Just adding to what you've mentioned via a previous post
https://discuss.grapheneos.org/d/3565-randomized-mac-across-profiles
Just adding to what you've mentioned via a previous post
https://discuss.grapheneos.org/d/3565-randomized-mac-across-profiles
@GrapheneOS Could you please give an option to hide that +Install button in the private space. It doesn't need to always be there. Its not there in the main profile or work profiles either. You just open the app store of choice to install apps. Also, if i use aurora store for example and press the + sign i can't select it.
rndmE You don't need this app to use Pixel Camera on GrapheneOS. Pixel Camera will work without it.
rndmE In my understanding, the apps of two profiles are completely separated from each other.
This issue means that they are not as separated as I have thought.
If I understand it correctly, the moment you have the same app installed in multiple profiles, they automatically share their installed executables (APKs) between these profiles, which also means that you can never have an older version of a certain app on one profile and a newer version on another - or as in your case two versions of the same package name signed by two different keys.
This logic applies to all kind of profiles - work, user, and private
rndmE You still couldn't be sure about what data Google has been collecting since Inter-app-communication could cause a big data breach without you even noticing.
Not really. Remember that apps can only communicate if they mutually agree to. This means that if data is shared with Google, the developers intended for that to happen. Also, it is important to remember that Google libraries don't necessarily need Google Play to work because they sometimes have backup methods to communicate with Google.
So, if your goal is to keep your personal data away from Google, don't assume that apps that want to share data are safe just because they're not in a profile without Google Play.
rndmE "INSTALL_FAILED_CONFLICTING_PROVIDER: Scanning Failed.: Can't install because provider name com.google.android.gsf.gservices (in package com.google.android.gms) is already used by com.google.android.apps.photos
Sounds like maybe you have gcam services provider installed? You cannot have that installed even in other profiles to install sandboxed Google Play.
then send that data back to their servers.
This would require code to be written and executed. Code that GrapheneOS would not include in their system/software.
Similar discussion here for the record.
https://globe.adsbexchange.com/
Best one
web page
use it allot
most helpful
I started out using flightradar
I think this is more privacy friendly
rndmE I'm just wondering what the menu point "Install app" (or something similiar, I'm not using the english configuration) is really doing and why it seems to depend on the website I'm currently visiting whether is displayed at all.
It depends entirely on if the particular website offers a web app or not. If they don't have one, then it's just a shortcut/link to the regular web page that's displayed in a browser as normal.
@rndmE I had this issue when I initially installed Graphene. I couldn't find a solution besides reinstalling the OS. I can see the content of GMaps. However, and this was an issue with my initial installation as well, Transit app has the same issue, even still. Not sure if the two are related but worth mentioning. I do have Google Play installed along with GSF and play services, but not with network permissions. Hopefully this helps people with some tech literacy figure out a solution. I sure don't have a clue.
Update: Giving Google Play Services network permissions just to initially open the app (Transit in this case but I assume for others as well) and allow the map to be shown worked. It persisted to work even after network perms from Play Services was removed and device was rebooted.
Regardless of his job title or qualifications - in my opinion, the blog posts offer a good starting point for people who are considering installing a custom ROM.
rndmE Which features of Google Maps do not work without them?
I believe they pretty much all work. The main difference is that sandboxed Google Play is required for network/bluetooth-assisted geolocation which is pretty much necessary for determining location indoors and also probably gives a fix faster.
Without sandboxed Google Play, geolocation is GPS only, more private but slower than when using Google's location service on top.
Also, here's some more info about the planned feature to restrict inter-app communication: https://nitter.net/GrapheneOS/status/1636042398043086850
rndmE Could it make sense to just build an empty WebView-App which contains maps.google.com?
You might want to try this
what is Google Maps able to communicate to other apps? Can they communicate as they want and it just depends on the developers of these apps what they share?
Google Maps is able to communicate with another app what itself and that other app have both been programmed to share. Inter app communication works on a mutual consent basis.
Can they communicate as they want and it just depends on the developers of these apps what they share?
So as I said, in theory yes.
I would maybe be fine with having Google Maps installed in my device if I'd be sure that it would not tunnel traffic or gather data from my other two Google apps.
No way to be sure of that at the moment. That doesn't mean it happens; I personally think it is unlikely that Google uses inter-app communication to circumvent such uncommon and marginal roadblocks to data collection.
What else does Maps communicate to the Google servers that I may not have on my screen besides the data that is necessary for using Maps?
Again, no way to know.
Are there thoughts from the GOS team about features like denying communication between chosen apps
This feature is planned, although no ETA.