How to stop phone from acknowledging sms

sshxjrj776

Hello, I would like to use graphene and insert a sim, but is there a way to prevent the phone from receiving sms and mms?
I mean preventing them from even being accepted by the phone itself, to stop any potential vulnerabilities that could be used through them.
Does graphene have any additional protection like samsung added recently?
https://news.samsung.com/us/samsung-message-guard-helps-protect-data-latest-threats/

I think this is very important because it would limit the effectiveness of malwares like pegasus, which could then only use whatsapp or other messagging apps exploits.
I have seen another topic about this and some people called it placebo, but that's not the case. Since we don't know if those malwares can still exploit sms vulnerabilities it's not wise to ignore this.

[deleted]

sshxjrj776

Option 1 - Data only sim
No SMS, no MMS, no traditional phone calls.

Option 2 - Disable MMS auto download.
In the messages app - Three dots in top right hand corner of the screen > Settings > Advanced
Turn off "Automatically retrieve MMS messages"
Turn off "Automatically retrieve MMS messages when roaming"

You will still receive SMS messages. MMS messages will not be automatically retrieved.

To exploit a device by a SMS message is unlikely.
The SMS service allows users to send and receive up to 160 alpha/numeric character messages.
Malicious links can still be received by SMS, however, the link is benign if it is not executed. User discipline is required.

Malicious images / videos / attachments cannot be delivered as MMS automatic retrieval is disabled. Having said that you can click on the MMS message to download the attachment. User discipline is required.

Delivery of malicious payloads are possible in messaging applications where the payload delivery cannot be prevented. iMessage is one example. There are of course others.
Lockdown mode on an iPhone does not prevent the payload delivery, it prevents the payload execution.

Signal Private Messenger has options to prevent automatic downloads.

mmmm

You could also disable or delete whatever apps you have installed to reveive SMS. If you can't receive it then problem avoided.

PaulDavis

Truecaller
Block SMS and calls from any number prefix, unknown, withheld, or specific

tango

As far as i know there is no way to stop sms messages being received on device. You can stop them being read but not from being received on device from carrier for example.

Dan-cer

You can't receive SMS without a SIM, can you? I have just switched to VoIP and read that it is not possible to receive SMS. Perhaps this also depends on the provider.

[deleted]

Dan-cer

Voip.ms has true two-way sms but I've heard sms through voip is not common.

sshxjrj776

Thanks to everyone.
So a data only Sim or disabling MMS auto retrieval should be enough, if I understand well.
I still have a bit of fear since we've heard some scary news about 0 click exploits through SMS by Pegasus, as much as it seems unlikely since it should only be text that can't execute links.
TrueCaller seems nice, but as another used said, I think it would simply prevent me from seeing them, not stopping them from being received.

[deleted]

sshxjrj776 install third party SMS app, e.g. Fossify Messages. Set it as a default in Settings > Apps > Default apps > SMS app. Disable preinstalled Messages app. Uninstall Fossify Messages. Congrats, you have no apps to handle SMS and MMS. No ADB needed.

sshxjrj776

[deleted] Wouldn't that just stop me from seeing any sms instead of actually stopping the phone from getting them?
I would like to use the phone and data part only of a sim, while blocking any sms completely, but it seems like it's not feasible right now.

[deleted]

sshxjrj776 if the device doesn't contain the software able to receive, process and acknowledge receipt of incoming message, you will never receive one.

Now, that I come to think of it, we do trust that all our apps abide by the permissions that we set for them. So in theory, which someone can please confirm for me, if I strip Messages of all permissions, I don't even need to disable it, in order for it to stop functioning.

Thimble0548

Hey, so while you can't stop the phone from receiving sms, is there a way for a non-admin profile to be the only one that receives sms messages? I have my messaging apps in a user profile but sms still gets sent to the admin profile as well.

N1b

Thimble0548 from my knowledge, you can only really use the default SMS app on user profiles. In theory you could do just that and deactivate this app for the owner and all other user profiles, but this is highly recommended against since it's a system app and deactivating it can break a lot of things down the road and you likely won't be able to identify the problem. So don't do that!

First and since you seem to worry about receiving malicious silent SMS, check out the FAQ section about this topic. You might be happy to know that it's not a big threat by itself and especially on GrapheneOS. But if you want to fully protect against it, airplane mode is the only way.

Now my suggestion is that you get yourself a mobile router like the GL.iNet MUDI 2 and put your SIM card there while your GrapheneOS device remains in airplane mode. This way you detain the SIM and SMS reception but keep internet on the road through WiFi. It won't protect you against triangulation of course, but that doesn't seem to be an issue for you. For receiving SMS, you'd have to out the SIM card back into a phone... maybe a dumb phone or dedicated phone exclusively for that task?

Before you do all that, I highly recommend to take some time to make a threat model for yourself. Maybe all of this is not necessary or you're hardening the wrong thing while leaking your data elsewhere.

Also, I'm not speaking for the project and you shouldn't trust a random stranger on the internet, so better wait to see at least some more opinions from the experts.