I'm looking for ways to bolt down security on the stock Sony ROM or the slim ROM. I'm on slim 4.9 right now. I have all the standard security items in place)(Pin protection, malware scanners, FOSS apps when I can) but I'm looking for some more specific things. I'm looking for a feature that's in cyanogenmod. I want the ability to deny apps the capability to access things they don't need. For example, if a messaging app needs my mic, deny access to that.
Is this doable with xposed? I know next to nothing about the xposed framework.
RNZL3R said:
I'm looking for ways to bolt down security on the stock Sony ROM or the slim ROM. I'm on slim 4.9 right now. I have all the standard security items in place)(Pin protection, malware scanners, FOSS apps when I can) but I'm looking for some more specific things. I'm looking for a feature that's in cyanogenmod. I want the ability to deny apps the capability to access things they don't need. For example, if a messaging app needs my mic, deny access to that.
Is this doable with xposed? I know next to nothing about the xposed framework.
Click to expand...
Click to collapse
Yes, that's also possible on stock or stockbased rom's, regardless of the device. And yes, you need Xposed (and of course root for that).
Install Xposed Installer by rovo89 (you need xposed-v80-sdk22-arm.zip [you need to install it via recovery, e.g. TWRP] and XposedInstaller_3.0_alpha4.apk for your device).
Right after flashing the zip, wipe cache and dalvik/art, then reboot. After the reboot, install the alpha4.apk (don't forget to enable "unknown sources" in "Security" of the "Settings" tab before). Right after that, open "Xposed Installer" app tap "Framework" -> "Reboot" and confirm the root access.
==> Thread here: http://forum.xda-developers.com/showthread.php?t=3034811
==> Q&A Thread: http://forum.xda-developers.com/xposed/modules/xprivacy-ultimate-android-privacy-app-t2320783
3. Install M66B's XPrivacy module
==> Thread here: http://forum.xda-developers.com/xposed/modules/xprivacy-ultimate-android-privacy-app-t2320783
Good luck!
http://forum.xda-developers.com/member.php?u=4419114
Related
I have Calkulin's Rom installed and I like it very much. However, I'd like to have the ability to multi-window or floating window.
Is there any way this is possible?
Thanks!
Unless I'm missing something, I'd have thought that Xposed Installer with xhalofloatingwindow should work in most stock Android based configurations:
1. Make sure you have selected 'install from unknown sources' in security settings
2. Install the Xposed Installer from here - http://repo.xposed.info/module/de.robv.android.xposed.installer.
3. Follow the instructions in Xposed, (ie install and reboot) then from within it install xhalofloatingwindow. I think another reboot is needed, then tinker with setting until it's the way you want it. I've been trying to combine it with Switchr to as a floatingwindow menu with limited success, though it's mostly cos Switchr keeps crashing.
Thanks that works like a charm!
We decided to do review of Xposed Framework because indeed it is a great Android tool. For all of you that you haven’t heard of Xposed Framework, it is something like Cydia for iOS.
Xposed framework is primarily designed for those who wish to remain on the stock ROM, but do not want to flash it constantly with new custom ROMs in order to get additional features. If you want to do that, then you can freely use Xposed Framework.
Modules are the most important thing in this app, because If you only install Xposed Framework, it will not do anything. If you want to get and perform a specific function, then you need to install a module in order to run a particular function, you can use function that are installed on the module.
How we installed it and does it work
You can download the Xposed Framework apk from here. Then you can download different modules from here. The process of installation is pretty easy and simple. You download the xposed app, you open it, give root right (when it asks), go to framework, click on install/update, when it all goes successfully, just click OK, and then restart.
You can download the modules on the above link, or from the Xposed app directly. It is very important that when you install a module, you must enable the module into the xposed app with checking of the checkbox. After that you must perform a restart.
Conclusion
Why we liked Xposed Framework? There is no need to modify any APKs, the app, that means that there is no need to decompile, change things in smali, compile, sign and that it will work for odexed and deodexed ROMs. Also, it is open source and free and you can disable it wthout having to reflash.
However, it is important to emphasize, that this app works on almost all Android devices, but there is still no support or update for the newest Android version – Android Lolipop 5.0.
Reviewappandroid.com
Is this really what passes as a review nowadays?
Hello!
I have a question about ROM, is there any that is without the unnecessary applications of Samsung, Google etc, example: Samsung Members, Samsung Connect, VR Gear, Samsung Health etc, a clean but non-root rom, why use bank applications and cards.
Sorry for the question, I always used cell phones with root, but I did not use banking applications. Is there a solution?
The touchwiz based ROMs like SuperMan let you choose what Samsung apps and Google apps to install during the flash process, so you can just untick the ones you don't want. There's also a debloat script floating around somewhere which removes unnecessary apps.
You can also use root, and a ROM with Magisk which hides root and passes safetynet so long as you don't use Xposed. That'll let you use bank apps.
Beanvee7 said:
The touchwiz based ROMs like SuperMan let you choose what Samsung apps and Google apps to install during the flash process, so you can just untick the ones you don't want. There's also a debloat script floating around somewhere which removes unnecessary apps.
You can also use root, and a ROM with Magisk which hides root and passes safetynet so long as you don't use Xposed. That'll let you use bank apps.
Click to expand...
Click to collapse
Thanks for the answer, I was an old user of my old and good Xperia Z2, rooted but now with the S7 I'm lost, I just wanted to have a way to not have unnecessary applications.
I'm finally not needing something that needs root, just like it used to.
I've read myself to exhaustion trying to understand how this all works with no luck. With articles on the web having no or vague instruction and authors using the terms Magisk and Magisk Manager interchangeably (this one is the worst) I'm totally confused. Additionally there is too much assumed knowledge in the instructions I find. Go do this, go install this with no links, no explanation of what I'm installing, how to install it, where the instruction and files live, how to use it or the actual effect upon install.
Here is my current state and my questions (please excuse the caps, they just express my frustration):
Pixel 4a
Android 11
Rooted with Magisk
Can't use banking apps
MagiskHide doesn't fix the problem
I read that using MagiskHide Props Config can fix my SafetyNet issues but the instructions are very extensive and I want to be sure of what I'm doing before I tackle it.
Does Magisk also live inside Magisk Manger? Do I need both?
Do I need Magisk Manager to load modules?
Hiding root and passing Safety Net:Magisk and MagiskHide Installation and Troubleshooting guide
www.didgeridoohan.com
Why do these instructions tell me to "Make sure that the app in question is selected in the Hide list (Under MagiskHide in the Magisk app)." and there IS NO HIDE LIST! under MagiskHide in the Magisk app?!
OR
"Most Magisk modules can be hidden by MagiskHide, but that depends on exactly what the module does. If you can't figure out what is triggering an app, try disabling all modules." THERE IS NO PLACE TO SELECT OR DISABLE MODULES IN MAGISK!
I am very, very technical and can can follow well written instructions but this android (and linux) stuff is new to me. I just want my Pixel 4a to have root and be able to use my Golden1 credit union software. I apologize for the drama but this task is becoming almost insurmountable.
Thank you very much for any opinion or insight!
Arsenal420 said:
I've read myself to exhaustion trying to understand how this all works with no luck. With articles on the web having no or vague instruction and authors using the terms Magisk and Magisk Manager interchangeably (this one is the worst) I'm totally confused.
Click to expand...
Click to collapse
Totally agree with you: all is based on slopiness of the authors.
Magisk is a software framework- it provides additional low level routines / replaces in parts Android's default system software - what hooks Android's boot and system files, thus you can extend Android's default system features by adding 3rd-party modules.
Magisk Manager is a pure Android app for managing Magisk.
jwoegerbauer said:
Totally agree with you: all is based on slopiness of the authors.
Magisk is a software framework- it provides additional low level routines / replaces in parts Android's default system software - what hooks Android's boot and system files, thus you can extend Android's default system features by adding 3rd-party modules.
Magisk Manager is a pure Android app for managing Magisk.
Click to expand...
Click to collapse
Thank you very, very much. So do you need to have Magisk installed for Magisk Manager to work? If it's like maybe .Net framework then the answer would be "yes" but since I don't know this platform perhaps Magisk is "embedded" in Magisk Manger and you only need it to do all your work. Thanks again jwoegerbauer you filled in a major blank.
Magisk Manager is companion Android application for Magisk framework so it should be obvious that Magisk framework must be installed before.
I know what you mean. I just started trying to install an news magic today instead of lucky passer and I can't even get it installed and authorized because of the tar and the different things that wants to have me do. There's no instruction it's just supposed to be knowledge you're supposed to have. I think I'm just gonna delete it go back lucky.
I'm working on porting "CIT test" application from MIUI to custom Android 11 ROMs (for calibrating proximity and fingerprint sensors), with end goal of creating a Magisk module. I'm stuck now with the application calling android.os.ServiceManager/addService, which fails with SecurityException -- I presume because I removed android:sharedUserId="android.uid.system" from its manifest, so it doesn't run with system app permissions. Currently I place it in /system/priv-app instead, which allows me to give it at least all the manifest permissions that it requires.
AFAIU, there is no way for me to simply use android.uid.system, as it requires one to sign the package with the same keys that were used for the ROM itself. As my idea is to have a general Magisk module, this is out of the question. However, because obviously I expect devices to be rooted (and can require Xposed), I want to find some way of circumventing signature check for this one package. Say, using Xposed to patch signature check, and to allow my public key to be used for android.uid.system apps. I don't want to completely disable signature checks, as this greatly compromises security.
I also thought of somehow using su to run this application as root, but apparently this is also not possible.
Is there a way to do this or something similar? Maybe I miss another way of implementing what I want? Any help or links are greatly appreciated.
I am curious about this too. It would help install the nReal nebula service on non-carrier devices and use nRreal Light AR glasses with the Nebula app.
Re-add the android.uid.system line
disable your Android Signature Verification
install with magisk to /system/app or priv-app