So I have been using the S22 Ultra since launch (pre-ordered). I noticed that I cannot view other's whatsapp stories, profile pictures or send stickers without granting access to my entire gallery. I cannot even use snapchat without granting access to my entire gallery. I can do all of these things on an iPhone without granting access to gallery. And when I want to share a picture I can choose to grant access to only that one picture instead of the entire gallery. I believe even the Google pixel on android 13 gives you the option to grant access to select pictures instead of the entire gallery and because of that I was hoping Samsung's android 13 will give the option to give access to select pictures but I was wrong. It's still the same. Where is the so called 'Privacy' here?
You could put private pictures into secured folder (not recommended) or perhaps use another folder name for private that doesn't have dcim in the folder name.
Those social media apps shouldn't be on the device at all if you value privacy and security. Instead access and logon to them through the browser only (if at all) preferably using Brave.
blackhawk said:
You could put private pictures into secured folder (not recommended) or perhaps use another folder name for private that doesn't have dcim in the folder name.
Those social media apps shouldn't be on the device at all if you value privacy and security. Instead access and logon to them through the browser only (if at all) preferably using Brave.
Click to expand...
Click to collapse
Yes, I know we can do that but don't you think we shouldn't have to do all this just to use basic features of apps. They have been speaking about privacy and security so much but chose to ignore this part completely. Specially when Google has given us the option to give access to only selected pictures instead of entire gallery but samsung did not give us that option.
wazza1991 said:
Yes, I know we can do that but don't you think we shouldn't have to do all this just to use basic features of apps. They have been speaking about privacy and security so much but chose to ignore this part completely. Specially when Google has given us the option to give access to only selected pictures instead of entire gallery but samsung did not give us that option.
Click to expand...
Click to collapse
Google and privacy are mutually exclusive. I use Gmail and that's the only cloud apps I use. Google play Services and Playstore are normally disabled. The Android bs hype about security isn't needed especially scooped storage. Google has damaged Android; who wants an Android Apple?
Pie is a better OS and is secure if the user doesn't do stupid things.
No updates needed, just sound judgment. This N10+ is running on Pie, last update was almost 3 years ago. Current load is over 2 yo, still fast, stable with minimal maintenance. No security breaches to date. It looks and runs hella better than 12.
Related
This is the story I'm referring to for those who haven't heard yet.
I just got my Note 8 on Saturday and did get a carrier update later in the day, not sure if it was related to this. Anyone have any info on what we need to do or are we waiting for AT&T/Samsung to release a patch?
From the link:
As a result, all Android versions higher than 6.0 are also affected by the attack, and hence can be tricked into installing an all-zero encryption key. The new attack works by injecting a forged message 1, with the same ANonce as used in the original message 1, before forwarding the retransmitted message 3 to the victim. In each case, the attacker can force a targeted device to re-install an already-in-use shared key, downgrading the key.
Click to expand...
Click to collapse
This will require an update from Samsung. Not holding my breath on that happening anytime this year.
Avoid public wifi like the plague. Even after the patch I'd stay away from it.
Also this includes turning on your hotspot in public. At least until a patch is pushed out.
That will keep you safe for about 6 months until the next bug is discovered. It's the nature of IT security.
One thing that is a great idea and an awesome feature on Samsung is the "Secure Folder" app.
You can use it to store pictures, files, apps, etc. They are encrypted by the KNOX container and require a pin or password to open the secure folder.
If you move let's say, your private pictures, your banking app, and any sensation files (eg credit cards, ID, passport, etc) into the app even if your phone gets compromised you should be okay.
*as a disclaimer I work in ISO for a fortune 100 company. More than will to offer any advice about protecting your phone, computer, wifi etc.
Thanks I didn't think about using the Secure Folder. I just moved (not copied) a photo into there to test it but the photo still shows up in the gallery, yet I don't see it when browsing for it from within the Secure Folder.
When something is within this folder, can it still be accessed from outside the app or do you always need to open the app, type in the password and then access it? Like could I still attach photos from there easily into a message/email or do I need to go in there, move them out of the folder, attach them, them move them back? Hope that makes sense.
Kadin said:
Thanks I didn't think about using the Secure Folder. I just moved (not copied) a photo into there to test it but the photo still shows up in the gallery, yet I don't see it when browsing for it from within the Secure Folder.
When something is within this folder, can it still be accessed from outside the app or do you always need to open the app, type in the password and then access it? Like could I still attach photos from there easily into a message/email or do I need to go in there, move them out of the folder, attach them, them move them back? Hope that makes sense.
Click to expand...
Click to collapse
No if it moved correctly it should be hidden unless you are in the secure folder.
Any help will be much appreciated.
I have to install an app which I don't trust, but which requires too many permissions, which obviously I am not keen on giving the app. For reasons beyond my control, I can't name the app (it's a work thing).
My idea is to create a new user on the phone, (OnePlus2) and install the app for that user only. Would this stop it from being able to access the data under my own user, and restrict it to only read the data available for the new user for which it is installed?
It requires permission to: (just incase this info helps)
Draw over other apps
Take pictures and videos
Find accounts on the device
Approximate location, precise location
Read SMS/MMS, Send & View SMS/MMS
Modify or delete contents of USB storage
Read contents of USB storage
Read phone status and Identity
Any other solution I should look at? Or will this work just fine?
Cheers!
No way I would install that. Not on a device I use. Unless I had full control over the source code for the apks. I could see some uses.
But to answer your question, I think that should work. I don't have much experience with the details of extra users on the device bit you can look it up on the Google developer site.
That should be enough.
For good measure, I Tried Doing this on my Moto G4 Plus. I created a new user and installed Drupe and Textra. And here is what happened.
1. The New User did not have access to my contacts, call records or SMS
2. The old user could not see these two apps.
since the gallery is tied to photos on the Moto, the users could not see each other's photos.
UPDATE: I just saw an app on another thread that may work for you. - https://forum.xda-developers.com/android/apps-games/closed-beta-test-incoming-companion-app-t3366295
Hello,
I am looking for an app like Samsung's Secure Folder. Is there something similar? And in particular is there a smartphone which has something similar by default?
I know Xiaomi use that, but you cannot use first and second place together. In samsung, the secure folder is an app so you can use apps hidden there together with normal apps.
I'm looking for the same thing, any alternative to Samsung Secure Folder for other device
I would like to switch to Huawai with EMUI 8 but it dosen't seem to have something similar by default
I've just watched a video on YouTube about the Huawei 20 pros features, and the secure folder is one of the things keeping me with Samsung.
The video shows Huawei has a private space, feature in security settings that you can move apps and files into.
You can have a different finger print and password to the one for unlocking the phone.
I saw videos about private space but I'm not sure if apps can run in background and if you get notifications while is not active
just opened a new thread in P20 forum
Hello guys,
I have been searching for answers to some of the tech stuff, but couldn't find them.
Here are some of those questions. Hope some of you would have answers to these. Thanks in advance!
ANDROID
1. How to share files between multi-users on Android 11?
Before Android 11, it was possible to save files inside the Android/ obb folder, and these files were visible for all users on the device. In Android 11, this is no longer working as the 'obb' folder appears to be exclusive to each user.
I know this is possible via USB OTG or a cloud service, but is there a solution without these?
2. How to copy/ backup game data for non-rooted devices?
Helium Backup doesn't seem to work. I have played a game for long on my Mediapad, and I would like to copy that game to my phone. Unfortunately, my Mediapad is not rooted and losing all that game progress has become a nightmare. I have written to the app developer to provide some sort of backup using either Google Play Games or social media integration like Facebook/ Twitter, but haven't received any response.
3. How to force apps (esp. file managers & gallery apps) to use in-app media viewer without changing system default.
For example, I may use the stock gallery app as default for viewing media. But if I am using another gallery app or a file manager that is capable of viewing media files using its own media viewer, I would rather want it use it than open the default app. Is there a way to do it?
4. Replace stock file manager (a system app) with another app from Google Play Store or other sources. Is this possible?
I am not asking how to convert a user app into system app. I know that part. I tried replacing the apk file of the stock file manager with a 3rd party apk, even renamed it, but it didn't work.
5. Extract a system app from one device and install it on another device without root. Is this possible?
I have tried it, but apk installation fails. For example, Samsung Gallery app on OnePlus phones.
iOS
1. How to install .ipa (iPhone app) on an iPhone (not jail-broken) without a laptop (iTunes)?
2. Is it possible to have SFTP server for iPhone?
All Operating Systems
1. How to provide LAN only access for non-rooted devices as well as in Windows & iOS?
For rooted devices, we have apps like AFWall+ that can do it. But is there a way to do it for devices without root, as well as for Windows and iOS?
For non-rooted devices, we have apps like Netguard that support 'Allow LAN access' whilst blocking internet access.
Are there any alternatives and solutions for other platforms?
2. How safe is it to enter login credentials in an app to allow it access to network drives?
I use several apps (on various platforms) to connect to my laptop over SMB. This requires me to provide the app with my Windows Login Credentials, which is a Microsoft account. Am I risking my account by providing this info to the app? Is it safe to enter login credentials of cloud services in file manager apps?
Just bumping this thread as it seems to have been lost/ unnoticed.
@Ultramanoid can you answer some of these?
Sridhar Ananthanarayanan said:
@Ultramanoid can you answer some of these?
Click to expand...
Click to collapse
Can't help much, sorry. As to Android, some notes :
1. Never have used an OEM / Google's version of Android, or anything other than rooted single-user systems.
2. In addition to the previous answer, I'm not a gamer.
3. I usually don't ever set defaults with some rare exceptions, so I am always given a choice of what I want to use to handle a file. It may vary depending on many things; I may want to edit an SVG file as text, or view it as an image, for instance. There are applications / services that will intercept intents to allow you to do this sort of thing as well, but I can't recommend a specific one, never use them myself.
4. Possible, but will break Android as by now the system requires it as a file picker in many instances without recognizing alternatives and developers of most applications do expect it as well and their services will not work without it. Don't do it. With recent Android storage changes, including the scoped storage debacle, this is not a viable option anymore.
5. Depends, but not likely as a general rule, specially for OEM garbage, which relies on their own proprietary modifications of Android, their libraries, frameworks, et al. You'd have to carry those over to the destination too, which may not even be possible. Use OEM-independent and not Google Services reliant applications. ( Edit : you'll find some of those applications built to install on all devices here on XDA by single developers, "SONY camera for all devices" and that sort of thing, not recommended anyway, not well supported or long-lived experiments. )
Ultramanoid said:
Can't help much, sorry. As to Android, some notes :
1. Never have used an OEM / Google's version of Android, or anything other than rooted single-user systems.
2. In addition to the previous answer, I'm not a gamer.
3. I usually don't ever set defaults with some rare exceptions, so I am always given a choice of what I want to use to handle a file. It may vary depending on many things; I may want to edit an SVG file as text, or view it as an image, for instance. There are applications / services that will intercept intents to allow you to do this sort of thing as well, but I can't recommend a specific one, never use them myself.
4. Possible, but will break Android as by now the system requires it as a file picker in many instances without recognizing alternatives and developers of most applications do expect it as well and their services will not work without it. Don't do it. With recent Android storage changes, including the scoped storage debacle, this is not a viable option anymore.
5. Depends, but not likely as a general rule, specially for OEM garbage, which relies on their own proprietary modifications of Android, their libraries, frameworks, et al. You'd have to carry those over to the destination too, which may not even be possible. Use OEM-independent and not Google Services reliant applications. ( Edit : you'll find some of those applications built to install on all devices here on XDA by single developers, "SONY camera for all devices" and that sort of thing, not recommended anyway, not well supported or long-lived experiments. )
Click to expand...
Click to collapse
Thanks very much. But I wish you answered the last 2 questions as well.
If time permits, would you be interested in telling us how you use your phone? I mean which device, which OS and what apps you use. I would like to give that a try (on a spare device) and see if it is possible for me to live without Google.
Sridhar Ananthanarayanan said:
Thanks very much. But I wish you answered the last 2 questions as well.
If time permits, would you be interested in telling us how you use your phone? I mean which device, which OS and what apps you use. I would like to give that a try (on a spare device) and see if it is possible for me to live without Google.
Click to expand...
Click to collapse
Didn't answer because it won't be helpful.
As to the 1st, I don't use LAN, and I don't keep data in any device or computer unless in use. External independent encrypted storage to be used wherever, whenever, independent of device, cables if needed.
As to the second, it's a matter of common sense, being informed of vulnerabilities and aware of reputation, and trust. Would you trust Chrome or Mozilla with data if you're online banking ? Seems reasonable -- but be aware of major vulnerabilities that may be going on. Would you trust an application released yesterday by a single developer for the same ? Probably not a good idea.
Finally, I doubt what I use and how I use it would be acceptable for you, or most people. In essence you could : Install latest firmware, wipe device, install latest security patched Lineage build for it, remove vendor / Lineage applications, get full root, remove anything you don't need or use which could have vulnerabilities; frameworks, libraries, binaries, etc ( Bluetooth, SMS, Android system-wide downloader, system-wide WebView, NFC, and on and on .. ), install your own binaries, fonts, hosts file, and applications where appropriate ( /bin /etc et al ), install Termux and all Linux packages required for your use, everything open source whenever possible, and stay away from any Google services / Play / applications with ANY trackers, analytics, data mining or even crash report capabilities; zero tolerance. Internet permission only for a secure web browser -- and terminal if / when needed. Half of what I do or use goes through terminal to be honest. In short, for me an Android device is a full Linux laptop replacement with added perks : Always on and on me, camera, GPS, pedometer, unlimited LTE data, and emergency calls for medics / police. ( Edit : And Japanese EEW alarm of course ! Only notification I use. We learned our lesson well in 2011. )
You can use ApkExport to extract any apk including system apks. I've transferred apks between other devices devices with it.
Never had need of doing that though with a system apk.
As above. I just updated to Android 11 recently on my Samsung Galaxy Note 10+ (SM-N975F), and holy **** Scoped Storage is a massive pain. Google and various device manufacturers have already been gradually restricting and cutting down access to various power user options (e.g. flashing custom firmware, accessing various settings, making dev features harder to use and/or access), but Scoped Storage is pretty redundant.
For those who aren't familar, Scoped Storage severely restricts access to the Android/data folder in your internal storage. As a result, it just turns the Android/data folder into basically what the data/data partition is - a system-managed folder where apps can only access their own folders and only certain system processes (or root users) can access the entire folder structure. This breaks a lot of apps which historically stored their data in their own Android/data folders which would otherwise work on Android 11.
I was hoping that LineageOS would have had an option to disable this "feature" (I noticed a commit around "opting out of scoped storage" at https://review.lineageos.org/c/LineageOS/android_packages_apps_Eleven/+/286006), but it seems not. For me, I've downgraded to Android 10; thankfully the bootloader version remained the same.
Still, I was wondering, is it likely that a custom ROM maker will be able to find some way to disable Scoped Storage on Android 11 in the future? Thanks for any responses.
Edit: clarified that I meant Android 11+.
ArtemisPilly said:
As above. I just updated to Android 11 recently on my Samsung Galaxy Note 10+ (SM-N975F), and holy **** Scoped Storage is a massive pain in the ass. Google and various device manufacturers have already been gradually restricting and cutting down access to various power user options (e.g. flashing custom firmware, accessing various settings, making dev features harder to use and/or access), but Scoped Storage is pretty redundant. It just turns the Android/data folder into basically what the data/data partition is - a system-managed folder where apps can only access their own folders and only certain system processes (or root users) can access the entire folder structure. This breaks a lot of apps which historically stored their data in their own Android/data folders.
I was hoping that LineageOS would have had an option to disable this "feature" (I noticed a commit around "opting out of scoped storage" at https://review.lineageos.org/c/LineageOS/android_packages_apps_Eleven/+/286006), but it seems not. For me, I've downgraded to Android 10; thankfully the bootloader version remained the same. Still, I was wondering, is it likely that a custom ROM maker will be able to find some way to disable Scoped Storage in the future? Thanks for any responses.
Click to expand...
Click to collapse
It is possible if it downgrade your device to android 10
Austinredstoner said:
It is possible if it downgrade your device to android 10
Click to expand...
Click to collapse
Yeah, that's what I originally thought as well. Still, we can't feasibly remain on Android 10 forever, so I was wondering how is Scoped Storage implemented on the Android OS and whether it can be disabled or that specific module can be rolled back by ROM developers.
ArtemisPilly said:
Yeah, that's what I originally thought as well. Still, we can't feasibly remain on Android 10 forever, so I was wondering how is Scoped Storage implemented on the Android OS and whether it can be disabled or that specific module can be rolled back by ROM developers.
Click to expand...
Click to collapse
They say their some file manager they bypass this restrictions it may work but I can't say for sure
https://play.google.com/store/apps/details?id=com.marc.files
This app may be able to bypass the restrictions
Austinredstoner said:
They say their some file manager they bypass this restrictions it may work but I can't say for sure
https://play.google.com/store/apps/details?id=com.marc.files
This app may be able to bypass the restrictions
Click to expand...
Click to collapse
Yeah, I know some file managers are able to bypass the restrictions (Root Explorer, Solid Explorer etc). The problem is with other, non-file-manager apps (e.g. messaging apps, browsers, games) which are used to storing their data in Android/data.
Many such apps either crash upon opening, or they might ask for permission to access their old folders, which when granted, opens up the Android stock file picker. The stock file picker then refuses to allow the app to use its old folder, saying "to protect your privacy, choose another folder" (or something like that, I've downgraded to Android 10), and there don't seem to be any options to use a different file picker (for some reason the only other app I can see in the file picker is Termux??).
This cripples a lot of older apps which are still very useful but which haven't been updated in a while (and when I say "older", I mean "2019" - not that old, about half of Android devices still run on 9.0 or older).
ArtemisPilly said:
Yeah, I know some file managers are able to bypass the restrictions (Root Explorer, Solid Explorer etc). The problem is with other, non-file-manager apps (e.g. messaging apps, browsers, games) which are used to storing their data in Android/data.
Many such apps either crash upon opening, or they might ask for permission to access their old folders, which when granted, opens up the Android stock file picker. The stock file picker then refuses to allow the app to use its old folder, saying "to protect your privacy, choose another folder" (or something like that, I've downgraded to Android 10), and there don't seem to be any options to use a different file picker (for some reason the only other app I can see in the file picker is Termux??).
This cripples a lot of older apps which are still very useful but which haven't been updated in a while (and when I say "older", I mean "2019" - not that old, about half of Android devices still run on 9.0 or older).
Click to expand...
Click to collapse
Google will finally let file manager apps request "All Files Access" on Android 11 next month
Google has finally announced when it will allow file managers and other apps that target Android request the All Files Access permission.
www.xda-developers.com
This wasn't here when u created this thread but this is good news
Austinredstoner said:
Google will finally let file manager apps request "All Files Access" on Android 11 next month
Google has finally announced when it will allow file managers and other apps that target Android request the All Files Access permission.
www.xda-developers.com
This wasn't here when u created this thread but this is good news
Click to expand...
Click to collapse
Actually the article says that Android/data and Android/obb will be excluded from said access, so it's not really any improvement over the current situation.
One of the alternative band-aids to disabling Scoped Storage might be to find some way to mod the stock file picker so it recognises apps like Solid Explorer and Root Explorer (which can bypass the restrictions) as file managers. However this still doesn't help apps which expect to be able to access their files from the get-go; one example is GTA San Andreas, which seems to just crash upon opening.
Xplore file manager bypasses it
X-plore File Manager - Apps on Google Play
X-plore is dual-pane file manager with tree view, LAN/Root/Clouds and more.
play.google.com
ArtemisPilly said:
Yeah, that's what I originally thought as well. Still, we can't feasibly remain on Android 10 forever, so I was wondering how is Scoped Storage implemented on the Android OS and whether it can be disabled or that specific module can be rolled back by ROM developers.
Click to expand...
Click to collapse
You can stay on Q for the life of the device more then likely. I'm still running Pie with zero issues.
Android's gone Apple tarted
blackhawk said:
You can stay on Q for the life of the device more then likely. I'm still running Pie with zero issues.
Android's gone Apple tarted
Click to expand...
Click to collapse
money will make even the best developers re-tart just take a glance at windows 10
I still got windows xp
revized said:
money will make even the best developers re-tart just take a glance at windows 10
I still got windows xp
Click to expand...
Click to collapse
Sad but predictable to see Android tailspinning in like creepy billgatesware.
XPx64 is still the best.
I run W7x64 too.
After that MS became an useless liability.
Evil clownware
I still wonder though, will LineageOS opt out of Scoped Storage or add a feature to disable it?
An equally effective alternative and probably even better one would be to let the user give specific apps full storage permission. Is something like this realizable (even if it's through rooted means - that would be fine)?
We need CONTAINERS for scoped storage. Same as we do for browser containers.
We need a scoped storage manager to group apps.
We don't need an all or nothing approach designed to push everything through the cloud.
Then again, that could be a workaround, right? Same as the workarounds for the browser when local file access was removed: setup a local server to pass data between processes!!
Hi, just my tuppence worth.
I bought an updated android box couple months ago as an upgrade to couple of old ones I had. Mainly use for watching streamed tv shows, viewing youtube and also checking out my cctv and saving recordings to the usb hdd.
Well the new box was amazing. Never mind the hype it is really good. its the hk1 rboxx4. Very fast on latest android 11. But it was a good month messing about trying to work out why nothing would write to the external usb dd. Then I discovered the scope business and the penny dropped.
Google is going to muscle in on streaming ppv sites. Well android has for years. But if they want to sell premium movies etc. or even just official boxes, They wont want the fee payers making back-ups. Just cant see why else they would do it.
The second thing is X-plore does not solve the problem. Ive used it for years on every device iv ever had. But it will not write to ext hdd on android 11. Tried many times, many versions.