[APP][4.4+] Privacy Browser 2.0.1 - Android Apps and Games

Privacy Browser is a web browser focused on user privacy. It currently uses Android's WebView to render content.
It is released under the GPLv3+ license and is available via F-Droid. APKs can also be downloaded directly from stoutner.com.
Features:
Full screen browsing mode.
Integrated ad blocker.
Tor Orbot proxy support.
Privacy Browser makes it easy to specify JavaScript, cookie, and DOM storage settings by domain and change them on the fly.
Additional information
Roadmap: stoutner.com/february-2017-roadmap/
Blog: stoutner.com/category/privacy-browser/
Changelog: stoutner.com/privacy-browser/changelog/
Bug Tracker: redmine.stoutner.com/projects/privacy-browser/issues
GitWeb: git.stoutner.com/?p=PrivacyBrowser.git;a=summary
Privacy Browser has been out for a while, and I receive a fair amount of feedback via email from the user base, but I thought it would be useful to hear XDA thinks.

Nice work on this so far. I have been keeping an eye on it for a bit after finding it on F-Droid. Out of curiosity, what are the differences between the free and pay versions?

Difference Between Versions
The only difference between the versions is that the Free version has a banner ad across the bottom of the screen. The purpose of the free version is so that people can try out all the features of the app without having to spend any money. They can then choose to purchase the paid version if they are using a repository that accepts payments or download the standard version without cost from F-Droid or stoutner.com.

sorenstoutner said:
The only difference between the versions is that the Free version has a banner ad across the bottom of the screen. The purpose of the free version is so that people can try out all the features of the app without having to spend any money. They can then choose to purchase the paid version if they are using a repository that accepts payments or download the standard version without cost from F-Droid or stoutner.com.
Click to expand...
Click to collapse
Cool, thanks! If I'm understanding you properly, does that mean the F-Droid version is the same as the paid version listed here?

bdtoole said:
Cool, thanks! If I'm understanding you properly, does that mean the F-Droid version is the same as the paid version listed here?
Click to expand...
Click to collapse
That is correct.

Great! Where would you like feature requests and bug reports to go? Is this thread good, or would you prefer them on your website?

bdtoole said:
Great! Where would you like feature requests and bug reports to go? Is this thread good, or would you prefer them on your website?
Click to expand...
Click to collapse
I think the best place would be to create a report on redmine.stoutner.com, but you are welcome to post them here if that is easier for you and I will transfer them to Redmine.
mod edit - thread closed as duplicate - original here https://forum.xda-developers.com/android/apps-games/app-privacy-browser-2-4-t3626186

Related

Google Gear for WM6 is now available

http://gears.google.com/?platform=wince
What applications is best to use it with? Please share. Thx.
logicstep said:
http://gears.google.com/?platform=wince
What applications is best to use it with? Please share. Thx.
Click to expand...
Click to collapse
Google Gears Beta is an open source browser extension that enables web applications to provide offline functionality using the following JavaScript APIs:
Local Server Store and serve application resources locally
Database Store data locally in a fully-searchable relational database
Workerpool Run asynchronous Javascript to improve application responsiveness
There is a developers site here:
http://code.google.com/apis/gears/
Am I missing your question? Or are you just trying something on the Internet with other users?
Would it hurt them to put some screenshots on the site??? Idiots
More about Google Gears: http://www.christec.co.nz/blog/archives/34
Also attached the .cab
Churchill said:
Would it hurt them to put some screenshots on the site??? Idiots
Click to expand...
Click to collapse
What would they put a screenshot of? Google gears is like an extension that allows online programs to work offline. There is not really any interface or whiz-bang control panel or anything.
As far as I know only buxfer and zoho writer are offering compatibility with it at this point. I signed up for buxfer and I have to say it's pretty slick. It allows you to store your bank credentials *locally* and use them automatically via gears. That's about the only function I would use as I don't see the point of looking at offline snapshots of your bank account.
If you want a screenshot post it yourself..Idiot.
I've developed uTrack, a tool to monitor the location of a WM powered device.
www.petervrenken.nl/utrack
forum.xda-developers.com/showthread.php?t=420508
uTrack can be configured to use Google Gears GeoLocation feature if no GPS hardware is available, or the GPS hardware should be assisted.
Greetings,
Hi Any one have latest google gears? Can't get the latest version at attach download link.
gears.google.com/?platform=wince
Not being supported anymore
ahkow said:
Hi Any one have latest google gears? Can't get the latest version at attach download link.
gears.google.com/?platform=wince
Click to expand...
Click to collapse
See here:
http://gearsblog.blogspot.com/2010/..._campaign=Feed:+GearsApiBlog+(Gears+API+Blog)

[APP] App Stats (for developers)

App Stats is an Android developer tool which allows you to check application stats and comments from one place. App Stats keeps you informed by notifying you when new information is available such as a new rating or additional comments. The lite version allows you to monitor up to three applications and includes advertisements while the pro version allows for essentially unlimited monitoring and is of course ad free.
Update to Pro (v1.3.0)
Now has a desktop widget =)
Update to Pro (v1.2.0)
Some developers may have a lot of apps to manage stats on such as games with lots of addon content or maybe live wall paper apps, etc. To help alleviate scrolling through a long list of apps, we have added in the ability to label apps and filter the apps list with these labels.
Also, you will find that you can now set per application notification settings. This lets you control when an app update notification is fired so you can now choose specific items to be notified about.
Notes
On certain devices you may not be able to see all of your apps without having root on your device. It is also important to note that if you can not see your app in the market on your device there is no way this app can circumvent that.
If you have any questions, comments or bug reports please contact me here or via our developer email which can be found on the market. (toxicbakery at gmail)
To download, use the attached image or search 'App Stats' on the market and we should be the first two results for pro and lite versions.
Known Issues
- Certain languages may no be available in comments, if you find one please let me know
Upcoming Features
- More graphing options
- Backup search against an app database to find missing data
- Have a feature request? Let me know what you want!
Need another feature? Just ask =)
I love it. But I think that $5 is a bit too much for the full version. I would have gladly paid $2 or $3 even, but anything more takes it out of impulse buy for me.
Don't think I'm bashing your choice, as a dev I understand your need to make money from it, but sometimes the sales you lose from a higher price are worth more than the extra couple dollars you'll make from the higher price.
Thanks for the input! I would have to agree with you that currently $5 dollars is on the high end of price however with the additional features we are working on we feel that it will be a fair price very soon. Depending on what features we end up being able to incorporate we may adjust the pricing.
We almost have the plugin finished that will assist in grabbing your market android id from tcpdump and once we perfect that then it will be possible to search 2.2 apps and copy protected apps when using legit android devices that are rooted. Once this is complete we will have the only app on the market that I know which can essentially hands free get all the needed info to make a 'true' market request that lets you see all applications. This is how sites like androidzoom and like function. Without this additional parameter other apps are limited to 2.1 and less non copy protected applications by design of the market itself.
After that we will be working on letting you attach admob accounts to your apps and possibly google checkout however google checkout looks iffy due to its seeming lack of being able to pull useful information such as 'total sales' etc.
That said, thanks again for the input and if you need help please email me at our developer email for fastest response.
-Ian
One thing that's highly annoying for an application which is not a game, a navigation system, or a media application: Asking for the fullscreen window feature.
Please consider removing it... I don't really see any need for it, and it just breaks the transitions between activities anyway (when you're not making the design consistent). Thank you.
Anyway, once polished up and the bugs cleared up, looks like a useful app
Thank you for the input! We removed the full screen requests on the detailed view and graphs view.
I'm unfortunately out of town currently however either tonight or tomorrow we will be releasing an update that adds in the functionality to search 2.2 and copy protected apps if you have a rooted device. This should alleviate the complaints some people have had about it not finding their apps.
Unfortunately right now having a rooted phone is the only way get the market key we need to make these 'fully enabled' searches due to how the market works currently. The other option is having users use TCP dump to grab the needed packet and then proceed manually with decoding it and running it though protobuf to get the key out.
A few other fixes and tweaks have also been put in place and after we release the updates the Pro version will be available again as we removed it due to a major bug in the licensing we didn't catch before.
Please keep the comments coming! If you don't like something feel free to post it or email us and we will do whatever we can to improve it.
Thank you again to everyone that has voiced their opinion, every bit helps!
Finally got the new version released!
To see copy protected or 2.2 only applications you will need to have a root phone that can already see those apps on the market. For example a 2.1 phone can't see 2.2 applications no matter what you do and theres no way to code around this, sorry.
Once installed, hit menu from the main screen and select settings. Simply hit the "Load Key" Button at the very top and hopefully after a few seconds a Toast should show up saying that the operation was a success.
I know for a fact this wont work on all phones. We tested it to work on a Droid and it works on a G1 with Cyanogen 2.2 rom however it will not work on an Eris. That said I'm sure it will fail to work on other phones but I will be working on figuring out the fix asap. If you are one of the unlucky ones with a phone that doesn't work, please email me or message me here and I will do whatever I can to get you setup!
New version is now out and good news! It appears, on our end, that root is no longer necessary to get copy protected and 2.2 applications. This change is still too new to confirm it works on all devices so please send us feedback on if you can see all of your applications without using the root feature.
As always please feel free to leave feedback!
New version released that will hopefully allow more users to successfully find all of their apps with less hassle. Also a few misc bug fixes and FC issues have been resolved.
Update to pro version released, main post updated.
Released new versions of lite and pro, updated main post.
About App Stats and its development
I am from Mobile application Development company in Singapore. I would like share this stats, today more users are available in through mobile apps. and mobile developments also increasing day by day. So this growth of development is lead the business strategy. Know from our Mobile app development how its useful for business environment.

[APP] closeFeint, disable openFeint for rooted users

I hate openFeint so I made an app to disable it
https://market.android.com/details?id=benor.closeFeint
I'm still a new user here so it's not a link, if any one can edit this message and make this a link I'll thank him (and give him a free copy of this already free app )
I could debug it only on CM7 so i would like to see if it works on other roms.
The usual it might toast your device and don't blame me (It shouldn't it didn't even restarted my phone while i developed it)
Why do you have to disable adblocking, is there a way to have disable openfeint and not mess up with adblocking.
Just posting the link for convenience:
https://market.android.com/details?id=benor.closeFeint
Any chance of a direct download link or mediafire or ddopbox
ofantastic said:
Any chance of a direct download link or mediafire or ddopbox
Click to expand...
Click to collapse
@benor, let me know if you want me to take this link down
http://www.mediafire.com/?bm718kq7lf3i3d4
sweet, just what i wanted
goood idea closing feint thanx
Are there any methods that will not disable ADblocker?
I'd love to know about alternatives to disable/remove Openfeint too.
The condescending vibe this developer gives off, messing with installed applications that are none of his concern, I would never touch that. I would pay for an ad-free 'premium' version, but not from this developer. Removing annoying Openfeint nag screens in exchange for other nag screens just doesn't make any sense.
Android ad blockers work by dumping entries into the hosts file. This app also does the same. To be fair to the developer, he'd have to somehow make his app run every time after an ad blocker runs to ensure OpenFeint remains blocked, which would be annoying to support.
Since AdAway (my favourite ad blocker; it's open sourced) has a blacklist option, add the following entries to it:
openfeint.com
api.openfeint.com
scoreloop.com
and OpenFeint will be blocked by AdAway as it's doing the ads. There's also "*.openfeint.com" but I'm sure that that isn't valid hosts file syntax.
dfkt_ said:
I'd love to know about alternatives to disable/remove Openfeint too.
The condescending vibe this developer gives off, messing with installed applications that are none of his concern, I would never touch that. I would pay for an ad-free 'premium' version, but not from this developer. Removing annoying Openfeint nag screens in exchange for other nag screens just doesn't make any sense.
Click to expand...
Click to collapse
It's a single host file. He might not believe in the blocking of ads. He makes it very clear in his description that it does not work in tandem with Adblockers and that those who use it are not his audience.
He's not being condescending. Who is anyone (not talking about you specifically) to voluntarily download his free app and then get pissy when it does exactly what he said would not work? And then to have the audacity to downrate it to 1 star because they were too stupid to read the description before installing the app?
Honestly, the comments for this app's market listing just go to further confirm that most Android app users are complete idiots with a self-importance complex and they don't think before installing an app. (Not that iOS reviewers are much better)
Based on some of the comments, you'd think that the app was being shoved down peoples' throats.
qwerty12, thank you very much for the explanation! I didn't know this just uses the regular hosts file. If this app overwrites what AdAway put there, then it seems to be rather poorly conceived.
So far I did a chmod 000 and a chown/chgrp 9999 on the Openfeint folder in /sdcard, which only solved half the issue. Will add your URLs to the hosts file.
Liquidsolstice, it's this sentence from the description in the Market that I find condescending: "It will disable you adblockers, if you are using any ad blocker you aren't my audience and i'm not planing to change this." Of course I didn't download it and then whined about it or downrated it, this was warning enough. I agree that the comments on the Market don't show much effort on the users' side. But at least the developer should give a reason *why* he disables ad blockers, instead of that snooty one-liner.
LiquidSolstice said:
It's a single host file. He might not believe in the blocking of ads. He makes it very clear in his description that it does not work in tandem with Adblockers and that those who use it are not his audience.
He's not being condescending. Who is anyone (not talking about you specifically) to voluntarily download his free app and then get pissy when it does exactly what he said would not work? And then to have the audacity to downrate it to 1 star because they were too stupid to read the description before installing the app?
Honestly, the comments for this app's market listing just go to further confirm that most Android app users are complete idiots with a self-importance complex and they don't think before installing an app. (Not that iOS reviewers are much better)
Based on some of the comments, you'd think that the app was being shoved down peoples' throats.
Click to expand...
Click to collapse
Some things are never acceptable under any circumstances.
Openfeint is one of them.
Airpush is another.
Anyone helping others to not have to deal with this junk is doing a service to the community and it should be commended.
It is malware plain and simple (Anything that while the app isn't open puts any junk on the screen is malware).
There is so few developers with any integrity on Android. (Everything is malware or adware - these things are are frowned upon even on Windows don't get why it is ok on a mobile device (hint it is not)).
If you make something worth having (That is a game) and give away a bit (No strings) and it is good you will make allot of money selling the rest for a game. Just like the old proper shareware model.
(I only buy DRM free stuff hence I bought the humble Android bundle for 6 times the average - no interest in anything else or social anything).
Filling other peoples devices with malware to compensate for the developers inability to create a decent app is unacceptable and always will be.
(I would be less bothered if the Market was structured in a way that I could easily avoid this type of junk (i.e adware / malware / stuff that gives away your personal information in a different section).
Regardless of what it is any adware/malware is always one star from me and always will be. (Other than if it is specifically stated in the description that it is adware. (Then I just would never install it).
qwerty12 said:
Android ad blockers work by dumping entries into the hosts file. This app also does the same. To be fair to the developer, he'd have to somehow make his app run every time after an ad blocker runs to ensure OpenFeint remains blocked, which would be annoying to support.
Since AdAway (my favourite ad blocker; it's open sourced) has a blacklist option, add the following entries to it:
openfeint.com
api.openfeint.com
scoreloop.com
and OpenFeint will be blocked by AdAway as it's doing the ads. There's also "*.openfeint.com" but I'm sure that that isn't valid hosts file syntax.
Click to expand...
Click to collapse
Works! Thanks!

[SECURITY] Android Security for Conscious Mind

== THREAD PURPOSE ==
I'm opening this thread to share and learn ideas about privacy solutions, please respect the purpose and keep this thread clean. My main language isn't English so if you spot errors or omissions please PM to me so I can correct them. Thank you.
All trolling or demotivating posts, disbelieving about privacy concerns or defending Google honor will be reported for cleaning.
== PROBLEM, HYPOTHESIS, TESTS, CONCLUSION ==
For years I've been very annoyed about privacy abuse on Internet and since Snowden and Assange revelations my concerns raised. I'm sure my personal and professional life is common and boring but I want privacy with my things just like I don't want a guy next table in the coffee shop listening to my talking subjects.
My first decision was to deploy a personal server, in my home, with OwnCloud. All went fine for some months until I realized the pain it was maintaining the system working, from server attacks and system fails to energy bills nothing could justify such paranoia. The OwnCloud Android client was also very bad those days.
The second idea was hosting OwnCloud and mail services on a private host, but this didn't made any sense because data wasn't encrypted and every employee could easily see my thermonuclear projects and my banana pancakes secret recipes. It was also a paid solution for nothing.
Finally I thought "If you're using German services you should be fine, Germany privacy data laws are the toughest in the world (even better than Swiss in this matter)". I'm in Europe so using European services was a no brainier decision, preferably in Germany and owned by German companies. Yes, I know you can't trust anyone but even so I think it's a well balanced solution.
== SERVICES ==
These are my services right now, share yours and try to justify why they're equal or even better. This list will be changed as needed:
Mail - GMX (Germany)
- Generally I really don't like 1&1 services but GMX is really good and working only on European servers. I advise you to don't use their other service, mail.com, because this one use USA servers. Unfortunately all other free German providers have low storage space. If you're willing to pay for privacy try Dutch StartMail but it's beta at the moment.
Contacts & calendar - fruux (Germany)
- Amazing services, great philosophy. For privacy and decentralization purposes I've opt for don't have this services on my mail provider. Unfortunately their servers are on Amazon Ireland, but I believe fruux have implemented cryptographic code on their system.
Cloud - HiDrive (Germany)
- I NEVER upload sensitive information to the cloud, even encrypted (remember Heartbleed and AES backdoor theory?). I was using Wuala for years but gave up after have been acquired by LaCie (USA). Tresorit shouldn't be trusted either, they're using Microsoft Azure servers, each uploaded and shared link pass through USA. Mega is darkness, I don't like the smell of it.
Apps - F-Droid (UK/France)
- FOSS is the way you should go, F-Droid is the obvious choice. F-Droid client was forked from Aptoide's source code.
Aptoide (Portugal) it's good but not consensual. Recently they're processing Google with Antitrust Complaint in EU proving they're concerned. You can only trust Aptoide IF you choose to install apps from their main centralized store (the default one, be ware and don't trust any other user store). http://m.aptoide.com/about
If you can't find what you're looking for then you can use Blank Store or Opera Mobile Store. Never choose Amazon Appstore, apps installed from there have proprietary code inserted.
Search engines - DuckDuckGo (USA!)
- Technically DuckDuckGo is a meta-search engine. It's amazingly good and you have lots of options to choose (did you know you can directly search images from Google if you search !gi [image you're searching for]?).
Another great alternative is Startpage (Netherlands).
== ANDROID SYSTEM ==
My Android system:
- CyanogenMod + freecyngn + NOGAPPS + SuperSU
- TWRP recovery
- Hardening Android for Security and Privacy
== APPS ==
My essential apps are:
Apps client - F-Droid (FOSS)
- See services above.
Privacy and cleaning - AdAway and AFWall+ (both OSS)
- Obvious choices on each privacy concerned system. Block almost everything, trust no one.
Android browser - Boat (proprietary code)
- I just love the options, specs, interface and speed. I know this choice will be highly controversial for some because it's a Chinese made browser, but isn't a cloud browser (like the also Chinese Maxthon) and it's really easy to firewall it from calling home (something somehow difficult with Dolphin). The obvious FOSS choice for almost everyone would be Firefox but I really hate their Android app and I have some bad thoughts about their Google connections. The FOSS best shot would be Tint or Lightning, but they're rather limited and AOSP it's even worse. Chrome it's obviously excluded for privacy sake.
Boat devs also used to be active on Xda with many supporters. For security precautions block port range 192.241.158.0/24 and 211.151.0.0/24.
Email app - K-9 (FOSS)
- The oldest, most forked and trusted email client. Needs a deep design/interface Overhaulin' (hey, Chip Foose...)
Contacts and calendar sync - Fruux + Birthday Adapter (FOSS)
- See services above.
Password & confidential safe - KeePassDroid (FOSS)
- Believe me, I don't know a single password of my accounts and I have hundreds. The only really big and complex password I know is the one from KeePass.
Antivirus - NONE, JUST DON'T
- I will not discuss here about the needs or true benefits of these apps but I can assure your data is leaking each time you go online. All them claim about privacy but they're always collecting "unidentifiable data".
== I will post links for everything soon. Please include links in your posts when justified. Thanks. ==
== Android Alternative FOSS ==
This is a list of some well known apps and their open source alternatives. Incredibly some of them are even better than "official" or paid apps, some others are quite limited but evolving and much secure.
It's impossible to put everything here, only the best apps I've tried with success will be listed. Please keep posting your suggestions.
BitTorrent Sync > Syncthing
Chrome > Firefox
Dolphin > Tint Browser
Dropbox > OwnCloud, Seafile
Facebook > Tinfoil for Facebook
Gmail > k-9 Mail
Lux Auto Brightness > YAAB
Tasker > SwiP
Titanium Backup > oandbackup
Twitter > Twidere
Reserved, just in case.
Really great thread sancho_panzer. I never thought someone can be as paranoid as I am, but I found you.
I'd like to add a few services:
Posteo (Mail):
A german email provider that doesn't claim as much data aa most of them do. It just needs your mail, pw of course and you can add your mobile phone number if you like to (it will be saved hashed in their database). Posteo has great SSL connections and uses a the first (german) provider the new protocol DANE as well as DNSSEC. You can use their CalDav and CardDav server and choose to encrypt your address book and your calendar. The service costs 1€ per month (10 cents for additional aliases and 20ct for the next gig), that can be paid by post mail, PayPal or bank transfer. The last two way won't get linked to your account.
CalDav/CardDav
To manage my addressbook and calendar on multiple devices I use aCal from F-Droid.
For googling issues there is a browser add on for PCs that tunnels the Google searchs for you called disconnect.me
Greetz, and i appreciate your love to FOSS very much!
@traceless There are lots of people on Xda concerned about privacy on Android and the Internet. I really hope this thread could help them to take some measures about it and share alternatives.
Thank you for https://posteo.de/ suggestion. Could be a great service problem is I don't speak German. I really don't understand why the website don't have an English version. I'm also concerned with recent leaks news about *.de domains ( http://www.bbc.com/news/technology-25825784 ).
I've tried CalDav-sync and CardDav-sync and they're great little apps, but if you want a FOSS solution try DAVdroid and the very new Flock from F-Droid.
I really can't trust https://disconnect.me/ . ( http://www.darkreading.com/document.asp?doc_id=1251070& ) or Ghostery, both track you ( http://www.reddit.com/r/firefox/comments/1qkc2b/disconnect_vs_ghostery/ ). If you're using Firefox on PC or Android my advice is to install Adblock Edge (Adblock Plus is worse and heavy) + Self-Destructing Cookies (BetterPrivacy is also great) + NoScript. You should also consider CleanQuit.
@sancho_panzer
I knew, that Disconnect was founded by a former Google employee but didn't know he was linked to the NSA. Anyway my current FF configuration looks just as you recommended, but I additionally installed a plugin that's called FireGloves. This is especially useful if you want to make fingerprinting your browser harder. It disables or disguises trackable settings; if you'd like to every browsing session. How unique ones configuration is, can be seen here at Panopticlick.
I agree, that it's a pity some services aren't available in the most common languages. Posteo's webmailer can be changed to English, but the whole service is German. Btw you don't have to be worried about the de ccTLD, the 16m mail that were compromised earlier this year were most likely taken due a hack of a german online shop and as the most customers were germans, the majority of the mails end up with *.de. So it doesn't mean every german domain is compromised and mail provider are insecure.
As you don't speak german you could take a look at Secure-Mail, a mail service provided by the mainly german VPN Perfect Privacy. It hosts in NL and supposes to store no identifiable data and is also encrypted. I found no setting to change the language to english on Secure-mail, but I thought I've seen it once in english, maybe it canges only if your country is english-speaking.
Flock is really nice, but I stay with aCal, cause it comes with a calender other than the integrated one and I'm not dependent on the built-in one with the (also switchable) Googl sync.
Excellent thread, thank you for starting it.
Edit : I think HTTPS Everywhere by the EFF should be mentioned in a thread like this.
https://www.eff.org/https-everywhere
sancho_panzer said:
I'm sure my personal and professional life is common and boring but I want privacy with my things just like I don't want a guy next table in the coffee shop listening to my talking subjects.
Click to expand...
Click to collapse
It doesn't matter if you think you life is important enough to be watched or if it's just boring. The fact that you know you *could* be watched in every move you make, automatically changes your behaviour. It changes the way you think, it changes the way you speak and write. It influences the way you interact with others. Feeling watched makes you fear of what you do!
Opening a thread like this is a good thing to begin to overcome this fear. :good:
Good linux expert, my colleague, told me some finding, android wise.....
He has installed Android Firewall, and blocked every possible application and system modules, including kernel.
In apk log, found that all ip packets sent by android kernel are routed through some chinese ip address, regardless of theirs final destination.
After some research, turned out that this IP is used by NSA. Yes, all ip packets going out of our android phone are sniffed by NSA. Embedded in kernel.
My 2 cents here, and sorry if ot.
Cheers!
Sent from my GT-I9195 using Tapatalk
Nice thread, thanks! :good:
Some thoughts from my side:
I generally distrust every online service, especially if I don't pay for them. I think it is better to decentralise services and host them on self managed servers in families, groups of friends,... and thus basically only give data to trusted persons you know in real life.
Here are two good links that show alternatives to proprietary software/cloud services:
https://prism-break.org/en/
https://wiki.debian.org/FreedomBox/LeavingTheCloud
== SERVICES ==
Mail -
I think mails are generally difficult to self-host. So you need a good mail service. Posteo was mentioned here, another similar reliable german mail provider (with english translation) is mailbox.org. They even encrypt unencrypted incoming mails with your PGP-key before they store them.
Contacts & calendar -
Posteo and mail.org also include contact and calendar synchronisation via CalDav/CardDav. Even better: Host it by yourself.
Instant Messaging -
XMPP (Jabber) is an open decentralised protocol with lots of implementations for almost every platform. You can host it by yourself or use an existing server. There are also very good clients for Android like Conversations or Xabber
== ANDROID SYSTEM ==
Two additions:
Free Your Android! - campaign of the Free Software Foundation Europe
IMSI Catcher/Spy Detector
== APPS ==
sancho_panzer said:
Android browser - Boat (proprietary code)
Click to expand...
Click to collapse
Don't do this! Firefox for Android is also a good choice. And Orweb not to forget!
traceless said:
I use aCal from F-Droid
Click to expand...
Click to collapse
DAVdroid is also a very good FOSS CalDav/CardDav-provider that integrates with the contacts/calendar app of android. And it is under active development (in contrast to aCal)
I can only agree that using posteo.de is a must. Completely anonymous. I put cash in an envelop (didn't actually touch any of it myself ) and they opened my account no problem. Last time I checked their site alao had an English version. Feel free to pm me with translation issues. I speak both languages fluently. Also a thread like this without XPrivacy?
For those interested in tor along with afwall, I have posted instructions on getting them to work together in the afwall thread
I prefer the Android system to be: OMNI + NOGAPPS + SuperSU
Note that freecyngn & NOGAPPS author has switched to OMNI
Regarding OwnCloud: it's a great software, but you're right not to trust it when it runs on some server that is not under your control. That's why I run OwnCloud on a Raspberry Pi that is running at my home, behind my firewall. Syncing is made with CardDAV and CalDAV, and both apps use SSL. I think I can trust that one.
dvdram said:
Regarding OwnCloud: it's a great software, but you're right not to trust is when it runs on some server that is not under your control. That's why I run OwnCloud on a Raspberry Pi that is running at my home, behind my firewall. Syncing is made with CardDAV and CalDAV, and both apps use SSL. I think I can trust that one.
Click to expand...
Click to collapse
And what connection are you using? I thought about exactly the same solution, but it's nearly useless with ADSL.. (6 MBit/s down and just 60kbits upstream)
Thank you guys for your contribution on this thread.
Ultramanoid said:
I think HTTPS Everywhere by the EFF should be mentioned in a thread like this.
https://www.eff.org/https-everywhere
Click to expand...
Click to collapse
@Ultramanoid You're absolutely right I forgot to mention it, I use it with Firefox on my laptop and it's great.
dvdram said:
Opening a thread like this is a good thing to begin to overcome this fear. :good:
Click to expand...
Click to collapse
@dvdram I agree and don't understand why so much people just don't care to talk about it.
jukyO said:
Good linux expert, my colleague, told me some finding, android wise.....
He has installed Android Firewall, and blocked every possible application and system modules, including kernel.
In apk log, found that all ip packets sent by android kernel are routed through some chinese ip address, regardless of theirs final destination.
After some research, turned out that this IP is used by NSA. Yes, all ip packets going out of our android phone are sniffed by NSA. Embedded in kernel.
Click to expand...
Click to collapse
@jukyO Lookout, the real test here should be made on a clean system, just ROM and a Firewall. That's the only way you can say it's kernel coded. Some apps use kernel to send and receive packets, your alert could be related to one of these.
Another debatable subject should be SElinux. Many ROMs, like CyanogenMod, have it in enforcing mode by default. If you install another kernel, like Alucard, SElinux become permissive. Even if SElinux is considered OS we all should not forget that was developed and implemented by NSA (!).
bastei said:
Here are two good links that show alternatives to proprietary software/cloud services:
https://prism-break.org/en/
https://wiki.debian.org/FreedomBox/LeavingTheCloud
== SERVICES ==
Mail -
I think mails are generally difficult to self-host. So you need a good mail service. Posteo was mentioned here, another similar reliable german mail provider (with english translation) is mailbox.org. They even encrypt unencrypted incoming mails with your PGP-key before they store them.
Contacts & calendar -
Posteo and mail.org also include contact and calendar synchronisation via CalDav/CardDav. Even better: Host it by yourself.
Instant Messaging -
XMPP (Jabber) is an open decentralised protocol with lots of implementations for almost every platform. You can host it by yourself or use an existing server. There are also very good clients for Android like Conversations or Xabber
== ANDROID SYSTEM ==
Two additions:
Free Your Android! - campaign of the Free Software Foundation Europe
IMSI Catcher/Spy Detector
== APPS ==
Don't do this! Firefox for Android is also a good choice. And Orweb not to forget!
DAVdroid is also a very good FOSS CalDav/CardDav-provider that integrates with the contacts/calendar app of android. And it is under active development (in contrast to aCal)
Click to expand...
Click to collapse
@bastei Thanks for your useful input. I know Boat would be controversial talk but if you read my comments you'll see I'm aware about the dangers of such decision. Even so I'm convinced about the safety of it.
Firefox is my primary choice on my laptops since the earlier version 3. Even if I tried alternatives on some occasions I've always returned to Firefox security and true development power (I always use it to analyse code and test all websites I make), the only real alternative was Opera (the original one with Presto engine, not the crap they use these days).
Android Firefox is a completely different beast. It's heavy, buggy, need extras for simple tasks like automatic close and clean or user agent changing, but above all WHY THE HELL CAN'T WE MAKE FOLDERS and organise favorites at will? The only solution I found for favourites was to sync them with my PC, organise all there and sync them back. Did I mentioned the ridiculous times it FC? Maybe in the future, right now the only FOSS I could consider is Tint Browser.
an0n981 said:
Also a thread like this without XPrivacy?
For those interested in tor along with afwall, I have posted instructions on getting them to work together in the afwall thread
Click to expand...
Click to collapse
@an0n981 XPrivacy and Xposed could be all we need IF they were OSS. The other problem are the inevitable lags introduced by these layers.
I've tested several configurations on my phones and tablets over the time but ultimately my OP describes my options at this moment. This subject isn't closed and will never be, there aren't perfect security systems, and that's the purpose of this thread, I'm sure the OP will be changed on some occasions. Please keep suggesting alternatives and solutions, your contribution will be greatly appreciated.
aelmahmoudy said:
I prefer the Android system to be: OMNI + NOGAPPS + SuperSU
Note that freecyngn & NOGAPPS author has switched to OMNI
Click to expand...
Click to collapse
@aelmahmoudy OMNI is a valid CM alternative, developed and maintained by well know Xda developers. Unfortunately I don't really like the excessive cleanliness and limitations. The only way I could advise it would be complemented with Xposed+XPrivacy+GravityBox, besides NOGAPPS and SuperSU.
I can't talk for them but I believe @MaR-V-iN and many other ditched CM after the group became comercial oriented, the inclusion of analytical and proprietary code didn't helped either. CM it's still the base for lots of ROMs and I'm still convinced it's the best for me, provided that are VM snapshots and thoroughly cleaned and modded like mentioned on my OP.
sancho_panzer said:
...
@an0n981 XPrivacy and Xposed could be all we need IF they were OSS. The other problem are the inevitable lags introduced by these layers...
Click to expand...
Click to collapse
Both are 100% open source, just not distributed through F-Droid. You can compile them yourself, source is on GitHub. Security software will always add some lag.
an0n981 said:
Both are 100% open source, just not distributed through F-Droid. You can compile them yourself, source is on GitHub. Security software will always add some lag.
Click to expand...
Click to collapse
You're absolutely right, my mistake. Still when I used them my system felt somehow lagging.
:delete:
err on the side of kindness
traceless said:
And what connection are you using? I thought about exactly the same solution, but it's nearly useless with ADSL.. (6 MBit/s down and just 60kbits upstream)
Click to expand...
Click to collapse
I admit I have a bit more speed than you, but it depends on what you want to use OwnCloud for. I use it only for syncing calendars and contacts, and for that few bits of information even your speed is more than enough, although you should consider to do the first time syncing over WiFi. Later, when you add contacts and calendar entries, you won't notice much disadvantage.
Of course, if you want to sync pictures and movies, that speed will not be enough. But do you really need that? Is it not much more efficient to copy pictures and photos via USB cable, when you're at home? Do you really need to sync them while on the road?
That is what you need to ask yourself. Like I said: contacts and meetings are very small pieces of information, less than a text message. A 60k download (from your phone's point of view) is more than enough for that.
dvdram said:
I admit I have a bit more speed than you, but it depends on what you want to use OwnCloud for. I use it only for syncing calendars and contacts, and for that few bits of information even your speed is more than enough, although you should consider to do the first time syncing over WiFi. Later, when you add contacts and calendar entries, you won't notice much disadvantage.
Of course, if you want to sync pictures and movies, that speed will not be enough. But do you really need that? Is it not much more efficient to copy pictures and photos via USB cable, when you're at home? Do you really need to sync them while on the road?
That is what you need to ask yourself. Like I said: contacts and meetings are very small pieces of information, less than a text message. A 60k download (from your phone's point of view) is more than enough for that.
Click to expand...
Click to collapse
Thanks. Firstly I wanted to use it for an alternative to Dropbox but then I found out the Cal- and CardDAV support. And you're totally right with syncing after first initialisation. Maybe I get an RPi later and try this one and also the owncloud feed reader [emoji2]
Any idea how to use the FF sync of owncloud, since FF only supports upgrading old accs to the new mozilla ones but personally I'd prefer the old way.
Greetz

"Block This" - Looking for Devs to help in improving the app

Hi guys! I'll try to keep it short. I've developed an app called "Block This" for Android. It's essentially an ad blocker based on VPN/DNS. I manage my own DNS servers + the development of the Android app.
I'm not gonna lie, there's a lot of bugs arising and basically no money involved as the app is currently FREE to use. I do think its a great app though, and I want to see it grow and spread over other systems like iOS & Windows with time. The app currently has about 50 000 active users (they were a lot more but the app got removed from the Play Store so distribution is harder now).
With this thread I basically want to check whether people would be interesting in devoting some time and helping me on this project if I decide to open source it.
If you are a dev and think this could be an interesting side project for you please drop in a few works down below. Thanks!
Kind Regards,
Sava Georgiev
Official website: https://block-this.com
Forum: https://forum.block-this.com
My site: https://savageorgiev.com
XDA thread: http://forum.xda-developers.com/s7-edge/themes/block-ad-blocker-root-t3338098
I have been using the app for a few weeks now.
This is a good app that has some promise. It works well against several of the well known ad SDKs. Especially if you are using the free version of TuneIn. I've not had time to test it fully, but so far, I like it. It could also be developed into a no-root firewall app. That could help it get back into playstore. But going open source, it would be a good fit for f-droid. And of course, here at XDA.
Looks like a good application. I have not tried it yet. But will try on my phone ( Note 2 - Cyanogenmod 12 )
New information ! The developer has now taken the project Open Source. Here is the link : https://github.com/ggsava/block-this
On my xt897 running CM12.1, my battery lasts soooooooooo much longer with this app. :laugh::good:
Great app @ggsava, I'm using this app on my non rooted galaxy note 7 and so far so good.
I try your apps, seems your vpn from france,my traffic route to server in france. It's it save and secure?
izamd said:
I try your apps, seems your vpn from france,my traffic route to server in france. It's it save and secure?
Click to expand...
Click to collapse
It is as safe and secure as possible - those are things I care about the most personally as well. You are however right, currently there are only servers available in France, but I'm starting to rework the back-end soon and will start adding more power to the DNS servers, making them available closer to people's locations. The plan is to have a couple of servers across Europe, NA and Asia in order to ensure maximum speed.
Looking good, Will try this app

Categories

Resources