I'm confused about Google accounts

raccoondad

pxlkng I have to disagree, completely. I find it uncomfortable myself (I have bad experiences with Google services in general and want to avoid it outside of a independent profile)

pxlkng

raccoondad

There is nothing to agree or disagree on, here.

Play Services are always sandboxed and confined on GrapheneOS and have absolutely no special permissions or elevated access, they are just like any other app.
You don't need a profile to contain them, this doesn't change much.

raccoondad

pxlkng "There is nothing to agree or disagree on, here.", making your opinion objective makes you a lot less trustworthy, just saying...

"Play Services are always sandboxed and confined on GrapheneOS and have absolutely no special permissions or elevated access, they are just like any other app.", I did not claim otherwise, that's the idea of sandboxing, I still don't want it.

pxlkng

raccoondad

The fact that Play Services are sandboxed with no special privileges or access on GOS is not an opinion.

The fact that Aurora Store reduces security and therefore also privacy (as security is a prerequisite to privacy) and shouldn't be used isn't an opinion either, it is based on facts and recommendations by the GrapheneOS project.

Maybe I have worded myself poorly:
It is a valid goal to completely avoid Play Services.
But you are not doing that by using any apps that come from the Play Store or bundle Google libraries.
Aurora Store doesn't change this, at all. It only makes you less secure and private, but it doesn't stop any Google telemetry or tracking or data collection.

So there is no reason to prefer Aurora Store over sandboxed Google Play Services.

raccoondad

pxlkng

"The fact that Play Services are sandboxed with no special privileges or access on GOS is not an opinion.", I never claimed otherwise, you put words into my mouth.

"it is based on facts and recommendations by the GrapheneOS project.", I also never stated otherwise

If you want to pretend I said things I didn't, then its clear you are here to be bad faithed. I don't have time for this

pxlkng

raccoondad

I apologize that this came across this way. I was merely pointing out the issues with Aurora Store.

raccoondad

pxlkng Its fine, and with the issues you brought up, you are correct. Aurora lacks a lot (Play Store metadata verification, reduced CA set or pinning, trusting every webPKI CA, among other issues that akc3n mentions I won't pretend IK all of it).

I also wanted to mention, outside of sandboxed play, there isn't many safe alternatives and people are going to eventually have to make a decision based on their needs/paranoia. This is pretty much all I am saying

rambleon

I'm confused about recommendations in this thread. I do not have google play services installed on my phone nor do I have a google account. I use Aurora anonymously.

How does it increase my privacy if I create a google account, load play services, and log in to the account to download apps? That does not make any sense to me. Apps I use have never required a google account login.

pxlkng

rambleon

Specifically to the reason that Aurora Store has no privacy benefit:
Many Play Store apps bundle Google libraries with them, those run on your phone even without Play Services installed and allow Google to collect the same amount of data it would be able to collect with Play Services installed, which is not much to begin with due to everything being sandboxed and confined.

So Aurora Store doesn't avoid Google or Googles data collection in any way.

You can create an anonymous Google account not linked to you and without a phone number to use the official Play Store anonymously.

SgtSurehand

Something tells me without extensive support of Play services, Firebase and Google analytics those libraries are by far not as powerful as some claim them to be.

pxlkng

SgtSurehand

They collect the same amount of data.
Stop hoping it to be otherwise, come on the matrix channels or on Discord and ask this question and many other knowledgeable community members will say the same as me.

SgtSurehand

pxlkng my luck is only one app from northern light store uses network. So they get very little. I also browse with mostly JS off. At least I know my material. Play services can buzz off.

rambleon

Do I understand correctly: this risk that an Android app may have code to send telemetry data to Google, or anywhere else for that matter applies to any Android app downloaded via Aurora, Google Play, or direct APK download. So Aurora provides the benefit over Google Play of not requiring a Google account or google play services to download, but extends no protection over Google Play from telemetry. In theory Aurora adds no telemetry risk beyond Google Play, but only if Aurora pulls its APKs from the play store.

pxlkng

rambleon

There is no benefit in using Aurora Store as it is outright dangerous and insecure to use and overall just a dumpsterfire of an application.
It doesn't avoid any telemetry or data collection. Play Store apps bundling Googles libraries and those running and collecting data on their own is not a risk, but just normal and indeed happening.

Use an anonymous account with the official Play Store instead.

SgtSurehand

pxlkng there is no such thing as anonymous Google account since as you hinted yourself through tracking, telemetry (and fingerprinting) it will ultimately lead to your deanonymization.

secrec

pxlkng There is no benefit in using Aurora Store as it is outright dangerous and insecure to use and overall just a dumpsterfire of an application.

You need to prove that the dangers, insecurities, and dumpsterfiredness you claim for aurora store EXCEED the levels of those same characteristics for google store software. Just because it says "google" on it DOES NOT prove that its safe. If anything, it implies that its NOT safe, since google is in the business of manipulating you with your own data.

pxlkng

SgtSurehand

There is such a thing.
It ultimately comes down to how you use it.

n3t_admin

pxlkng There is no reason to avoid installing sandboxed Play Services

Mobile advertising ID? I've had instances of Play Services reenable it, after having deleted the MAID manually before. Since I never checked, I was running around for months with it (unknowningly) enabled. I assume you know about the possibilities of MAID tracking, especially for location.

SilverCat38

n3t_admin thanks for this, I checked my google settings in shelter work profile and nearly everything was set to default. Re google account I have it without phone number but if you dont use a vpn google will correlate behaviour based on ip. This is proven as my partner have a normie phone and gets ads on what I do in my work profile

DjBeau

de0u
Ah, shit, I'm signed into Maps. That's why. Guess I'll have to create a burner account.

de0u

DjBeau I'm signed into Maps. That's why.

That would do it!

DjBeau

GrapheneOS

Creating a new account or not creating one makes no tangible privacy difference

I'm a noob, but I think I'll disagree with that. Making a burner account seems a lot better than using my 15 years old Google account that has every single detail about my life for the past 15 years. But now I wonder if making a burner account even makes sense, since my old account has now been used on my Graphene phone. Wouldn't Google just "link" those two accounts since they've been on the same device?

pxlkng

SgtSurehand

Browsing with JS off makes you stand out uniquely among all other users, as nearly everyone has JS enabled. It makes you easily trackable among sites. Disabling JS is anti-privacy, so you are obviously not "knowing your material".
Please stop attacking me like this.

fid02

I can understand that some people find the claim that Aurora offers no privacy benefit over Play Store to be counterintuitive. Lots of online privacy communities recommend avoiding Google as much as possible, and my overall impression is that those communities still recommend that people use Aurora instead. Being used to hearing that Play Store must be avoided at nearly all costs in order to "deGoogle" as much as possible, it's understandably a surprise for people who come to the GrapheneOS community to suddenly hear that Aurora must be avoided and Play Store should be used instead.

But the claim that Aurora offers no privacy benefit over Play Store is true, if the apps you download contain Google proprietary blobs, which a lot of them do. They can collect the same amount of information from your device as Sandboxed Play Store and Services can.

https://xcancel.com/GrapheneOS/status/1870213347188129811#m

Aurora Store is simply a way to obtain apps from the Play Store. Those apps still come from the Play Store and are still APKs generated/signed by the Play Store which often include the Google Play SDK / libraries. You are not actually avoiding Google Play by using Aurora Store.

But there is genuinely a security cost to using Aurora instead of Sandboxed Play: https://xcancel.com/GrapheneOS/status/1832861969851814268#m

Aurora Store doesn't verify the packages it downloads came from the Play Store via either the signed metadata in the APK or another way. That means it's only secured with WebPKI TLS without enforced Certificate Transparency, which is really not good enough for package downloads.

In practice, that means that there is a risk that an app you install from Aurora could turn out to not be the genuine app.

By the way, you can create a Google account without providing a phone number in this way: https://listed.to/p/vznkmwrV5w

If you want to minimize the amount of data that Google collects about you, it seems pretty clear that you'll have to avoid all apps that contain Google proprietary blobs. In practice, that might imply using only open source apps that can be verified to not send any data to Google.
https://xcancel.com/GrapheneOS/status/1810304517927231527#m

If you want to avoid the Play Store, then you're going to have to avoid Aurora store too.

We aren't going to endorse installing apps from the Play Store in a way that's less secure than getting an APK with a browser. We've always been against performative privacy/security...

When users who are new to GrapheneOS ask questions about Aurora, I find that some users in this community tend to simply state that Aurora is a security and privacy risk but without providing any sources or details. But new users who are used to seeing Aurora being recommended understandably want more details. When sources and details are not provided, I'm not surprised to see them express confusion or frustration.

On the other hand, it's understandable that community members are tired of repeatedly explaining the risks of using Aurora, since it's so often brought up in this forum. Perhaps members who have knowledge on the subject could compile an article on it, which could be referenced whenever the topic is brought up.

pxlkng

fid02

Thank you very much for finally clearing this up with such a detailed message.
I'll link to that from now on, I always lacked the energy to look for all the Twitter sources and assemble such a message, but I should've done earlier.

DjBeau

fid02
Great reply, thank you.

DjBeau

fid02
I tried creating a Google account without phone number by making a new user through GOS. It works, but there's no other way to do it. So I'm wondering if it's working because google is simply grabbing the number from the SIM card?

« Previous Page Next Page »