Database Info

How can I anonymize and secure my Samsung Galaxy as much as possible?

I would like to setup my phone to be able to browse/use apps as anonymously as possible. I realize that will require Tor/VPNs, and I am working on getting that information elsewhere. Here I am focusing on the phone itself.
It will be a new Samsung on Verizon. I would like to anonymize and secure it as much as possible. For example, I know that Verizon and Google are shipping new phones with spyware and other tagging features. I am not very tech saavy (I cant code), but I am a fast learner.
I will be trying to avoid using Google products at all costs (No Play Store, GMail, etc) - except for Android system updates (I assume this is a necessity?). I am willing to do anything, *except*: Replace the OS - it has to be regular Android (Unless someone can show me an add-on/alternative that wont require constant maintenance/detailed knowledge of how a phone OS works), or compromise the basic software so that it become unstable or wont work with basic apps.
I assume rooting is a must - but I will need some direction as to how this can be done safely, and what I will then need to do to keep the phone updated and stable.
Specifically I am looking for:
- How to remove all native spyware/malware/unnecessary apps (without accidentally deleting something critical).
- Remove any features that could ID my device over the internet
- What kind of software/app I need to set up to protect against future malicious software (some kind of anti-virus/malware scanner?).
- How to most securely encrypt the phone and any data on it (so that if someone was able to get control of it, accessing it's contents without the pass key would be as difficult as possible).
- If necessary, before I web connect it, I could download any apps/programs on another device and trasfer via MicroSD
- Any general tips that might help with this.
Thank you.
EDIT: I was originally planning on getting an S8, but I have read that it might have some issues, so I can get an LG G6 or even Galaxy S7 if it is still preferred for privacy/security.

If you didn't read it, it could be a good start in your search.
https://forum.xda-developers.com/general/security/tuto-how-to-secure-phone-t2960077

VPN!!!!

I think, regular updates with security patches is a must. But if you don't trust your original OS, how can you trust it's updates? I use mokee OS for this reason. And no gapps.

ThirdEchelonSam said:
I would like to setup my phone to be able to browse/use apps as anonymously as possible. I realize that will require Tor/VPNs, and I am working on getting that information elsewhere. Here I am focusing on the phone itself.
It will be a new Samsung on Verizon. I would like to anonymize and secure it as much as possible. For example, I know that Verizon and Google are shipping new phones with spyware and other tagging features. I am not very tech saavy (I cant code), but I am a fast learner.
I will be trying to avoid using Google products at all costs (No Play Store, GMail, etc) - except for Android system updates (I assume this is a necessity?). I am willing to do anything, *except*: Replace the OS - it has to be regular Android (Unless someone can show me an add-on/alternative that wont require constant maintenance/detailed knowledge of how a phone OS works), or compromise the basic software so that it become unstable or wont work with basic apps.
I assume rooting is a must - but I will need some direction as to how this can be done safely, and what I will then need to do to keep the phone updated and stable.
Specifically I am looking for:
- How to remove all native spyware/malware/unnecessary apps (without accidentally deleting something critical).
- Remove any features that could ID my device over the internet
- What kind of software/app I need to set up to protect against future malicious software (some kind of anti-virus/malware scanner?).
- How to most securely encrypt the phone and any data on it (so that if someone was able to get control of it, accessing it's contents without the pass key would be as difficult as possible).
- If necessary, before I web connect it, I could download any apps/programs on another device and trasfer via MicroSD
- Any general tips that might help with this.
Thank you.
EDIT: I was originally planning on getting an S8, but I have read that it might have some issues, so I can get an LG G6 or even Galaxy S7 if it is still preferred for privacy/security.
Click to expand...
Click to collapse
Assuming you are just talking about general privacy and security, then you are in with a chance to minimise data available to Google etc and be largely secure. If you are trying to prevent the likes of the NSA then you have no chance. At the very least your cell provider will know somethings about you (you have to show id in the US don't you?)
Without going to extremes as in the first link below and ending up pretty much with a dumb phone your best bet is to follow something more like this
https://privacytoolsio.github.io/privacytools.io/
As for security you can "harden" your system, there are some good threads etc on this. Or you could just buy a phone that is already hardened see Copperhead OS.
You are your phones best security, but I would say EVERYONE is fallible and could be tricked into opening a malicious email etc under the right circumstances so you should run a good antivirus, it may just save you one day. However they are not even 100% against all known malware let alone future ones or other exploits, it's just another layer of defence. Keeping your phone up dated with monthly security patches is probably your 2nd best defence after you! At some point you are trusting whoever provides your OS, network and any apps installed. Then of course this level of security must extend to all your devices that may link to your phone, no good running a router which doesn't get regular firmware updates, just this week all Linksys ones were found to be vulnerable, before that some Netgear ones, before that ....
Even using TOR does not guarantee anonymity as the NSA, GCHQ etc have been able to identify users in several ways, and no doubt still can, but it is the best way, though can be slow
Use your phones built in encryption, though this only works on a looked phone, anyone can see your data if they lack it up unlocked, or if using remote admin. Using an app to encrypt folders/files can prevent a local person viewing saved files though.
Rooting & removing bloatware would certainly help reduce data "leaks", but it has it's own risks and will void your warranty (though not up to date on S8 & tripping knox etc or on unlocking bootloaders on Verizon phones as I'm not in the US.) If it was me I'd buy an older model that has great support on xda & that you know you can unlock bootloader/root which has a good choice of roms from reputable devs that release monthly security updates quickly & then get a limited set of apps from fdroiod or similar.

whirlpool95 said:
VPN!!!!
Click to expand...
Click to collapse
But be choosy!
https://blog.csiro.au/tinker-torrentor-streamer-spy-vpn-privacy-alert/
(some vpn's are named in the full report, link at bottom of page)

Yea just don't use the internet on your phone, that's my advice .

How can I secure my S7 as much as possible, short of a custom ROM

Ok, so I'm a little new to this. I am pretty much unfamiliar with root (I've only done it once, a few years ago, on a completely different kind of device, via KingoRoot without even having to plug in to a PC), but I am very good at following directions/making sense of tutorials . But recently I have have become very aware of privacy concerns, and I realize that the form my phone is in now is very insecure.
But I'm a little confused by "rootable" vs "unlocked bootloader"
So, I though I understood these terms, but apparently I don't. I thought that *root access* was an admin level (the highest), and that it required an unlocked bootloader to achieve it. However, my device, Galaxy S7 US version, is supposedly rootable(https://forum.xda-developers.com/tm...eres-how-rooted-nougat-s7-edge-g935t-t3567502), but does not have an unlocked boot-loader, like the international/Exynos version, that would allow you to install a custom ROM. How is this possible?
Either way, I cannot use a custom ROM, since none of the even remotely trustworthy ones (Copperhead, Lineage, Replicant) work on the US version.
So, if I am stuck with Samsung version android, what else can I do (If any of these are possible, a little direction or at least a link to a good guide would be very helpful)?
- Without an unlocked boot loader, can I still remove all GAPPS and bloatware?
- Can I remove Googe Play Services and replace it with MicroG, and still use the apps with the Play dependency?
- Is Xposed/Xprivacy an option? (Are these still considered safe?).
- If not, how can I get the most specific control over device processes: being able to see and control permissions for each app, moniter all incoming/outgoing data stream (everything apps send to other parties/devices and what they receive),
- Any possibility for a firewall?
I realize that this is asking a lot, but Reddit was thoroughly unhelpful, so I throw myself at your charity.

New OP7Pro to replace my Pixel2XL: Questions & seeking advice/tips on process

It's been a while since I rooted an Android device. And I've never rooted a phone. So, questions. I'd like to do everything possible to have the phone ready before contacting Verizon to get on their network. I'm guessing my steps should be:
a) root
b) TWRP
c) Magisk
d) latest Oxygen
e) all Play Store updates
f) move SIM (there are two slots?? which one??)
g) work w/Verizon to get voice & messaging working
h) use OP's app to migrate apps & data from Pixel2XL
i) figure out a VOWIFI and 3g calling option
I've found the great thread on steps a) - d) and assume all will be straightforward and easy. All of the Google Play Store updates will be easy, I've done all of that already just to test a favorite game (a primary reason I wanted to upgrade the phone to begin with).
I understand there are two SIM slots. Does it matter which I put the SIM in from my P2XL? Am I better off going to the Verizon store and having them put a new SIM in? If I remove the SIM from the P2XL can it still perform emergency calls?
Working with Verizon seems the trickiest part. I know I want to make certain it's activated for CDMA-less (found a great thread here on this, too). Are there any other things I need to request or make sure I test before assuming I'm good to go with Verizon? I won't have any issues because the phone is rooted, will I?
Is the right time to use the OnePlus app to migrate apps and data after successful Verizon activation? I'm not opposed to installing all (there are a LOT) of my apps one by one if it's going to work better and/or has some benefit.
I understand voice won't work over 3g (when LTE's not avialable). Is that correct? And I'm thinking this is related to VOWIFI? I'm sorry if I'm conflating two issues. But a workaround, at least for the latter, has been mentioned here that uses Google Hangouts and some Google app that acts like a phone, but it requires a number? Can someone shine some more light on this for me?
Otherwise, this is my current impression of what needs to be done. Please let me know if you agree, disagree, have suggestions, etc.! Thank you!

... anyone?

Based on your first sentence, you should really, really do some research before attempting any modifications at all.

dr_rick13 said:
Based on your first sentence, you should really, really do some research before attempting any modifications at all.
Click to expand...
Click to collapse
Are you saying that the guides here aren't adequate? I've had great success with Android tablets in the past following what's here. Perhaps you could be a bit less vague?

Is it worth rooting

I wanted to root my Nord, but I started to wonder is it worth it? What benefits I can aquire by rooting my phone? It has a lot of space anyway (I own 12/256 variant) so I don't care about additional space I can aquire by debloating.
Also I'm pretty happy with Oxygen OS, so I don't care about other ROMs, which can be bugged even more than OOS.
I was thinking about degoogling, but can we do a real degoogling, or it's just some kind of placebo, because they're everywhere
Other thing I was thinking was a proper call recording, can we do that with root access?
What's more there are some issues from banking apps etc.
Any other benefits? What do you guys think?

Well, that's up to you
Perhaps this similar thread helps:
https://forum.xda-developers.com/t/rooting-worth-it-or-hassle.4364757/
Personally, I'd say yes.
And as for google: Better to be touched inappropriately in one spot once then gang-raped for years and left to die on the harbor's bottom, eh?
Sounds harsh? Well, a googly friend did request his data some time ago - unzipped it was some 30GB and, among other things, contained his location ever since 2013 and just that meant roughly 2 location fixes every minute...
But, please, don't believe me, check their data on you for yourself:
https://support.google.com/accounts/answer/3024190?hl=en

But can you really get rid Google from your phone? It's I was thinking about some time ago. Except flashig a LineageOS rom-like...

Alas, not really... but it does make a huge difference to not have your device bound by an account.
(BTW, Aurora is a nice replacement for the playstore!)
Even LineageOS has some hardwired G-crap... after all, android is google's child. For example, every single time you log on to your wifi, android tries to verify internet.
Still, I do prefer to minimize such bad behavior than to give up entirely.

I still prefer to root for using
- AdAway
- AFWall+
- Titanium Backup
- Clocksync
- Automate lots of things with Tasker
Even without a proper TWRP available so far the root process is not that much of a hassle if you read the instructions properly and as long as you know how to unpack the boot.img from a full OTA.

Ramihyn said:
I still prefer to root for using
- AdAway
- AFWall+
- Titanium Backup
- Clocksync
- Automate lots of things with Tasker
Even without a proper TWRP available so far the root process is not that much of a hassle if you read the instructions properly and as long as you know how to unpack the boot.img from a full OTA.
Click to expand...
Click to collapse
For the first and second I use AdGuard. I find it way more better than Adaway in terms of blocking ads, trackers etc. Also, you can firewall apps with it too.
To be honest it's only TB and its mighty backup/restore/root/debloat abilities makes me still considering rooting my device.
I have a patched boot.img ready to flash since about two weeks. I'm sure I can manage this, but still not sure if I really want/need to.

AdAway and AFWall+ have the huge advantage compared to Adguard (Blokada would be another alternative) that they do not consume the VPN "slot" and thus almost no battery at all.
I am using my phone regularly to dial home using my own OpenVPN server (e.g. to access my music on my NAS instead of using Spotify and co.), so I cannot use VPN based ad-removal services.

wonsky21 said:
I wanted to root my Nord, but I started to wonder is it worth it? What benefits I can aquire by rooting my phone? It has a lot of space anyway (I own 12/256 variant) so I don't care about additional space I can aquire by debloating.
Also I'm pretty happy with Oxygen OS, so I don't care about other ROMs, which can be bugged even more than OOS.
I was thinking about degoogling, but can we do a real degoogling, or it's just some kind of placebo, because they're everywhere
Other thing I was thinking was a proper call recording, can we do that with root access?
What's more there are some issues from banking apps etc.
Any other benefits? What do you guys think?
Click to expand...
Click to collapse
Degoogle....
I tried /e/Os and hope half of their marketing is true.
3/4 banking apps are running (because banks are less evil than google).
The only disappointment is not to get 48mp frontcam (like (all?) custom roms for nord).

Question What is the benefits of Rooting these days?

I used to do it to flash firmwares but that does not seem to be prevalent any more, so why do I need to root?

I know this is a developer/modding site but I have to agree with the OP.
I come here for the general forum information that is "usually" more technical for obvious reasons. But to risk a very expensive tool for unlocking and modding....the risks far outweigh the benefits...IMO...YMMV

App & system theming (with Substratum + Swift Black, Repainter for pure system AMOLED black & Project Themer for different notification styles, lockscreen clock etc.). System-wide equaliser (currently with JamesDSP but will await VIper4Android working on A13 hopefully), system-wide ad-blocking. Revanced Youtube for background play etc.
Plus with AOSP Mods via Magisk it adds tons on features like customisable quick toggle column/row quantities + label text size, clock position, removing carrier label from status bar, long press power button screen off for torch and so much more! Plus not to mention custom rom support which whilst sometimes buggy, come with a wealth of benefits. I like to stick to stock these days with AOSP Mods & Magisk, as that module has many features and saves having any custom rom bugs (e.g. on Pixel 6 Pro, a custom rom would lose Magic Eraser whereas having a modded stock, retained it)/
I get the risks, but we do plenty of research and tread carefully and all is generally ok!
Got my Pixel 7 Pro just today and bootloader unlocked after the first OTA came through. It's now rooted and without passing safetynet currently, all cards successfully added to my Google Wallet.
Running like a dream

I used to root every one of my previous phones, but I've not done so on my Noted 10 Plus as I find Samsung Pay too useful. And rooting destroys it forever. Not sure if Google Pay still works when rooted, that may nudge me to do it.
I have no plans to root my 7 Pro when it arrives. But that may change.

Naughty boy client for Pokemon GO and system-wide AdBlock

For me the main thing is working app backup, since the Google solution is absolutely unreasonable (I have several non-play-store apps that I have had on every smartphone I've owned, and data generally isn't saved with Google anyway) But also tons of little things like being able to set a limit on battery charge level, full (to the extent still possible) filesystem access, a floating CPU monitor I like, Greenify, Island, Tasker stuff, etc.

System wide as blocking since 2012. No other phone does it better and easier.

How about Banking? I ditched rooting since all Banking apps denied to work. Workaround didn't work anymore.

Custom kernels that save on battery
Better Internet Tiles
ACC (Advanced Charging Controller) and AccA (Advanced Charging Controller App)
@siavash79's thread [MOD][Xposed+Magisk][Pre-Release] AOSP Mods - System modifications for AOSP-based Android 12+. This is a big one for me, personally.
Classic Power Menu
Swift Backup

hey_malik said:
How about Banking? I ditched rooting since all Banking apps denied to work. Workaround didn't work anymore.
Click to expand...
Click to collapse
Just use their website? Or switch banks? I have my primary bank with a local outfit that doesn't care about rooting (although that's not why I got them, it certainly helps keep me there) if I need to deposit a check and everything else can be done on their mobile website.

My main reason would be for the custom Kernels and for Viper4Android. I didn't have a bunch of $ to fork out for 2 new phones so I went with Verizon so I won't be getting either unless I hit the lottery and then buy a Google Version of the P7P.
Anyone remember what made us able to root/ unlock the bootloader On the OG Verizon pixel?
Any chance of that happening on this device or should I just go ahead and do the system update that's waiting? For instance, I know the Samsung Galaxy Note Ultra 20 5G on Verizon(The Device I'm switching from) was locked down but apparently some guy on XDA started an Unlock service and would unlock it for ~$100.

I root since it's my XDA addiction!
Also add Titanium to the attached list!

bryan1854 said:
Any chance of that happening on this device or should I just go ahead and do the system update that's waiting? For instance, I know the Samsung Galaxy Note Ultra 20 5G on Verizon(The Device I'm switching from) was locked down but apparently some guy on XDA started an Unlock service and would unlock it for ~$100.
Click to expand...
Click to collapse
From memory on the Verizon Pixel 1, there was a bug on Android 7.10, I believe it was, that fully just allowed us to toggle OEM unlocking on. From there it was a done deal. They patched it in 7.11. Again, from memory but it was either that or 7.11 before and 7.12 after.
And no, not likely to happen again. It would be very, very rare and like hitting the lottery. Didn't happen on the Pixel 6 Pro.

roirraW edor ehT said:
From memory on the Verizon Pixel 1, there was a bug on Android 7.10, I believe it was, that fully just allowed us to toggle OEM unlocking on. From there it was a done deal. They patched it in 7.11. Again, from memory but it was either that or 7.11 before and 7.12 after.
And no, not likely to happen again. It would be very, very rare and like hitting the lottery. Didn't happen on the Pixel 6 Pro.
Click to expand...
Click to collapse
Maybe I will contact the guy doing it for the note 20 ultra and see if he thinks whatever he's doing to those phones is possible here.
Thanks for the reply.

galaxys said:
I root since it's my XDA addiction!
Also add Titanium to the attached list!
Click to expand...
Click to collapse
holy crap, when you mention "Titanium", do you mean the backup?! or even the "tweaker"? either way, aren't those EOL for years???

EtherealRemnant said:
Just use their website? Or switch banks? I have my primary bank with a local outfit that doesn't care about rooting (although that's not why I got them, it certainly helps keep me there) if I need to deposit a check and everything else can be done on their mobile website.
Click to expand...
Click to collapse
I don't see how that again helps with tan apps. But sure just don't use it is always an option.

hey_malik said:
I don't see how that again helps with tan apps. But sure just don't use it is always an option.
Click to expand...
Click to collapse
The reality is that forced hardware attestation and the Play Integrity API will soon put an end to the tricks used to get around detection so people will have to figure out what root is worth to them. I decided awhile ago that I can live without it. Adb pull /sdcard does a nice enough backup job for me and Google's cloud backup pulls partial app data and will restore it where applicable.
Of course it does seem that there isn't a way to disable 5G SA on Pixels without disabling 5G altogether so I may have a use for root in the end anyway, time will tell, as I get sick of being stuck on T-Mobile's slow as molasses SA when midband is available.

Well i have rooted every other phone and rooting, installing kernel or roms solve some problem where oem is lazy or will not solve. Previously i was using OnePlus 7 pro with unlocked bootloader initially with Android 9. During Android 10 i prefer to lock bootloader again as during that time i was damm busy and getting time for root and transfer data was not possible. During Android 11 Oneplus had really ****ed up, device was getting hot like frying pan in summer. I really had no choice but to unlock bootloader and installed a stable custom rom(CR Droid) . Everything was perfect. After 9-10 months i thought i willl go to stock again and lock bootloader. But to my surprise cts profile was not getting matched. My phone was constantly recognized as Google pixel 6 pro (no NFC payment and play store dont recognize netfix) . Only safety net fix with Magisk was able to fix it. What really surprise is when i again installed Oxygen OS 10 cts profile was showing match with locked bootloader and with Oxygen OS 11,12 will show CTS profile mismatch. I really don't know what i had done wrong and there is no solution for locked bootloader.
So my suggestion is if anybody really want to unlock bootloader and have magisk prefer with your secondary device.

Is it possible to unlock 5G in another countries with root while having functional google wallet?

I only do it for AdAway. Would be wonderful if I could avoid rooting for blocking ads since it makes a few apps unusable (specificly Norwegian with no rooting community support). But I'll probably root my P7P when I get it on monday.