Is it "Safe" to use OEM Pixel Camera App?

CharlieMander

I want to use OEM Google Pixel Camera App. Ive been testing all the alternatives and they are just not as good IMO.
I have the App on My Secondary Profile with -
lukaspieper / Gcam-Services-Provider
So does not try to make me use Google Photos.
Im letting it have the permissions - Camera, Microphone, Photo and Video, Sensors.... "While app is in Use"
That seems like alot.
Is there a better way to set up permissions?

Im Stupid/Ignorant, is this app "Safe" to use on my main profile? I dont want Google getting anything from main profile. Or any spyware apps on my main profile.

Does it save my photos with EXIF Data/Meta Data?
I want the Pictures/Videos it saves with no extra data.
If I use this app do I need to use another app that "scrubs" the extra data?

Sorry I see other post about this/similar already.
Hopeing someone can give me easier to understand answer.

Thank You

Linux

CharlieMander Im Stupid/Ignorant, is this app "Safe" to use on my main profile? I dont want Google getting anything from main profile. Or any spyware apps on my main profile.

It would be safe if you only give network permission to open source apps.
If there is only one proprietary application with network permission, it could be used to extract data from all proprietary apps via IPC

vividsquirrel

My advice (for people without Google Play Services or other closed source apps with internet access installed on the main profile) is to just use the Google Camera app. I think I downloaded it through Aurora Store. It has the standard permissions for camera and microphone, but not location because I have no reason to location tag my photos. The main super important thing is that I have also denied the network permission. As a result, even if the app is attempting to do shady things, it has no way of communicating outside of the app. It cannot access the internet directly, nor through Play Services since it's not installed.

The main disadvantage as you mentioned is the fact that the Google Camera app is always going to add EXIF metadata to the image containing time of day as well as various camera information. It will not contain location metadata if you make sure not to give the app location access. There are many apps such as Fossify Camera or Image Toolbox that have a metadata removal feature that you can use after the photos are taken to clean them of unwanted EXIF data.

Hope this helps!

CharlieMander

vividsquirrel It does. Thank you

de0u

Linux It would be safe if you only give network permission to open source apps.

That is not a rule. Open-source apps have been compromised, and sometimes sold to people who have added tracking.

Linux If there is only one proprietary application with network permission, it could be used to extract data from all proprietary apps via IPC

That is not how IPC works. An app can't extract information from another app via IPC. What is transferred is what one app chooses to send to another.

Linux

de0u That is not a rule. Open-source apps have been compromised, and sometimes sold to people who have added tracking.

But its a lot more seldom.
From a malware developers point of view, it also makes a lot more sense to hide the malware in a proprietary application then revealing the source code of it.
In addition to the source code beeing available you also need the following things:

The builds need to be reproducible, otherwise the maintainer can just compile maliciously modified source code and present the official repos as a dummy.
If the project is very small and handles sensitive data, then you maybe need to audit the code yourself, or pay someone to do so. If this is to much work, you should at least scan the code with AI for backdoors.

CharlieMander

-On my Main Profile /No Google Play Services
I have OEM Pixel Camera app with NO Network permission
And only the other permissions its needs to function.
And lukaspieper /Gcam-Services-Provider
Downloaded from Aurora Store Anonymous profile.

And I have Nova Launcher Prime and "Black Pie" Icon Pack
These 2 Apps have Zero Permissions Granted to them.

I downloaded them from Aurora Store with a
"Random G Mail Account" I made just for downloading these 2 paid apps. I wish I didn't need any Paid Apps but honesty my phone feels horrible to use without them.

Wish I knew how to get these apps without
paying Google Play Store. I wish I could pay for 3rd time strait to DEVs for version of app that I can download freely.
Ive been useing them exclusively since I can remember.
I need them...

Then "Web Apps" for as much stuff as possible. Still getting used to that.

-Second Profile on phone I have Google Play Services installed. Im logged into my real Google Account..

Im much more thoughtful of the apps I download
"compared to last phone" and I give apps the bare minimum permissions the apps needs to function.

Not perfect but every day im transitioning more and more away from the google slop/spyware. And eventually the Goal is to delete the Second Profile. Or atleast have it be a Profile with only like 3 or 4 apps I need sometimes that need google BS.

I will look more into "IPC". I have no idea what this means.
Do you think my current setup seems "decent".
Specifically on my Main Profile? I know my Secondary Profile sucks but its temporary.
Adding the Google Camera felt dirty, and I dont trust
NOVA Launcher or Black Pie. But I was thinking giveing them Zero Permissions made them safe to use?
And I hate useing my phone without them..

I guess off topic to my original post but now im a bit worried ha ha.

Thank You

thmf

CharlieMander I will look more into "IPC". I have no idea what this means.

This should shed some light.

lackofhumor

CharlieMander
Fortunately, having a good main/secondary profile is not a competition, so you can freely do what you feel like :)

I would say that there's no meta setup, otherwise everyone would apply that and I don't think this is the aim of this OS.
Privacy is important, intimate and subjective, you and you only know how much you are willing to give up for your things to work your way.

I would say that some people here will suggest you to not install Pixel Camera and use some FOSS alternative instead.
I also bet there are people here thinking that because they are using GOS they can install whatever, and be fine.

The first thing you should ask yourself is 'Who is my "enemy"?'
Everything is a game of perspective.
For example, if you consider your ISP as not trustuble, your lack of vnp might be considered a bad thing.
If you don't trust Google, installing Google products could be seen as a bad choice.
If your don't trust me, you already did everything you needed to.
If you don't trust that random developer on GitHub, suddenly also FOSS apps become a minefield.

In other words, it's impossible for others to tell you if what you do is enough.
Generally speaking, if you only have FOSS software, no Gapps and just 2 paid apps with no permissions, it is considered a good thing. (could be worse or could be better, that depends on your objective).

GOS gave the opportunity to install Gapps with user permissions because they live in the real world and understand that people will need it.
Until all the developers in the world stop to depend on Google software (never happening, imho), we will always need Google software, is that simple.
It's better to have it sandboxed and run it as simple app instead of not using it because of a romantic war.

Of course that is not for me to say, if you can live without Google software, I will be just jelous of you, considering banks and government apps I need to run...

CharlieMander

lackofhumor Im not trying to be in competition with any one.

I think my issue is I always want the Meta. Im trying to figure out how to achieve the Meta while haveing limited knowledge and no real use case for it.

Who is my enemy? No one.
I just hate feeling like im be spyed on.

Thanks for input. Just haveing GrapheneOS is 100× better than what I had before. And I think I should slow down on trying to achieve the Meta or ill get disheartened.

Thank You

vividsquirrel

I have had great success using Shelter to create a work profile and install Google services only in the work profile. I can sign in and get all of the apps I need through the Play Store. There is a quick settings tile that allows you to toggle the entire work profile on and off and therefore freeze all apps and Google services. It's a lot simpler than having full seperate user profiles and still allows me to shut it off when not needed. AFAIK no IPC can happen between the user profile and work profile, and the file system is seperate just like user profiles. Shelter also allows you to freeze individual apps and prevent them from running in the background entirely. It's a really good solution for me.

lackofhumor

vividsquirrel
I do not know about your use case, I just would like to mention that Private Space exists and might give you better isolation if that is what you are seeking.

Work Profile is as secure as the Admin app (Shelter, in this case) is making it, so I would underline at least 3 features that Private space is getting "better" (in terms of isolation):

While in the Work Profile some intents are visible from/by the main Profile, in Private Space the only intent visible from main is Phone and the rest is isolated;
As long as you set a new pin/lock on the Private Space you get new encryption keys, so files isolation are not only logical.
I might be wrong about this last point, but afaik apps in Work Profile don't "go to sleep" unless you manually freeze them, so you might miss some battery optimization and/or background execution related features.

These are imho the most important differences between a Work Profile and a Private Space.

vividsquirrel Shelter also allows you to freeze individual apps and prevent them from running in the background entirely. It's a really good solution for me.

Coming to this, you can do that to Private Space app with the system Settings, under Apps section.

A practical difference you might want to take into account is that Private Space will lock itself on reboot (or at every phone lock, depending on your settings), so you would miss some autoboot feature.
I would like someone to confirm or disprove this last thought.