Database Info

[Suggestions & Discussions] Why mobile security matters

Hey XDAian...:laugh:
Here I am back again for few suggestions & discussion.
Based on some pretty interesting facts about "mobile in general", The smartphone segment has brought accessibility to millions around the world, at work and at home. Naturally, all the data in those devices, wirelessly accessible, becomes a gold mine for those with nefarious motives to exploit.
On the work front, smartphones are a huge contributor to productivity. At home, they provide meaningful and useful (and sometimes redundant) ways to stay in touch with friends and family. The more of these devices we buy, the bigger the opportunity is for criminals, because there are so many ways to get the data. We might lose a device, or its is stolen, we might download a bad application, or soon brush against an NFC tag or visit a bad web-page. The possibilities are so diverse compared to a PC or server farm hardwired to the internet.
With the tremendous growth of the smartphone market not expected to slow down anytime soon, people and organizations must be vigilant in guarding against breaches of their data and/or personal information. Even as organized hackers work on ways to score the high-value breach, they are working on high-volume, low-risk attacks against weaker targets as well.
In addition to some tips about securing mobile devices, the infographic has some interesting facts from 2011 in there as well, such as 855 breaches resulted in the theft of 174 million records.
We Need some Security Applications for preventing our valuable data (like Msgs, Contacts, Pin codes etc). Therefore, from my side this thread belong to all XDAians.
Please suggest the latest, finest Applications & few tremendous suggestion from all Devs, RC, RD & Members.
I like a Security based Application called LBE Privacy Guard to Prevent sending data through various applications installed at our Mobile.:good:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Some Great Ideas Received from Our XDA Members. Which are here follows:
As this OP thread may become too long so, for Batter view just press "Show Contents" for there suggestions.
This One is provided by Our Great Sr.MOD Justin:
Personally, I place little emphasis on mobile security. Things like antivirus, password protectors etc. make sense if you store a lot of mission-critical, sensitive data on your phone, or frequent a lot of open hotspots, leave your Bluetooth on and 'visible' in public places, but otherwise just chew battery, CPU cycles and money.
I can appreciate the need for such things, in some instances (proper business users, etc.). I have little faith in an app to look after my security however, and would instead recommend a few lifestyle changes where possible, to improve your security:
1. Never use open, public WiFi. If you must, never use it for sites you log into, sites that control your money, or sites that contain other sensitive information. Doesn't take much for that guy outside McDonalds on his laptop to be sniffing packets.
2. Turn on Bluetooth and NFC only when you intend to use them. Not only do you save precious battery, you ensure that your close-range transmission technologies are only on when you need them, and not at other times. Also, set a unique Bluetooth passcode for your device, rather than the generic '0000'.
3. Never let your browser remember any passwords.
4. When setting passwords and PINs, never use a bank PIN, and always use 'leetspeak' for your passwords. For example, I would like my password for XDA to be 'firewood'. Rather than just typing it, try substituting letters for numbers, like this: F1r3W00d. Mix up your capital and lower-case letters, even substitute characters for letters or numbers. Do anything you can to ensure your passwords don't resemble anything from a dictionary!
I have no idea whether these steps have helped, but I haven't been the victim of online identity theft yet - even my passwords have never been compromised.
I think it's something we should always keep in mind, but never worry too much about. The risk is always there but it's a big, wide world.
This One is provided by Our Great buddy Adam77root:
Mobile security is getting more and more important nowadays. But the worst is that people don't know about and are not aware of the security issues that all pose a high threat to gadget users. There are plenty of ways for which stolen data can be used for and most of the people don't even think of themselves being impersonated by hackers.
Because of the design of the Android system it's very easy to write fully-featured malwares for this platform as the permissions are not handled on a low native (even kernel) level, but there are the Android permissions most of you are already aware of. A lot of users don't read through the permissions that the application they install asks for, making it easy to fool them.
Hackers usually give such application and package names that they are very similar to those of the inner Android system, so the users don't delete those apps after a little Google search.
Coding in Java is extremely easy, you don't even have to free memory, as the garbage collector does that for you. This opens this platform for the so-called script-kiddies who are wannabe 'hackers' and want to create the 'best malware ever'. They're dangerous as there are a lot of them. There are also a lot of prebuilt libraries for Java, which can be used for making for example network communication easy.
If such an application is installed on a system, its easy to root the victim's device, opening a new way to compromise the OS. There are methods to root a great deal of devices (of course excluding some) and plant a rootkit on them for a longer stay. For example the app is then moved to the system partition where it cannot be deleted from.
Most of the modern malwares communicate through the internet with their author. If somebody uses a 2G/3G data connection and has no or limited data plan, it may cost high amount of money for the user. For example: Here, in Hungary, lot of teenagers use 0.facebook.com which allows them to browse Facebook without paying for it. Just imagine their parents when they get the bill because of a hacker.
I, personally, do not use any antiviruses on my phone. Even, I use only a free AVG on my Windows PC and nothing on my Linux box. Every system can be hacked and all AV-s can be bypassed. Sometimes I check the autorun apps to see if there isn't any suspicious.
To sum up: I advise you not to download/install any suspicious app on your phones and if you notice some strange network activity, do a deeper inspection on it and wipe your data (very important as most of the malwares are still installed there) or reflash your system if you want to make sure everything.
Here is few more points from our great RC Selva.simple.
Mobile security not only matters about protecting our data from phising and virus attacks but also protecting it when v lost our device. Because a smartphone falling into wrong hands can cause so much of trouble. So just wanna list down following points interms of mobile security
* When u buy a new smartphone, take a mobile-insurance along with it (atleast for an year). We may sometime doesn't know its importance. But it matters a lot. It comes around of 3% of mobile cost. Keep your bills and insurance papers safely.
* For all important personal contents (Contacts, Pics, Videos, Docs, Messages) you store in smartphone, have a secondary backup in your system or hard disk. It comes in handy when ur phone is totally dead or lost. Take this backup atleast once in two months. Lots of software available for this.
* Use personal lock apps like "Keep safe" to lock/hide your personal data.
* Use Mobile security apps like "Lookup" or "Avast". Even if not for its ant-virus feature, but must for its features of "Anti-theft" features. Apps that help in locating the device if in case the mobile is stolen and kept on.Or when your sim card is replaced with a new sim, sending out a sms from the new sim to a pre-configured number.
* Apart from all these, an important feature is to destroy all your personal contents (complete Erase) in your mobile if in case it is stolen. This will prevent our data falling in hands of wrong people.More than device, our data matters a lot.
I'm a personal victim of a stolen mobile phone, my Wave II. Since that was the time, i flashed a leaked Bada 2.0, no data was there in my mobile. So atleast i was happy with that. I had my mobile insurance which got me the 80% of money which led my way to Android world via Galaxy R.
Source of this amazing ad is Phone Arena.
"How to secure your Android phone and protect your data"​
Just Go to this thread for the same ->How to secure your Android phone and protect your data​
Download LBE privacy Gaurd / master for mobile -> Click here for thread.

FOA, good thread (Y)
i know two apps which are good in security...
one is APPLOCK - https://play.google.com/store/apps/details?id=com.domobile.applock&feature=search_result
another AFARIA - my bro uses this on his note, its suggested by his company to maintain their mails and lot other office stuff store on the phone-
https://play.google.com/store/apps/details?id=com.Android.Afaria&feature=search_result

U brought to my attention the importance of security...
Till nw i was least bothered n never paid attention...
Bt thanks...
Sent from my GT-I9103 using Tapatalk 2

vipul12389mehta said:
U brought to my attention the importance of security...
Till nw i was least bothered n never paid attention...
Bt thanks...
Sent from my GT-I9103 using Tapatalk 2
Click to expand...
Click to collapse
security is important man!! how can you let others read your messages or your mails or even look at your gallery ???
security is must!!

chandrus1983 said:
FOA, good thread (Y)
i know two apps which are good in security...
one is APPLOCK - https://play.google.com/store/apps/details?id=com.domobile.applock&feature=search_result
another AFARIA - my bro uses this on his note, its suggested by his company to maintain their mails and lot other office stuff store on the phone-
https://play.google.com/store/apps/details?id=com.Android.Afaria&feature=search_result
Click to expand...
Click to collapse
Thanks buddy. U r like my bro.. :thumbup:can u pls add few more lines abt these two application. I will add both of it in OP.
Sent from my GT-I9103 using xda premium

vipul12389mehta said:
U brought to my attention the importance of security...
Till nw i was least bothered n never paid attention...
Bt thanks...
Sent from my GT-I9103 using Tapatalk 2
Click to expand...
Click to collapse
Buddy if u will PM me then i will disclose u few points of applications.. bt security is highly recommended over android mobiles.
Sent from my GT-I9103 using xda premium

chandrus1983 said:
security is important man!! how can you let others read your messages or your mails or even look at your gallery ???
security is must!!
Click to expand...
Click to collapse
This is what i was telling in whole thread buddy. Security is as much as essential like security of ur bank account. If a unknown person is having ur personal data, it means u are in big trouble. So, for security point of view we must have knowledge abt the same.
Edit: thats why i asked fron Devs/RC/RD to come ahead and provide us the right path of security.
Sent from my GT-I9103 using xda premium

kataria.vikesh said:
Thanks buddy. U r like my bro.. :thumbup:can u pls add few more lines abt these two application. I will add both of it in OP.
Sent from my GT-I9103 using xda premium
Click to expand...
Click to collapse
Yes I will write when I get on pc, and ask more info about the afaria app from my brother.and update it.
From my Limited Edition SGR

Mobile security is getting more and more important nowadays. But the worst is that people don't know about and are not aware of the security issues that all pose a high threat to gadget users. There are plenty of ways for which stolen data can be used for and most of the people don't even think of themselves being impersonated by hackers.
Because of the design of the Android system it's very easy to write fully-featured malwares for this platform as the permissions are not handled on a low native (even kernel) level, but there are the Android permissions most of you are already aware of. A lot of users don't read through the permissions that the application they install asks for, making it easy to fool them.
Hackers usually give such application and package names that they are very similar to those of the inner Android system, so the users don't delete those apps after a little Google search.
Coding in Java is extremely easy, you don't even have to free memory, as the garbage collector does that for you. This opens this platform for the so-called script-kiddies who are wannabe 'hackers' and want to create the 'best malware ever'. They're dangerous as there are a lot of them. There are also a lot of prebuilt libraries for Java, which can be used for making for example network communication easy.
If such an application is installed on a system, its easy to root the victim's device, opening a new way to compromise the OS. There are methods to root a great deal of devices (of course excluding some) and plant a rootkit on them for a longer stay. For example the app is then moved to the system partition where it cannot be deleted from.
Most of the modern malwares communicate through the internet with their author. If somebody uses a 2G/3G data connection and has no or limited data plan, it may cost high amount of money for the user. For example: Here, in Hungary, lot of teenagers use 0.facebook.com which allows them to browse Facebook without paying for it. Just imagine their parents when they get the bill because of a hacker.
I, personally, do not use any antiviruses on my phone. Even, I use only a free AVG on my Windows PC and nothing on my Linux box. Every system can be hacked and all AV-s can be bypassed. Sometimes I check the autorun apps to see if there isn't any suspicious.
To sum up: I advise you not to download/install any suspicious app on your phones and if you notice some strange network activity, do a deeper inspection on it and wipe your data (very important as most of the malwares are still installed there) or reflash your system if you want to make sure everything.

I never thought this but after reading this i am also thinking .....
Yep buddy you are correct, we need to think about this very seriously ....
Sent from my GT-I9103 using xda premium

mj.vikram said:
I never thought this but after reading this i am also thinking .....
Yep buddy you are correct, we need to think about this very seriously ....
Sent from my GT-I9103 using xda premium
Click to expand...
Click to collapse
Yup MJ buddy, I wasn't so much aware but when I saw that my installed applications is getting access to my device & sharing the data, I jst start searching the help.

Nice thread Vikesh, great idea.
Personally, I place little emphasis on mobile security. Things like antivirus, password protectors etc. make sense if you store a lot of mission-critical, sensitive data on your phone, or frequent a lot of open hotspots, leave your Bluetooth on and 'visible' in public places, but otherwise just chew battery, CPU cycles and money.
I can appreciate the need for such things, in some instances (proper business users, etc.). I have little faith in an app to look after my security however, and would instead recommend a few lifestyle changes where possible, to improve your security:
1. Never use open, public WiFi. If you must, never use it for sites you log into, sites that control your money, or sites that contain other sensitive information. Doesn't take much for that guy outside McDonalds on his laptop to be sniffing packets.
2. Turn on Bluetooth and NFC only when you intend to use them. Not only do you save precious battery, you ensure that your close-range transmission technologies are only on when you need them, and not at other times. Also, set a unique Bluetooth passcode for your device, rather than the generic '0000'.
3. Never let your browser remember any passwords.
4. When setting passwords and PINs, never use a bank PIN, and always use 'leetspeak' for your passwords. For example, I would like my password for XDA to be 'firewood'. Rather than just typing it, try substituting letters for numbers, like this: F1r3W00d. Mix up your capital and lower-case letters, even substitute characters for letters or numbers. Do anything you can to ensure your passwords don't resemble anything from a dictionary!
I have no idea whether these steps have helped, but I haven't been the victim of online identity theft yet - even my passwords have never been compromised.
I think it's something we should always keep in mind, but never worry too much about. The risk is always there but it's a big, wide world

juzz86 said:
. I have little faith in an app to look after my security however, and would instead recommend a few lifestyle changes where possible, to improve your security:
Click to expand...
Click to collapse
Happy to see u again juzz Yes thats true, more than an app, we shud be more conscious in our lifestyle and trend towards using our smartphone. And Congrats that u r part of "DEVELOPER COMMITEE".. Or is it u were already there in it and am i just noticing it now

juzz86 said:
Nice thread Vikesh, great idea.
I have no idea whether these steps have helped, but I haven't been the victim of online identity theft yet - even my passwords have never been compromised.
I think it's something we should always keep in mind, but never worry too much about. The risk is always there but it's a big, wide world
Click to expand...
Click to collapse
Thanks Buddy. You suggestion is marvelous as like always.:good: But finest one is password setting in Alphanumeric ("Mix up your capital and lower-case letters, even substitute characters for letters or numbers"). I must add your suggestion & Adam one in OP. Thanks buddy.

You're welcome. Thank you both for the kind words always happy to catch up with my Royal friends!

chandrus1983 said:
Yes I will write when I get on pc, and ask more info about the afaria app from my brother.and update it.
From my Limited Edition SGR
Click to expand...
Click to collapse
AppLocker is a SW which lets you Lock ANYTHING n EVERYTHING in your phone,
you can lock, Messages,Contacts,Mail,Gallaery, etc etc, if you wish, you can lock all the apps, by just selecting LOCK ALL option, which is there in the App.
AFARIA is a device administrator, it is used by professionals whose mails and calender events strictly private/confidential,
my brother works for HP, he uses this app, and ofc it is recommended by the company,
he cannot access his mails and events, if this app is disable or enabled,
in his Galaxy Note he has installed it, and all the security options like swipe,number lock is disabled...
only Password is available, you cant set anyother lock other than Password...
If you try to remove this app, all your mails,events and personal data will be deleted
APP Lock - https://play.google.com/store/apps/details?id=com.domobile.applock&feature=search_result
Afaria - https://play.google.com/store/apps/details?id=com.Android.Afaria&feature=search_result

Mobile security not only matters about protecting our data from phising and virus attacks but also protecting it when v lost our device. Because a smartphone falling into wrong hands can cause so much of trouble. So just wanna list down following points interms of mobile security
When u buy a new smartphone, take a mobile-insurance along with it (atleast for an year). We may sometime doesn't know its importance. But it matters a lot. It comes around of 3% of mobile cost. Keep your bills and insurance papers safely.
For all important personal contents (Contacts, Pics, Videos, Docs, Messages) you store in smartphone, have a secondary backup in your system or hard disk. It comes in handy when ur phone is totally dead or lost. Take this backup atleast once in two months. Lots of software available for this.
Use personal lock apps like "Keep safe" to lock/hide your personal data.
Use Mobile security apps like "Lookup" or "Avast". Even if not for its ant-virus feature, but must for its features of "Anti-theft" features. Apps that help in locating the device if in case the mobile is stolen and kept on.Or when your sim card is replaced with a new sim, sending out a sms from the new sim to a pre-configured number.
Apart from all these, an important feature is to destroy all your personal contents (complete Erase) in your mobile if in case it is stolen. This will prevent our data falling in hands of wrong people.More than device, our data matters a lot.
I'm a personal victim of a stolen mobile phone, my Wave II. Since that was the time, i flashed a leaked Bada 2.0, no data was there in my mobile. So atleast i was happy with that. I had my mobile insurance which got me the 80% of money which led my way to Android world via Galaxy R.

This seems so fine when our mods and RC buddies are giving there time for issues which we usually neglect. Thanks selva buddy. Added ur suggestion in OP.:thumbup:
Sent from my GT-I9103 using xda premium

FAQ
below are few questions which might help you to update FAQ in OP :
1) Can we change/contol the permissions of an application in a rooted/non-rooted phone dynamically ? could any adverse effect if i do this ?
2) I there any encryption software which encrypt stored data/password (remembered password etc)? is this required ( or android inharit encryption is sufficient ) ?
3) what is meaning of basic permissions in layman's terms ?
4) if i trust application A and give it sensitive permissions and application B does not required major permission ; is it possible application B gain access of application A's data instead of direct access of system data ? how dangerous it is and if there any example out there?
5) any indication on device (behaviour) through which i can find out if my device is hacked/leaking information etc ??
6) is andorid secure then windos in normal uses terms ? for example is it more secure if i use a bank website on my android phone insted of my anti-virous protected windows machine or vice-versa ?

ashvyas said:
below are few questions which might help you to update FAQ in OP :
Click to expand...
Click to collapse
Hey buddy. Nice suggestion.:good: But we Need answer of these Question first. So, I think we must find them. What do you say.?:fingers-crossed:

[APP] FlowReader - Save this awesome RSS reader

This is a long shot, but I since the demise of Google Reader (which this app supported) the developer has decided to no longer continue the development of this app. A tragedy; I think we as a community should try and sway him to continue it instead, adding new back ends, both Feedly and TOR (TheOldReader) support would be great. I would love to continue using this app, as it is probably the best RSS reader I have encountered on Android. It is my hope that we can either convince him to continue the project or allow someone else to (any volunteers ?).
Flow Reader gives you an easy way to be on par with your RSS/Google Reader feeds on the go. It was built to provide a minimalist and seamless experience for offline browsing, while delivering additional features not found in similar apps.
Some of the main features include:
- A sleek and fast user interface;
- Offline item content and state caching;
- Multiple simultaneous downloads for fast content synchronization;
- Content filters that automatically mark as read the items you're not interested in;
- Sort items by state (latest/unread/starred) or author;
- Smart algorithms that remove ads and other undesirable content from items;
- No ads.
Click to expand...
Click to collapse
The Developer posted this statement in the most recent app update:
As you sure know by now, Google has discontinued the Reader service, so this app is no longer functional.
Although I am very happy with the (unexpected) success of this app, I've decided to no longer update Flow Reader. This is due to several reasons: a) I built this app "for fun" and to my very specific RSS reading needs. Although I very happy to see that a lot of other people enjoyed it, I was in no way ready for attention it received (due to multiple technical and logistic reasons); b)This app was essentially just a prototype turned into a final product. The Code is very messy right now and it's becoming harder and harder to make any further changes, let alone any major ones (like background updates). c) The app is *very* tied to Google Reader backend, which means that giving proper support to another service would require a very significant amount of effort.
I am very thankful to all my users (especially the ones who donated and gave feedback!), but I hope you can understand the reasons behind this decision - continuing to work on this app would require a major rewrite and too much time trying to (once again) and make the pieces all fit with "spit and glue".
If you are interested in any future app I might develop, you can be notified about it by sending me an e-mail using the button below. You will know beforehand of any project I might be working on (and maybe even receive an alpha/beta version of it?).
Thank you again - and hopefully this won't be the end
The Developer
Click to expand...
Click to collapse
Those who have used the app please voice your support to continue the project as I have emailed the developer the link to this thread.

(Flow Reader dev here)
Right, here's what's going on:
Personally, I'm not very happy with any of the current readers on the Play Store, so the idea of building the next iteration of Flow Reader is one that I really enjoy. Unfortunately, I simply don't have the time that I would need to keep developing it any further. I now have a full time job and not much patience to keep working on the app on my spare time.
The thing is, I have several unique ideas that I believe would greatly improve the experience of Flow Reader. Actually, some of these already graduated from just ideas, as some prototyping is already done and working. I also think there is a decent amount of money that could be made from them, so I'm not very willing to just leave them out in the open.
The fact is, though, it is very unlikely that I'll ever finish this new version of the app that I'm building. I can see two options right now:
OPTION 1 - The cooperation route:
- I will pair with another developer (or a small group of developers). Bear in mind that the code is reasonably complex, so i'd rather work with someone that feels confortable around code.
- The code of Flow Reader will remain closed, but shared with the people that want to be part of this project;
- I will take care of the things that I believe to be my greatest strength: UIX and prototyping. But I will always be open to suggestions on these areas.
- The profit of the app will be split 25% (for me) and 75% (for the other developer(s)).
OPTION 2 - The free route:
- I open up the code of Flow Reader under the condition that it will forever remain open-source and free (under an attribution, no derivatives and no commercial use licence).
- I will no longer will have any direct input or cooperation on the app.
Also, I honestly think it would be better to start the app from scratch. The code is a complete mess right now so trying to build more features upon it would just be less efficient. Still, some techniques and code used in Flow Reader could be reused to save some time.

Choices
I have been a user of Flow Reader for some time and was really sad when it stopped working and that the dev stated that there was no longer going to be updates to continue after the demise of Google Reader.
That said, I totally agree that it should be continued into the post-Google Reader era of RSS news. I originally created a post on Reddit in which I stated that for the continuality of Flow one idea would be to open source the code on a git site to allow others to progress his work further.
Understandably this poses the risk of Flow Reader loosing it's (work)Flow. All that time and effort the dev put in to creating a stunning, and above all easily functional, UIX could well be lost. On the other hand the simplicity of this RSS reader coupled with its parallel article downloading feature would live on and enrich many an Android RSS fans.
So here I am on XDA, stating my opinions for the two options presented.
For the Closed Sourced Approach:
The idea of sharing the workload will mean that whoever is chosen to work on Flow Reader will most likely have a great deal of knowledge to input in to this project. It also means that the UIX will not change without considerable thought first. This I applaud.
The fact that the developer says that the proceeds of the app will be divvied up indicates to a paid app, further indicating to (hopefully) a group of developers with the incentive to push great work "out the door".
For the Open Sourced Approach:
The hands of many a developer could make this app into something even better than it already is....
...or it could ruin it with out the guidance of the one who had the vision in the beginning.
Usually in the open source community when there is a bug and/or a missing feature, if someone with the appropriate know how can fix it, it shall be done.
A question, then, to WildMoves. Would those who have donated need to pay again once it arrives back on the play store? That is if you are going to make it a paid for only app?
Either way, with the way that Flow Reader handles feeds I honestly have never, and believe never shall, discover one better. To which I would like to say that no matter which direction the dev goes, I will support and give as much feedback as I can.
Again, great work mate and keep on coding,
Skinna a.k.a Skinnx86

Skinna said:
I originally created a post on Reddit in which I stated that for the continuality of Flow one idea would be to open source the code on a git site to allow others to progress his work further.
Click to expand...
Click to collapse
Yes, when I posted my answer I was still trying to develop the next iteration of Flow Reader. I built a prototype to test several ideas before I came to the realization that I couldn't build the full app the way I wanted to in a feasible amount of time and still... well... live. :\ So I am now receptive to offset most of the workload to a developer or group of developers (hence the 25/75 profit split).
Skinna said:
A question, then, to WildMoves. Would those who have donated need to pay again once it arrives back on the play store? That is if you are going to make it a paid for only app?
Click to expand...
Click to collapse
I have the email addresses of everyone who donated, so I could probably create a mailing list to deliver full versions of the (paid) app outside the Play Store. Assuming that I would have the approval from the other developers, it would be a good sign of gratitude to those who donated, IMO.

Reasonable Thoughts
Well a man has to live. To spend your free time developing and building something you would expect some payback of some sort. But thank you for remembering us early adaptors. I know I for one will be thankful, I can but imagine others will be too.
As much as I was appreciative of the beta's being sent to us, but in case you did not hear, Facebook updated some peoples app out side of the play store. Now Google have banned out-of-market beta testing. I believe that sending an apk to install initially will work and should update through the play store correctly.

[APP][2.2+] Telegram, the secure chat client.

{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Taking back our right to privacy​
https://telegram.org/
Android: https://play.google.com/store/apps/details?id=org.telegram.messenger
iOS: https://itunes.apple.com/en/app/telegram-messenger/id686449807?mt=8
Windows Phone: https://www.microsoft.com/en-us/store/apps/telegram-messenger/9wzdncrdzhs0
Updates:
v. 3.2.4
Bug fixes
v. 3.2.3
- Android 6.0 support
- Now on Tap
- Direct Share
- Fingerprint support for Passcodes (Android 6.0 only)
v. 3.2.0
- Introducing Channels – a great new way to broadcast your messages to unlimited audiences (replaces old Broadcasts).
Read more: https://telegram.org/blog/channels
Telegram is a messaging app with a focus on speed and security. It’s super-fast, simple, secure and free.
Telegram seamlessly syncs across all of your devices and can be used on desktops, tablets and phones alike. You can send an unlimited amount of messages, photos, videos and files of any type (.doc, .zip, .pdf, etc.). Telegram groups have up to 200 people and you can send broadcasts to up to 100 contacts at a time. Be sure to check our website for a list of Telegram apps for all platforms.
We built Telegram to make messaging speedy and safe again, without the usual caveats.
Why Switch to Telegram?
FAST: Telegram is the fastest messaging app on the market because it uses a distributed infrastructure with data centers positioned around the globe to connect users to the closest possible server.
SECURE: We made it our mission to provide the best security among mass messengers. Telegram heavily encrypts all your data with time-tested algorithms.
CLOUD STORAGE: Telegram seamlessly syncs across all your devices, so you can always securely access your data. Your message history is stored for free in the Telegram cloud. Never lose your data again!
GROUP CHAT & SHARING: With Telegram, you can form large group chats of up to 200 members, send broadcasts to up to 100 contacts at a time, quickly share large videos, documents (.doc, .ppt, .zip, etc.), and send an unlimited amount of photos to your friends.
RELIABLE: Built to deliver your messages in the minimum bytes possible, Telegram is the most reliable messaging system ever made. It works even on the weakest mobile connections.
100% FREE & NO ADS: Telegram is free and will always be free. We are not going to sell ads or introduce subscription fees.
PRIVACY: We take your privacy seriously and will never give third parties access to your data.
For those interested in maximum privacy, Telegram offers Secret Chats. Secret Chat messages can be programmed to self-destruct automatically from both participating devices. This way you can send all types of disappearing content — messages, photos, videos and even files. Secret Chats use end-to-end encryption to ensure that a message can only be read by its intended recipient.
SUPPORT: For real-time support, please go to Settings in Telegram and select “Ask a Question” to send a message directly to our support volunteers. You can also email us at [email protected].
Click to expand...
Click to collapse
This application is one of the best encrypted chat applications out right now. Secret messaging and auto self destruct are amazing features.
If you don't like Facebook knowing everything about you through Whatsapp this is the thing to switch to. It feels super slick and fast. It has better options then any other messaging app has at the moment and it's growing bigger and bigger. Hope the community can give the attention this app deserves and makes it the new messaging app on Android/iOS/WP and PC.
THIS APP IS NOT MINE. I just want to give it attention since more people should use this amazing application.
Really good explanation from: Ba7rani123
Ba7rani123 said:
Many people are ranting that its the same as whatsapp so whats the use ? or Its not really secure because it uses your phone number
To know if an app is secure or not we have to look at 4 things:
Where is the company based ?
Who made it ?
Are the protocols secure ?
Privacy Policy
It is as Russian company with servers in British Ivory Islands(which keeps it away from the russian gov and the NSA)
It was founded by the brothers Nikolai and Pavel Durov who are the founders of VK and are known to support wikileaks and other "pro-privacy" organisations
It uses their own protocol "MTProto". The company said it would give 200,000 bitcoins to anyone who can find a bug in their protocol. 3 Russion analysts found a few issues and they were given 100,000 and the issues were fixed as soon as possible. Other companies like whatsapp dont care because for many years it has been sending our texts without any encryption and now it uses a very weak type of encryption which can be easily broken by the NSA.
In their Privacy Policy they strictly show that they will NOT share any data with third parties.
But... Why is it better than Whats app ?
All Chats are encrypted. It uses its own encryption(MTProto) which was made to have a balance between speed and security.
- In normal chats it uses Client/Server and Server/Client encryption(which is considered secure based on many security experts who have analyzed the app), here your chats can be accessed on other devices(by signing in ofcourse) through the cloud
- In "Secret Chats" the encryption is Client/Client meaning even the builders of this app cannot see your conversations. Here you cannot access them using the could. That's why secret chat isn't used as default
It is Open-source
It allows you to send files up to 1GB in size
Allows you to send documents, zip or rar files
It has a cloud feature meaning I can access my chats from my computer and other devices, some may see this as insecure.
Cons :
It uses phone numbers(actually its not a big issue since your phone number is already all over the net !!)
Its exactly like whats app ? well its more of a Pro than a con because anyone can easily change to this with the above advantages
Conclusion :
Nothing is 100% secure but it is definitely more secure than any other app here. Also, it will remain free according to their FAQ because their goal is PRIVACY. Also, their may be an option to remove the "Last seen" in the future. Their FAQ answers many questions if you have any head over their.
FAQ:
https://telegram.org/faq
Source:
Arabic: https://cyberkov.com/?p=1354
you can use Google translate to read it
Click to expand...
Click to collapse

I love it, I wish it becomes the new standard, but I see a big problem:
I'm from Spain, and now there is a huge hype with this app, but I think this hype will finish before the appearance of apps for Symbian, S40, BlackBerry and all those legacy OS, and people will leave it, because whatsapp is in more devices.
Does someone knows about any app in development for Symbian or S40?

Why do I have to give them my telephone number? :/

.
Ey I start using it a week ago and its insanely awesome!!! Same UI as whatsapp but a big problem is the day to day use of the app for example right now theres not much community I have got like 10 telegram friends out of 100~ that uses whats app.
Another thing they dont got is the verb conjugation we use for example
" I'll send you a whatsapp " > that stands for Ill send a text message by whatsapp. It became as a native verb.
" Ill send you a telegram " > Right now it doesnt make to my mind what do that means.
In Spanish we like to use a lot
" Te mando un whatsapp " " Hablame por Whatsapp " " Tienes Whatsapp " and the word Telegram doesnt is very friendly as the word "whatsapp"
" Te mando un telegram " "Hablemos por Telegram ".
So I really like the app and the Windows Client is just very nice and good to have
Let's wait and hope people like it.

Is it end to end encrypted? Then it would be a great alternative.
What's their business-model, though? Free and no Ads seems like it won't be around for long...

lozohcum said:
Why do I have to give them my telephone number? :/
Click to expand...
Click to collapse
to identify you. same as in whatsapp.

I like ...
Telegram is new, I hope not to be forgotten:laugh:

lozohcum said:
Why do I have to give them my telephone number? :/
Click to expand...
Click to collapse
To make sure they know who you are, same reason its only on -google- play
Nope, waiting for Tox.

merlin699 said:
to identify you. same as in whatsapp.
Click to expand...
Click to collapse
ah ok. so I'm not gonna use it. My telephone number is privacy thing

lozohcum said:
ah ok. so I'm not gonna use it. My telephone number is privacy thing
Click to expand...
Click to collapse
I care a big deal about privacy and don't even use a Google Account. But I think there are a lot of other things to worry about first before worrying about your telephone number. If you give your number to anyone who is using a phone or an app that reads his/her contact list and does whatever with it, your phone number is not a privacy thing anymore.
(Correct me if I'm wrong)

James Randi said:
I care a big deal about privacy and don't even use a Google Account. But I think there are a lot of other things to worry about first before worrying about your telephone number. If you give your number to anyone who is using a phone or an app that reads his/her contact list and does whatever with it, your phone number is not a privacy thing anymore.
(Correct me if I'm wrong)
Click to expand...
Click to collapse
yea but I still don't trust app like this one. It's sad because I very wanted to use it instead of fb messager (which consumes lots of ram in my device). And "Fast for facebook" is not good for me.

lozohcum said:
yea but I still don't trust app like this one. It's sad because I very wanted to use it instead of fb messager (which consumes lots of ram in my device). And "Fast for facebook" is not good for me.
Click to expand...
Click to collapse
If you're using Facebook Messenger privacy shouldn't be such a big concern for you, lol.
Sent from my Nexus 5 using Tapatalk

i like this messanger
i used from 6 month ago

domenukk said:
Is it end to end encrypted? Then it would be a great alternative.
What's their business-model, though? Free and no Ads seems like it won't be around for long...
Click to expand...
Click to collapse
Only the secret chat is end to end encrypted, a normal chat is phone-server server-phone, so the conversations can be synced between more devices
It's not a business, it's open source, they didn't make it to earn money

My notifications of Telegram don't seem to work properly. It seems that I only receive messages when I actually open the app.
Notifications are all on. Phone is used in wifi only atm, no SIM.
Anyone any ideas?

ed10vi said:
Only the secret chat is end to end encrypted, a normal chat is phone-server server-phone, so the conversations can be synced between more devices
Click to expand...
Click to collapse
So the normal chat is not more secure than whatsapp.
Good to know there is an option for save chats, though.
ed10vi said:
It's not a business, it's open source, they didn't make it to earn money
Click to expand...
Click to collapse
Server Storage and Traffic don't fall from the sky. Open source is nice and everything, but somebody always has to pay something.
Anyway, the App looks very polished.

domenukk said:
So the normal chat is not more secure than whatsapp.
Good to know there is an option for save chats, though.
Click to expand...
Click to collapse
It's more secure: https://telegram.org/faq#security
domenukk said:
Server Storage and Traffic don't fall from the sky. Open source is nice and everything, but somebody always has to pay something.
Anyway, the App looks very polished.
Click to expand...
Click to collapse
https://telegram.org/faq#q-who-are-the-people-behind-telegram

i'm not a security expert but according to moxie marlinspike, a developer of renowned secure text messaging app "text secure", this app's security is questionable. he actually called it snake-oil!

toxic-hero said:
i'm not a security expert but according to moxie marlinspike, a developer of renowned secure text messaging app "text secure", this app's security is questionable. he actually called it snake-oil!
Click to expand...
Click to collapse
It's not the most secure system, but I think it is enough. They tryed to find a balance between security and speed
As he says, I peffer the Text Secure protocol, but its unusefull for me, I don't know one single person who uses it, and I don't like the apps

Questionable
I've been using this app for a while now and trying to get in touch with the devs regarding some basic privacy concerns. Essentially - all our data is stored on their servers (unless in the case of "Secret Chats" - which is not the default / passive option). So what happens if you OR the person you're chatting to gets a new number, loses their existing phone, or just deletes Telegram (as you would WhatsApp)? It seems all our data, chatlogs and files (pictures, videos, media, etc) stays on Telegram's servers indefinitely.
Given that this app is so focused on privacy and security, this seems to be a questionmark.

[DEV] keweon - AdBlocker (RC1 Edition) [Project disruption]

Beginning with 2016 we will not longer support the coexistence with EYEO's AdBlocker.
This tool is an advertising gateway and they will pass more and more advertising.​
keweonDNS
THE FIRST ADBLOCKER WORLDWIDE
WHICH RUNS ON
EVERY OPERATION SYSTEM
EVERY BROWSER
EVERY SYSTEM
without any Software Installation
Tested & working on:
WinXP to Win10 - Windows Mobile - Linux - UNIX - Android - iPhone - iPad - MacOS - BeOS - BLACKBERRY - JavaOS - XBOX - PLAYSTATION - APPLE WATCH - WebOS - Microsoft EDGE - RASBERRY - NAS DEVICES - SmartTV's​
​
Click to expand...
Click to collapse
​I'm proud to present a brand new ad-block and security solution. I hope to find some supporter here to check, test and optimize the system.
The name of this system is keweon which is a short form from the German words "keine werbung online". Translated to English this would be "no advertising online"
Unfortunately every online presence is within German language because my English is not longer the best.
The idea and very first solution was born in year 2003. In the year 2013 I decided to launch the system as an online based system and we have tested this system almost on every device. AdBlocking is just only one of the many features but at the moment it's only important if the black and white lists are usable and what to change.
keweon is also the only adblock solution world wide which is not possible to block. If you find a web page where you receive the message "Blocked because you are using an adblocker" let me know this link here or post it on our facebook page and we will change this.
Now it's up to you to decide what you want to think about it.
How can you use it?
The big advantage is that you don't need to install any software. Just point your device to the keweonDNS Server and - that's it!
You can use it on your device or on your SOHO Router or you can use it just on your PC to test and see how does it work.
It's working on EVERY operation system, on EVERY device. Even on IPhone, PlayStation, XBOX and if you want it will even run on the Apple Watch.
Here are the keweonDNS Server list and where they are located:
DNS Server IPv4
GERMANY 01 (*) 46.101.208.121
GERMANY 02 (**) 46.101.187.194
UNITED KINGDOM 01 (*) 178.62.117.240
USA - Dallas (TX) (**) 45.32.198.153
DNS Server IPv6
GERMANY 01 (*) 2a03:b0c0:3:d0::3c:7001
GERMANY 02 (**) 2a03:b0c0:3:d0::b0:8001
UNITED KINGDOM 01 (*) 2a03:b0c0:1:d0::28:8001
USA - Dallas (TX) (**) 2001:19f0:6400:8945:5400:00ff:fe17:5dba
(*) = only available for Germany, Austria, Switzerland and Liechtenstein
(**) = global available
Our DNS Server are not pointing to Google server at the other end. We want to have a clean DNS solution. The DNS servers points to root-server.net infrastructure only.
This might cause some troubles e.g. with MarkMonitor URL's and Domains. I don't care because this company is anyway block at 99,999% via keweonDNS
HTTPS Advertising - no more chance
This is also a big advantage that keweon is able to cover also this crap. We know the current solution is not the best but it is the cheapest.
If you want get rid of the HTTPS advertising error message than you need to install the keweon Adblock Root Certificate on your Computer or on your device.
I know that there are better solutions but the problem is that keweon is currently just a hobby and to buy a public certificate and spending 800 Euro just for fun would be a big financial pain.
You don't need the certificate to use the keweon Adblock but if you want to get rid of the https nags you need to use is.
Browser example without keweon Root Certificate:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Browser example with keweon Root Certificate:
If you want to see what is inside this certificate than browse to the keweon HTTPS Sniper Server and take a look inside the SSL Certificate. You can see what URL's we will take over for ad-blocking reason.
How does keweonDNS work?
It's not a big secret because EVERYTHING is working on 100% pure native DNS technologies. The only thing you need is a FreeBSD Server, a LINUX Server and - YES, it is REQUIRED - a Windows Server. You need to build your own operation system based on UNIX and some special kernel things.
That's all!
I also have had a contact to a big AdBlock Company and the CEO still think this solution is a Proxy solution. I don't want to make a big discussion but keweon is running on 100% native DNS.
The only exception for this is currently YouTube. We have unlocked YouTube that you will not longer get stupid messages "Is blocked because...".
In non other country of the world are more Videos blocked than in Germany. Don't ask for the secret of the YouTube solution. It's working and we will not send the traffic over the keweon systems. That's the reason why we can offer this solution to nearly half a million users.
Check this and see:
https://apps.opendatacity.de/gema-vs-youtube/en/
Currently we have the problem that YouTube unblocker will not run 100% on iOS devices. If you want to see EVERY Video you need to uninstall the YouTube App from your device and watch the videos within the browser.
Therefore I would need additional help to sort out where the hell this app will take the GEO location information's. At the moment it seems it will use the iOS API for this but my knowledge about the iOS API is very limited.
Here are the important links:
On Facebook: https://www.facebook.com/keweonNetwork
On Twitter: https://www.twitter.com/keweonNetwork
Because of legal reason the web site is still offline. One little error on the page could cost a lot of money in Germany.
The Web: http://www.keweon.de
The keweon Root Certificate.
Keep in mind it is not required to use the certificate. If you want to get rid of the HTTPS error messages u can use it but for the basic Ad-blocking it is NOT REQUIRED.
Here is the list of the current entries within our certificate. You can double check this within our HTTPS sniper server: https://adblock.keweon.center
http://forum.keweon.de/viewtopic.php?f=9&t=8
For Windows Systeme (MSI File)
The certificate is working for IE, Edge and Chrome Browser.
http://pki.keweon.center/certs/keweonAdBlockCertificate.msi
MSI within a ZIP file:
http://pki.keweon.center/certs/keweonAdBlockCertificate-MSI.zip
For Android and iOS devices, also for Firefox and Mozilla Browser:
http://pki.keweon.center/certs/keweonAdBlockCertificate.crt
CRT within a ZIP file:
http://pki.keweon.center/certs/keweonAdBlockCertificate-CRT.zip
For Admins to use it within Active Directory as REG file:
http://pki.keweon.center/certs/keweonAdblockCertificate.reg
REG within a ZIP file:
http://pki.keweon.center/certs/keweonAdblockCertificate-REG.zip
If you want to have a "AllInOne Package" use this link please:
http://pki.keweon.center/certs/keweonAdblockCertificate.zip
What will this cost?
It will cost nothing. You can use it where ever you want to use it.
Why it's free?
Because we can do it.
We are unknown.
We don't know what you think about this solution.
That's the reason why this will be free of charge. But keep in mind that this system is only a demo system because we don't have the money to do what we want to do.
The only thing what we expect:
Like, Share and Promote us here by XDA (hit the Thanks Button), on Facebook and Twitter. That's all we want to have from you.
And now?
Now it's your turn.
Read it, use it and decide if you want to have the Internet in a newer Version. Take a look and see.
Hope you enjoy it!

How you can support keweon?
If you have found an address which is blocked that needs to be unblocked or if you have found additional critical address then just send this via email.
At the moment we need to cross check everything manually but we hope that we can automated this process within a few weeks. For this it is important how you send the email. Let's give a short example.
BLACKLIST EXAMPLE:
You have found the URL www.ads-terror.com. But this address is a Popup from the site www.cool-site.com
Now create a text file as like as a hosts file and add the bad URL. Use the Hash sign (#) to seperate the comment. As comment you should use the source URL where you have found the Popup.
www.ads-terror.com # www.cool-site.com
If you have found a malware site or address or something like the "Flashplayer Update" which is in real a malware or spyware trash than comment this with what it is. Just one or two words that we know what it is. You can also combine this or write a few more words. It's up to you.
www.ads-terror.com # fake flashplayer
WHITELIST EXAMPLE:
We know that 7 million entries will not be 100% safe and clean. So don't worry, if you find an address which is blocked which should be not blocked than let's whitelist this.
Also write this into a TXT File and comment this with some self spelling infos that we know why.
bit.ly # Twitter URL shortener
That's all. Please don't send any screenshot or PDF or anything else than a TXT file. Keep in mind that we only will work with the attachments. It does not make sence to send the information within the email body. Whatever you write in the mail this will be ignored because this is an half automated process.
Where to send?
It's easy.
If you have an request and attachment for white listing send this to:
[email protected]
If you have an request and attachment for black listing send this to:
[email protected]
Anything else?
Yes. If you have seen a website where you will receive the Message "this website is blocked because you are using an adblocker" than we also want this to know.
Sometimes it will take a few hours, sometimes this can take up to 3 days until whe are able to break this. But we keep you updated on twitter if we are able to remove this crap.
If you have found an address please copy this address also into a TXT file and send this to:
[email protected]
A few of our blocked URL's might cause some HTTPS errors. For this we have the Root Certificate and because of this we are able to manage this errors within a few minutes.
If you are using the keweon Adblock Root Certificate and find an error on a web page than make a screenshot OR send a TXT file with the URL.
We will double check this and if we see that this address needs to be placed in our HTTPS certficate we will do this. If something wents wrong we will remove this address from our blacklist.
If you see or find an error within the HTTPS certificate than we also need this to know. Send the screenshot or the TXT file to this address and we will take action.
[email protected]
Update of white and black lists
Currently we have a job, we have family and we can not offer 24x7 support for this. This system is just a damn small system, it's a hobby and this update procedure can cause a timeout for round about 60 sec. when we do an update on our DNS Servers. We know how to solve this but we don't have the money currently for this.
This update has only impact to NEW site and URL requests.
If you are playing an online game, stay on facebook or doing work on the same site you will see no interruption. If you do a new site request and you will see that this request runs into a time out take a smoke or move away for a new cup of coffee.
I hope you enjoy this and if you have any recommendations please let me know this.

What is keweonDNS?
keweonDNS is more than just a simple adblocker system. keweon is a solution which offers a lot of cute things.
privacy Protection
protection by Virus and Trojan infection (prevent the download of additional files)
protection against spying (blocking the source address)
Internet without Ads and Popups
real time online ad-blocking
domain address based
working with ipv4 and ipv6
tracking protection
malware protection
spyware protection
trojan protection
fake security filter
fake software filter
phishing protection
advantage because of all of this: up to 50% faster internet on all devices
We also have found a solution where we are able to block even IP Addresses and filter single websites or a picture. But currently it is to expensive to release this for public usage.
We need your support!
The keweonDNS phishing protection is a beta solution at the moment because we have the idea. We know what to do. We know where to do.
But we have no email with a phishing address or URL. We hope someone of you is able to support us and send us a few URL's.
If you receive a phishing mail than copy the content of the mail into a TXT file. Please make sure that you will copy the PHISHING address into this TXT file and then send the TXT file as attachment to:
[email protected]
!!! ATTENTION !!!
IF YOU DON'T KNOW WHAT TO DO - NEVER CLICK ON A LINK WITHIN A PHISHING MAIL.
ASK A FRIEND OF YOU OR SOMEONE WHO KNOWS WHAT TO DO!​
Click to expand...
Click to collapse
​If you are not sure than you can forward and send the complete mail to us. Please send this mail to:
[email protected]
The problem is that our mail provider might filter this mail. That is the reason why we are asking for the source and destination address within a text file.
It will not help if you only send a screenshot because the LINK and the LINK REFERENCE are completely different. It's also an idea if you are able to save the message and send the message as ZIP file.
If we have this mail we will take action and prevent phishing attacks when you are using the keweonDNS Servers.
Currently we have not a real solution how you can send the information's within a secure way. You can do what you want as long as you are safe and can make sure that you will be not infected.
If you have any idea how to send the complete mail your welcome to keep us informed.

It seems no one is using this System because of my self signed Root Certificate.
I want to get rid of the Certificate installation.
Does someone know if there are some provider who offers free public web server certificates?
Currently I only know Comondo.
Thanks in advance!
(2015/12/11 - 12:15) EDIT:
Click to expand...
Click to collapse
We have done a Certificate request with public domains entries within the SAN field.
After this the certificate request was catched by fraud detection and they denied the certificate.
Bad luck for us. But we don't give up.
If someone knows a different solution than our Root Certificate please let me know.
At the moment it is only possible to get rid of the HTTPS trash with our Root Certificate.
Thanks in advance!

Over 500 Hits and no one seems to be interessted?
Can someone explain to me why there is a problem to give it a try and test this System?
Would be a great thing. Thanks in advance.

I'll give it a try, i already promoted it over my friends, i thank you for your work
Inviato dal mio Nexus 4 con Tapatalk 2

jacomail95 said:
I'll give it a try, i already promoted it over my friends, i thank you for your work
Inviato dal mio Nexus 4 con Tapatalk 2
Click to expand...
Click to collapse
That's good to know.I will Update this Thread with more options.
I have no exerience with Italy and ads, Malware and Spyware.
Hope you will give some feedback to optimize it. Infos and how2 will follow within this Thread the next few hours.
Thanks and I hope you enjoy this system

Now you can help us with update and clean up the white and black lists.
http://forum.xda-developers.com/showpost.php?p=64055856&postcount=2
Best regards!

Hello , thanks for this dns. Could you provide server & net provider information?
Please take a look at dnscrypt.org , usage would be great.
Your website isnt loading , what happened
Sent from my GT-I9505 using XDA Free mobile app

HeathenMan said:
Hello , thanks for this dns. Could you provide server & net provider information?
Please take a look at dnscrypt.org , usage would be great.
Your website isnt loading , what happened
Sent from my GT-I9505 using XDA Free mobile app
Click to expand...
Click to collapse
At this point DNS encryption is not a thing we Plan to implement.
This System is comlete VPS based and a real smal system.
We are using some overloaded security on the servers. If we have success to establish this as an commercial system we will use DNS encryption.
But at the moment we only want to clean up the Black and white lists and for this DNS encryption will cause more troubles than security.
Best regards!

Technical Focus:
It seems that adblock blocking will become the "Advertising Surprise XXL Feature" for 2016.
May be for all other Adblockers. But this will not work with the keweon System.
We cross the fingers and we wil see :fingers-crossed:
Blocking Adblocker which blocking ads to make sure that ads will never blocked
If you see any Website which is blocked when you will use an ad-blocker please test this also with the keweon System.
Yahoo is working on this to prevent ad-blocker usage.
We are working on this problem too and for a well-balanced result we take the other side.
Help and let us know when you find such a site!

Tell us what you think about this:
kinox.to and movie2k.to are now 98% ad free.
We also removed the abo traps when you use this sites on your mobile phone.
Best regards and we hope you enjoy this!

What are you doing with all the user data you are collecting with this?
Gesendet von meinem HTC One mit Tapatalk

flummi3000 said:
What are you doing with all the user data you are collecting with this?
Gesendet von meinem HTC One mit Tapatalk
Click to expand...
Click to collapse
Collecting data? From users? Or any connections?
I guess you are german because that's typically german bull****!
Who the hell told you that we collecting data? Collecting user data via DNS Server? Did you saw any data collection?
Do you realy belive that we break the communication to nearly everywhere and than we collect data for what?
Oh damn!! Almost idiots only here in germany!

Sprint
Anyone know how to change the DNS on android KK?
Sent from my N9515 using XDA Forums Pro.

brad65807 said:
Sprint
Anyone know how to change the DNS on android KK?
Sent from my N9515 using XDA Forums Pro.
Click to expand...
Click to collapse
Check the Playstore and search "RomToolBox". But this tool requires root.
Unfortunately I'm using currently an iPhone but with this Tool I have had the best experience on android.
With higher versions than KK (4.4) I have no clue how to change the DNS Servers because HTC OneMax with 4.4 was my last android device.

I just use the DNS changer from Playstore. Works fine so far. Thanks for your effort!:good:

Shockwave71 said:
I just use the DNS changer from Playstore. Works fine so far. Thanks for your effort!:good:
Click to expand...
Click to collapse
Good to know. thanks for the Feedback :good:

bencozzy said:
I have to agree this is not open source so only security conscious conclusion is that you are data sniffing.
Click to expand...
Click to collapse
Hmmm... Data sniffing with DNS? How? And why?
Everyone is claiming that it is not possible to protect data. I have found years ago a solution and after 10 years I decided to launch this as an online solution.
Let's assume that I will data sniffing. What can I get?
Compare DNS as a phone book. You have the option to look inside where the Webserver or the destination exists. You are searching only a phone number or IP Address.
If you take data from the webserver this will not served and offered by the DNS Servers because this will be done from the webserver which you are browsing to. DNS is only telling your browser, hey go there and there you will find the rest.
The only thing I would get is which IP address is seeking for what address. So what data I should sniff? I only will get the information which IP address is searching xyz.com. Based on this information what should I do with this?
If I would like to have this Data that makes no sence because I have a account to statista.com where I can get more and detailed informations about this. Therefore is no need to launch such a tool.
I decided to build this project DNS based because in no country of the world it is requrired to log DNS request. May be China is an exception but especially in germany where it is required by law to log EVERY web server access DNS will be an exception.
Everyone is claiming that it is not possible to filter dangerous things within the Internet or web sites. Also the site and user tracking. If you use my DNS you can browse to Amazon do a search any you will get not "stalking result" when you visit ebay after your amazon visit.
I have disabled this online tracking which a lot of people say this it not possible. I'm working with this keweonDNS solution since years and also a lot of other people. This was finally the reason why I decided to launch this system as a public system. I'm specialist for Active Directoy since 2000 and I promises to you I will and I can do things with DNS where others will never dream of.
And yes. The system is closed source. And it will stay closed source.
On the one hand I have spend years of work into this system and if you ask someone who has experience with DNS this guy will confirm that this will not work what I do. I heard this so many times - but it's working. On the other handy I keep this closed because I will give no one the chance to break my system or doing some evil things.
If this system will have success than hey, I will find an Investor and I'm able to implement all the security features and launch this as an global system. Yes, this is what I want to do with this.
At the moment you will see only 20% of it's power because all other things would make this system damn expensive when I would release this as public system.
Big companies better pray that this never will happens because for them this system will become an evil nightmare.
If it's no success and everyone has concerns to use it than I will put everything back into the drawer and that's it. At the moment it is fun, fun, fun and more fun. Nothing more.
The same is with my Adblock Root Certificate. I was searching a solution. I found it and it's working. Within a Windows System you will see 42 root certificates. Do you know what they will do? Do you know what they are responsible for? I guess you will not know this but you trust them by default.
I will open and release my complete certificate if you want.
I can not take the fear away which you might have with my system, it's up to you to use it. But the main reason is I want to keep my data on my machine. I don't like if someone try to spy me, my machine and everything what I do.
At the moment I only want to know if the Black and White Lists are OK. To launch the system as a public system there is a lot of additional work required which is not possible that one or two guys can handle this.
I have a solution. I offer the solution as a public system and I will never say that this is the master solution. But with keweon you have more security and options than every other system.
It is absolut O.K. that someone thinks twice bevor he use this system. It is absolut O.K. when someone do not trust the certificate. And it's absolut OK when someone think that this is a big peace of sh**t.
I expected a lot of complains and I'm prepared for nearly everything.
But to think that I'm collecting data?
That's a hard pain because this is what I hate and that is something what this system prevent.
If you will not trust this solution it's O.K. for me. If you have any recommendations how can I achieve more trust into this system than let me know this because I'm open to anything.
Best regards!

bencozzy said:
I have to agree this is not open source so only security conscious conclusion is that you are data sniffing.
Click to expand...
Click to collapse
Just shut-up for godsake if you want to use it use it, or if you don't leave it, why so many complaints, go learn computer networks DNS stuffs and then talk, its just a solution, there are many other adblocking solutions out there. If you are concerned with too much privacy why use Google or xda there's trackers everywhere, its inevitable to avoid. Grow up please.

[SOLVED] How to monitor network connections in Android 12?

(I posted the same question in the ROM 3d but here maybe is more well placed)
I read that something is changed in how the system manage the kernel (kernel proc files) and now all the apps that monitor the network connections didn't work anymore . (tried several and all stay forever in listening without prompt any connection or IP) . Also "Network Connections" app with root access don't work.
I can see the wi-fi icon activate and deactivate the double arrow but not traffic seems generated in "network speed monitor" (app for trace the download and upload traffic) . I also disable the network test that ping the google servers.
I would know the apps list that are using the network and the IP address they are using.
Do you know some apps that can monitor in real time network connections in android 12?

Found a solution! PCAPdroid . SDK31 work on Android 12 ! Ok is not direct and use a virtual VPN... it do the job.
I can finally stomp all the trashy apps that work in background without my consent. (or any consent in general)
PCAPdroid | F-Droid - Free and Open Source Android App Repository
No-root network monitor and traffic dump tool for Android devices
f-droid.org
PCAPdroid is an open source app which lets you monitor and export the network traffic of your device. The app simulates a VPN to achieve non-root capture but, contrary to a VPN, the traffic is processed locally into the device.
Cheer !!

Hi giostark,
Thank you very much for your research! I can't believe how little information is available in the net on such an important topic. Actually I think, each OS should be able to show the user which app causes how much traffic right now, like in the Windows Task-Manager. Unfortunately, Android doesn't. And now, as you pointed out correctly, with A12 even the apps, which added this feature stopped working.
I always used the app Internet Speed Meter for that. It provides a permanent notification about the current network traffic load, which is essential to me. Sometimes I look at the notification and see that my phone has super high traffic going on right now, despite I'm not doing anything and then I just tabbed on the notification and it showed me exactly, which app was causing the traffic. This is soooo important in my opinion. Unfortunately, with A12 this stopped working. The traffic is still shown, but not which app causes it.
I now installed PCAPdroid, as you suggested, and I can confirm it works. This is awesome! However, I'm not happy with the UI. When I open the PCAPdroid notification and open the connections tab, there are many connections shown and it is not easy to find the one connection/app, which causes the actual high traffic right now. There should be a sort function. Even better would be something, where I can just see in a quick and easy way, which app causes traffic right now, as Internet Speed Meter did:
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
So, if anyone has a better suggestion than PCAPdroid, I would be really happy. Thanks to giostark for at least suggesting this app though!
Cheers

This is more an eruption than a technical post.
Without rooting the phone , AFwall+ it, disabling by hand lots of service (play service at first) with System Service (that contain adds of course , so you have to keep it off line first of launch it) , disabling the captive portal , the automatic DNS , use Warden also, with lucky patcher destroy all the hidden ads contained in the 70% of your phone ,and.... and other tons of stuff boring to list, you cant simply have control on anything exactly as is intended by the Andorid ecosystem. (and after all this , still you are not in full control eh)
Android is made from Google for Google , non for the people. As Windows is made by MS for MS.
Look , those are system services that automatically will have access to the net. They even don't fit the screen. There are many more listed in other group. (and probably some hidden in the kernel that doesn't show up)
Even NordVpn app have 4 DAMN TRACKERs. Seriously ?!?!!?!? (in some hacker site they caught that it send to some site even sensor proximity activities). Seriously ?!?!?! Yep. Even in the Linux machine I use every day I caught in the journal log that it connect to some site even at the start of the machine. And not just when you use that fk app. (trashed the company at the speed of light)
This is where we are going. And this is why now you cant log properly android.
We all are deeply sleeping . And this world will end bad. That's all.
Then... answering properly to the question if exist a better app , the answer is, will never be.
As stated also in some ROMs sub forum here we are too few for attract the interest of Google , otherwise this trashy company would have found the system for block every rom.
Every one that use a phone (apple especially) is happy. Who made this traps have exactly clear how the reward mechanics of our brain work.
We are too few that try to understand how the things are going and that try to have a wide point of view.
Almost no one know (and understand) the meaning of fallacy. Without it is basically impossible understand if a sentence is valid or not. What hope exist?
Leaving the catastrophic point of view afar , have good luck to track the stuff your phone is doing.

giostark said:
and after all this , still you are not in full control
Click to expand...
Click to collapse
100%. Hope there's a warm place in hell waiting for all those responsible. I will never get back the hundreds and hundreds of hours I spend trying to neuter the hidden, anti-consumer behaviors of goods/services I'VE PAID FOR AND OWN. Forced updates should be globally outlawed. /rant.Off

ForestCat said:
I will never get back the hundreds and hundreds of hours I spend trying to neuter the hidden, anti-consumer behaviors of goods/services I'VE PAID FOR AND OWN. Forced updates should be globally outlawed. /rant.Off
Click to expand...
Click to collapse
There is ONLY ONE WAY to prevent tracking: stop using technology.
Smartphones, laptops, etc. are all devices designed with communication in mind, which means they work by connecting to networks and exchanging information. And the entities providing the infrastructure have done so with profit in mind, in addition to tracking users.
You can never use these devices for your benefit alone.

TheMystic said:
There is ONLY ONE WAY to prevent tracking: stop using technology.
Smartphones, laptops, etc. are all devices designed with communication in mind, which means they work by connecting to networks and exchanging information. And the entities providing the infrastructure have done so with profit in mind, in addition to tracking users.
You can never use these devices for your benefit alone.
Click to expand...
Click to collapse
This is exactly the resignation to laziness.

giostark said:
This is exactly the resignation to laziness.
Click to expand...
Click to collapse
Anyone who thinks he can beat the system would be living in oblivion.
There is a reason why specially designed phones are used by heads of states and they only communicate via secure networks. These are not available to the public.

Anyone who thinks he can beat the system would be living in oblivion.
Click to expand...
Click to collapse
Yep , but this don't exempt us to do our part. And if "you" don't , is also "your" guilt.
The understanding part (of the things) is fundamental. It help to operate choices. (maybe the right ones).
Understanding need effort. And this cost to us. But we are lazy.
I do not blame too much the humans. (despite I really hope in a new and massive asteroid that don't leave a second chance). By nature design the brain have to consume less ATP (energy) that it can. And it have to solve the task of the moment is the shorter time possible. While this can save life in a savanna in a long projection this is disintegrating the society. This way to go open the gate of lies and laziness.
Tech (in general) is not helping us to evolve, is helping us to become more stupid (and someone else more rich).

giostark said:
Yep , but this don't exempt us to do our part. And if "you" don't , is also "your" guilt.
The understanding part (of the things) is fundamental. It help to operate choices. (maybe the right ones).
Understanding need effort. And this cost to us. But we are lazy.
I do not blame too much the humans. (despite I really hope in a new and massive asteroid that don't leave a second chance). By nature design the brain have to consume less ATP (energy) that it can. And it have to solve the task of the moment is the shorter time possible. While this can save life in a savanna in a long projection this is disintegrating the society. This way to go open the gate of lies and laziness.
Tech (in general) is not helping us to evolve, is helping us to become more stupid (and someone else more rich).
Click to expand...
Click to collapse
I agree with you that we have to do our part. My point is this: just as one must not resign to laziness, one must also not resign to living with a false sense of security.

All you have to do is look at a logcat to see all the sleazy stuff that apps are trying to do that isn't allowed and generates errors to extrapolate to all the stuff that they are getting away with.
That's another reason not to run your device on permissive.