Permission control for apps

I agree, privacy is very important, since smartphones can store lots of user sensitive information. Supplying fake data is not a bad idea, however, I would rather install "clean" apps, even if I have to pay for some of them.

You are right, perhaps is not really ethical, however it was just a conceptual explanation. You can even completely block the access to that specific media or whatever. In this case you can also spot those applications that work "properly" and those that dont.. If they ask for a permission, and without that one, it works perfectly anyway.It could mean that the permission was not necessary!

I like the idea of providing data that has actually negative value to data collectors. "Negative" in terms that fake data is dirt in their records, less clean also meaning less valuable for exploitation. Let 'em eat dirt :)

It is properly the best idea to provide fake data. I bought the Jolla because my expectations were high that they would care more about it. So far I'm a little disappointed and I don't know in which direction "Sailfish OS" will be pushed, but I think that privacy & security should be the most important selling point. In addition it would be nice to set the fake data by myself if I desire to do so.

I think that this is the best approach. When the app (sailfish or android) asks for permissions you get a list and can select allow for real or give fake rights.

For example. I do use facebook app (I know I'm bad but peer pressure) but I have no intention of ever letting it sync my phone contacts or do anything other than display facebook information (so only real permission it needs is access to internet). Would be great if I could give it nice fake permissions so the app is happy and so am I (since hoping that developers will solve the issue is a bit naive IMHO.

I noticed that too, having the phone. I really like it so the tradeoff is currently having less apps because of some security fears of me.

I did not buy the tablet yet but I hope to support Jolla on their road. I think we should pay a little more attention till the sailors got it going. It is a small team so I provide them more time to get the level of the big players.

Time will come and SailfishOS will be very solid. The community seems very concerned about this, like we do, so I am pretty sure they will handle it.

Thanks a lot Maxik for your reaction. I don't mind having fewer apps; as soon as I get a serious emailer, an ad-filtering browser, something like Libreoffice and, if possible, an RSS manager with a searchable database. My concern is rather, for current and future native apps, can we, at user level, control the way one of them accesses internet? My dream would be finding the Sailfish equivalent of Little Snitch on MacOS, Peer block on windows or Peer Guardian Linux

I am kind of shocked to read this. CyanogenMod lets me decide via "app ops" on every single right for each app separately. Feels like SailfishOS is a poor alternative. Do the sailors primarily thik about eyecandy?

Please note I don't say filtering does not happen : not having the tablet yet nor a phone, I indeed just don't know what is implemented, that's all.

What worries me is merely the fact I didn't see this point addressed anywhere here, and the fact I didn't get a simple answer since the OP question.

But maybe there are inded simple ways already. For instance, basic outbound filtering with a list is something that can be very easily implemented straight in Linux, and this although differently would do a reasonable part of the job.

Something like app-ops, maybe based on SELinux, is a bare mininum necessity!

Schwimmer you are a genius this app works like magic and its well worth $5! I used to use permission remover which was free but extremely buggy with most apps not working anymore once you removed permissions.

SRT AppGuard completely solves the permission problem on the Android side! Its basically like Apple in terms of functionality. People that worry aboit sailfish native app permissions i dont think need to be too concerned yet since there isnt really a lot of money in it for advertisers.

AU$6 is money well spent here. The app has been discontinued wrt to development but can still be downloaded and buy a license. Each app has to be uninstalled when monitored so you may lose cache data. Is a breeze limiting permissions but some are locked.

you mean like windows-style firewall?

little snitch like!

Hello everyone,

Have recently bought an Aqua Fish, too. When I was looking for ways to make my smartphone safer, I stumbled upon the posts here. I would like to give a small update on what can be done to make your Aqua Fish safer without being an IT expert or knowing too much about coding. The setup I chose in terms of apps so far is:

• Ixquick for internet searches via smartphone. Reason: No logging of your searches and servers in the Netherlands instead of the US.
• G-Data Internet Security for Android: Essentially a virus scanner for smartphones for those who like to have one. However, there is no firewall included in the smartphone version. This company is situated in Germany and offers virus scanner in combination with a firewall (and optionally some other stuff) currently only for PCs and Laptops. So it is very similar to Norton, Symantec or Kaspersky.
• The below mentioned SRT AppGuard to restrict app permissions. There is nothing to worry about in the terms and conditions for this app, although the terms and conditions are only available in German. Their latest version seems to be for Android Nougat version 7.1. There is a free 30 day test version available that can restrict up to 4 apps (for it to restrict more than 4 apps the paid version is necessary). So far, I did not have any problems with it. However, you can only restrict some permissions. In case of Whatsapp thats for example camera access, your location, audio access, WLAN connectivity, calls, contacts in socail media, modifications of system and access to media like photos, mp3 etc. You can not restrict Whatapps bluetooth connectivity, Whatsapp account information, and personal data.

Especially the last point still makes me somewhat unhappy. Does anyone know about other apps that could work as firewall, virus scanner, or permission restriction for other apps?

Kind regards,

Some update from my side: Whatsapp doesnt like SRT App Guard, stating that Whatsapp has been changed and needs to be reinstalled. Not too surprising. That means Goodbye for Whatsapp. Threema is a better alternative and does not spy on you. If Whatsapp really is needed, you can always buy a cheap second smartphone with native Android support, install Whatsapp there and use the phone only over WLAN at home. That way, Whatsapp at least can only spy on your Whatsapp conversations, because all other contacts, photos, videos, mp3s etc. are stored on your other -Whatsapp free - smartphone. The SRT App guard also has a certain limitation in that it completely supports Android 2.2 up to 4.4. Yet, it can still be installed on newer Android versions, but might work in a limited way with certain Apps. Still better than no protection at all...

That's perfect. We just need a way to patch the launcher to execute it always as group nonet.

Excellent! Power of Linux!

Tried it, but couldn't get it to work. Even installing xposed manually didn't help. It always said service not running even though both files app_process and XposedBridge.jar were detected properly by xposed installer.

Ok, thanks for sharing information. As someone else mentioned, SELinux is considered as a solution by the developers. A roadmap was posted on the January 2015 developer mailing list, saying "research SELinux as a solution for system security and application access control".

...via Google play...

... android app..

Yes, https://play.google.com/store/apps/details?id=com.fsecure.app.permissions.privacy . You need APK Downloader to download and then install app. Did it my self, and used the app and checked that Yandex requests 34 permissions. Next on the list is Twitter with 28 requests and Apptoide with 16. Most apps requests 15-5 permissions, so makes me wonder why does Yandex need 34... So Yandex is now removed from my precious. Is there a way to check is it really removed from my device (or any other app that I don't want or need anymore)?

Again, why would you choose not android in first place if it's so secure? No point of not native resolution