Hello,
I was searching about a feature to limit the access of apps to certain files or directories.
Use Case: I may have a directory I store music and do not want to share this with (amazon music, ....)
I may have a directory where I store pictures which should not be seen by other applications.
Today I use a of the shelf Samsung A3 2016 Android 7.0, but I used Xposed, CM and rooted devices. in the past. I'm not registered as developer here did never codded Android app or kernel but developed on embedded Devices and Linux in the past. I would be happy if you could share a ready to use setting, app or development idea (even if you did not got it running).
What I investigated and did not work so far:
Option A - .nomedia
I know already there is a possibility to use .nomedia file in the directory to avoid pictures being shown in Gallery, BUT this is a feature of the Gallery app (as far as I see). So the developer of the Gallery app could also access to the pictures in the directories, if they would like. So I'm not happy with this.
Option B - using cryptography
So I could simply put the sensitive data into a container, there are apps out e.g. EDS.
But I found out if the application who should access the data is not providing a "path" where the data is stored or doesn't provide an interface to a cryptography it can not be used. And once I entered the password and the directory is mounted all the applications running are able to access the files.
Option C - restrict media access
The Android allows to restrict the access to media, so I simply could switch off the access in the app I do not want to allow. But this doesn't work if the app need to store data. Android Music should be able to store the music on the phone but should not be allowed to access the other directories on my SD.
In pure Linux it would be quite easy you can use different users and access to files.
But Xposed may provide a solution as I could filter requests to the file system, but is there a example out there.
Thank you for reading all the stuff
I'm looking forward to read about your ideas
gonso
Hello,
no one has an idea or solution? I'm not able to post in the developers section may be one of you
may move the post into the Development part.
If not existing yet I would try to find out how to develop
Regards
gonso
Related
Hi there,
I downloaded SSE and used it.
I want to know is there anything better than this? I want to install the best one.
Thanks
I like EDS a lot. You can open truecrypt containers you make on the PC with it (must use specific encryption etc...). If you have root you can also mount the volume directly on the device.
Most of these types of programs (that don't mount) cache up a part of, or all of the file locally so you can access it meaning there is an unsecured copy on the devices file system while you access it. With mount you open directly from inside the encrypted container bypassing that insecurity.
I think you have to have the pay version to mount, this is the free one:
https://play.google.com/store/search?q=eds
Also it will leave a notification in your notification area saying EDS is loaded but you can hide that by going to the app in settings -> apps and unticking the show notifications checkbox.
I don't know whether to ask it here or not.
Want to know that is there any way of hiding the apps and folder other then putting period(.) before file name or folder
I want to do it parametrically I just want to know the way or anyidea about it other then above one
I am working on app which is password protected and have to take care that hidden files once hidden that are even not visible to root users without that application.
So it here any way of doing this in external memory card.
Please provide me with solution or coding reference if you have.
Note that I am not asking for any android application that available in android market
Click to expand...
Click to collapse
dykhatri said:
I don't know whether to ask it here or not.
Want to know that is there any way of hiding the apps and folder other then putting period(.) before file name or folder
I want to do it parametrically I just want to know the way or anyidea about it other then above one
I am working on app which is password protected and have to take care that hidden files once hidden that are even not visible to root users without that application.
So it here any way of doing this in external memory card.
Please provide me with solution or coding reference if you have.
Click to expand...
Click to collapse
When we speak about media files:
an empty < no media > file, in a folder,
ussualy solves the problem of visibility, for other-media focused-on board apps,
I presume is not what you have in mind,
The ussual way-the apps are protecting their data-in windows for example,
is to create their own file format, like: .cpt, .dat, etc...
Files on an external sdcard are recognised by the strings to them,
and thus known to the index...
but when you remove those strings,
you ussualy destroy also the files structure
although he files themselves still do exist...
In my humble opinion, only the separate,encrypted partition on an sdcard,
along with internal file format, may provide
efficient level of security that you seek for your app...
There surely always will be an app, able to see hidden contents,
especially on removable media,
but to be able to see it- is one thing,
and the ability to read its contents- is a completely different story...
asgardr said:
When we speak about media files:
an empty < no media > file, in a folder,
ussualy solves the problem of visibility, for other-media focused-on board apps,
I presume is not what you have in mind,
The ussual way-the apps are protecting their data-in windows for example,
is to create their own file format, like: .cpt, .dat, etc...
Files on an external sdcard are recognised by the strings to them,
and thus known to the index...
but when you remove those strings,
you ussualy destroy also the files structure
although he files themselves still do exist...
In my humble opinion, only the separate,encrypted partition on an sdcard,
along with internal file format, may provide
efficient level of security that you seek for your app...
There surely always will be an app, able to see hidden contents,
especially on removable media,
but to be able to see it- is one thing,
and the ability to read its contents- is a completely different story...
Click to expand...
Click to collapse
What you have said makes seance to me sir but I forgot to mention here that I am only taking about android mobile OS specially. I am making application specially for android mobiles.I am not concern about another whether i can be display in PC or not that is not my concern.
can you have any idea for that
dykhatri said:
What you have said makes seance to me sir but I forgot to mention here that I am only taking about android mobile OS specially. I am making application specially for android mobiles.I am not concern about another whether i can be display in PC or not that is not my concern.
can you have any idea for that
Click to expand...
Click to collapse
1.there is always a possibility that something hidden locally- on board of your device-
could be found through a computer connection,
so if you wanted app sensitive data to be secure, this aspect should also be taken into consideration...
2. windows is just an example:
some dependancies are similar throughout many other systems- just because they work as expected...
An internal file format and file encription is to be found in some of the android apps as well
Hi All,
Could anyone shed some light on how Android establishes what user runs certain apps (or services) when executed, please?
Here is the situation:
I have a service that runs at boot, controlled by and app called SyncMe. What it does is essentially synchronising my NAS music folder to a local storage (on a SSD). The service seems to be run by the user u0_a70, and when the folders are created, they are under an unmask 077, essentially giving access to the folders to that one user only.
Now I have my music player (MortPlayer), running on user u0_a69, which obviously has no access to the folders. Not ideal.
How can I run the sync service with the same u0_a69 user, or the other way around? Alternatively, is there any way of defining a umask specific to one user only (so that the folders are created with a different set of permissions?)
Thanks in advance,
Richard.
I saw this on my device, and only found little info/threads, with almost zero content/analysis. Aparently the kindle app leaves a bunch of random files around. And since the prefix is "RCE" i am a little paranoid, since that usually means "Remote code execution" and is usually associated with exploits
Files:
CS_JIT_Animation.mp4
jit_cs_positive_preview.png
rce_plugin_strings_resource_cs_CZ.json.min
rce_plugin_strings_resource_de_DE.json.min
rce_plugin_strings_resource_en_US.json.min
rce_plugin_strings_resource_es_ES.json.min
rce_plugin_strings_resource_fr_FR.json.min
rce_plugin_strings_resource_it_IT.json.min
rce_plugin_strings_resource_ja_JP.json.min
rce_plugin_strings_resource_nl_NL.json.min
rce_plugin_strings_resource_pt_BR.json.min
rce_plugin_strings_resource_v2_TYPO_TEST.json
rce_plugin_strings_resource_zh_CN.json.min
All Attached in a zip created by the android native file manager.
Current places mentioning this
https://forums.oneplus.com/threads/unkown-files-in-download.948860/
https://talk.sonymobile.com/t5/Xper...erious-Files-in-Downloads-Folder/td-p/1353185
https://forum.xda-developers.com/xperia-xz1/help/phone-mysterious-files-download-folder-t3871763
https://www.youtube.com/watch?v=eMmx5tRm0jM (one of the files is a video, someone uploaded to youtube ...and to https://gfycat.com/generouspinkcolt
How to make those files appear for you:
Install kindle from the google app store
if you already have it installed, or want to see the files again after you deleted, Stop the app and delete all storage. (nothing will be lost, this app syncs everything and some more to the amazon servers)
perform the first Sync on kindle app
Now, insert a pen drive and open the native android File Mananger and look at the local Download folder
Files are somewhat hidden:
If you look into the download folder with any other app (I tried, blackberry file manager, oi file manager, Ghost Commander, and Termux --after enabling the storage setup)
Files probably have a weird attribute or ownership... but the native android file manager does not show anything other than creation date! And every single file operation (copy, move, compress) reset the information to "regular user, creation time set to now". So either I see them on the Native File Manager, without any information available, or I do not see the files until I destroy the information.
Android version is not important (seems to happen on several versions) and has been happening for a while (First mention seems to be Nov2018)
Anyone have any idea what this is? I know I will probably reverse eng the kindle app at some point, wast a bunch of time, and realize it is just some dumb amateur library badly implemented by amazon... or maybe not. I think at this point I am most curious as to how the app "hides" the files from most everything.
Does anyone know how the access permission for Android applications really works (OxygenOS v13.0 for me, OnePlus Nord2 5G)?I find it very convenient to be able to share a photo, for example, on Facebook. However, I have to grant access to my files before publishing, even when I only want to share it from the gallery and not directly from Facebook.
It seems that previously, we could choose not to grant access to files automatically and directly send the photo from the gallery, which seems logical and more secure to me.
Apparently, the authorized applications can access my photos without restrictions all the time. I noticed this particularly with Facebook's "suggestion" to post by directly accessing my photos...
Is there a setting that I may have missed or an application that can block this?
Thank you.
Preface: Android does NOT allow on non-rooted for configuring System Settings or App Permissions using a 3rd party app.
Look inside here:
Change app permissions on your Android phone - Android Help