Related
This is not acceptable.
I Quote:
Chris Moore, the owner of a UK-based security and tech blog, recently published an article demonstrating that OnePlus has been gathering his personal information and transmitting them without his permission. He noticed an unfamiliar domain while completing the SANS Holiday Hack Challenge and decided to further examine it. He found that the domain – open.oneplus.net – had essentially been collecting his private device and user data and transmitting them to an Amazon AWS instance, all without his permission.
The data that OnePlus is accessing ranges from device information like the phone’s IMEI, serial number, cellular number, MAC address, mobile network name, IMSI prefix, and wireless network ESSID and BSSID to user data like reboot, charging, screen timestamps as well as application timestamps.
Click to expand...
Click to collapse
Potinial Fix
Moore states that the code responsible for this data collection is part of the OnePlus Device Manager and OnePlus Device Manager Provider. Fortunately, Jakub Czekanski claims that despite their being a system service, they can be permanently disabled through replacing net.oneplus.odm for pkg via ADB or through running this command: pm uninstall -k –user 0 pkg
Click to expand...
Click to collapse
http://www.androidauthority.com/oneplus-collecting-user-data-without-permission-806579/
theduke7 said:
This is not acceptable.
I Quote:
Potinial Fix
http://www.androidauthority.com/oneplus-collecting-user-data-without-permission-806579/
Click to expand...
Click to collapse
It's a breach of privacy if it's not something we agree'd to in the TnC's and a few people are saying it's the toggle under settings that you can opt out with so that's nothing if that's the case. But this info they're logging is not personal and means nothing to average users just device info what every OEM logs in their OS.
If you are worried about privacy maybe time to switch to iOS. Google is the worst every app is logging some kind of data
This is something not acceptable if it's true https://plus.google.com/102612254593917101378/posts/BU2aNCfBNEo
This is nothing mate , if you worry about that I guess that you don't have Facebook? Or you don't use Google service? All company are getting your data and you don' t even know, but there is worse than just getting information of "phone lock", "phone unlock "
liam_davenport said:
It's a breach of privacy if it's not something we agree'd to in the TnC's and a few people are saying it's the toggle under settings that you can opt out with so that's nothing if that's the case. But this info they're logging is not personal and means nothing to average users just device info what every OEM logs in their OS.
If you are worried about privacy maybe time to switch to iOS. Google is the worst every app is logging some kind of data
This is something not acceptable if it's true https://plus.google.com/102612254593917101378/posts/BU2aNCfBNEo
Click to expand...
Click to collapse
according to the article it's not the toggle controlled User Experience in Advanced settings, i understand that even google collects data (and even Apple fyi) , but the point is it's without permission, Google asks on every new setup if it can , even when you install a Google app like Gboard, it asks if you want to share info, and in their setting there's always a toggle to opt-out... this on the other hand seems to be a hidden service , why hide something if it's collecting standard data everybody else is collecting and why not provide an opt-out option?
Monk3y said:
This is nothing mate , if you worry about that I guess that you don't have Facebook? Or you don't use Google service? All company are getting your data and you don' t even know, but there is worse than just getting information of "phone lock", "phone unlock "
Click to expand...
Click to collapse
i either debloat those or use clean alternatives or delete any concerning risk... again Google gives you the option to opt-out , this doesn't, and this is the difference, and we can't make excuses for such behavior because it enables them to continue doing it.
theduke7 said:
according to the article it's not the toggle controlled User Experience in Advanced settings, i understand that even google collects data (and even Apple fyi) , but the point is it's without permission, Google asks on every new setup if it can , even when you install a Google app like Gboard, it asks if you want to share info, and in their setting there's always a toggle to opt-out... this on the other hand seems to be a hidden service , why hide something if it's collecting standard data everybody else is collecting and why not provide an opt-out option?
Click to expand...
Click to collapse
HTC collects the same kind of data as OnePlus their is no opt in or out. You agree to it in the Terms and Conditions when you buy the device and It's probably the case here and the case with many products and services. If you are really worried or pi*sed off about it happening read the TnC's before you agree to a purchasing a product or a service
I'm going with what the people are saying in advanced settings that is the opt out. No other reason for that to be there and in Open beta you can opt out of that in setup of the phone not sure if the case in stable. I run custom rom
I don't see 'oneplus device manager' anywhere on my op3. The article also states that he found that on an op2.
Do we even have to be concerned?
liam_davenport said:
HTC collects the same kind of data as OnePlus their is no opt in or out. You agree to it in the Terms and Conditions when you buy the device and It's probably the case here and the case with many products and services. If you are really worried or pi*sed off about it happening read the TnC's before you agree to a purchasing a product or a service
I'm going with what the people are saying in advanced settings that is the opt out. No other reason for that to be there and in Open beta you can opt out of that in setup of the phone not sure if the case in stable. I run custom rom
Click to expand...
Click to collapse
that's why i didn't buy an HTC... and if it was something in t&c OnePlus would've said so...
it's not the one in advanced settings, that was the point of the article, and the testing was done by a security company, again, the fact that some companies collect data without permission doesn't mean we should accept it.
people don't use a lot of Chinese rooting apps for the exact same reason, the difference being those apps are from unknown companies or groups, so what you're saying is as long as those collecting data are big players it's OK!
we can't get even the minimal amount of privacy just accepting every violation as OK... for myself, i know how to disable or delete those, and it's the 1st thing i do if i'm on a stock rom (as i do with Windows 10), but that shouldn't be the case, people shouldn't be concerned about their personal info collected and used behind their backs.
sicHiRsch said:
I don't see 'oneplus device manager' anywhere on my op3. The article also states that he found that on an op2.
Do we even have to be concerned?
Click to expand...
Click to collapse
if you run the command given on ADB it'll uninstall something (then reboot the device) , it uninstalls a package of services related to that...
it's not there on device manager because they hid it.
The reality is, we are living in a world where "privacy" is a joke and every OEM is tracking and logging data no matter even you are using Samsung or HTC or LG. Atleast OP accepted that they are collecting.
It's sad to see people accepting the truth that many OEM's log the data and keep quiet.it's necessary for us to stand against this logging of data. I'am concerned about my personal info being logged in without my permission. We just see the top layer of data being logged but who knows may be they even sell data to other companies and make profit. And those companies target ads at u and probably they might even know more about you then you yourself!! They know your habits. How and when you use your phone.what apps you use the worst part where you stay and what places you visit often etc etc!! I stand against this and you all should too!! If you still think it doesn't matter I suggest you read the book THE ART OF INVISIBILITY by Kevin mitnickey you'll know why your privacy is important
Cypher dude said:
It's sad to see people accepting the truth that many OEM's log the data and keep quiet.it's necessary for us to stand against this logging of data. I'am concerned about my personal info being logged in without my permission. We just see the top layer of data being logged but who knows may be they even sell data to other companies and make profit. And those companies target ads at u and probably they might even know more about you then you yourself!! They know your habits. How and when you use your phone.what apps you use the worst part where you stay and what places you visit often etc etc!! I stand against this and you all should too!! If you still think it doesn't matter I suggest you read the book THE ART OF INVISIBILITY by Kevin mitnickey you'll know why your privacy is important
Click to expand...
Click to collapse
I am right there with you. (great book by the way) People are giving up their freedom without a fight or even understanding the dangers of it.
The two packages you want to remove are "net.oneplus.odm.provider" and "net.oneplus.odm"
So the two commands to run via ADB are
pm uninstall -k --user 0 net.oneplus.odm.provider
pm uninstall -k --user 0 net.oneplus.odm
Cypher dude said:
It's sad to see people accepting the truth that many OEM's log the data and keep quiet.it's necessary for us to stand against this logging of data. I'am concerned about my personal info being logged in without my permission. We just see the top layer of data being logged but who knows may be they even sell data to other companies and make profit. And those companies target ads at u and probably they might even know more about you then you yourself!! They know your habits. How and when you use your phone.what apps you use the worst part where you stay and what places you visit often etc etc!! I stand against this and you all should too!! If you still think it doesn't matter I suggest you read the book THE ART OF INVISIBILITY by Kevin mitnickey you'll know why your privacy is important
Click to expand...
Click to collapse
i am reading the book at the moment and it's awesome
Pressure works
https://www.androidauthority.com/oneplus-makes-changes-data-collection-policy-807415/
denogun said:
The two packages you want to remove are "net.oneplus.odm.provider" and "net.oneplus.odm"
So the two commands to run via ADB are
pm uninstall -k --user 0 net.oneplus.odm.provider
pm uninstall -k --user 0 net.oneplus.odm
Click to expand...
Click to collapse
can confirm no adverse side effects whatsoever after uninstalling these 2 packages :good:
Or you can add to blacklist in adaway/adguard open.oneplus.net
I received my much anticipated OnePlus 6T yesterday. Unboxed it, tapped "Start" button. Scanned through both "Agreements," turned it off, boxed it up, got an RMA and shipped it back. I'm no attorney, I'm a broadcast engineer, but in my job I have to navigate the whole alphabet soup of government agencies red tape so I've learned some "legalese." I' returned the 6T because of the language in the "Agreements". When you tap "I agree" to both, then activate and use the device, your granting OnePlus access to anything on the device or networks on which it connects (condensed Reader's Digest version). Like everybody in the broadcast business I have "a lot of irons in the fire," I make notes about projects and ideas on my phone. There's no way I'm giving anyone permission to cherry pick my creativity or access to my company & networks proprietary information. I'm offering this as my personal observation on this forum and suggest anyone who is just receiving theirs new, read the legalese very carefully before you tap "I Agree."
Who the **** reads those? ?
Still why I don't buy any device that doesn't have Lineage support... However what are you going to replace it with? Going to go buy another flagship? Have you glanced through other's privacy policies? This stuff is pretty boiler plate at this point, it's CYA. Not that I'm defending it, because it shouldn't be like that, but in today's "sue happy world", and "everything needs to be connected", guess what? The solution would be just to remove this these services, there are tons of posts of which OnePlus services to remove if you want to stay on OOS and protect your privacy.
So back to the replacement, lets take a Samsung, those are popular....., have you glanced at their privacy policy, because it's similar link
I didn't go over entirely, and I'm sure there's more details, but I'm guessing OnePlus's blurb, looked something similar to this (From Samsung's Website):
In addition to the information you provide, we may collect information about your use of our Services through software on your device and other means. For example, we may collect:
Device information - such as your hardware model, IMEI number and other unique device identifiers, MAC address, IP address, operating system versions, and settings of the device you use to access the Services.
Log information - such as the time and duration of your use of the Service, search query terms you enter through the Services, and any information stored in cookies that we have set on your device.
Location information - such as your device’s GPS signal or information about nearby WiFi access points and cell towers that may be transmitted to us when you use certain Services.
Voice information - such as recordings of your voice that we make (and may store on our servers) when you use voice commands to control a Service. (Note that if we work with a third-party service provider that provides speech-to-text conversion services on our behalf. This provider may receive and store certain voice commands.)
Other information about your use of the Services, such as the apps you use, the websites you visit, and how you interact with content offered through a Service.
Information from third-party sources
We may receive information about you from publicly and commercially available sources (as permitted by law), which we may combine with other information we receive from or about you. We also may receive information about you from third-party social networking services when you choose to connect with those services.
I'm not new to android or privacy by any means.
This kind of obscure language is no mistake or ctrl c/v standard.
All of these are poored over by lawyers on mass.
.
It is for this reason I exclusively run custom rims & mods and a majority of my devices are root/xposed with multiple layers of privacy in mind.
.
There used to be a much bigger crowd of developers and possibilities...
But we seem to be a dying breed.
.
I'm deeply saddened at the lack of true device level privacy or the concern for it.
And no
You'll not catch me trusting Google or an oem.
I barely trust open source.
.
Any links to further improve safety security and privacy on an Android device would be appreciated
If you think what the 6T collects is bad wait till you hear about Google.. Android is just a glorified data collection OS.. All they care about is profiling from us and learning everything to target ads and sell to 3rd parties after all Google is an Ad company.. If you want privacy compile AOSP and use MicroG avoid all Google services and use as much FOSS apps as possible.
---------- Post added at 10:35 PM ---------- Previous post was at 10:32 PM ----------
OhioYJ said:
Still why I don't buy any device that doesn't have Lineage support... However what are you going to replace it with? Going to go buy another flagship? Have you glanced through other's privacy policies? This stuff is pretty boiler plate at this point, it's CYA. Not that I'm defending it, because it shouldn't be like that, but in today's "sue happy world", and "everything needs to be connected", guess what? The solution would be just to remove this these services, there are tons of posts of which OnePlus services to remove if you want to stay on OOS and protect your privacy.
So back to the replacement, lets take a Samsung, those are popular....., have you glanced at their privacy policy, because it's similar link
I didn't go over entirely, and I'm sure there's more details, but I'm guessing OnePlus's blurb, looked something similar to this (From Samsung's Website):
In addition to the information you provide, we may collect information about your use of our Services through software on your device and other means. For example, we may collect:
Device information - such as your hardware model, IMEI number and other unique device identifiers, MAC address, IP address, operating system versions, and settings of the device you use to access the Services.
Log information - such as the time and duration of your use of the Service, search query terms you enter through the Services, and any information stored in cookies that we have set on your device.
Location information - such as your device’s GPS signal or information about nearby WiFi access points and cell towers that may be transmitted to us when you use certain Services.
Voice information - such as recordings of your voice that we make (and may store on our servers) when you use voice commands to control a Service. (Note that if we work with a third-party service provider that provides speech-to-text conversion services on our behalf. This provider may receive and store certain voice commands.)
Other information about your use of the Services, such as the apps you use, the websites you visit, and how you interact with content offered through a Service.
Information from third-party sources
We may receive information about you from publicly and commercially available sources (as permitted by law), which we may combine with other information we receive from or about you. We also may receive information about you from third-party social networking services when you choose to connect with those services.
Click to expand...
Click to collapse
Lineage also collects weird data like what device you installed on, Carrier etc.. Not sure why it needs this but I don't run it for that reason.
nima0003 said:
Who the **** reads those?
Click to expand...
Click to collapse
people who can read
Lebrun213 said:
people who can read
Click to expand...
Click to collapse
Did you return yours?
liam_davenport said:
If you think what the 6T collects is bad wait till you hear about Google.. Android is just a glorified data collection OS.. All they care about is profiling from us and learning everything to target ads and sell to 3rd parties after all Google is an Ad company.. If you want privacy compile AOSP and use MicroG avoid all Google services and use as much FOSS apps as possible.
---------- Post added at 10:35 PM ---------- Previous post was at 10:32 PM ----------
Lineage also collects weird data like what device you installed on, Carrier etc.. Not sure why it needs this but I don't run it for that reason.
Click to expand...
Click to collapse
So they can get an idea of which devices to develop for and their user base.
liam_davenport said:
Lineage also collects weird data like what device you installed on, Carrier etc.. Not sure why it needs this but I don't run it for that reason.
Click to expand...
Click to collapse
As soon as you install Lineage it asks if you want to share / participate in this program? You don't have to share this information. If you overlooked it the user can disable this sharing in the settings. They don't try and hide it at all.
I also don't know of any Lineage builds / trees that are hidden unlike other ROMs that are popular. So everything is out in the open.
Lineage has always been my first choice, so maybe I'm biased?
Caltinpla said:
Did you return yours?
Click to expand...
Click to collapse
custom OS and MicroG
got rid of oneplus & google spyware without loosing fonctionality (except fingerprint reader obviously)
Lebrun213 said:
custom OS and MicroG
got rid of oneplus & google spyware without loosing fonctionality (except fingerprint reader obviously)
Click to expand...
Click to collapse
So, you really believe custom roms and other phone makers don't spy on you? Good luck with that!!!
Caltinpla said:
So, you really believe custom roms and other phone makers don't spy on you? Good luck with that!!!
Click to expand...
Click to collapse
If you think custom roms (AOSP) are spying on you you're on the wrong website
Intrusive TOS suck big time, but, unfortunately, if you have a email address or cell phone, use the internet in any way shape or form, forget about any sense of privacy..
I make sure I dont do anything "iffy" on my cell phone; never use it for banking or bill paying, so I feel a little less paranoid, but there is really NO WAY, aside from not having an email address/cell phone/internet connection to keep your life from some prying eyes..
Lebrun213 said:
custom OS and MicroG
got rid of oneplus & google spyware without loosing fonctionality (except fingerprint reader obviously)
Click to expand...
Click to collapse
Root and block everything.
Caltinpla said:
So, you really believe custom roms and other phone makers don't spy on you? Good luck with that!!!
Click to expand...
Click to collapse
i trust open source, if there is a doubt with the code, anyone can check (not saying everyone does that).
Google service, oneplus, etc ... on the other hand are completely locked and you have no way to see what it really does.
Btw, i switched because of the much better battery and performance i get without these spyware constantly running, not much about privacy... Still use google.com everyday so they aren't missing anything :laugh:
The only one you have to agree to is the first one. The rest you can decline and still setup your phone. I agree with Micro G but, if go a step further and install NanoDroid. It comes with replacement Google apps and GPS and all sorts of things to disconnect you from Google but have a functioning phone.
Sent from my OnePlus6T using XDA Labs
liam_davenport said:
If you think what the 6T collects is bad wait till you hear about Google.. Android is just a glorified data collection OS.. All they care about is profiling from us and learning everything to target ads and sell to 3rd parties after all Google is an Ad company.. If you want privacy compile AOSP and use MicroG avoid all Google services and use as much FOSS apps as possible.
---------- Post added at 10:35 PM ---------- Previous post was at 10:32 PM ----------
Lineage also collects weird data like what device you installed on, Carrier etc.. Not sure why it needs this but I don't run it for that reason.
Click to expand...
Click to collapse
False. Google does not sell user data to third parties, or to anyone. It's never even been considered. Unfortunately due to a mix of people not understanding how technology works and assuming that every "tech company" operates in exactly the same way this particular piece of fake news just won't die. There are plenty of terrible things they actually do nowadays, better to focus on those anyway
tech_head said:
Root and block everything.
Click to expand...
Click to collapse
so much this
every manufacturer has some sort of logging / reading data.
root, and monitor everything that leaves your phone - block apk's that shouldnt be running - or create firewall rules in the iptables to block applications from accessing certain sites / internet.
partcyborg said:
False. Google does not sell user data to third parties, or to anyone. It's never even been considered. Unfortunately due to a mix of people not understanding how technology works and assuming that every "tech company" operates in exactly the same way this particular piece of fake news just won't die. There are plenty of terrible things they actually do nowadays, better to focus on those anyway
Click to expand...
Click to collapse
This argument would make Kellyanne Conway proud. Yes, Google does not sell user data directly. But it does so indirectly every day it is in business. By allowing advertisers to target ever smaller slices of the population and track them across websites they ARE providing advertisers with user data.
GroovyGeek said:
This argument would make Kellyanne Conway proud. Yes, Google does not sell user data directly. But it does so indirectly every day it is in business. By allowing advertisers to target ever smaller slices of the population and track them across websites they ARE providing advertisers with user data.
Click to expand...
Click to collapse
A truly moronic reply that shows you have no idea what you are talking about. Have your even seen the advertising interface to Google's ad products? Obviously not because you just described Facebook's, not Google's! ?????
Assuming I was an expert user who knew every single Note 9 device option, samsung account setting, and google account setting.... If I were to configure EVERY single one of them to limit the data it collects, set every app permission to be in its most restricted state, disable every usage access setting, and configured my google and samsung accounts to be the most limited data collection accounts as possible, .... it is even possible to get to IOS level privacy on my Note 9? Is Android just sending everything it can back to google's servers as possible, such as when i turn the phone on, when i walk, move, open an app, browse the web, or whatever? I know some have already setup network analyzers to see the traffic going out, but I can never tell what configuration they do that with. I want to know if getting the privacy to IOS levels is impossible, or is it just a matter of very careful configuration....?
It's impossible. I'm not a fan of Apple devices, but I applaud them from a business perspective and that trickles down from the fundamental ideals of Steve Jobs.
Numerous studies show that Google sucks up information 10x as much as Apple which relies in differential data that doesn't exactly pinpoint the person, but more so the general interests of the person. Google identifies the person and their location. Unless you're walking around with your phone off or granting no permissions to every app, you can't match the security of an Apple device. The doesn't only include Google. Remember we have to deal with our specific manufacturers that are collecting data on us as well since Android is open source. So we just have to hope Googles intentions are good or move to an Apple device.
brainysmurf said:
Assuming I was an expert user who knew every single Note 9 device option, samsung account setting, and google account setting.... If I were to configure EVERY single one of them to limit the data it collects, set every app permission to be in its most restricted state, disable every usage access setting, and configured my google and samsung accounts to be the most limited data collection accounts as possible, .... it is even possible to get to IOS level privacy on my Note 9? Is Android just sending everything it can back to google's servers as possible, such as when i turn the phone on, when i walk, move, open an app, browse the web, or whatever? I know some have already setup network analyzers to see the traffic going out, but I can never tell what configuration they do that with. I want to know if getting the privacy to IOS levels is impossible, or is it just a matter of very careful configuration....?
Click to expand...
Click to collapse
No fanboi of any company/mfg/OS,but,they all do virtually the same thing with your personal information/usage habits.
The differences are mere semantics & they collect/sell user information.
The following is a 2yr old article,but,I'm guessing the points they make still hold true:
https://decentralize.today/apple-vs...company-handles-your-data-better-a7022bd452b1
Arguably,Android users can control their sharing of personal data usage,but,that has its caveats,such as limited functionality on some apps/etc...
Best advice I can give is the following:
1) Carefully comb through every setting on the phone,most are self-explanatory.
2) Go to every apps internal settings & the phone's setting under SETTINGS > APPLICATIONS & fine tune as best as possible.
Even after all of that,Google/Samsung (or most other mfgs) have settings that are inaccessible or cannot change (greyed-out),so,you're still not in the clear as far as total control/privacy.
This is one of the major attractions to rooting/ROMs for your Android device.
A rooted &/or ROM'd Samsung device is the ideal for gaining control of privacy/permission control,but,it breaks KNOX & Samsung Pay,no going back once rooted,even if restored to a stock state.
You gain more granular control of such permissions & if you want to go all-in on privacy, a ROM such as Lineage gives you the best you can hope for in personal security/privacy. A brief summary,but,that's the gist.
Outside of root/ROMs,If privacy/security is of utmost importance,I'd dare say a Blackberry would be a decent choice. I myself only briefly owned a Blackberry (Android device),so,I can't attest to how private/secure you personal usage/data is,but,I've rarely,if ever,heard of any major concerns in the matter w/Blackberry.
@brainysmurf
Another step you can take to regain some control of your Samsung device is using a package disabler app & the nice thing about these is no root access is required (AppFreeze/Package Disabler Pro/Adhell3).
https://play.google.com/store/apps/details?id=com.wakasoftware.appfreezer&hl=en_US
https://play.google.com/store/apps/details?id=com.powermanager.batteryaddon&hl=en
https://amp.reddit.com/r/GalaxyS8/comments/8nmrfq/how_to_install_adhell_3_a_video_guide/
Use the XDA site search feature or Google for more info on the above mentioned disabler apps.
You can also use ADB Commands to disable apps as well,but,please read the following link carefully before proceeding:
https://www.xda-developers.com/uninstall-carrier-oem-bloatware-without-root-access/
I have never had an apple device, But I would like to say that android as a system is opensource and the google apps that are put on top are non opensource and are probably where you lose your privacy but as a system it is transparent which attracts devs and rooting (i.e. getting access to the system partitions) is what makes android so customizable. Versus apple which you have to blind trust ios and trust that these options are 100% do what they say..
Yes it is more secure because it is closed source but at the same time For actual privacy you never know. Saying that how do you get your privacy with android needs some setup which koliosis did good explaining. But the difference between the two OSs I believe is because of (opensource)ness of android the amout of customizablity with android is really deep. To which I believe if you invest good time researching, you can get a way better state than iOS. Again not an expert but putting my opinion
For the rest
Koliosis said it all.
that_same_guy said:
Yes it is more secure because it is closed source.
Click to expand...
Click to collapse
Have to correct that one. That is a myth spread by some big companies in order try to gain some customers over from the cheaper/free competition. In reality, open vs. closed source has no other effect on how secure the result is than with open source there can be more eyes looking at the code (for both good and bad intentions). As an example, simply compare a decent linux distro (from which only similar applications are installed that would come with corresponding Windows installation) to M$ Windows. Open source (and free at that) wins many times over in overall security (while neither is free from issues).
The biggest effect on the code quality (thus often also how secure it is) is on how many (real) experts work on it, and this in turn depends on popularity (open source) and/or money (company's/organization's income and policies/ideals). For the last part 'policies/ideals' just compare M$ and Apple, both have the money to throw at development if they choose to do so; former makes mostly insecure crap, latter makes half-decent stuff. (And note, I'm not a fanboy of either, or pretty much of any company, except one little local camera shop, so do read the previous with some weight on that "half-" before the "decent".)
As for small input on the privacy squeezing on Samsung devices:
I have so far managed to avoid to use a samsung-account, and that might help a tiny bit, although some features of the phone are then not working, but mostly useless features. Though there are some seemingly useful features that require Samsung-account for some weird reason, but I've manage to live without them. Like the "protected folder" (or whatever it is in English), why on earth would that need an account or anything external for that matter?!?
(Well, technically, I do have a Samsung-account, as that was required to get the phone cheaper, but after that order, I've not used that account anywhere.)
ErebusRaze said:
It's impossible. I'm not a fan of Apple devices, but I applaud them from a business perspective and that trickles down from the fundamental ideals of Steve Jobs.
Numerous studies show that Google sucks up information 10x as much as Apple which relies in differential data that doesn't exactly pinpoint the person, but more so the general interests of the person. Google identifies the person and their location. Unless you're walking around with your phone off or granting no permissions to every app, you can't match the security of an Apple device. The doesn't only include Google. Remember we have to deal with our specific manufacturers that are collecting data on us as well since Android is open source. So we just have to hope Googles intentions are good or move to an Apple device.
Click to expand...
Click to collapse
This actually goes to my point... If indeed I did remove all permissions from all apps, does this mean Android tracking would be completely disabled? Or if I removed google play services, or disabled it, or removed all permissions from it? Technically, would that give it an IOS level of privacy? I'm just wondering if the OS itself is prone to just phoning home and letting it know everything I'm doing, or if it's possible at all to tame it....
Thanks for your repsonse.
ErebusRaze said:
It's impossible. I'm not a fan of Apple devices, but I applaud them from a business perspective and that trickles down from the fundamental ideals of Steve Jobs.
Numerous studies show that Google sucks up information 10x as much as Apple which relies in differential data that doesn't exactly pinpoint the person, but more so the general interests of the person. Google identifies the person and their location. Unless you're walking around with your phone off or granting no permissions to every app, you can't match the security of an Apple device. The doesn't only include Google. Remember we have to deal with our specific manufacturers that are collecting data on us as well since Android is open source. So we just have to hope Googles intentions are good or move to an Apple device.
Click to expand...
Click to collapse
Yeah I saw those same studies. And they never seem to provide specific configuration data. For instance, the study showing that android gathers as much as 10x more data specifically mentioned that Chrome was constantly phoning home sending data. However, what if the user didn't log into their chrome account? I think it's much more limited in that case... Or what if the user disabled chrome, and perhaps all google apps? Is it android doing the privacy damage, or google apps/play services? If I disabled those, or removed all permissions from those, would it be equivalent to IOS? I'm an engineer in the business working at a major silicon valley company, and even with high expertise in the design of these things I'm finding it impossible to get basic understanding of what it actually going on. It is either trying to read through legalize of privacy agreements, or reading blogs and studies with claims such as 10x more data, while not providing specifics...
1) Introduction
I recently acquired a Find X3 Pro Lensman edition and wanted to share the few tweaks that I operated on it, seeing that some people were also relying on importation for the Find X3 Pro.
As I used ADB to operate the majority of the changes you'll see next, I invite you to follow the XDA guide to install it, or the official Android documentation.
For a quick resume of the command lines that will be used, you can visit this link to have a quick explanation on what they are doing.
Don't forget to activate the dev options and the USB debugging before throwing yourself in the debloating process (also know that ColorOS might deactivate by itself for security reasons, so you might have to reactivate it from time to time, but after some reactivation, ColorOS will let it stay, strange behavior, but be aware that it can happen).
2) Debloat list
These packages will be uninstalled through the ADB command line
Code:
adb shell pm uninstall -k --user 0 your.package.name
Basic stuff (that you can replace for better options)
com.heytap.music
com.heytap.yoli
com.finshell.wallet
com.oplus.pay
com.heytap.browser
com.sohu.inputmethod.sogouoem
com.coloros.calendar
com.coloros.weather.service
com.android.contacts
com.nearme.instant.platform
com.iflytek.speechsuite
com.heytap.quicksearchbox
com.opos.ads
com.oplus.cosa
com.android.mms * (setting another default SMS/MMS app will result in warning prompts everytime you try to send something with the replacement app, to reinstall it, use the following command:
Code:
adb shell cmd package install-existing com.android.mms
)
Breeno related packages (ColorOS voice assistant, only works with CN language)
com.coloros.ocrscanner
com.coloros.directui
com.heytap.speechassist
com.coloros.assistantscreen
com.coloros.colordirectservice
com.coloros.floatassistant
com.oplus.ovoicemanager.wakeup
Don't forget to install replacement apps for contacts, phone, SMS and browser.
You can uninstall most other of the OPPO proprietary apps or CN bloat apps with a basic uninstallation directly performed from your smartphone, and most of them are restorable through ColorOS (Parameters > Apps > Restore deleted system apps) if you realize you've done something wrong.
3) Various tips and observations
From my personal experience, the PEEM00 units cannot use a third-party launcher consistently, even when set up through ADB. I tried to add various launchers (Nova, Nothing, Lawnchair 2, etc.), but they never appeared in the default launcher selection list. I managed to trick the system with
Code:
adb shell cmd package set-home-activity "com.teslacoilsw.launcher"
, but Nova wasn't able to fully take over and the "back home" gesture was alternating between ColorOS launcher and Nova.
I've thought about unlocking the bootloader to push Nova (or any other launcher) as a system app, but it might be an overkill solution.
OPPO is having a very angry "energy management" process, so you'll need to manually change the optimisation for the apps you want to persist in the background (personally, I changed pretty much everything to "Always ask"). You'll find the app list in Battery > Advanced parameters > Optimize battery usage.
If you want to deactivate the use of 5G bands and only use 4G+ and lower bands, you'll have to select the corresponding optimization recommendation in Settings > Battery > * recommended optimizations (top banner) > Disable 5G.
To add Google services, you'll have to load the Play Store with the com.android.vending package. You'll find it easily across the web, just make sure you download it from a trusted provider (I installed mine from APK Mirror).
OPPO doesn't seem to have released the sources for the Find X3 Pro to this day, which is a little disappointing, as I'd really like to see crDroid on it, but the smartphone in itself is quite enjoyable to use as is (moreover, the microscope lens wouldn't be usable this easily, as the OnePlus 9 Pro camera app is already requiring proprietary packages and vending folders to work properly, and it seems to use the same requirements and system packages as its OPPO brother).
To easily find the packages names, I highly recommend using Solid Explorer to check the system apps list directly on the Find X3 Pro while you debloat through your terminal on the side.
I'll surely edit this post as I find new items to add, modify, etc. Feel free to suggest your own modifications, I'll gladly look into it.
Redacted under update PEEM00FLU_11_C.08, some details might change depending on your own version (available packages, paths, etc.).
Edit 1 (22/06/2022) : added some packages in the debloat list and separated the Breeno (CN voice assistant) related ones from the general ones.
Edit 2 (26/06/2022) : added more packages and reinstalled com.android.mms, added a few tips.
Thanks for this. will try debloating my PEEM00
For some weird reason, when I uninstalled Quick Search Box (com.heytap.quicksearchbox) my PEEM00's home launcher now has this strange icon in the left (probably related to quick search box or pictorial, iirc). It doesn't let me swipe to the left (lol) and the animation of the swipe is gone. It actually doesn't bother me, because untill now the phone is working properly
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
Roveri said:
For some weird reason, when I uninstalled Quick Search Box (com.heytap.quicksearchbox) my PEEM00's home launcher now has this strange icon in the left (probably related to quick search box or pictorial, iirc). It doesn't let me swipe to the left (lol) and the animation of the swipe is gone. It actually doesn't bother me, because untill now the phone is working properly
View attachment 5649423
Click to expand...
Click to collapse
It's because of the presence of the main Google App.
Jaxom84 said:
It's because of the presence of the main Google App.
Click to expand...
Click to collapse
I uninstalled it and it worked like a charm, many thanks ! Btw, do you know if there's any way to know the package's description? There are some packages that look suspicious to me, and I'm wondering if it's safe to uninstall them (I know that there are many threads about debloating Find X3 Pro, but some of them didn't work for me)
Roveri said:
I uninstalled it and it worked like a charm, many thanks ! Btw, do you know if there's any way to know the package's description? There are some packages that look suspicious to me, and I'm wondering if it's safe to uninstall them (I know that there are many threads about debloating Find X3 Pro, but some of them didn't work for me)
Click to expand...
Click to collapse
Think that you may have to reinstall it if you need Google Assistant or Lens.
I'd recommend you to search on the web with their names, you'll usually find your answer easily, but yes, some packages are too Chinese to be widely known outside of this country and you might struggle finding solid clues for some of them.
Jaxom84 said:
Think that you may have to reinstall it if you need Google Assistant or Lens.
I'd recommend you to search on the web with their names, I'll usually find your answer easily, but yes, some packages are too Chinese to be widely known outside of this country and you might struggle finding solid clues for some of them.
Click to expand...
Click to collapse
Yeah, Lens need the Google app to work, I've installed it again and the icon comes back whenever I restart my phone, no clue on this, but ok, I can handle it. I'll be searching those packages on the web, and if I have any doubts or any suggestions to you, I'll be here. Thanks for your advice
Roveri said:
Yeah, Lens need the Google app to work, I've installed it again and the icon comes back whenever I restart my phone, no clue on this, but ok, I can handle it. I'll be searching those packages on the web, and if I have any doubts or any suggestions to you, I'll be here. Thanks for your advice
Click to expand...
Click to collapse
The strange thing is that you can normally disable the Discover panel on other phones (which completely hides the option), but I can't manage to find the option on the PEEM00 (be it in the Google app or the phone's settings).
Jaxom84 said:
1) Introduction
I recently acquired a Find X3 Pro Lensman edition and wanted to share the few tweaks that I operated on it, seeing that some people were also relying on importation for the Find X3 Pro.
As I used ADB to operate the majority of the changes you'll see next, I invite you to follow the XDA guide to install it, or the official Android documentation.
For a quick resume of the command lines that will be used, you can visit this link to have a quick explanation on what they are doing.
Don't forget to activate the dev options and the USB debugging before throwing yourself in the debloating process (also know that ColorOS might deactivate by itself for security reasons, so you might have to reactivate it from time to time, but after some reactivation, ColorOS will let it stay, strange behavior, but be aware that it can happen).
2) Debloat list
These packages will be uninstalled through the ADB command line
Code:
adb shell pm uninstall -k --user 0 your.package.name
Basic stuff (that you can replace for better options)
com.heytap.music
com.heytap.yoli
com.finshell.wallet
com.oplus.pay
com.heytap.browser
com.sohu.inputmethod.sogouoem
com.coloros.calendar
com.coloros.weather.service
com.android.contacts
com.nearme.instant.platform
com.iflytek.speechsuite
com.heytap.quicksearchbox
com.opos.ads
com.oplus.cosa
com.android.mms * (setting another default SMS/MMS app will result in warning prompts everytime you try to send something with the replacement app, to reinstall it, use the following command:
Code:
adb shell cmd package install-existing com.android.mms
)
Breeno related packages (ColorOS voice assistant, only works with CN language)
com.coloros.ocrscanner
com.coloros.directui
com.heytap.speechassist
com.coloros.assistantscreen
com.coloros.colordirectservice
com.coloros.floatassistant
com.oplus.ovoicemanager.wakeup
Don't forget to install replacement apps for contacts, phone, SMS and browser.
You can uninstall most other of the OPPO proprietary apps or CN bloat apps with a basic uninstallation directly performed from your smartphone, and most of them are restorable through ColorOS (Parameters > Apps > Restore deleted system apps) if you realize you've done something wrong.
3) Various tips and observations
From my personal experience, the PEEM00 units cannot use a third-party launcher consistently, even when set up through ADB. I tried to add various launchers (Nova, Nothing, Lawnchair 2, etc.), but they never appeared in the default launcher selection list. I managed to trick the system with
Code:
adb shell cmd package set-home-activity "com.teslacoilsw.launcher"
, but Nova wasn't able to fully take over and the "back home" gesture was alternating between ColorOS launcher and Nova.
I've thought about unlocking the bootloader to push Nova (or any other launcher) as a system app, but it might be an overkill solution.
OPPO is having a very angry "energy management" process, so you'll need to manually change the optimisation for the apps you want to persist in the background (personally, I changed pretty much everything to "Always ask"). You'll find the app list in Battery > Advanced parameters > Optimize battery usage.
If you want to deactivate the use of 5G bands and only use 4G+ and lower bands, you'll have to select the corresponding optimization recommendation in Settings > Battery > * recommended optimizations (top banner) > Disable 5G.
To add Google services, you'll have to load the Play Store with the com.android.vending package. You'll find it easily across the web, just make sure you download it from a trusted provider (I installed mine from APK Mirror).
OPPO doesn't seem to have released the sources for the Find X3 Pro to this day, which is a little disappointing, as I'd really like to see crDroid on it, but the smartphone in itself is quite enjoyable to use as is (moreover, the microscope lens wouldn't be usable this easily, as the OnePlus 9 Pro camera app is already requiring proprietary packages and vending folders to work properly, and it seems to use the same requirements and system packages as its OPPO brother).
To easily find the packages names, I highly recommend using Solid Explorer to check the system apps list directly on the Find X3 Pro while you debloat through your terminal on the side.
I'll surely edit this post as I find new items to add, modify, etc. Feel free to suggest your own modifications, I'll gladly look into it.
Redacted under update PEEM00FLU_11_C.08, some details might change depending on your own version (available packages, paths, etc.).
Edit 1 (22/06/2022) : added some packages in the debloat list and separated the Breeno (CN voice assistant) related ones from the general ones.
Edit 2 (26/06/2022) : added more packages and reinstalled com.android.mms, added a few tips.
Click to expand...
Click to collapse
I removed most of the recomended list, but now there is an issue with calls, people I'm calling can't hear me some times and need to make the call again, normally second time I call they can hear me. do you know if any of the removed applications can cause this?
jemadrid said:
I removed most of the recomended list, but now there is an issue with calls, people I'm calling can't hear me some times and need to make the call again, normally second time I call they can hear me. do you know if any of the removed applications can cause this?
Click to expand...
Click to collapse
Never experienced such issue, sorry.
Jaxom84 said:
I've thought about unlocking the bootloader to push Nova (or any other launcher) as a system app, but it might be an overkill solution.
Click to expand...
Click to collapse
how would you unlock the bootloader? I tried to do that a few months ago and i couldn't find a way
demonicCookie said:
how would you unlock the bootloader? I tried to do that a few months ago and i couldn't find a way
Click to expand...
Click to collapse
Strange, I have access to it in the developer's settings.
Jaxom84 said:
Strange, I have access to it in the developer's settings.
Click to expand...
Click to collapse
Did you actually try doing it? Cos the unlock device option doesn't really do anything. I selected it but when I try to unlock it it doesn't work.
demonicCookie said:
Did you actually try doing it? Cos the unlock device option doesn't really do anything. I selected it but when I try to unlock it it doesn't work.
Click to expand...
Click to collapse
I'll surely give it a try by the end of the week, as the kernel's source for the PEEM00 should get released soon (if the OPPO-source owner told me the truth). Count on me to tell you as soon as I can.
Jaxom84 said:
I'll surely give it a try by the end of the week, as the kernel's source for the PEEM00 should get released soon (if the OPPO-source owner told me the truth). Count on me to tell you as soon as I can.
Click to expand...
Click to collapse
So have u unlocked your device now they source code released
burhanhanzada199888 said:
So have u unlocked your device now they source code released
Click to expand...
Click to collapse
Unlocked without issues, you did well to remind me.
so is it possible to root now is there any way
burhanhanzada199888 said:
so is it possible to root now is there any way
Click to expand...
Click to collapse
Maybe soon, I'd gladly undergo some tests for crDroid or PixelExperience.
oh ok also can u please guide to where to start to build own rom previously i have expereince of installing custom rom and custom recovery but not actually making it also i have seen some guides and videos but they saying i need 300 gb of space is it true or is there any alternative i really want to try this i have programming experience
Jaxom84 said:
Unlocked without issues, you did well to remind me.
Click to expand...
Click to collapse
how u unlocked like what command of adb u run and r u able to boot into bootloder?
I've tried everything possible to stop vivos spyware, namely cim.vivo.pushservice and com.vivo.abe (plus maybe some others but the main one clearly is push service - whatever you do interacting with your phone shortly after push service tries (because I blocked it's internet access with Adguard) to contact some Chinese servers.
Edit: For app ops to work reliably you need to debloat com.vivo.devicereg first. Also remove com.vivo.abe and other apps for best results first - see here for list: https://forum.xda-developers.com/t/...al-battery-drain.4544851/page-5#post-88459025
You cannot debloat it, you cannot freeze it, there is no normal way to remove it from starting as you cannot simply restrict it from running as it runs on user 1000.
However what you can do, though only with app ops is to simply remove it access to any system content by providing fake zero content (ignore). Actual denying is also not possible.
I'm attaching a screenshot on how to set it up and I don't know which actual setting works, but something does work because for the first time I'm using this device it's not trying to connect to the internet anymore. This should also substantially improve battery life.
{
"lightbox_close": "Close",
"lightbox_next": "Next",
"lightbox_previous": "Previous",
"lightbox_error": "The requested content cannot be loaded. Please try again later.",
"lightbox_start_slideshow": "Start slideshow",
"lightbox_stop_slideshow": "Stop slideshow",
"lightbox_full_screen": "Full screen",
"lightbox_thumbnails": "Thumbnails",
"lightbox_download": "Download",
"lightbox_share": "Share",
"lightbox_zoom": "Zoom",
"lightbox_new_window": "New window",
"lightbox_toggle_sidebar": "Toggle sidebar"
}
You need to activate system and system framework apps to show it. By default they are hidden.
It's quite crazy how many times different vivo apps access location and contacts. Well enough other apps are pretty annoying in accessing fine location so app ops is a great tool to cut down on requests by apps (yes usually a power manager would restrict the apps a bit, but as we have to remove vivo.pem to receive notifications app ops is the answer)
If you setup an island with islands app, it's pretty crazy how fast the vivo system starts requesting access to loads of stuff. Maybe because I forbid internet access to the vivo spyware it kept on going crazy? Well clearly by default this system send everything, and yeah really everything straight to Chinese servers when it comes to location, contacts, messages, phone log, system settings and so on. You cannot even deny this but it's great that android now provides the ignore function which will return empty information instead.
This one is especially terrifying. I guess the service gathers all the data it gives to push service to send to China... Put it on ignore straight away.
App ops is available on Google play, installation needs shizuku too which is a bit complicated and needs restarting after reboot of system. However most settings should survive a reboot (I have to try and monitor this), best make a backup and yeah totally worth it to buy the full version. There is no single other app that I tried which worked and the auto restore feature is only available in full version. Also some more other stuff.
I'm thinking if I should remove all accounts and try the device owner mode. Clearly this will be the first thing I will do on any new phone or hard reset. Put shizuku as owner so it can autostart
App Ops - Permission manager - Apps on Google Play
Manage app permission with App Ops (require root or adb)
play.google.com
Edit/Update.
Vivo using system user 1000 is problematic because somehow you cannot set some/many permissions per app but only per user. It's hard to see when this applies and when not.
So both of this apps which are core parts of the spyware armada will share/influence the android system permission on location. Clearly debloat would be better but impossible without root.
You cannot directly set it here - and that's the problem. It's even not possible in the log to tell which user 1000 app requested location as somehow it will always show android system...
Some things I do not know yet - because I didn't use it long enough.
Does Vivo rotten oranges tries to overwrite the settings? MIUI seemingly does and there is a restore mode especially for it.
Some reviews mention that the backup/import option does not work for System apps. I don't know if this was fixed or not (seems to have been okay 2-3 years ago - maybe downgrade if that is so).
Do you need the app? No you could do this manually or even write a batch as its all app ops set commands. But that would be way way more complicated than using the app (and the free version does most things already).
I hope by seeing the body sensors log I managed to eliminate the offending apps like Phone that accessed them and cause the phone to lose battery while on the go like crazy.
Which apps should you set to ignore everything?
Well foremost those that we would all like to uninstall and remove but cannot.
com.vivo.abe, push notifications service, com.android.phone (and use a different dialler app instead - the default phone must be spyware infused to the top as it becomes active all of the time without being in use and replaced in my case with google phone already), the numbermark stuff, vivo locationservices,
Youtube Revanced - Fine Location - should you use it. I don't know why it keeps on requesting this all the time. Put it on ignore or Deny to save battery (seems to be a bit badly programmed)
Multi Device Connectivity (don't know what this thing does, but it requests loads of data/wakeups and so on - maybe part of the spyware suite? For Sure remove it from Fine Location)
AiEnginge,Aiservices.
Controversial: Should you remove location access to Android System? I think it can save battery but not sure if some apps break some functionality?
com.vivo.devicereg (this one is quite active too - I'm not sure if we should put everything on ignore here too).
And yeah - I'm 99.99% positive the China Spyware is tracking your location 100% of the time. So it's not only some metadata, contacts, call data, messages, clipboard content and app filtering - but also your location. Now is this collected by Vivo for its own good, or for the Chinese government? I don't care I don't want either and I pretty much thing the way it works is several services gathering all that data - and most like vivo push notifications (haha fitting name) pushing this info to Chinese servers.
And yeah - seeing how many access rights are given to various system apps is not normal! I compared this to my Huawei P30 Pro and Galaxy S7 and both have much much less permissions given (a bit problematic as earlier Android versions aren't so detailled). Plus without app ops you don't even know about this! The stock permission management just hides all the system framework apps so you never know!
BTW - If you identify any app that requests a lot of stuff like location or contacts and you do not know why it should - try to debloat it because that's always the better solution. com.vivo.multinlp - Vivo Location Services can be debloated.
Same for Multi Device Connectivity: com.vivo.connbase
The rest of the apps above (except phone which breaks functionality if debloated) - cannot be debloated. So that's when you use App Ops instead. It's always safer using app ops vs fully uninstalling/disabling an app from a standpoint about breaking something. However for battery use most likely uninstalling via adb is the better solution. I decided to remove those two apps, but a more conservative approach is to simply remove their access to sensitive data.
Someone knows why google play services needs access to body sensors?
I'm attaching my current profile - not sure if you can import it without having the same debloat level as on my phone (which is pretty extensive - I have 77 apps uninstalled and 11 disabled. Yeah and most of that are services/system apps (very few a pre installed user apps).
Need to remove the txt ending on the backup to import.
Oh I think the reviews are right, the backup doesn't include settings for system apps. That a bummer. Kinda makes the backup/import function useless.
Now it clearly would make more sense if one could create a huge bash/batch file to do all of these app ops commands. I clearly don't know how to do that simply? Yeah finding out what changed is possible with dumpsys....
Battery life improved loads on first try, but then somehow I managed to destroy the Bluetooth connection by removing permissions somewhere too much. Also I had the phone in vibration mode overnight which kills all notifications and is like airplane mode light.
It's really horrible software design by vivo that vibration mode kills all notifications with screen off.
The only thing to achieve actual vibration mode is turning volume down to 0. I really cannot get who can program such a lousy thing.
I don't know why but location is constantly requested by something and I highly doubt it's actually android system!
Sadly Vivo system like MIUI seems to reset the restrictions all the time. So you need shizuku running all the time to restore the settings..
Especially com.vivo.abe restores it's permissions several times daily and as soon as that happens battery life goes **** again in idle and spyware starts working again...
It's super frustrating but essentially this phone had rubbish software that isn't fixable. It can be improved as many settings aren't reset but the spyware tries everything it can to restore itself overwriting system settings all the time.
Oh and push notifications also sends out data to fixed IP addresses in China that cannot be prevented.
Location is accessed like crazy by all the spyware.
Thats the main killer because it's permanently checking location if you don't disable location system wide.
At least down from 15.000 requests to 9000 thanks to app ops.
Hi @extremecarver, any updates on this? I appreciated what you have done so far to investigate this issue.
The problem I'm facing right now is, the idle drain is too much for me. With plane mode on during 6 hour night, it lost 3%. With normal 3g-4g signal (no data), it drains about 1% per hour, sometimes 2%. That means if I go to work and let my phone sit there for a whole day without touching anything, then it will lose 8%-16%. That's crazy numbers.
I also found that, googlemap (with gps+4g) can kill battery very quickly. Usually, I drive to work in 30 mins and it drops 6%, i.e, 1% per 5 mins. With the same use, the s22 ultra drops just under 3%.
And if I use the phone normally such as web browsing, facebook, instagram, tiktok, even taking photos then it drains very very normally as other phones do.
I have the s22 ultra and I can say that the battery on s22 ultra is much better than vivo. It's understandable because it has been optimized for a year now. With the s22 ultra and with the same using pattern, I can easily get 8 hours SoT, while the vivo can barely get it to 5-6 hours.
Pretty sad because this x90 pro+ camera is better than the s22 ultra in many aspects, easier to hold in hand (s22 ultra is too hard to reach the edge of the phone and too heavy) although I don't like both curve screens. I don't have many problems with the notifications because I mainly use messenger and gmail and that's all.
So hopefully, someone can find out the way to fix those excessive battery drain or Vivo can release some updates to solve this problem in the future.
Dear All,
i'm not sure if mine could be a good solution or not but i'm using nextdns service and it basically blocks all or almost all vivo and others brand spyware without installing any apps.
it's very quick and easy to activate, just enable dns privato in network settings and write your dns resolver url.
i hope it could be helpful.
lemonade747 said:
Hi @extremecarver, any updates on this? I appreciated what you have done so far to investigate this issue.
Click to expand...
Click to collapse
Yes by removing virtually any rights on any app/service that I don't think needs it - I could solve the battery drain.
However now I cannot use the telephone to make calls (passive receving calls still works), and I seem not to be able to update to the new trial software because it isn't found.
Now the problem with App Ops is - I cannot quickly return all rights to update the software - as the backup/import function does not work with system apps.
This phone is just one thing, Crap, crap, crap, crap, crap. Not a single day I don't want to use a hammer and trash it. It's simpy virtually impossible to fix the crapware/spyware of this phone.
Svask89 said:
Dear All,
i'm not sure if mine could be a good solution or not but i'm using nextdns service and it basically blocks all or almost all vivo and others brand spyware without installing any apps.
Click to expand...
Click to collapse
No it doesn't - it can only block apps, not even some system services - and only if they connect to a website, not if they connect to an IP address!
I have written about stopping spyware with DNS services already - this stops some sending of data - but doesn't help at all when it comes to battery drain. There will still be 20.000 events or so per day (which is a crazy amount) of the china spyware logging your location (and yeah mostly high accuracy, not low accuracy), trying to connect to chinese servers and other problems that you can only discover via Shizuku.
And NextDNS is not the right solution at all. I think even Adguard is a bit more efficient for this. The best one is Rething DNS+ - it's the only app that can block all system services (but then you cannot use another app for ad filtering like Adaware/Adguard).
This menu is not accessible via settings... But it exists
Needs to be accesses via activity launcher.
Actually private DNS exists too but is hidden by Vivo like so many other privacy related settings.. this OS is so rotten they try to hide everything that improves privacy...
Likely everything you write with Vivo secure keyboard has preferential upload to China servers
(This last one is sarcasm without proof, but don't believe anything this OS tells you about privacy because logs tell you it's lying)
Some more stuff of which a lot is hidden and not accessible
Go f**k standard vivo settings menu. The only problem is the real android settings menu is missing the search function. But it's feature complete (except the stuff Vivo really removed from Android which isn't too much.. mostly they just removed it from the settings menu)
This phone is a absolute garbage. Seems vivo blocks shizuku after some days of using it.
Found a Chinese tutorial on bilibili on what to do to solve it but that doesn't work anymore either.
Now vivo Push notifications spyware tries to send again notifications at a rate of 10-20 every second...
Basically the phone is a brick now, draining battery faster and faster with pushware and Abe having restored their permissions...
Also I cannot use ADB Appcontrol anymore - as it doesn't get permission (removing/restoring permission for ACBBridge didnt help).
I also activated Force Activity Resizeable in the developer options but that didn't change a thing... ( I think this only applies to apps that cannot get the pairing code via notifications and need the code entered in splitscreen - as if you switch screen the code is renewed)
'This phone is just one thing, Crap, crap, crap, crap, crap. Not a single day I don't want to use a hammer and trash it. It's simpy virtually impossible to fix the crapware/spyware of this phone.'
Patiently waiting
extremecarver said:
This phone is a absolute garbage. Seems vivo blocks shizuku after some days of using it.
Found a Chinese tutorial on bilibili on what to do to solve it but that doesn't work anymore either.
Now vivo Push notifications spyware tries to send again notifications at a rate of 10-20 every second...
Basically the phone is a brick now, draining battery faster and faster with pushware and Abe having restored their permissions...
View attachment 5873093
Also I cannot use ADB Appcontrol anymore - as it doesn't get permission (removing/restoring permission for ACBBridge didnt help).
I also activated Force Activity Resizeable in the developer options but that didn't change a thing... ( I think this only applies to apps that cannot get the pairing code via notifications and need the code entered in splitscreen - as if you switch screen the code is renewed)
Click to expand...
Click to collapse
Thank you Vivo, keep doing it to his phone
Any updates on this @extremecarver?
I'm using this and what I see so far is the battery drain cut down to around 5% overnight (6 hours). With plane mode ON, it lost about 3% in 6 hours, not too bad for me. However, when put it there on my desk when I'm working (with 4g signal covered, no data), for 8 hours it sucked around 10%, and with wifi on that number is around 20%. My old Huawei Mate 20 and S22U can do even better than this (just around 5% without wifi, and 10-15% with wifi).
In addition, I also found that the battery drain when using GPS on this phone is too much for me. Just 1 hour and it sucked about 12% with 4G data ON.
Yes - in order to really cut the battery drain you need to remove much more permissions. The problem is that Vivo restores them - you could try to restrict that but modifying "modify restricted settings/ files" or something similar - but maybe that is how I locked myself out.
You can go into the "keep awake" and "run in background" and put ignore on everything you think that is not absolutely needed. Android 12 and above should not use this keep awake but Vivo apparently does.
Then you culd restrict body sensor data to more apps/services.
But yes as long as there is no way to really remove vivo.abe and vivo push notifications the battery drain is not fixable. Then of course the modem sucks - and uses way too much power. That one is either hardware rubbish or software mess up. I rather guess a rubbish modem.
The worst is battery drain while outdoors doing sports without being in airplane mode even if you disable any access to body sensors for all apps normally (use "device Info" app for this to actually get to all services, then app ops for removing even more.
extremecarver said:
Yes - in order to really cut the battery drain you need to remove much more permissions. The problem is that Vivo restores them - you could try to restrict that but modifying "modify restricted settings/ files" or something similar - but maybe that is how I locked myself out.
You can go into the wake something section and remove everything you think that is not needed. Android 12 and above should not use this - but Vivo apparently does.
Then you culd restrict body sensor data to more apps/services.
But yes as long as there is no way to really remove vivo.abe and vivo push notifications the battery drain is not fixable. Then of course the modem sucks - and uses way too much power. That one is either hardware rubbish or software mess up. I rather guess a rubbish modem.
The worst is battery drain while outdoors doing sports without being in airplane mode even if you disable any access to body sensors for all apps normally (use "device Info" app for this to actually get to all services, then app ops for removing even more.
Click to expand...
Click to collapse
The phone is good overall, camera, design, performance, but the battery drain is destroying those good points. Not sure if vivo will fix this in the future or not, but my S22U did take more than 6 months to get some first stable updates, and it's super stable right now at 1 year.
Well I cannot call any phone good if it's basic functions like notifications and spyware are rubbish like hell - causing battery drain without end. And yeah - without root you can make it a bit better but cannot fix it. With root if would be quite doable (as long as Vivo doesn't introduce any killswitch like disabling stuff once vivo.abe or push notification service is uninstalled). Root for running adb commands would be enough. But vivo actively disabled this by making many apps removable only for user 1000.
ok so it seems no way to fix the rubbish battery life.
this thread convinced me to sell the phone for a s23 ultra, the battery life differences are huge given only the 300mah battery.
Very good phone ruined by battery life, I don't even care at this point about camera and other specs, I expected good battery life from a sd gen 2 with 4700 mah but i was clearly wrong.
My 1st and last vivo phone, too bad i'll lose tons of money now because is vivo is a no name here.
You lose tons of money everywhere as soon as you cannot return a Vivo phone anymore...
Btw, can someone show what permissions are on Android system by default?
I wonder if I'm missing some (screenshot from device info):
I never directly removed a permission from Android system, but I removed permissions from apps running as well on system.uid user, and sometimes they interact, sometimes they don't. Vivo really messed up the permissions because it's not possible to cleanly change permissions.
If you see the permissions given to push notifications it's anyhow clear than restricting any permissions to vivo apps to stop them to spy on you is like fighting windmills, because push notifications just about has any permission imaginable even after removing some with app ops. Here are the permissions left over from push notifications after removing any possible with app ops app.
Found the error why I couldn't access adb anymore. Shell system app somehow had all rights removed. Fixed it by exporting the apk and reinstalling it. Not locked out anymore and can use app ops again...
Strange thing though - on reboot shell went missing again. Not sure what the crap deletes shell on reboot. I'm pretty sure that's some kind of vivo killswitch if you remove rights via app ops commands from it's spyware.