matchboxbananasynergy added the Solved tag .
Can I disable the default AOSP apps?
[deleted] Please explain to me what the Playstore and its apps have to do with privacy?
Tuba Did you know https://www.simplemobiletools.com/ ?
Tuba After being approached like a troll in part for my first questions here....
GrouchyGrape They are too rigid, have too little around customization options.
matchboxbananasynergy Thanks for the tips, that the clock works differently is good to know.
I also know Aves Gallery very well.
What is this contact scopes feature?
And why is the phone App different? But default App can I change ?
WhoTheFuckisAlice To be fair, I don't think anyone approached or treated you like a troll, I think people have been generally open and trying to help address your questions since you've been used to handling things in a different way in the past, so a lot of things seem new to you. :) Sorry if you've felt in any way unwelcome here.
Regarding contact scopes - here's the easiest way to describe the feature:
You know how apps sometimes need the contacts permission? On other OSes, you have the option to allow them access to your contacts, or not allow them access to your contacts. It's all or nothing, and some apps can even not work if you don't grant access to your contacts.
With contact scopes, you can make an app think it has access to all your contacts, but you only grant access to specific contacts you choose. The choosing process is done through a contact picker using the contacts app, which is why it's important to not disable it.
For the phone app, I would use it and not replace it for two reasons - I wouldn't want to extend trust to another app and would rather use the system, and the system dialer has call recording functionality which cannot be implemented in 3rd party apps, so if you want call recording, you'll have to use the one that comes with the OS.
matchboxbananasynergy so I also use the app Image Toolbox for the editing intents and functionality.
what is the app image toolbox?
[deleted]
WhoTheFuckisAlice there is a chain of trust between the developer and the user.
[deleted] this chain is always broken since google point the devs to implement adds/googlecode/trackers in there Apps... use the App Exodus to check your Apps for trackers and then go to F-Droid or github and look for the apps, sometime you find the Apps without this crap, or use App Manager to disable this.
matchboxbananasynergy With contact scopes, you can make an app think it has access to all your contacts, but you only grant access to specific contacts you choose. The choosing process is done through a contact picker using the contacts app, which is why it's important to not disable it.
Thx, know it is clear.
matchboxbananasynergy To be fair, I don't think anyone approached or treated you like a troll, I think people have been generally open and trying to help address your questions since you've been used to handling things in a different way in the past, so a lot of things seem new to you. :) Sorry if you've felt in any way unwelcome here.
I would not say unwelcome, a little wind always blows against me, because I see many things differently than the collected majority, so this is not a problem for me, rather for those who see my storm as an attack... and of course I had to solve many things differently, otherwise it would not be compatible with such a surveillance bug in the pocket to run around...GrapheneOS offers other possibilities and I now have to rethink a little...sometimes the privacy must make way for security and vice versa. so I am grateful for any tip.
What about apps that are installed via F-Droid? Do they also have their own sandbox? Are they equal to the system apps?
What about apps installed via adb with system permissions? Are they equal to the system apps, do they run via their own sandbox? Or is there only this Google Play Service sandbox? How can I imagine this? So not what is a sandbox or how does that work, but how does GrapheneOS negotiate the different installation options?
[deleted]
- Edited
What about apps that are installed via F-Droid? Do they also have their own sandbox?
Every application runs in its own UID (A "User"), and is hence sandboxed directly by the (Linux-based) Kernel.
Are they equal to the system apps?
Nope.
WhoTheFuckisAlice What about apps installed via adb with system permissions?
Only development, runtime and appop permissions can be granted/revoked via Shell (ADB). Please explain what you mean by "system permissions".
Are they equal to the system apps
Nope.
do they run via their own sandbox?
Every application runs in its own UID (A "User"), and is hence sandboxed directly by the (Linux-based) Kernel.
WhoTheFuckisAlice Or is there only this Google Play Service sandbox?
Every application is sandboxed, even System apps. But system apps can have special (signature and privileged) permissions pre-granted by the OS.
WhoTheFuckisAlice but how does GrapheneOS negotiate the different installation options?
I don't understand what you mean.
[deleted] Please explain what you mean by "system permissions".
The App "App Manager" is my default installer with wireless debugging option, which is sometimes root equal, or is this ok till I did not deactivate anything :D ?
[deleted] I don't understand what you mean.
i have created new profile and installed only the 3 google sandboxing apps, but can not log in in my google account, because the phone is checking info over hours ... is there something special to activate to get work the google sandboxed thing. till here all works fine, so what is now different to before?
[deleted]
WhoTheFuckisAlice I think you've missed the point
[deleted]
WhoTheFuckisAlice I wish you all the best on your privacy journey with Exodus and fdroid 😂
[deleted]
- Edited
[deleted] nothing wrong with that if you do it right. But perhaps good luck staying private with Google, sandboxed or not.
[deleted]
[deleted] It makes all the difference if it's in a sandbox. He has access to absolutely nothing in the phone. He only knows what's inside. On the other hand, using Exodus is a problem because it will know all the applications your phone contains and will only give you a small list of trackers. Fdroid, on the other hand, needs no introduction. Its security problems and consequent lack of privacy are well known and documented.
[deleted]
I had an Android document on the security model. I don't know where I found it, but I'll try to find it for you.
[deleted]
The one and only competitor to the play store is the accrescent app, but for the moment there's not much on it. These are the only two solutions that respect the Android security model.
[deleted]
[deleted] On the other hand, using Exodus is a problem because it will know all the applications your phone contains
No.
[deleted] Its security problems and consequent lack of privacy are well known and documented.
F-Droid definetly has security problems, but I think it doesn't have a "lack of privacy".
[deleted] These are the only two solutions that respect the Android security model.
'Apps' by GrapheneOS respects the Android security model too.
[deleted]
- Edited
The App "App Manager" is my default installer with wireless debugging option, which is sometimes root equal, or is this ok till I did not deactivate anything :D ?
By giving an app access to ADB, You are letting It break the Android security model; For example, the app could grant itself many permissions like: runtime permissions (e.g. Camera, Microphone, Location), development permissions (e.g. Write Secure Settings, Interact Across Users), and appop permissions (e.g. Manage Outgoing Calls, Schedule Exact Alarm).
i have created new profile and installed only the 3 google sandboxing apps, but can not log in in my google account, because the phone is checking info over hours ... is there something special to activate to get work the google sandboxed thing. till here all works fine, so what is now different to before?
I'm afraid I cannot help you on this. You might consider creating a new thread, or using the Search feature to find existing threads about yout issue.
To be fair, at least to my liking, the GOS team has improved the Phone app considerably, particularly by including the awesome Record function. The Contacts app is basic, but still, it is not bad at all (again, just my opinion). Yes, it doesn't have Material Design v3, but it is not uglier than the Simple Apps suite.
The Messages app on the other hand... That is plain terrible, particularly the fact that it throws warning that was built for an older version of Android! Also, no line break? I mean, seriously?
I know AOSP is responsible for maintaining this fossil, I just wish they'd wake up the hell up.