this post was submitted on 18 Feb 2024
81 points (96.6% liked)

Privacy

31982 readers
337 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
all 20 comments
sorted by: hot top controversial new old
[–] [email protected] 36 points 9 months ago (1 children)

Mixed feelings about this article. In short, it presents a new way of fingerprinting devices.

While it's an interesting fingerprinting strategy, this is just one of many ways that a device can be fingerprinted. Do your best to avoid installing applications you don't trust to protect your privacy.

Also, the recommendations of the article don't make much sense. Anti malware on Android? Ridiculous and ineffective.

[–] [email protected] 3 points 9 months ago (1 children)

Is there any better anti-malware solution available to the average (read: not using F-Droid) user than the Google Play Store? If third party cookie blocking in Chrome has shown us anything, it's that Google prefers to monopolize data collection.

[–] [email protected] 12 points 9 months ago

No. There is no room for anti-malware services in the Android design.

Such software needs permissions that reach outside of the Android security model to do things like access other application data without its consent.

Imagine for a moment that you could install anti malware with some kind of super user permission that lets the software access everything it needs to do its job. If so, malware would immediately attempt to use that feature as well, either to steal more of your data or inject itself into other applications.

Play Services is special because it operates with much higher privileges than third party software can obtain.

Now, in theory you can still scan applications before they are installed, but I would argue that there's very limited value in doing so. If you're installing software from sources you don't trust, you have bigger problems. You can't rely on a signature matching engine to detect malware in the general case.

[–] [email protected] 9 points 9 months ago (1 children)

Basically Android will change its UI coloring to align with your background image, and 3rd parties get access to knowledge about your designated UI colors, right? I get how that can be a privacy concern.

What happens if you set your wallpaper to automatically change every other hour or so? Does android allow that?

[–] [email protected] 12 points 9 months ago (1 children)

This is common for scraping even on desktop.

Dark mode, screen resolution, window size, and installed fonts are all tracking points plus hundreds more.

As I understand it, randomizing can make you stand out more as an outlier. Its better to blend with the herd. VPNs help by putting a bunch of clients behind the same IP, but if you stand out based on activity, an advanced enough algorithm may pick you out by what's static and by what's always changing.

[–] [email protected] 8 points 9 months ago

randomizing can make you stand out more as an outlier

I’m sure, but if you have a specific set of colors matching a specific picture on your phone that nobody else has, I imagine that would be more easily traceable than if it were automatically switched out every once in a while. Granted, the other aspects you mentioned might be enough to just render the effort redundant anyway.

[–] [email protected] 6 points 9 months ago

I dealt with this by using only trusted software. Problem solved. Neither kvaesitso nor lemmy or element will abuse it.

[–] [email protected] 3 points 9 months ago

My background is black

[–] [email protected] 2 points 9 months ago (1 children)

That's why GrapheneOS doesn't come with a wallpaper.

[–] [email protected] 11 points 9 months ago (2 children)

I feel like that would also fingerprint you because only grapheneos users would have that.

[–] [email protected] 2 points 9 months ago (1 children)

So where do I get some wallpapers? I don't really care that much how it looks. Just that it looks decent in both light/dark modes and does not clash with icons so its hard to see them.

[–] [email protected] 1 points 9 months ago

Just search online somewhere "[something of interest] wallpaper". You'll probably find good wallpapers on some wallpaper websites.

[–] [email protected] 1 points 9 months ago* (last edited 9 months ago)

Thas like saying "Tor users are easily fingerprinted because they are using Tor." GrapheneOS has more than 200,000 users not including the other people on the outside who also have black wallpaper (a lot).

[–] [email protected] 0 points 9 months ago

This only is a problem if you install apps that track you. If you only use F-droid the risks become much lower