this post was submitted on 27 Apr 2024
2 points (100.0% liked)

DeGoogle Yourself

8807 readers
42 users here now

A community for those that would like to get away from Google.

Here you may post anything related to DeGoogling, why we should do it or good software alternatives!

Rules

  1. Be respectful even in disagreement

  2. No advertising unless it is very relevent and justified. Do not do this excessively.

  3. No low value posts / memes. We or you need to learn, or discuss something.

Related communities

!privacyguides@lemmy.one !privacy@lemmy.ml !privatelife@lemmy.ml !linuxphones@lemmy.ml !fossdroid@social.fossware.space !fdroid@lemmy.ml

founded 4 years ago
MODERATORS
 

I am in need of a separate degoogled phone for some things that require high level of privacy (nothing illegal).

I have 2 phones that I can use. One of them is my business phone (it has my business number, apps, data and that sort of stuff) which is now running an OS with all the Google spyware because it's necessary for the apps to work. I can reinstall everything on the second phone and use the first one as the secure device since it supports everything I need. The problem is that it has some issues on vanilla ROMs that I don't really want to deal with and the reinstalling will take a lot of time.

The issue with the second phone is that it is rocking an old MTK chip and rooting instructions are let's say a bit beyond my ability to understand. I still want to use it without Google if possible though. So can I degoogle its stock ROM with ADB or something? And is it worth trying or there will still be some vulnerabilities?

EDIT: to clear some possible misunderstandings, the reason of why I need a separate secure phone is that I am forced to use a very invasive proprietary app that I'd prefer just keeping on a separate device instead of trying to limit its spyware abilities with firewalls and that kind of stuff. I don't trust the last solution much. Also I can't use it in a VM because I need it to always be accessible wherever I am and yk carrying a PC is not an option

top 23 comments
sorted by: hot top controversial new old
[–] impure9435@kbin.run 2 points 6 months ago (1 children)

You can try uninstalling as much Google crap as possible using the Universal Android Debloater

Then perhaps use a firewall like NetGuard in whitelist mode, to only allow selected apps to access the internet

As an additional layer of security, you can use NextDNS with the No Google blocklist, and block all connections to Google servers in DNS. If you need to access specific things like YouTube, you can whitelist them.

[–] MinekPo1@lemmy.ml 1 points 6 months ago

just gonna say , rethink combines both a firewall and a DNS blocker .

[–] lemmyreader@lemmy.ml 1 points 6 months ago (1 children)

One thing you can do :

[–] GolfNovemberUniform@lemmy.ml 0 points 6 months ago (2 children)

I don't really trust such stuff. Once I tried disabling system apps via ADB (not deleting). They appeared as disabled but still could run in the background...

[–] MentalEdge@sopuli.xyz 2 points 6 months ago (1 children)

The point isn't to stop them from running. It's to stop them from talking to the internet, which is a lot simpler to achieve.

[–] GolfNovemberUniform@lemmy.ml -1 points 6 months ago (3 children)

What I meant is that if we can't disable them without root we probably can't disable the network access either. I don't have the knowledge and time to test outgoing packets and stuff like that

[–] Anamana@feddit.de 1 points 6 months ago* (last edited 6 months ago)

It's fairly secure that it works, because it's basically setting up a VPN connection that effectively blocks every network traffic outside of the tunnel.

But if you wanna be 100% sure you need to invest either the time or root your phone.

[–] MentalEdge@sopuli.xyz 1 points 6 months ago* (last edited 6 months ago) (1 children)

Android has built in support for VPNs. If there was a way for the OS to leak traffic, that would be a massive security vulnerability that would have corporations dumping all android company phones within a week.

Non root ad blockers work by creating a vpn within the phone that all network activity goes through, which then doesn't allowed ad traffic.

[–] michael_palmer@lemmy.sdf.org 1 points 6 months ago (1 children)
[–] MentalEdge@sopuli.xyz 1 points 6 months ago

ew

But also benign. This isn't a system app sending telemetry to google outside the VPN connection while it's active. It's the device checking whether a wifi access point provides internet to begin with, which if it does, the VPN connection will need to work, too.

The article is pointing out that the device doesn't strictly need to do this, and that it is being done in a way the gives the wifi AP metadata. The device could instead just assume there is an internet connection on the wifi, and as such an option to disable this behaviour is warranted.

[–] Empricorn@feddit.nl 1 points 6 months ago (1 children)

It's okay to admit you don't understand stuff, you don't need to push conspiracy theories. None of us is omniscient....

[–] GolfNovemberUniform@lemmy.ml 0 points 6 months ago (1 children)

I don't push it and it's not a theory. It's just my assumption that I don't have time to prove or destroy

[–] Empricorn@feddit.nl 1 points 6 months ago

if we can't disable them without root we probably can't disable the network access either.

Complete bullshit and utter speculation.

[–] MinekPo1@lemmy.ml 0 points 6 months ago (1 children)

to my knowledge disabled apps do not run so you must have misunderstood something

[–] BearOfaTime@lemm.ee 1 points 6 months ago

System apps can appear disabled but still run. Yea, it's fucked up.

[–] muntedcrocodile@lemm.ee 0 points 6 months ago (1 children)

Nope. Best cause of action is buy a google pixel and put grapheneos on it.

[–] GolfNovemberUniform@lemmy.ml 1 points 6 months ago (1 children)
[–] muntedcrocodile@lemm.ee 0 points 6 months ago (2 children)

Solve ur own problems mate. Unless u wanna replace the phones ROM and can relock the bootloader not a whole lot any degoogling attempts can achieve.

[–] ProtoShark@lemm.ee 1 points 6 months ago

They were just making the point that buying an entire new phone isn't worth it.

[–] GolfNovemberUniform@lemmy.ml 1 points 6 months ago (1 children)

Lol hope you get banned for rudeness

[–] muntedcrocodile@lemm.ee 1 points 6 months ago (1 children)

Ur the one begging for money that's pretty rude imo. Its just not a whole lot u can do without at least rooting.

[–] GolfNovemberUniform@lemmy.ml 0 points 6 months ago (1 children)

I wasn't begging for money. I said that as a joke. You are being rude now though

[–] InputZero@lemmy.ml 1 points 6 months ago

So I've read a lot of this thread and I felt I needed to say one thing to you. I don't know why you need such extensive data security but that's none of my business.

What I wanted to say is that if you need this much protection for a business, ie you're protecting many other people's sensitive data, hire a professional to do it right the first time. Doing a half assed job then paying someone else to fix it is twice as expensive.

If you're doing this to protect your own personal data then the best way to do it right eventually is through trying and learning from your mistakes. Obviously try to avoid them but it's impossible to not make any.