Tough security ROM - ONE Q&A, Help & Troubleshooting

I want to port the rom which gives me highest level of security on my rooted oneplus one device, whether it eats battery, slow working, less features, no matter of camera, video and/or internet. I wish that ROM should be most secured for hacking and must be rewarded for a great price for bug bounty programs.
Can anyone please suggest me the name of best secured ROM till now?

GirishSharma said:
I want to port the rom which gives me highest level of security on my rooted oneplus one device, whether it eats battery, slow working, less features, no matter of camera, video and/or internet. I wish that ROM should be most secured for hacking and must be rewarded for a great price for bug bounty programs.
Can anyone please suggest me the name of best secured ROM till now?
Click to expand...
Click to collapse
First things first. You are in wrong thread. This should be in Q&A section.
All the ROMs here are secure. You should take care of what you install and from where you install.
BTW Ever heard of iOS??

GirishSharma said:
I want to port the rom which gives me highest level of security on my rooted oneplus one device, whether it eats battery, slow working, less features, no matter of camera, video and/or internet. I wish that ROM should be most secured for hacking and must be rewarded for a great price for bug bounty programs.
Can anyone please suggest me the name of best secured ROM till now?
Click to expand...
Click to collapse
Kali Nethunter.
#A0001

Please check this link:
http://thehackernews.com/2015/11/ios9-zero-day-hack.html?m=1
Will you still like iOS?
Nothing is secure, even if you are installing from authenticated source though, that is why I urge to great ROM developers to please put more weightage to security rather than battery, camera, audio, video, internet speed, fancy pump and show etc.

GirishSharma said:
Please check this link:
http://thehackernews.com/2015/11/ios9-zero-day-hack.html?m=1
Will you still like iOS?
Nothing is secure, even if you are installing from authenticated source though, that is why I urge to great ROM developers to please put more weightage to security rather than battery, camera, audio, video, internet speed, fancy pump and show etc.
Click to expand...
Click to collapse
Mate, one way to ensure security on any ROM based on OPO is to enable encryption from Settings.
Yes, iOS was hacked by those hackers, TBH, iOS is stable and more secure than Android.
Rooting is one of the way that you compromise your security.
Best combination for security is : Non root + Stock + encryption + no sideloading of apps + restricting permissions + Antivirus app(if you are interested)
Developers can only develop apps and integrate in ROMs
Only Google can enforce more security by coding the required lines in AOSP

I am downloading the zip file from below link:
http://images.kali.org/kali_linux_nethunter_2.0.1_bacon_lollipop.zip
Is it flashable ROM please i.e. installation like other ROM through twrp?

GirishSharma said:
I am downloading the zip file from below link:
http://images.kali.org/kali_linux_nethunter_2.0.1_bacon_lollipop.zip
Is it flashable ROM please i.e. installation like other ROM through twrp?
Click to expand...
Click to collapse
Better ask the location where you got the ROM from.

Related

[Q] Is there a Android app like "Activator: on the iPhone

Hello,
I was wondering if there was an Android app like Activator on the iPhone? I have searched to the best of my abilities regarding this question but have not found a clear answer. The closest I have come to finding this answer was the app "LaunchKey." However, it does not seem to fit what I am looking for.
Reason for this search is due to my brief episode with the iPhone 3g and yes I know...(after finding out, android system is definitely better in terms of customizing and freedom) Thus during that time I came upon this app called "Activator", which is basically amazing. Now that I am back using the android system I realized the only I miss about the iPhone was that app.
So if anyone can help that would be great! Thanks!
BTW:
Background information on the iPhone jailbreak app "Activator." Basically you can launch any apps and system actions via gestures or hardware buttons. (such as long-press, short-press, double tap,etc...)
http://forum.xda-developers.com/showthread.php?t=850464
and for gestures Im not entirely sure where I saw it or or what it was called but it does exist.
Reply
Thanks for the reply, however, I did stumble upon that app but it does not really support long press, short press, double tap and other various hardware buttons. As for gestures, I guess it does not matter as much as the hardware button configuration. Basically can a button have more functions than just one ie: home button-going to home. Thanks
I'm hoping that this app exists, as its one of the first apps I discovered years ago that was auto installed after jail breaking my previous iPhone. The app basically allows you customize a very large range of settings as shortcuts.
http://m.lifehacker.com/5899492/mak...hen-you-connect-or-disconnect-your-headphones
not strongly related but here's an app which I found very useful:
https://play.google.com/store/apps/details?id=tora.mamma.swipestart
Thanks!
Thanks for your input I however have found the app "SwipePad" to be extremely useful, albeit not the original application I was looking for but it does the job Thank you again!
really!!! Android is amazing, I think is like a pocket pc, but sometimes I miss my old iPhone when I remember cydia tweeks like Activator. :silly:
mnunez2 said:
really!!! Android is amazing, I think is like a pocket pc, but sometimes I miss my old iPhone when I remember cydia tweeks like Activator. :silly:
Click to expand...
Click to collapse
LOL, yeah same here man this post is old Most of the updates in 4.2 resolved my need for Activator...though not as much options it serves well nevertheless
clikonco said:
LOL, yeah same here man this post is old Most of the updates in 4.2 resolved my need for Activator...though not as much options it serves well nevertheless
Click to expand...
Click to collapse
OMG This is what I want to say my Android Friends Iphone tweaks are more easy way to go, im wondering How can I get Activator !!! >> since 4 years im iphone user and recently bought Note 2 (still I have Iphone) this entire conversation is what im looking for Please help to get a tweaks like that even I looked Cydia substrate for Android mm no use as of know....
Widgets are great but you still have to unlock the phone and look at the screen and press it. With activator you can, for example, press the power button of the phone twice and that will initiate the flash light... this is much better when you are in need of the flash light quickly...I wish android had something like that...
Help Help .... Droid help
webvamsi555 said:
OMG This is what I want to say my Android Friends Iphone tweaks are more easy way to go, im wondering How can I get Activator !!! >> since 4 years im iphone user and recently bought Note 2 (still I have Iphone) this entire conversation is what im looking for Please help to get a tweaks like that even I looked Cydia substrate for Android mm no use as of know....
Widgets are great but you still have to unlock the phone and look at the screen and press it. With activator you can, for example, press the power button of the phone twice and that will initiate the flash light... this is much better when you are in need of the flash light quickly...I wish android had something like that...
Help Help .... Droid help
Click to expand...
Click to collapse
I believe since the time I have posted this question to the present, there have been alternatives as well as actual implementations to the hardware tweaks. Currently, there are baked in hardware tweaks in custom ROM such as CM10.1 (lock screen long press buttons do variety of different things) or software programs such as swipepad, or Trigger app (Both of which I use a lot)
My current ROM CM10.1 has the capability of accessing the flashlight from the longpress of home button while in lockscreen. Or even changing music volume and music track by volume press/longpress. This I consider the equivilent of what you were referring to.
clikonco said:
I believe since the time I have posted this question to the present, there have been alternatives as well as actual implementations to the hardware tweaks. Currently, there are baked in hardware tweaks in custom ROM such as CM10.1 (lock screen long press buttons do variety of different things) or software programs such as swipepad, or Trigger app (Both of which I use a lot)
My current ROM CM10.1 has the capability of accessing the flashlight from the longpress of home button while in lockscreen. Or even changing music volume and music track by volume press/longpress. This I consider the equivilent of what you were referring to.
Click to expand...
Click to collapse
Hi Clikonco,
Thanks for the Update, awesome response, I'm new to Android and have few questions
1) if I do Custom Rom CM10.1 can I get is back to normal Stock ROM to get warranty back ?
2) If so what would be the best procedure to install CM10.1 ?
I already root my Stock Rom with Rooting using Odin by Beginners Guide
3) So would I be able to install CM10.1 after rooting my custom Rom
4) If possible also please point me(url) to unroot custom Rom to Stock Operating system please (for future need).
5) And also I heard a lot about cm10, cm10 nightly, cm10 aopk which one is better or all these same ? I have international Note 2 with
GT- N7100 > 4.1.2 > Baseband : N7100DDDMG1 > Build no : JZ054K.N7100XXDMG1 > Kernel V: 3.0.31-1071214
confused !!!!
Please help .. Thanks a lot lot lot :good:
webvamsi555 said:
Hi Clikonco,
Thanks for the Update, awesome response, I'm new to Android and have few questions
1) if I do Custom Rom CM10.1 can I get is back to normal Stock ROM to get warranty back ?
2) If so what would be the best procedure to install CM10.1 ?
I already root my Stock Rom with Rooting using Odin by Beginners Guide
3) So would I be able to install CM10.1 after rooting my custom Rom
4) If possible also please point me(url) to unroot custom Rom to Stock Operating system please (for future need).
5) And also I heard a lot about cm10, cm10 nightly, cm10 aopk which one is better or all these same ? I have international Note 2 with
GT- N7100 > 4.1.2 > Baseband : N7100DDDMG1 > Build no : JZ054K.N7100XXDMG1 > Kernel V: 3.0.31-1071214
confused !!!!
Please help .. Thanks a lot lot lot :good:
Click to expand...
Click to collapse
**ATTENTION: any of the information I have provided are based on my own experience/knowledge/research. IT IS IMPERATIVE(important) that you do your own research to double check my information and advice. If ever in DOUBT, ask/research around. (or dont follow through is usually the safest option) YOU are ultimately responsible for what you do with YOUR device, if you don't believe this, please do not continue dabbling in this area.​​
You should be able to do that, to "unroot" your phone, but it depends on the device as well as the instructions that other developers/rooters have given. (meaning not 100% probable, you need to do more research)
*JUST NOTICED YOU SAID YOU ARE ROOTED
-To get Stock ROM, just download the appropriate ROM zip files and then flash it.
-if you want to get warranty back, you will have to follow instructions for your device on how to unroot. (if even possible)
Follow the instructions given on the cyanogenmod website, usually involves flashing and wiping. (sounds like you have a samsung phone )
Based on question 3 statement, I believe you have to do MORE research. (as this is an extremely basic idea of rooting, unless of course I misread or the question was mistyped) Here is where you can start:CM about
Again, you have to do MORE research yourself, google is your friend for that. There is no one size fits all unrooting method.
Cyanogenmod (also known as CM) has an software release life cycle. (not counting the M snapshot nor experiments) You have Stable>Nightly> Release Candidates(RC).
Taken from this Forum
bassmadrigal:
Stable is after all the features desired by the CM devs have been put in and the code has been tested. Snapshots (M builds) are builds done roughly once a month that has had some testing to make sure things are mostly working and released to the public. These are the first builds that allow official bug reports on the project manager site, https://jira.cyanogenmod.org. Nightlies are automated builds that are built, well, every night. There is no human interaction with these and they are largely there just to see if the code added throughout the day will compile. As far as the devs are concerned, there are no bad builds with the nightlies, because if it doesn't build, that is news to let them know that something is screwed up in the code. They don't accept any bug reports on these builds.
Generally, the nightly builds, while extremely experimental and considered bleeding-edge, tend to be relatively stable and mostly bug-free. Many people use the nightlies as their so-called daily-driver, meaning that any bugs that they may have aren't so severe that they want to switch to a different version. For my Nexus 4, as soon as I got it I switched to a nightly build and haven't had any bugs pop up.
Also, all builds are full builds, so if you switch to a nightly, you aren't required to flash every single nightly. You can do it as you see fit. I've been known sometimes to flash a build every day, but then I've gone a month in between updating. Just grab the latest version you want to flash and flash that one.
Click to expand...
Click to collapse
Similar answer regarding AOPK (Android Open Kang Project:What Is AOKP ROM? How Is It Different From CM9? All You Ever Wanted To Know About
Hope these answered/helped you. I intentionally did not include some information such as unrooting because you will have find them yourself Alright, already spent too much time on this post, im out for now.
BTW: if you or anyone finds incorrect information in this post, please feel free to correct me. Thank you!
clikonco said:
Hello,
I was wondering if there was an Android app like Activator on the iPhone? I have searched to the best of my abilities regarding this question but have not found a clear answer. The closest I have come to finding this answer was the app "LaunchKey." However, it does not seem to fit what I am looking for.
Reason for this search is due to my brief episode with the iPhone 3g and yes I know...(after finding out, android system is definitely better in terms of customizing and freedom) Thus during that time I came upon this app called "Activator", which is basically amazing. Now that I am back using the android system I realized the only I miss about the iPhone was that app.
So if anyone can help that would be great! Thanks!
BTW:
Background information on the iPhone jailbreak app "Activator." Basically you can launch any apps and system actions via gestures or hardware buttons. (such as long-press, short-press, double tap,etc...)
Click to expand...
Click to collapse
Use xposed addition in xposed

Android custom ROM for security + minimal of Google?

Hi everyone,
can you recommend me some custom Android ROMs with focus on better security? Or isolate of dependence on Google?
Both of them together will be the best.
My phone is Samsung Galaxy S2.
Many thanks
dj.houba said:
Hi everyone,
can you recommend me some custom Android ROMs with focus on better security? Or isolate of dependence on Google?
Both of them together will be the best.
My phone is Samsung Galaxy S2.
Many thanks
Click to expand...
Click to collapse
Cyanogen or GingerBread are some good ROMS for good security, as I know.
D-J Mutant said:
Cyanogen or GingerBread are some good ROMS for good security, as I know.
Click to expand...
Click to collapse
Thanks, yes, I know about Cyanogen.
Oh you mean GingerBread from Google? This is exactly what I don't want. I want to separate from Google, coz we all know about NSA case. So I thought, there will be some developers, who will try to build some custom ROM and try to eliminate "Big brother" and focus mainly on security.
Omnirom is supposed to be security and privacy consious.
Sent from my Nexus 7 using XDA Premium 4 mobile app
Well I'd suggest the cyanogenmod, but without the google apps. They're optional.
In the nexus 4 section there is an aokp that is patched so built in Google analytics are gone. There is a patch that can be applied to other ROMs.
Custom roms, including Cyanogenmod, have a history of BAD security. Many rom developers end up introducing new vulnerabilities. In the past, some hardened Android builds existed, but I know of no current hardened roms.
I personally would stay away from custom roms, and stick to as close to AOSP as possible, signed with your own private keys. (and no Omnirom, AOKP, Cyanogenmod are NOT AOSP in any way shape or form.)
jcase said:
Custom roms, including Cyanogenmod, have a history of BAD security. Many rom developers end up introducing new vulnerabilities. In the past, some hardened Android builds existed, but I know of no current hardened roms.
I personally would stay away from custom roms, and stick to as close to AOSP as possible, signed with your own private keys. (and no Omnirom, AOKP, Cyanogenmod are NOT AOSP in any way shape or form.)
Click to expand...
Click to collapse
Is that so , see from what u saying ,,, the ASOP is better then the other build rite
Sent From GT i9300
jcase said:
Custom roms, including Cyanogenmod, have a history of BAD security. Many rom developers end up introducing new vulnerabilities. In the past, some hardened Android builds existed, but I know of no current hardened roms.
I personally would stay away from custom roms, and stick to as close to AOSP as possible, signed with your own private keys. (and no Omnirom, AOKP, Cyanogenmod are NOT AOSP in any way shape or form.)
Click to expand...
Click to collapse
How do you get your own private key and what does that do? Sorry, I have never heard of this, so I'm sure others are probably also wondering.
Sent from my Nexus 5 using XDA Premium 4 mobile app
Thanks
Thanks, I was trying different ROMs, finally I chose PAC-MAN ROM without Google apps
Hello !
does it mean that any modded stock rom with GApps will be insecure ?
Thx
just youtube some galaxy s2 roms you'll find reviews on some good roms
JamieFL said:
How do you get your own private key and what does that do? Sorry, I have never heard of this, so I'm sure others are probably also wondering.
Sent from my Nexus 5 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
http://www.kandroid.org/online-pdk/guide/release_keys.html
something like this
I think you can skip "make dist" part, just do a regular build as you would normally (CyanogenMod ==> brunch your_device
you can fine the need file under "out/target/product/hammerhead/obj/PACKAGING/target_files_intermediates/cm_hammerhead-target_files-")
for Cyanogenmod Nexus 5 for ex (hammerhead )
source build/envsetup.sh
brunch hammerhead
and you'll fine the target_files zip under
out/target/product/hammerhead/obj/PACKAGING/target_files_intermediates/
that the one you need to feed to build/tools/releasetools/sign_target_files_apks
There are some really exciting Android security projects out there... For instance, one awesome function a-la-Truecrypt involves full disk encryption with plausible deniability. You are able to give out a first-layer passphrase if you are coerced - yet a truly private volume remains secure and disguised within the apparent unused portion of the storage disk.
Yet it's unlikely that any of this is relevant to you, otherwise you wouldn't be asking this sort of thing. When it comes to security leaks, try to barricade off the paths of least resistance from the ground up. For instance, even all of that wouldn't do much good if you had forensic evidence of your phone config on your computer, a lockscreen that could be bypassed, a phone seized whilst still turned with encryptions keys remaining in RAM, etc. Also keep in mind all of the data you are sending out in the clear via your cloud storage, SMS/IM, WiFi, etc.
So in the end, just pick a ROM that runs smoothly and you enjoy. Whatever you end up deciding, make absolutely certain to:
- encrypt with strong passphrase (then use cryptfs app to create a shorter lock screen key)
- disable USB debugging
---------- Post added at 06:06 AM ---------- Previous post was at 05:32 AM ----------
JamieFL said:
How do you get your own private key and what does that do? Sorry, I have never heard of this, so I'm sure others are probably also wondering.
Sent from my Nexus 5 using XDA Premium 4 mobile app
Click to expand...
Click to collapse
This probably isn't exactly spot on, but here's a rough sysnopsis... When a ROM is built from source, the creator "signs" their creation (i.e. the ROM and the apps within). This way you can be sure that you're indeed getting an official ROM built by AOKP (or whomever) and not by some malicious 3rd party. Likewise, the Android OS uses signatures to ID which files are legitimate and given permission to run (i.e. official updates). However, there have been incidents with custom ROMs when this functionality has been exploited. This could allow an otherwise innocuous seeming app to deploy hidden malware and cloak itself as a legitimate app, gaining full rights to the phone.
A self-built ROM with your own private key is presumably safer against such an attack. I don't think most people would need to be concerned about this, but still something to keep in mind. Unfortunately jcase is spot on about custom ROMs almost always creating or exposing more vulnerabilities than stock. For instance, features like ADB or USB-OTG are often enabled by default. If that wasn't bad enough, in the event that your phone is ever lost/stolen/seized, having a custom recovery installed is pretty much handing over your identity with a bow wrapped on top. It makes it easy for anyone to bypass PIN/password/face/gesture-lock or dump off the entire disk image. Not to mention analysis can reveal your account passwords, WiFi keys, SMS, phone records, photos. Most of these vulnerabilities can be safeguarded against with careful consideration, but you certainly won't get there by default.
dj.houba said:
Thanks, yes, I know about Cyanogen.
Oh you mean GingerBread from Google? This is exactly what I don't want. I want to separate from Google, coz we all know about NSA case. So I thought, there will be some developers, who will try to build some custom ROM and try to eliminate "Big brother" and focus mainly on security.
Click to expand...
Click to collapse
The only way to eliminate the ability of a nation-state interfering in your data would be to not generate any. If they're watching you, then stopping them from watching you isn't going to be possible. So it's better to ensure that when they watch you appear innocent.
Granted, I'm not saying you shouldn't take any precautions. But to truly get away from their snooping you're probably better of without a phone.
fadedout said:
There are some really exciting Android security projects out there... For instance, one awesome function a-la-Truecrypt involves full disk encryption with plausible deniability. You are able to give out a first-layer passphrase if you are coerced - yet a truly private volume remains secure and disguised within the apparent unused portion of the storage disk.
Yet it's unlikely that any of this is relevant to you, otherwise you wouldn't be asking this sort of thing. When it comes to security leaks, try to barricade off the paths of least resistance from the ground up. For instance, even all of that wouldn't do much good if you had forensic evidence of your phone config on your computer, a lockscreen that could be bypassed, a phone seized whilst still turned with encryptions keys remaining in RAM, etc. Also keep in mind all of the data you are sending out in the clear via your cloud storage, SMS/IM, WiFi, etc.
So in the end, just pick a ROM that runs smoothly and you enjoy. Whatever you end up deciding, make absolutely certain to:
- encrypt with strong passphrase (then use cryptfs app to create a shorter lock screen key)
- disable USB debugging
---------- Post added at 06:06 AM ---------- Previous post was at 05:32 AM ----------
Click to expand...
Click to collapse
:good: Excellent advice.
I still wonder if AOSP or any of the bigger custom ROMs without Gapps is truly Google free. I have been browsing the forums for a while on that question but cant really find a good answer. Google free meaning: it doesn't communicate in any way on any moment with Google.
Anyone who can verify that? Has there ever been a XDA'er who researched this? For some it seems an assumption and some think since Android is developed by Google they surely try to analyze even AOSP roms or derivatives.
Liberr said:
I still wonder if AOSP or any of the bigger custom ROMs without Gapps is truly Google free. I have been browsing the forums for a while on that question but cant really find a good answer. Google free meaning: it doesn't communicate in any way on any moment with Google.
Anyone who can verify that? Has there ever been a XDA'er who researched this? For some it seems an assumption and some think since Android is developed by Google they surely try to analyze even AOSP roms or derivatives.
Click to expand...
Click to collapse
It only sends version statistics to Google, and there's a build.prop setting that allegedly disables it (ro.config.nocheckin=1) -- haven't tried it because I'd rather show my pride in Gingerbread
smartymcfly said:
There is a patch that can be applied to other ROMs.
Click to expand...
Click to collapse
What and where is this patch?
I would think you could block all of Google's ip address's in your host file on any rom also.
You could edit the host file before flashing it.

Is there any secure custom roms or os?

I wish to know if there are any custom roms or os'es that wouldn't touch my data using background processes that doesn't ask for permission to do so. Because these apps are either pre-installed or installed by me (which ask for permissions up front)? Or at least that I would be able grant app permissions when it needs them? It's like a real time permission request service.
Thanks.
I don't understand your question very well but I think you'll need an AOSP 6.0 ROM like the one made by Flashhhh beacuse AOSP is the most secure beacuse just Google modifies it and the developer (Flashhhh in our case). You can't make it 100 % secure beacuse you need to encrypt the partition and lock the bootloader. Encryption slows the device like hell and locking the bootloader with costum software cannot by made except if some of the great develoeprs of the falcon can reprogram the bootloader and the other low level bootloaders. Hardware encryption isn't supported on falcon I don't know why beacuse my Lumia 435 has encryption enabled via settings as you can see here:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
And yes the device is as fast as with the option disabled ! So hardware encryption is supported on Snapdragon 200 and our device has Snapdragon 400. I don't know why but that's the life...I am also interested in a secure OS with encryption that can run on our Moto G without performance loss.
I was really looking forward to cyanogen-mod, because it was looked as safe. But after I've read their DISCLAIMER stating "Modifying or replacing your device's software may void your device's warranty, lead to data loss, hair loss, financial loss, privacy loss, security breaches, or other damage, and therefore must be done entirely at your own risk. No one affiliated with the CyanogenMod project is responsible for your actions. Good luck." I changed my mind. I am paranoid about my privacy and security therefore this disclaimer put all my excitement and hopes to find privacy and security in their custom rom down. On the other had they're stating the things that could happen to my phone through the use of their custom rom, which I am thankful for their honesty and precautions. I was looking for official carbon rom, because of it's flexibility in customization and some other useful features, but sadly they don't support our device so yet again I was let down. Even if there is ports of it. Yet again my paranoia for privacy and security appears to be in action and I just can't help it when It come to it. It's my need and I believe it is everyone's need that sadly seems to be not met... even my keyboard sends data through background services... The more I see what android does the more I want to switch back to windows phone... it was easy to use, simple, and at least secure. I loved the thing that you could use one app for text messaging and social network messaging and I found it really handy feature. Android is highly customizable, but not as secure as WP. Also did everyone else noticed that Android version names are alphabetically ordered which could mean that they have plans up front for Z? Ohhh and google is in alphabet now...
Was WP really more secure or did you simply don't know what it did in the background?
Concerning your question: to find a "perfect" system might by impossible. However, you should not completely give up on Cyanogenmod (or on custom roms in general). You do get the possibility to manage permissions and you get root. The latter you can use to uninstall system-apps you dont like or to set up a firewall for apps and services you dont trust (for instance your keyboard). As a further step you could try if a Google-free device would work for you (i.e. not flash gapps after rom). That might be less convenient in some aspects but you would get rid of the no. 1 risk for privacy. And dont worry too much about the disclaimer! Sure, flashing a custom rom can turn your device into electronic scrap and things like root are risky anyway, the crucial point is that stuff needs to be handled the correct way. With enough information acquired in the first place the risks arent too big
Hwyl.Fawr said:
Was WP really more secure or did you simply don't know what it did in the background?
Concerning your question: to find a "perfect" system might by impossible. However, you should not completely give up on Cyanogenmod (or on custom roms in general). You do get the possibility to manage permissions and you get root. The latter you can use to uninstall system-apps you dont like or to set up a firewall for apps and services you dont trust (for instance your keyboard). As a further step you could try if a Google-free device would work for you (i.e. not flash gapps after rom). That might be less convenient in some aspects but you would get rid of the no. 1 risk for privacy. And dont worry too much about the disclaimer! Sure, flashing a custom rom can turn your device into electronic scrap and things like root are risky anyway, the crucial point is that stuff needs to be handled the correct way. With enough information acquired in the first place the risks arent too big
Click to expand...
Click to collapse
Well yes WP doesn't have such feature as seeing what backgroung processes are active, what they're doing which should be a concern, but I think there are some devices that doesn't support multi-tasking which probably deals with the issue. Well the cyanogen mod does offer that security and frees you from app permission chains, but I don't want to rush on flashing it.
What about ubuntu os? They provide tutorial to port it for your own device which I am really interested in. But is there any advantages over cyanogen mod in terms of user privacy and security? Should I consider porting it myself or flashing a port made by community?
This ROM was created with privacy in mind: (Read the first post carefully and follow the instructions)
http://forum.xda-developers.com/moto-g/4g-development/rom-identity-crisis-6-lte-extreme-t3328861​
It will boot on Falcon; if after flashing the ROM, you immediately flash the Stock 6.0 Kernel available here:
http://forum.xda-developers.com/showthread.php?t=2649763​
lost101 said:
This ROM was created with privacy in mind: (Read the first post carefully and follow the instructions)
http://forum.xda-developers.com/moto-g/4g-development/rom-identity-crisis-6-lte-extreme-t3328861​
It will boot on Falcon; if after flashing the ROM, you immediately flash the Stock 6.0 Kernel available here:
http://forum.xda-developers.com/showthread.php?t=2649763​
Click to expand...
Click to collapse
Is it only for LTE version?
Thank you for your time spent on developing this rom for the community. I will flash it straight away.
zgodig said:
Is it only for LTE version?
Thank you for your time spent on developing this rom for the community. I will flash it straight away.
Click to expand...
Click to collapse
As I said, the ROM will boot and work fine on your phone if you flash the Falcon kernel. @minimale_ldz created this ROM based on my previous work.
lost101 said:
As I said, the ROM will boot and work fine on your phone if you flash the Falcon kernel. @minimale_ldz created this ROM based on my previous work.
Click to expand...
Click to collapse
This is madness.
Also
lost101 said:
This ROM was created with privacy in mind: (Read the first post carefully and follow the instructions)
http://forum.xda-developers.com/moto-g/4g-development/rom-identity-crisis-6-lte-extreme-t3328861​
It will boot on Falcon; if after flashing the ROM, you immediately flash the Stock 6.0 Kernel available here:
http://forum.xda-developers.com/showthread.php?t=2649763​
Click to expand...
Click to collapse
Okay. The rom looks good and seems to offer what I need, but that bug when you dim your brightness and flickering occurs can be annoying, since I like to dim it as much as possible, to save my battery from draining. I guess I will have to keep on using the stock rom till port of your rom will be fixed.
zgodig said:
Okay. The rom looks good and seems to offer what I need, but that bug when you dim your brightness and flickering occurs can be annoying, since I like to dim it as much as possible, to save my battery from draining. I guess I will have to keep on using the stock rom till port of your rom will be fixed.
Click to expand...
Click to collapse
There's also Lollipop version of this rom available, and it doesn't flicker. Installing the rom itself, however, won't be enough - even removing GApps doesn't prevent Google and from collecting "anonymous" data as there are still some leaks through kernel and modem debug settings. They can be blocked by firewall (like AFWall+). You may also want to install Network Log to see all the traffic. XPosed Xprivacy module is also very helpful in restricting internet, network, location, sensors, etc. access to the apps. You can also disable location services and bluetooth (and other things) with Servicely for extra protection and battery life.
All of it will give you SOME protection as obviously your carrier will have a lot of data about your device and this can't be avoided as long as you use its phone services.
minimale_ldz said:
There's also Lollipop version of this rom available, and it doesn't flicker. Installing the rom itself, however, won't be enough - even removing GApps doesn't prevent Google and from collecting "anonymous" data as there are still some leaks through kernel and modem debug settings. They can be blocked by firewall (like AFWall+). You may also want to install Network Log to see all the traffic. XPosed Xprivacy module is also very helpful in restricting internet, network, location, sensors, etc. access to the apps. You can also disable location services and bluetooth (and other things) with Servicely for extra protection and battery life.
All of it will give you SOME protection as obviously your carrier will have a lot of data about your device and this can't be avoided as long as you use its phone services.
Click to expand...
Click to collapse
I think that I should wait for the marshmallow patch. Because I wouldn't have to use the apps you have mentioned in order to protect myself. I've read that you recommend these apps to use on marshmallow too. Which one would you recommend? Lollipop ir marshmallow? From the things you have mentioned it made me an impression that there has to be done more on lollipop to protect yourself as much as possible, than on marshmallow. Besides I suspect that marshmallow is more advanced than lollipop. Anyways an expert opinion is allways worth to concider. A big thank you xda developers for your hard work and time put in developing all of the software available for us. You're the best!
zgodig said:
I think that I should wait for the marshmallow patch. Because I wouldn't have to use the apps you have mentioned in order to protect myself. I've read that you recommend these apps to use on marshmallow too. Which one would you recommend? Lollipop ir marshmallow? From the things you have mentioned it made me an impression that there has to be done more on lollipop to protect yourself as much as possible, than on marshmallow. Besides I suspect that marshmallow is more advanced than lollipop. Anyways an expert opinion is allways worth to concider. A big thank you xda developers for your hard work and time put in developing all of the software available for us. You're the best!
Click to expand...
Click to collapse
Well, I don't consider myself an expert - just spent some time reading security and privacy related stuff in the web and used some of the information to help myself. Please also mind all the things I mentioned (firewall, XPrivacy, etc.) don't come with Marshmallow and need to be installed and set up anyway so it doesn't make much difference if you use Lollipop or MM version. The biggest privacy-related changes that come with MM are built-in permissions manager (which is good but insufficient) and more up to date security patch. And I think that is it, so it's up to you if you want to wait. The thing with Android updates is that they bring new stuff that OEM and carriers need to implement and optimize, so I wouldn't say that Marshmallow is better in every aspect than Lollipo. I was using 5.1.1 for a few months on Moto G and was very happy - I'm using 6.0.1 on Moto X Play now, and see some annoying bugs that came with it. Interesting thing is they only appeared after removing GApps from the rom. So again - it's up to you.
The other fact is that the more you protect yourself from intrusive Google services the more new privacy and security issues appear. For example - if you use stock rom there's no need to unlock bootloader nor using custom recovery which are actually negatively affecting your privacy. You can access all the system and data in TWRP, so your privacy is pretty much none in case someone steals your phone. Good practice is not to keep too much private stuff on it, because there's always a risk someone can get it - one way or another.
minimale_ldz said:
There's also Lollipop version of this rom available, and it doesn't flicker. Installing the rom itself, however, won't be enough - even removing GApps doesn't prevent Google and from collecting "anonymous" data as there are still some leaks through kernel and modem debug settings. They can be blocked by firewall (like AFWall+). You may also want to install Network Log to see all the traffic. XPosed Xprivacy module is also very helpful in restricting internet, network, location, sensors, etc. access to the apps. You can also disable location services and bluetooth (and other things) with Servicely for extra protection and battery life.
All of it will give you SOME protection as obviously your carrier will have a lot of data about your device and this can't be avoided as long as you use its phone services.
Click to expand...
Click to collapse
minimale_ldz said:
Well, I don't consider myself an expert - just spent some time reading security and privacy related stuff in the web and used some of the information to help myself. Please also mind all the things I mentioned (firewall, XPrivacy, etc.) don't come with Marshmallow and need to be installed and set up anyway so it doesn't make much difference if you use Lollipop or MM version. The biggest privacy-related changes that come with MM are built-in permissions manager (which is good but insufficient) and more up to date security patch. And I think that is it, so it's up to you if you want to wait. The thing with Android updates is that they bring new stuff that OEM and carriers need to implement and optimize, so I wouldn't say that Marshmallow is better in every aspect than Lollipo. I was using 5.1.1 for a few months on Moto G and was very happy - I'm using 6.0.1 on Moto X Play now, and see some annoying bugs that came with it. Interesting thing is they only appeared after removing GApps from the rom. So again - it's up to you.
The other fact is that the more you protect yourself from intrusive Google services the more new privacy and security issues appear. For example - if you use stock rom there's no need to unlock bootloader nor using custom recovery which are actually negatively affecting your privacy. You can access all the system and data in TWRP, so your privacy is pretty much none in case someone steals your phone. Good practice is not to keep too much private stuff on it, because there's always a risk someone can get it - one way or another.
Click to expand...
Click to collapse
If you're not an expert then you're not far from it, because I don't think it's easy to do the things you did.
Is it possible to re-flash stoch recovery and re-lock bootloader after flashing one your roms to improve security, or are they essential to make rom work?
zgodig said:
If you're not an expert then you're not far from it, because I don't think it's easy to do the things you did.
Is it possible to re-flash stoch recovery and re-lock bootloader after flashing one your roms to improve security, or are they essential to make rom work?
Click to expand...
Click to collapse
As far as I know relocking bootloader will fail if installed system is not original, but I'd ask @lost101 as he's got much more expertise in Motorola issues.
minimale_ldz said:
You can access all the system and data in TWRP, so your privacy is pretty much none in case someone steals your phone.
Click to expand...
Click to collapse
Using encryption helps in this case. Just remember that when you get your phone back, don't trust it anymore.
zgodig said:
Is it possible to re-flash stoch recovery and re-lock bootloader after flashing one your roms to improve security, or are they essential to make rom work?
Click to expand...
Click to collapse
Originally Falcon (and Peregrine I suspect) did not support Factory Reset Protection (FRP) - this may have changed for those with locked Bootloaders who updated to Lollipop via official OTA Update. Even with FRP, all you are doing is stopping someone who stole / found your phone from accessing your data. Obviously you must unlock Bootloader to gain real control over your data by flashing a ROM just as those created by @minimale_ldz. Once Bootloader is unlocked, it's permanent. So-called 'relocking' is purely superficial and can be simply undone by anyone with fastboot access.
So the answer is no, flashing Stock Recovery and 'relocking' Bootloader does absolutely nothing for you in terms of security.
Newer phones such as Moto G (3rd Gen) support FRP out of the box. But again, you are at the mercy of Google and Motorola when it comes to privacy as long as the Bootloader remains locked. You cannot root, nor install a custom ROM.
I fear ultimately you must examine your own psychological / egoic need for control and privacy, as the world outside your mind is unlikely to deliver what you seek.
lost101 said:
Originally Falcon (and Peregrine I suspect) did not support Factory Reset Protection (FRP) - this may have changed for those with locked Bootloaders who updated to Lollipop via official OTA Update. Even with FRP, all you are doing is stopping someone who stole / found your phone from accessing your data. Obviously you must unlock Bootloader to gain real control over your data by flashing a ROM just as those created by @minimale_ldz. Once Bootloader is unlocked, it's permanent. So-called 'relocking' is purely superficial and can be simply undone by anyone with fastboot access.
So the answer is no, flashing Stock Recovery and 'relocking' Bootloader does absolutely nothing for you in terms of security.
Newer phones such as Moto G (3rd Gen) support FRP out of the box. But again, you are at the mercy of Google and Motorola when it comes to privacy as long as the Bootloader remains locked. You cannot root, nor install a custom ROM.
I fear ultimately you must examine your own psychological / egoic need for control and privacy, as the world outside your mind is unlikely to deliver what you seek.
Click to expand...
Click to collapse
Is it possible to make or do something that no one would be able to enter recovery mode without password or at least pin code?
_that said:
Using encryption helps in this case. Just remember that when you get your phone back, don't trust it anymore.
Click to expand...
Click to collapse
So encrypting the phone would help to protect data. In case of loost or stolen phone, the person would only be able to delete my data through recovery mode?
And what do you mean that after I'd get my phone back I shouldn't trust it?

General question on changing ROM in device

Hi there,
Few months ago, I was told in XDA site that nowadays changing the ROM is not anymore the best way to de-google a device. Now it is better to de-bloat and tweak the device.
Do you agree with this statement?
Did you change the ROM in your device or only de-bloated it? Tell me your experience. Easy to install, need to root, unblock the bootloader, update, what is NOT working, speed, battery, ...?
I own a Samung Tablet S5e LTE few months old, under guaranty and would like to de-google it. I was thinking to change the ROM, is tit the best way?
What is your advice? If needed, what ROM to use? What way, software to de-bloat?
Many thanks
MrNice said:
Hi there,
Few months ago, I was told in XDA site that nowadays changing the ROM is not anymore the best way to de-google a device. Now it is better to de-bloat and tweak the device.
Do you agree with this statement?
Click to expand...
Click to collapse
Fully agree with this.
Thank you for your fast answer.
Could you be more specific and tell me why, how (big picture) and if you have experience what tools did you use?
People most times use terms "De-google" and "De-bloat" not knowing what they are really speaking of.
The Vanilla Android ( read: AOSP - today often called GSI ) is totally free of apps developed by Google ( topic: GMS ) and the service ( GFS ) they need to run, this because NOBODY basically needs these to operate a phone. But the overwhelming majority of the users of mobile devices want an Android what is extended by features, so they can download & install more apps, play games, listen to music, watch porn videos. OEMs respect this wish - they want to sell their products - and therefore typically add GMS & GFS to their Android OS, so it in reality becomes a Custom ROM.
Resume: Vanilla Android - and all ROMS that are based on Vanilla Android ( like Lineage OS and many others ) must not get "De-googled".
Bloatware ( or Potentially Unwanted Programs - PUP ) is software users don’t want, that burdens and slows down a mobile device. It usually comes pre-installed by vendors, manufacturers or carriers. IMO "De-bloating" is the first thing a user should do when starting up a new device.
Bloatware typically is installed as system-app, hence phone's Android must got rooted before you can start "De-bloating".
As I am not very skilled in Android, I appreciate your post.
I installed LineageOS 17.1 on my Samsung S6, it working fine, I am happy for the usage but the only issue I have is that I can't update. This is another story in another XDA forum.
My need are usual plus
Read books, music sheets, social networks, Internet TV, news, training, conference (low bit-rate), email, messaging, GPS travel, basic pictures,
some specific app for music practice (tuner, metronome), veg gardening (I need to find one suitable for me).
but no game, no HD movie (download or stream), no large download
Backup locally (I need to learn more), no cloud usage.
As I run GNU/Linux for around 20 y, I hate to have to register for account in any app from GAFAM and I don't want as much as possible give them my data. I try to select the app without tracker, FOSS and I block the permissions as much as possible.
If I can de-google this is the best for my mindset.
I understand that de-google or de-bloat, I 'll have to root so break Knox. Right?
I don't know if I need GMS and/or GFS for my use. Could you tell me? For what app it is mandatory?
With my S5e I want to be more cautious, I need a way as secure as possible to not brick it.
With all these info, what do you advice?
MrNice said:
Hi there,
Few months ago, I was told in XDA site that nowadays changing the ROM is not anymore the best way to de-google a device. Now it is better to de-bloat and tweak the device.
Do you agree with this statement?
Did you change the ROM in your device or only de-bloated it? Tell me your experience. Easy to install, need to root, unblock the bootloader, update, what is NOT working, speed, battery, ...?
I own a Samung Tablet S5e LTE few months old, under guaranty and would like to de-google it. I was thinking to change the ROM, is tit the best way?
What is your advice? If needed, what ROM to use? What way, software to de-bloat?
Many thanks
Click to expand...
Click to collapse
For the Tab S5e de-googling it is next to impossible with stock samsung rom. LOS works great on it and not too difficult to install, CRDroid works well on it but is better with google installed, /e/ rom was being developed for it but I don't know if they are still working on it. I built an /e/ rom locally for my Tab S5e last year and it worked very well. If you want to get away from google you need to ditch the OneUI or whatever they are calling it.
tek3195 said:
For the Tab S5e de-googling it is next to impossible with stock samsung rom. LOS works great on it and not too difficult to install, CRDroid works well on it but is better with google installed, /e/ rom was being developed for it but I don't know if they are still working on it. I built an /e/ rom locally for my Tab S5e last year and it worked very well. If you want to get away from google you need to ditch the OneUI or whatever they are calling it.
Click to expand...
Click to collapse
Thanks for you advice, I'll work on it soon.

Help Me Debloating Samsung A51 Android 12

I am using Samsung A51 running on Android 12. My device is lagging since last few days. I want to debloat my device. I had debloated once, but it stopped working settings app when it was running on android 11.
I need the debloating list which don't crash any essential app.
Please help me.
hello, for more comfortable debloating i will recommend you to use ADBAppControl.
i do not know by what way i debloadted my phone, but in that programm you have a feature of backing up the .apk file of the application you uninstalled.
You can debloat your phone by this tactic
1. Debloat your phone without uninstalling system applications;
2. Debloat your phone by uninstalling samsung applications (samsung free, samsung galaxy friends);
* If you want more, you can follow this site: https://www.alliancex.org/shield/apps.html
or (i do not think, really) flash a custom ROM, like elementary OS
If it was help, let me know)
vmirrimv said:
hello, for more comfortable debloating i will recommend you to use ADBAppControl.
i do not know by what way i debloadted my phone, but in that programm you have a feature of backing up the .apk file of the application you uninstalled.
You can debloat your phone by this tactic
1. Debloat your phone without uninstalling system applications;
2. Debloat your phone by uninstalling samsung applications (samsung free, samsung galaxy friends);
* If you want more, you can follow this site: https://www.alliancex.org/shield/apps.html
or (i do not think, really) flash a custom ROM, like elementary OS
If it was help, let me know)
Click to expand...
Click to collapse
Thanks a lot. I'll give a try.
Hello, by the way, now I want to go back to the custom ROM, and I may make a video about what I will be able to remove from the phone avoiding future bugs and problems. if you want
vmirrimv said:
Hello, by the way, now I want to go back to the custom ROM, and I may make a video about what I will be able to remove from the phone avoiding future bugs and problems. if you want
Click to expand...
Click to collapse
Ok, give me the video link.
hello, wait about 30 minutes
THE video is done! But I am sorry about its quality
Leave a feedback, if it helps)
Just debloated by this way. But the ram usage is same.
i would say it is the problem of the ROM, because it uses another frameworks for modules of wi-fi, for example or of mobile communication.
When I used SuperiorOS, where the most programm part has been built as open-source, the usage was at least 2 times less.
But you should not only focus on RAM usage, because those apps drain you battery and internet traffic, too
vmirrimv said:
i would say it is the problem of the ROM, because it uses another frameworks for modules of wi-fi, for example or of mobile communication.
When I used SuperiorOS, where the most programm part has been built as open-source, the usage was at least 2 times less.
But you should not only focus on RAM usage, because those apps drain you battery and internet traffic, too
Click to expand...
Click to collapse
Any bug free custom rom?
Sorry i did not get you, can you type it in another words?
Do you have any custom rom without any error/faults?
If you ask me, I do not have, but I can advise ROMs from another users of XDA
They are like SuperiorOS (with custom kernel installed, for avoiding MTP issue, with GAPPS), ElemantaryOS or Refined UI
Other ROMs I simply do not perceive as something needed to do so (because of its quality).
But you need understand, that nobody except of the manufacturer will create a bug-free OS for the certain phone, I think.
But custom ROMs like ElementaryOS and Refined UI ones seem to be a good choice, because they has been created by modifying the stock ROM
And there is also the question you need to ask youself: why do I need it?
If answers are like I want a faster experience or new features then I would say that it's not worth it
I think the problem is, that you do not want to use your device as it was intented to be, but you want to play with it by modifying and so one.
If it is, then I would say that this way of spending time is void and meaningless
vmirrimv said:
And there is also the question you need to ask youself: why do I need it?
If answers are like I want a faster experience or new features then I would say that it's not worth it
I think the problem is, that you do not want to use your device as it was intented to be, but you want to play with it by modifying and so one.
If it is, then I would say that this way of spending time is void and meaningless
Click to expand...
Click to collapse
U didn't get me. I want a minimalistic lightweight OS with less ram and battery usage. I used elementary os running on android 11. I have come to stock rom for android 12. And i did very wrong.
So then, I will recommend you SuperiorOS, but there are some bugs with Bluetooth and MTP. Although, I think, there are no official supported custom ROMs for SM-A515F.
But if you want to flash this ROM on your phone, you will need to downgrade (roll back) your Android version to 11 (as I tried on 12th, it did not work).
vmirrimv said:
So then, I will recommend you SuperiorOS, but there are some bugs with Bluetooth and MTP. Although, I think, there are no official supported custom ROMs for SM-A515F.
Click to expand...
Click to collapse
Can you give me the link please !!

Categories

Resources