Sagacious Himself — brevity in circumlocution: never blague — suffering genius

November 22, 2011

PDroid, adds awesome spoofing POWER to android privacy permissions management

edit 2014:  still good XPrivacy Pro [license supports crowdsourced knowledge], but also evolving quickly from the developer of PDroid 2.0 (not svyat) is DonkeyGuard (CollegeDev | github).  DO absolutely combine  AFwall+ firewall  [in whitelist mode] with LightningWall, and UnbelovedHosts, AND BootManager.  To that end do also donate to defim for the combo license: DefimDonator  [$14 is well worth it] — important: make a note of the name in which you want the license issued. LightningWall does not appear to have a whitelist mode starting from everything blocked, but can function independent of your iptables manager (AFwall+).

 

DonkeyGuard android privacy enforcement logo

(DonkeyGuard requires CydiaFramework… seems to be abandoning XposedFramework in favor, but uses both now)

DonkeyGuard defaults to ultimate privacy

DonkeyGuard has a better UI style than XPrivacy Pro

DonkeyGuard better interface design than XPrivacy sterile checkbox columns

vs XPrivacy Pro

 XPrivacy Pro app UI

XPrivacy Pro summary UI

 

edit 2013:  better is XPrivacy extension of XPosed framework for android.  zero malware market access needed; download only via XDA forums or soon *hub for free OpenSource possibly F-droid.org “You can use an XPrivacy Pro license for all the devices you personally own.”

http://forum.xda-developers.com/showthread.php?t=2320783

XPrivacy FAQ#50 also recommends Xmpp Texting [Xabber]

.

original post:

http://forum.xda-developers.com/showthread.php?t=1357056

picks up where LBE Privacy Guard leaves off… they play well together.  However PDroid claims no need of background service.. still requires root. It requires root to boot into CWM to apply the patch, but does not require root to run the management app.

.

PDroid allows blocking access for any installed application to the following data separately:

  • Device ID (IMEI/MEID/ESN)
  • Subscriber ID (IMSI)
  • SIM serial (ICCID)
  • Phone and mailbox number
  • Incoming call number
  • Outgoing call number
  • GPS location
  • Network location
  • List of accounts (including your google e-mail address)
  • Account auth tokens
  • Contacts
  • Call logs
  • Calendar
  • SMS
  • MMS
  • Browser bookmarks and history
  • System logs
  • SIM info (operator, country)
  • Network info (operator, country)

For device ID, phone and mailbox number, SIM serial, subscriber ID and device location it also allows supplying custom or random values.

.

easy access to APKs from memorable url: http://tinyurl.com/PrivacyDroid

PDroid 2.3.4 source; patches build, frameworks and libcore

cites interesting article on blockery leakiness.

[ Himself.wordpress.com ]

Advertisements

October 31, 2011

English LBE Security Master for android now available (outside market) formerly LBE Privacy Guard

edit 2014:  XPrivacy Pro is still the most mature solution.  Another XPosed Framework plug-in is worth observing in development: DonkeyGuard — as it will allow user choice spoofing of requested data.  Also consider installing:  UnbelovedHosts and many other defim plug-ins, LuckyPatcher (remove adware only), Llama (or Tasker), LightFlow (or Xposed led options).  [I do neither encourage- nor condone piracy].   “But my android device… selinux|bootloader”… yeah it’s time to consider buying out of contract, too, for user-liberty (oppo [no cdma]).

 

edit 2013: better yet:  XPrivacy extension of XPosed framework for android

 

edit: a MUCH better, more elegant solution is the PDroid patch

.

http://forum.xda-developers.com/showthread.php?t=1357056

Ask your ROM builder to bake-in PDroid.  There are PDroid aditions and versions for ICS.  It will likely be ported to EVERY subsequent versison of android.

 

MY hardware, MY data: MY terms.

 

If you had been in contact with LBE developers prior to this release you should have received notification directly from LBE. 😉

English LBE Privacy Guard has received MUCH much more than a face lift.

Download English LBE Security Master [lite]

Version mismatch?  English LBE Security Master lite is version 2.0.x whereas Chinese LBE Security Master is version 2.1.x

Hopefully LBE has the wisdom to sell the full version outside the market, also.  Secure information shared with google [stored on google] is NOT secure.

.

There is an rom alternative to LBE Security Master [lite] by WhisperCore:

http://whispersys.com/permissions.html

WhisperCore provides selective persmissions in a way that doesn’t take apps by surprise. Instead of denying access to resources, each permission revoked by a user creates a “private resource” for that application. So if an application requests the phone’s unique identifier, it will still get an identifier, but it will be a privacy-protected identifier generated specifically for that application. A different application with the same revoked permission would get a separate identifier, and an application without the revoked permission would get the real phone identifier.

Unfortunately WhisperSystem’s WhisperCore  does not support ALL android phones like LBE.

.

Another alternative to LBE Security Master LITE is pffmod

http://code.google.com/p/pffmod/

.

Ultimate permissions management, spoof ID / fake data, is possible with cyanogenmod

http://review.cyanogenmod.com/#change,5677

Apply a little peer pressure to effect a change in favor of the hardware/data owners!

.

[ Himself.wordpress.com | SagaciousHimself.stumbleupon.com ]

Create a free website or blog at WordPress.com.