Skimmer
Yeah, Shizuku opens up a massive attack surface through ADB. ADB can do a lot to your device without you even realizing it in a lot of cases, and you’re basically giving ADB access to Shizuku itself and any apps that use it (which could be exploited) at all times, so its very risky. Its pretty dangerous and definitely best to avoid an app like this.
App looks legitimately amazing. Seems a bit buggy in alpha but I’m sure it’ll be ironed out. I just hope they look into supporting Piped instead of directly connecting to YouTube, as well as SponsorBlock. Once they get those 2 things and iron out some of the bugs, I’ll primarily use it for sure. Its a great concept.
Yeah, anticheats are a privacy and security nightmare that most people don’t even think about. You’re effectively giving their proprietary software extremely invasive kernel level access to your system. They can access and do pretty much anything they want on your device with really nothing stopping them. Anticheats like this are extremely dangerous and should certainly be avoided where possible.
I understand the problem of cheating in games, but I feel like there has to be a better solution to this problem, as making users install an extremely invasive rootkit isn’t acceptable at all imo. I’d recommend avoiding games that include invasive anticheat or DRM like this. Best way to get across that this isn’t okay is through the wallet.
Google is actually correct here for once. Signal is not offered on F-Droid, and its package name is org.thoughtcrime.securesms, not org.thoughtcrimes.securesms.
Only official places to download Signal are through the Google Play Store or their website (which self-updates).
The Hated One is my favorite. I also like Mental Outlaw.
Could you please provide and example or two? I wish to verify it, since I didn’t notice any last time I checked the site.
Sure, let’s look at the page for Firefox. They claim that there are “Automatic connections to some websites you’ve visited, including their trackers” with the new tab page, and that they “couldn’t find a way to disable it.” Whoever made this website couldn’t take 2 seconds to go to about:preferences and see the option to display recently visited sites?
They also have a section titled “Firefox tracks users with Google Analytics”, which they’re very misleading about. Instead of explaining that GA is only present in about:addons and that it can easily be disabled, they’re extremely vague about it and just blindly say it “sends analytics to Google”, which would lead people to believe its much worse than it actually is (i.e. Chrome level). There’s an important distinction between: “Google Analytics is present on 1 page in the browser and can be disabled” vs. vaguely stating “Firefox send analytics to Google” without full info or context. Hopefully I’m explaining that well enough.
Its also disingenuous to consider Firefox’s Captive Portal as “phoning home” without, again, providing full info or context. It has a legitimate purpose, to allow users to connect to public networks, and can be disabled for those who wish to do so. It doesn’t give any data to Mozilla, all it does is detect if a captive portal is present. I think this is another instance of the context being important to have, which the website just simply doesn’t give.
Another instance, look at their page on Tor Browser, where they just flat out lie and accuse Tor Browser of “sending telemetry”.
I could go through more, but these are a few I notice immediately that I take issue with.
They’re very clear that this is their approach (bold text on the home page). Even if you disagree with their definition, that doesn’t make the site bad.
Categorizing something as spyware solely based on the number of connections it makes is horribly irresponsible at best and dangerous at worst. Whoever made this couldn’t even be bothered to find what data is actually being exchanged for most of these connections. There’s a lot more to determine how privacy invasive something is then just sitting and counting the number of connections it makes, and treating them all as malicious and for “tracking”.
And there are many valid situations where a threat model should be this strict, consider anti-government activists in any country.
That’s why this website is so dangerous. Calling Tor Browser spyware and saying it sends telemetry could trick people who don’t know better to use worse alternatives. This even moreso extends to casual users too, who could also be misled into using a less private browser as a result of this website’s insane claims.
It says “Not Spyware”. https://spyware.neocities.org/articles/tor
They have a separate article up calling it spyware as well, see here. Weird contradiction from them and just shows this site isn’t very well designed or thought out.
Brave is not spyware. That website you linked is horrible and full of misinformation. They also claim that Firefox, and even Tor Browser, are spyware. They act as if any and all connections a browser makes are automatically bad and used for spying/tracking.
I won’t disagree with the other criticisms of Brave that you made, but just wanted to point that out. That website is just highly unreliable and makes verifiably false claims about the browsers it reviews.
Not having root is done on Android for some very good security reasons to be fair, it opens up a giant attack surface and risk for all kinds of malware and nasty stuff to take advantage of. I don’t think it’s done completely in malice as you think. Its a very important part of the app sandbox and Android’s security model at large.
With that said, I do think that people should have the option to root if they want to, I’m not a fan of OEMs like Samsung and whoever else purposely preventing people from rooting at all costs. I think people should be able to do whatever they want with their own device, root just certainly shouldn’t be the default, and users should be aware of the risks if they choose to use it. But I do think it should be a possibility for those who really do wish to do so.
With Android, it all just comes down to the OEM and variant of it that you’re stuck with. As a whole, I think its an amazing project and OS, though unfortunately Google, and especially OEMs, tend to make a lot of bad choices. It’s similar to Linux as a whole in that aspect. You’ve got options like ChromeOS which are a nightmare for privacy and user freedom any way you look at them, but then you’ve got your traditional distros like Debian, Arch, Fedora, etc, which are the exact opposite. Its an important distinction.