingly accurate portrait of someone from their searches over time. Google's CEO recently said, "If You Have Something You Don't Want Anyone To Know, Maybe You Shouldn't Be Doing It", echoing the Bush Doctrine of a Police State.
Maybe Android is innocuous for now, and I'm sure it's been examined. But I'm wondering what the results were? Why are ppl seeing data outflows?
Click to expand...
Click to collapse
Most of that data is pulled from search history, I suspect. Which you can disable, if I recall. Don't have my phone on me at the moment to confirm.
I just did a very simple test on an emulator: after ~15 minutes of running system there was 0 (zero, null) of network packets. Now I want to do the same on a device with clean system, but I think results will be the same or similar (SDK system is just normal Android - very similar to these from devices).
I have a feeling that even if I will catch zero packets as well, you will be asking whether Google send something mysterious through... errr... bluetooth? Some hidden antenna?
If you're worried about Google tracking your info...root the phone and don't install the Google apps. What do ya know...problem solved.
If you're still worried that people are tracking what you are doing see steps below.
1) Flush phone or give to a homeless guy to throw them off.
2) Destroy Computers.
3) Liquidate everything you own.
4) Walk into the woods and live off the land.
5) Kill self shortly after because they already have a file on you.
You say you're a 52 year old real estate developer...guess what...they're already tracking you. You're already helping to build "cybernet" just by living and breathing.
And if you are really worried about your "220 year old Constitutional Rights" then go read the Patriot Act and discover that you don't have ****.
I'm normally not one to flame...but you are an absolute idiot.
I'm not an English person, excuse for the syntax/grammar/... mistakes I'd could make.
hedjemunkee said:
I'm normally not one to flame...but you are an absolute idiot.
Click to expand...
Click to collapse
I don't understand WHY this person could be considered as "an absolute idiot" by ASKING if some 'data' are sent over the network through the phone.
Facebook, with it's ad system is sending information for each ad displayed (not alot, but still some !)....
ADS.GOOGLE do you have any idea about what's behind !?
I don't have the number (nobody have it) of webpages using it but it's huge. with this you can track navigation of people, establish profiles, link to a physical person. Without your consent.
I understand the concern of the "OP" here. I don't think the data sent are easy to "catch", or are systematically sent... maybe there is no, and you are paranoid. But it "COULD". So easily. I'm from the young tech generation.
And to quote
Quantumstate said:
If most young people share your view, it is a dark future. I'm glad I'll be dead.
Click to expand...
Click to collapse
People who don't ask themselve the question, or wich refuse to be open minded enough to consider the right to ask this question ... could be surprised very soon. I'm not directly affraid of "google". I'm affraid of those 'blind' people.
You'll be dead in less than 10years !? I hope we can share some of the darkness you're talking about. your parent's generation started it, you continued it.
Anyway, back to the topic.
Why in my pocess list i've : (app id number) com.ap.SnapPhoto:remote
even when I do not use the camera !?
...when I notice my battery is being used more than usual I check the process list and I find this...
What's this "remote" !?
Maybe "remote" refers to "another app wich launch this app"... ? Otherwise... wow.
Just read this.. figured I'd share. Looks like it's getting fixed.. Nothing more to see.
http://money.cnn.com/2011/05/18/technology/android_security/index.htm?hpt=T2
nice hope they roll out the fix for our damned phones as well.
Good thing we have .4 available to use
It's really a non-issue. Basically someone with a packet sniffer can see some information as it's synced with Google. Big deal. They can do that with any OS its just most OS's don't sync that information to the cloud.
Big deal. All they have to do is encrypt the data on the phone before it sends it out. 2.3.4 already corrects the issue.
player911 said:
Big deal. All they have to do is encrypt the data on the phone before it sends it out. 2.3.4 already corrects the issue.
Click to expand...
Click to collapse
Not a big deal for current Android phones (and their users) that won't be receiving that 2.3.4 update?..
S0NiX0928 said:
Not a big deal for current Android phones (and their users) that won't be receiving that 2.3.4 update?..
Click to expand...
Click to collapse
Its called marketing..... They "scare" people into buying the newest of the new.... damn communists
Let alone its coming from cnn... What a creditable non biast truthful news site
Sent from my LG-P999 using XDA Premium App
nate420 said:
Its called marketing..... They "scare" people into buying the newest of the new.... damn communists
Let alone its coming from cnn... What a creditable non biast truthful news site
Sent from my LG-P999 using XDA Premium App
Click to expand...
Click to collapse
Well, for my own sake I really couldn't care less... If the evils of the world want your privacy they could get it whether you liked it or not. I choose to think my life really isn't that important in the grand scheme of things lol. However, I will say I should've checked the sources because as with CNN, and all the other corporate lapdog news outlets, they aren't worth your time in a quest for real, truly important news. Typically all the mainstream outlets generate is shock and awe material, or seek it if you will. They either hype the fearful & devastation or ignore the stuff that would otherwise get them sued by true the criminals to humanity: corporations. We are in a whistle-blower-beware sorta society right now... You either are going to get killed or defamed for speaking out these days...
Wow, ending the rant there, sorry.
Kinda surprised at the attitude regarding the crappy google software. I guess some do not care if their personal info is stolen and used in nefarious ways.
This is Google we are talking about. Not exactly a fine upstanding corporate citizen. They have been stealing info for years. They helped China round up protesters before the Olympics. They will do or say anything to make a buck.
The fact that their software is so buggy and compromising is hardly surprising. People just need to be aware of the type of company they are and be prepared to have anything on their phone stolen and used against them.
It is what it is. I have accepted who they are and I am carefull about what I use my phone for.
Android smartphones face data breach threat
http://www.ft.com/cms/s/2/905bb4d6-813e-11e0-9360-00144feabdc0.html#ixzz1Mo0FZQyv
Owners of Android smartphones are being warned to avoid public WiFi networks after researchers found a security flaw that could affect the vast majority of devices based on Google’s software.
A trio of researchers at Ulm University in Germany found that it was “quite easy” for hackers to intercept data from Google’s photo-sharing, calendar and contacts applications, as well as potentially other Google services such as Gmail, using a flaw that affects 99 per cent of all Android devices.
The attack works when unsecured wireless access points that imitate public WiFi hot spots that the phone has accessed before – such as a coffee shop chain – capture an authentication token.
That token can then be used by attackers to access and modify personal data in Picasa, Google’s photo site, Calendar and Contacts. Business customers using Google apps on Android are not affected by the weakness because all traffic is encrypted by default.
“The implications of this vulnerability reach from disclosure to loss of personal information for the Calendar data,” said the Ulm researchers in a posting on their website.
“Beyond the mere stealing of such information, an adversary could perform subtle changes without the user noticing. For example, an adversary could change the stored e-mail address of the victim’s boss or business partners hoping to receive sensitive or confidential material pertaining to their business.”
Click to expand...
Click to collapse
jcbofkc said:
Kinda surprised at the attitude regarding the crappy google software. I guess some do not care if their personal info is stolen and used in nefarious ways.
This is Google we are talking about. Not exactly a fine upstanding corporate citizen. They have been stealing info for years. They helped China round up protesters before the Olympics. They will do or say anything to make a buck.
The fact that their software is so buggy and compromising is hardly surprising. People just need to be aware of the type of company they are and be prepared to have anything on their phone stolen and used against them.
It is what it is. I have accepted who they are and I am carefull about what I use my phone for.
Click to expand...
Click to collapse
I agree. It may not be a big deal to the typical user who is txting his girlfriend and emailing his mom.. but a subjective view of this doesn't make it a minor thing all of a sudden.
I have watched google grow ever since the dot com days. I've been an avid user of their products. There has been an obvious directional move by google for those that pay close attention.. They have gone from user/community focused.. and now they have intermixed that with a focus of business .. no different than any other company pleasing the shareholders..
For anyone to think for one minute that google is a friend that can be trusted with your private data, you better get your head out of the sand and take a harder look. They are a business trying to make money. They are not a friend who is trying to serve you and look out for your best interest. They may make it appear so. They may say so.. in order for us to think so.. But I guarantee you that in the midst of a board meeting, the last thing uttered out of their mouth is anything about servicing you and looking out for your best interest. Sure, they may make it appear like that.. .but the reason why they make it appear like that? So they don't lose you as a customer and they can gain customers. Yes, they must make a good product that pleases a certain group of society. But what is the root? To be your friend and buddy?They must maintain good customer service or you will not use their service or leave. <-- The root of that mentality = $$$$$$$.
I played the game of business for many years during the dot com days. I sat in many meetings. Yes, that's how it works. "Let's do x, y, and z.. to increase our bottom line, bring upon more customers, etc.. Then we can explain it to the employees and the customers in x, y, and z manner as to why it is good for them." <-- That's business. What we see is not the "root" of their behavior. Deception at its finest.
Ok guys i just saw this today and it really got me worried:
http://m.gizmodo.com/5863849/your-android-phone-is-secretly-recording-everything-you-do?autoplay
I'm sorry if i'm breaking a rule by posting this link, but if true, this is something to really worry about! Just read!
Update: here is a link for an app designed to detect and remove it from your android phones
http://forum.xda-developers.com/showpost.php?p=17612559&postcount=110
Hope it helps!
Sent from my X10i using XDA App
Whole post, just in case:
If you have any decently modern Android phone, everything you do is being recorded by hidden software lurking inside. It even circumvents web encryption and grabs everything—including your passwords and Google queries.
Worse: it's the handset manufacturers and the carriers who—in the name of "making your user experience better"—install this software without any way for you to opt-out. This video, recorded by 25-year-old Android developer Trevor Eckhart, shows how it works. This is bad. Really bad.
Update: Nokia wrote to us saying that Carrier IQ's spyware is not included in any of their cellphones.
Fast forward to 9:00 for the damning sequence.
The spying software is developed by a company called Carrier IQ. In their site, the company says they are "the only embedded analytics company to support millions of devices simultaneously, we give Wireless Carriers and Handset Manufacturers unprecedented insight into their customers' mobile experience."
Who has this problem? It seems like a good goal and, indeed, most manufacturers and carriers agree: according to Eckhart, the spyware is included in most Android phones out there.
Eckhart claims that Carrier IQ software is also included in Blackberry and Nokia smartphones too. It probably works exactly the same in those smartphones as well. However, there's no proof showing these problems in those phones. There's no mention about Apple's iPhone.
It also doesn't even matter if your telephone was purchased free of carrier contracts. As Eckhart shows in this video, it's always there.
The problem is that it does a lot more than log anonymous generic data. It grabs everything.
How does it work? Carrier IQ's software is installed in your phone at the deepest level. You don't know it's there. You are never warned this is happening. You can't opt-in and you certainly can't opt-out.
The commercial spyware sits between the user and the applications in the phone so, no matter how secure and private your apps are, the spyware intercepts anything you do. From your location to your web browsing addresses and passwords to the content of your text messages.
This even happens using a private Wi-Fi connection instead of the carrier 3G or 4G connection.
The company denied all this in a public statement (PDF):
While we look at many aspects of a device's performance, we are counting and summarizing performance, not recording keystrokes or providing tracking tools
But the video clearly demonstrates that this is not true: Keystrokes submit unique key codes to Carrier IQ. Even secure connections are intercepted by the spyware, allowing it to record your moves in the open. These connections to the web are encrypted but, since Carrier IQ's spyware sits between the browser and the user, it grabs it and sends it in plain text.
The spyware can even log your location, even if the user declines to allow an app to know where it is. The hidden Carrier IQ app ignores your desires, intercepts the data and gets your location anyway.
What can you do to avoid it? Unfortunately, not much. The hidden spyware is always running, and there's no option in any of the menus to deactivate it. Unless you're a grade-A blackbelt hacker, you're out of luck. Even Eckhart, who is a developer, finds it difficult to remove:
Why is this not opt-in and why is it so hard to fully remove?
It's an excellent question. One that urgently needs an answer, from Carrier IQ but especially from every handset manufacturer and carrier involved in this situation.
The solution to this problem is not installing a custom ROM. That's something that shouldn't be required from consumers, something that normal people will not be willing to do. Products must respect privacy rights out of the box. Consumers must be informed about this the moment they turn on their phones in a clear way. They should have the possibility to opt-in and opt-out whenever they want, with a single click. This matter should be solved now by Carrier IQ, the handset manufacturer and the carriers.
If it isn't solved as soon as possible, authorities in the US and Europe should nail them with everything they have. [Twitter, Android Security Test, EFF and Carrier IQ via Threat Level]
Update from Nokia's PR firm Next15, Gretchen Bender: I know you've followed today's news that software from CarrierIQ has been found on Nokia devices. I wanted to quickly reach out following your story to let you know that in fact, CarrierIQ does not ship products for any Nokia devices. Therefore, these reports are inaccurate.
Sent from my X10i using XDA App
I was waiting to see this thread open here. This is a bomb to the platform's reputation.
Does rooting and installing any 3rd party ROM eliminate this?
Also, does this only apply to US carriers and devices?
AOSP mods (including cyanogenmod) don't have carrier IQ since Google didn't do it in the first place. Nor do the Nexus phones..
Nor do a handful of OTHER phones. I'm curious to see just how far that goes. It kinda explains why manufacturers/cell providers are SO insistent on locking firmware though.
Updated OP with link to removal app
Sent from my X10i using XDA App
Barzobius said:
Ok guys i just saw this today and it really got me worried:
http://m.gizmodo.com/5863849/your-android-phone-is-secretly-recording-everything-you-do?autoplay
I'm sorry if i'm breaking a rule by posting this link, but if true, this is something to really worry about! Just read!
Update: here is a link for an app designed to detect and remove it from your android phones
http://forum.xda-developers.com/showpost.php?p=17612559&postcount=110
Hope it helps!
Sent from my X10i using XDA App
Click to expand...
Click to collapse
Thanks for posting the link! l was watching the XDA:TV and Bob was on about this, while playing the video l was searching all over the market place, couldn't find it. Now l did.
Barzobius said:
Ok guys i just saw this today and it really got me worried:
http://m.gizmodo.com/5863849/your-android-phone-is-secretly-recording-everything-you-do?autoplay
I'm sorry if i'm breaking a rule by posting this link, but if true, this is something to really worry about! Just read!
Update: here is a link for an app designed to detect and remove it from your android phones
http://forum.xda-developers.com/showpost.php?p=17612559&postcount=110
Hope it helps!
Sent from my X10i using XDA App
Click to expand...
Click to collapse
I happened upon it as well here:
http://news.yahoo.com/smartphone-spying-204933867.html
So, a rooted device doesn't have it? That's good news. I'm now thinking of flashing my G2 to get rid of this (if it has it).
Does anyone here know how to find it on the device?
Joe
We have a thread with same topic in General section
Surprise, surprise!
SPIEGEL has learned from internal NSA documents that the US intelligence agency has the capability of tapping user data from the iPhone, devices using Android as well as BlackBerry, a system previously believed to be highly secure.
Click to expand...
Click to collapse
-http://www.spiegel.de/international/world/a-920971.html-
I believe that smartphones are a gold mine not only for spying agencies but also for commercial behavioral trackers. I would wish to see more privacy-aware development from the XDA community.
I am aware of Xprivacy, OpenPDroid and Replicant. What other work is done to make Android more privacy friendly?
I agree .... just recently a criminal in my area was found and arrested after the police called his cell phone provider and had them track him for them... now it's good that a criminal was caught but the possibility of abuse of the tracking abilities of these phones is too risky for me .... I would love to see some privacy apps come out that can get a handle on this issue.
Here they need a warrent if they want to track your Phone through the provider and over here the providers wont give any info if they dont have to as far as i know.
Not Anymore i found the Backdoor Nobody belive me but Why
The name of the Backdoor is SevenEngine.apk delet it and no more Spying
Sent from my GT-S5830i using xda premium
Red Hack group said:
Not Anymore i found the Backdoor Nobody belive me but Why
The name of the Backdoor is SevenEngine.apk delet it and no more Spying
Sent from my GT-S5830i using xda premium
Click to expand...
Click to collapse
Well... If you perhaps looked into what that app is, you'd find that it's the engine powering Samsung stock ROM email services?
Before you claim something is a backdoor, and that removing it leads to "no more spying", what about some proper analysis of the app?
The app is not present on stock version of Android either
This app dont appear is service list and used this week 190 Gb data connection Oo explain !
Sent from my GT-S5830i using xda premium
Red Hack group said:
This app dont appear is service list and used this week 190 Gb data connection Oo explain !
Sent from my GT-S5830i using xda premium
Click to expand...
Click to collapse
If it's not in the service list, it's not a service...
190 Gb - really? I think you need to either check your stats are correct there, or look at the traffic you've sent/received in terms of Email.
You can't "call" a backdoor using these userland tools, as a good backdoor won't appear in them...
I would more worry about the millions of users who check e-mail on a device on public WiFi (secured with password or not).
So many people connect to POP accounts with the credentials sent in plain text format with no secure e-mail setup.
Same applies to some Apps not just the main App bundled with the system.
P.S. I am not talking about sending passwords by e-mail in plain text. (yet I worry for the masses that do that also.)
I am talking about those who have e-mail accounts setup on a device, but the e-mail client communicates with the e-mail server for log-in with an unsecured / unencrypted protocol.
zurpher said:
I am aware of Xprivacy, OpenPDroid and Replicant. What other work is done to make Android more privacy friendly?
Click to expand...
Click to collapse
Good thread, thanks has been given. Have a look into my signature. This is the project I am very fire and flame for at the moment. If you would like to know when being traced down by law enforcement agencies or police, participate in developing this awesome app!
NSA's sole purpose is spying, they will die but do this. They try to spy on everybody not just in USA but all over the world. Smartphones are not the only target. They put their hands on everything, I am sure Windows and other OS and most popular software are full of hidden back-doors inserted by NSA. Of course it is done without warrants. It is approved by secret judges in secret courts. Thanks Snowden and other guys to poor more light on this.
Im glad this forum was started... I am very excited about android security as well and for a good reason: I have a lot of highly confidential patient files on my phone and tablet and would never imagine of giving them up.
For the communtiy who want more : there's an app out of beta but still in developement called network connections. google it. It monitors the current live connections and their IP address. In my opinion very useful but i think its needs a rigerous run. Ive been using wireshark but thats a bit too hectic given my time constraints. Oh and the dev has graciously put the pro version for free download for this week only. so give that a try and let me know.
Of course, lets not kid ourselves into believing Android is secure from highly funded and powerful spying agencies.
aejazhaq said:
I have a lot of highly confidential patient files on my phone and tablet and would never imagine of giving them up.
Click to expand...
Click to collapse
Hahaha.. you suck in securing your files!
dharmabum02 said:
I agree .... just recently a criminal in my area was found and arrested after the police called his cell phone provider and had them track him for them... now it's good that a criminal was caught but the possibility of abuse of the tracking abilities of these phones is too risky for me .... I would love to see some privacy apps come out that can get a handle on this issue.
Click to expand...
Click to collapse
A cell provider can track you like this regardless of what type of phone you have. It's not a smartphone thing. All they need to do is see what cell tower your phone is connected too (any network, not just data). And since it's their tower they know where it is - hence they know your approximate location from you turning your phone on.
So if you don't want your provider to know where you are - don't connect to their network.
SecUpwN said:
Hahaha.. you suck in securing your files!
Click to expand...
Click to collapse
hahahaha... yeah but I have to work off my tablet and theres so much in a days work unless the precess is automated I doubt I can do it every single time. The others just will probably have a hard time with APG anyway ... for now im sticking with the hospital address.
I'll be back said:
NSA's sole purpose is spying, they will die but do this. They try to spy on everybody not just in USA but all over the world. Smartphones are not the only target. They put their hands on everything, I am sure Windows and other OS and most popular software are full of hidden back-doors inserted by NSA. Of course it is done without warrants. It is approved by secret judges in secret courts. Thanks Snowden and other guys to poor more light on this.
Click to expand...
Click to collapse
Ya
zurpher said:
Surprise, surprise!
-http://www.spiegel.de/international/world/a-920971.html-
I believe that smartphones are a gold mine not only for spying agencies but also for commercial behavioral trackers. I would wish to see more privacy-aware development from the XDA community.
I am aware of Xprivacy, OpenPDroid and Replicant. What other work is done to make Android more privacy friendly?
Click to expand...
Click to collapse
Of course they are a data gold mine.
At one time everyone was warning of the day we'd have ID chips implanted in us to track our every movement. No need for that, we all willingly submit by carrying phones.
There is no privacy software that will help you. Your carrier can be compelled by secret courts to hand over any metadata associated with your account. This is not isolated to the US. Canada is doing it too, and probably many other countries.
If you want privacy, you can't connect to any networks.
flar2 said:
There is no privacy software that will help you.
Click to expand...
Click to collapse
Have a look at THIS THREAD. It aims to develop a tool to at least warn people that they're being traced down. Developer missing. Post there and revive the project!
zurpher said:
Surprise, surprise!
-http://www.spiegel.de/international/world/a-920971.html-
I believe that smartphones are a gold mine not only for spying agencies but also for commercial behavioral trackers. I would wish to see more privacy-aware development from the XDA community.
I am aware of Xprivacy, OpenPDroid and Replicant. What other work is done to make Android more privacy friendly?
Click to expand...
Click to collapse
Really, all this NSA bs is nothing new. If you are just now aware that spy agencies can spy on you now, well welcome to the modern age. They could spy on your phone even before smartphones existed.
Now what they are mostly doing is "Data Mining" on top of being able to hear what you say and if you really think you can do something against it, think again. And BTW, every developed country does it. The whole evil NSA is just antiamerican propaganda. If you think the russians are not spying or the chinese are not spying, think again. Maybe this will ease your conscience a bit by knowing that everybody spies.
If you are afraid of being spied and you have valuable information, you should not be asking major geopolitical agencies to change their policy, instead you should get off the internet. These are matters of "National Security".
Wellcome to the information age.
Information is power.
shadowcore said:
Really, all this NSA bs is nothing new. If you are just now aware that spy agencies can spy on you now, well welcome to the modern age. They could spy on your phone even before smartphones existed.
Now what they are mostly doing is "Data Mining" on top of being able to hear what you say and if you really think you can do something against it, think again. And BTW, every developed country does it. The whole evil NSA is just antiamerican propaganda. If you think the russians are not spying or the chinese are not spying, think again. Maybe this will ease your conscience a bit by knowing that everybody spies.
If you are afraid of being spied and you have valuable information, you should not be asking major geopolitical agencies to change their policy, instead you should get off the internet. These are matters of "National Security".
Wellcome to the information age.
Information is power.
Click to expand...
Click to collapse
Too true, sadly.
So loving my note 3. I haven't rooted it yet or anything. As I want to see how the stock rom is for a month or so.
Something has been bugging me ever since I have started caring about my privacy and security. as every App I want to install wants to read my call log, control SMS's record conversations ect. when the app doesn't need to. for instance my favorite radio station. Thinks it needs the permission to know who I've called! What the hell for?
It's the reason I've begin to fall in love with Paranoid android ROM. I had it on my note 2. granted I couldn't use the S-pen at all as it didn't use touchwiz. but I found the ability to edit each apps security settings. worth the sacrifice!. (if anyone reads this. is there a way to put that into any ROM? the permissions editor?) I'd love to install it. but onto the pressing issue.
Samsung includes this magical service with the note 3 called Knox. now it's supposed to give you enterprise security.
When all it does. is constantly give me notifications that it's stopped certain programs from running.
when this morning I clicked the right button which too me to the permissions that Knox gets here they are
read phone status and identity
read, edit SMS's
full network access, ability to change network conns
retrieve running apps
prevent phone from sleeping
directly call phone numbers
Take pictures and video
Record audio
approximate location. Pinpoint location
Modify call contacts. read call log
add read or modify calendar events
read all web history, bookmarks ect
Modify or delete usb storage
Disable screen security
complete account control
Read dictionary terms
pair with any bluetooth
there is also lots of other non essential stuff. This is Freaking Alarming at the minimum. if no one is worried about this then its very sad! This screams NSA back door!
jjbk said:
This is Freaking Alarming at the minimum. if no one is worried about this then its very sad! This screams NSA back door!
Click to expand...
Click to collapse
I know a couple of CIO's that are wetting themselves over KNOX and they (and the DOD, CIA, and NSA for internal use) are the primary audiences. I'd like to assume that people in charge of protecting corporate data are smart enough to investigate the tools they are using to do that pretty thoroughly. My assumption is that the boatload of permissions KNOX requires are all tied to administering, monitoring, protecting, archiving, and deleting data off of devices being policed with MDM. Based on Huawei and Lenovo being cut out of acquisition opportunities and lucrative Western networking contracts because of their ties to the Chinese and "spying" I'd say the quickest way for Samsung to put themselves out of business and take Korea with them is to do what you're suggesting.
The KNOX is truly crap!
I had disable all KNOX after ROOT.
Samsung doing this KNOX thingy is full to crap! extremely useless!
jjbk said:
It's the reason I've begin to fall in love with Paranoid android ROM. I had it on my note 2. granted I couldn't use the S-pen at all as it didn't use touchwiz. but I found the ability to edit each apps security settings. worth the sacrifice!. (if anyone reads this. is there a way to put that into any ROM? the permissions editor?) I'd love to install it. but onto the pressing issue.
Click to expand...
Click to collapse
You can do this now with an unrooted Note 3. It's a sort of hidden feature of Android 4.3, but you just need access to an 'activity' called App Ops. There is a handy app in the Play store that creates this link for you:
https://play.google.com/store/apps/details?id=com.appaholics.applauncher
Knox is also a device administrator and to work correctly it needs pretty much all permissions.
That's normal.
Sent from my SM-N9005 using XDA Premium 4 mobile app
jeromepearce said:
You can do this now with an unrooted Note 3. It's a sort of hidden feature of Android 4.3, but you just need access to an 'activity' called App Ops. There is a handy app in the Play store that creates this link for you:
https://play.google.com/store/apps/details?id=com.appaholics.applauncher
Click to expand...
Click to collapse
Thanks. I got it. and started using it can't wait till paranoid brings out a good ROM. or something with full S pen funtionality. and then just install this on Thanks Once again
All this knox talk is funny. What are you really scared of?
NSA? No problem unless you're trying to hide something you should not be doing. If they want to see my search history or see my pics and read my emails, then go for it.
I just simply rooted and removed Knox, lots written about it - the secret agenda is nonsense.
jjbk said:
here is also lots of other non essential stuff. This is Freaking Alarming at the minimum. if no one is worried about this then its very sad! This screams NSA back door!
Click to expand...
Click to collapse
Of course Knox needs all these permissions - it is, essentially, a virtualised phone OS within a real phone OS.
Without those permissions, it simply wouldn't work!
Regards,
Dave
There is always this conspiracy theory :laugh:
Ppl need to cool down and chill.
foxmeister said:
Of course Knox needs all these permissions - it is, essentially, a virtualised phone OS within a real phone OS.
Without those permissions, it simply wouldn't work!
Regards,
Dave
Click to expand...
Click to collapse
There's no question KNOX is a nightmare for enthusiasts. But enthusiasts make up 5% of the market. XDA being the biggest enthusiast site on the web has 5M members; Samsung will sell 250M smart devices this year. The corporate market is probably 25-30% of annual smartphone sales. That's who KNOX is for and so far it's been extremely well received. I know of one company that's issued a mandate that all employees must use Samsung phones equipped with KNOX whether supplied by the company or via BYOD. If that happens enough Samsung's hit a home run with KNOX even if all 5M XDA members buy other phones. KNOX has been so successful LG's doing something similar.
http://www.engadget.com/2013/10/01/lg-gate-enterprise-security/
So ladies and gentlemen, KNOX and its ilk are here to stay.
weedahoe said:
All this knox talk is funny. What are you really scared of?
NSA? No problem unless you're trying to hide something you should not be doing. If they want to see my search history or see my pics and read my emails, then go for it.
Click to expand...
Click to collapse
Your mentality sucks. Surely i can expect some kind of privacy on a personal device. Wether im doing something i shouldnt be or not.
BarryH_GEG - is completely right its aimed at Corp users and its very useful. - those that slag it off has no idea what it is and what its used for.
KNOX - is Samsung's version SELinux, since its now standard in Linux Kernel, all variations of Linux will have this feature and Andriod is an variation of Linux.
So if you dont like SELinux you better switch from Andriod smartphones as this will be standard soon no matter which OEM you choose.
weedahoe said:
All this knox talk is funny. What are you really scared of?
NSA? No problem unless you're trying to hide something you should not be doing. If they want to see my search history or see my pics and read my emails, then go for it.
Click to expand...
Click to collapse
Putting KNOX aside, I want to understand your perspective on privacy.
Here's my perspective:
I have nothing to hide nor am I working in politics.
But with this backdoor technology, it IS a serious concern for journalists and honest politicians running against the current corrupted elite establishment.
Who (in the sex obsessed American public eye) will take their cause seriously after the establishment (with the help of NSA DB) releases a phone-sex tape or pictures of drunken high school pics?
In 2008, NSA workers told ABC News that they routinely eavesdropped on phone sex between troops serving overseas and their loved ones in America.
Click to expand...
Click to collapse
Who's to be the honest watchdog of the establishment if all journalists can be blackmailed with their personal info before they release their reports of establishment corruption?
This is not about something to HIDE.
It's about freedom and democracy.
Do you want your children to inherent a world where they can MAKE A DIFFERENCE or one where THEY CAN NOT??
You do know that Samsung is a Korean company - and a strongly nationalist one to the extent of a General Electric or. General Motors - right?
perosredo said:
You do know that Samsung is a Korean company - and a strongly nationalist one to the extent of a General Electric or. General Motors - right?
Click to expand...
Click to collapse
What does that have to do with whether it will comply with the laws in the country it wants to do business in?
Google a US COMPANY had to comply and censor results in many countries at the request of the foreign gov.
Twitter had to censor the posts of Arab Spring supporters at the request of their govs
BlackBerry a CANADIAN COMPANY had been pressured into releasing encryption keys to the Indian gov to spy on comms.
Samsung wants to do business in your country, does it not?
weedahoe said:
All this knox talk is funny. What are you really scared of?
NSA? No problem unless you're trying to hide something you should not be doing. If they want to see my search history or see my pics and read my emails, then go for it.
Click to expand...
Click to collapse
Agreed........... I deliberately take regular photos of my untrimmed white bits just for them.... :laugh:
jonlewi5 said:
Your mentality sucks. Surely i can expect some kind of privacy on a personal device. Wether im doing something i shouldnt be or not.
Click to expand...
Click to collapse
You better get off the internet now and any social site you might have ever been on. Lots of engines index everything you put out there so even though you think you delete it, its still there......somewhere
klau1 said:
I want to understand your perspective on privacy.
Click to expand...
Click to collapse
Anyone here's perspective on privacy really doesn't belong on XDA. It's one thing to talk about the impact of KNOX on device development, how to use (or not use) its functionality, and what its impact is to privacy and another to have general privacy discussions that belong on Reddit.
OP's question was asked and answered. KNOX's sweeping permissions are required for it to function. If people feel that KNOX could impact their privacy disable it or send Samsung a message by not buying their products. Just like Samsung's reaction to the negative coverage of Region Lock was to ignore it you can pretty much assume that'll be their position on KNOX too. I use KNOX so if there's some sort of nefarious activity it performs or my data gets compromised I'll report back. That's assuming I'm not captured by the CIA and renditioned to a foreign country and water boarded.
klau1 said:
But with this backdoor technology, it IS a serious concern for journalists and honest politicians running against the current corrupted elite establishment.
Click to expand...
Click to collapse
What backdoor technology? KNOX?
Unless you are running your own version of a mobile OS, compiled from source and having reviewed all the code to remove any backdoors, you are potentially vulnerable to all sorts of backdoors that Google, Samsung, HTC, Microsoft, Apple, or any other company may have inserted the ROM build you are running. KNOX changes none of this.
Privacy is an illusion, and always has been!
Regards,
Dave