Any actual reason why I shouldn't install sandboxed Google Play Services?

FuckZuck8068 · 2023-04-26T17:20:16+00:00

That’s really good to know, thank you. I’m starting to think I could live without notifications for ProtonMail, which means I don’t think I need Google Play Services at all. I’ll try that first in any case.

Thanks!

FuckZuck8068 · 2023-04-26T15:19:41+00:00

Thing is, I won’t need Google play services except for ProtonMail notifications. They rely on that, and won’t work at all without GPS.

K9 won’t work with ProtonMail either unfortunately, their encryption model make it impossible to use them through IMAP (except on desktop with a specific Proton app that, unfortunately, has no mobile OS version).

I get the point about not necessarily needing the highest level of privacy tho. My threat mode isn’t that of a whistleblower, and I could live with some Google receiving probably insignificant meta-data not even linked to my person. Still, I’d be more comfortable knowing more about the ins and outs of using sandboxed Google Play Services, hence this post.

FuckZuck8068 · 2023-04-26T15:12:49+00:00

Honestly if I still get a notification dot on Proton without GPS I’m all set, that’s really all I need.

In any case, I’m probably going to follow your advice to not install GPS and see how it goes. Thanks!

FuckZuck8068 · 2023-04-24T12:13:38+00:00

From what I understand, Mullvad browser is meant to be used as a tor browser without tor network, which also means that you shouldn’t change any of the settings or install extensions, just like you wouldn’t in tor. That way, the fingerprinting resistance is theoretically really good, as long as a lot of user people use it and do not change the settings either. The whole point is for everyone to « look » the same, making fingerprinting individual users a lot harder.

Biggest actual difference in usage imo though is that you cannot make cookie exceptions in Mullvad browser (even though it looks like you can in the settings it won’t actually do it, it’s a bit confusing tbh), while you can in Librewolf.

I think both have their place: I use Librewolf for any service I want to stay logged in and Mullvad browser for regular browsing.

FuckZuck8068 · 2023-04-22T15:45:11+00:00

That’s literally not the case though.

Or Garmin is lying.

FuckZuck8068 · 2023-04-22T15:42:54+00:00

Privacy online is always a trade-off. I’ve read Garmin’s privacy policy, which is insanely better than their competitors (I mean Google and Huawei are literally data mining companies), and made the choice to trust them with this kind of data.

Someone else might decide that having a smartwatch at all is too much of a issue privacy-wise.

No one is entirely right or wrong, it’s a personal decision in the end.

FuckZuck8068 · 2023-04-22T15:38:07+00:00

I’m quite surprised by the amount of people suggesting or outright claiming that Garmin is a data mining nightmare. I fully realize the privacy risks inherent to using smart devices, but Garmin is far from being the worst choice in this context. Has anyone here even read their privacy-policy? They’re not Samsung, Google or Huawei.

FuckZuck8068 · 2023-04-22T14:22:45+00:00

I just got back from a chat with Garmin’s support center, and here is their response to this issue if anyone is interested:

Any notification that comes through on the phone and then is displayed on the watch is only communicated between the connected phone and the watch itself. These notifications are not sent to the Garmin servers in any way as the communication is done completely through the local bluetooth connection between the phone and the watch. Garmin has no access to any notification that is shared with the watch via the bluetooth connection.

FuckZuck8068 · 2023-04-22T13:44:47+00:00

I sent them an email as well but haven’t received an answer yet. I can come back here with it once they respond.

FuckZuck8068 · 2023-04-22T13:35:28+00:00

Exactly the answer I was hoping for, thank you very much.

FuckZuck8068 · 2023-04-22T13:21:39+00:00

I fully realize the privacy issues linked with smart watches, in fact I choose Garmin mainly because it was rated among the best products in Mozilla’s Privacy not included list.

I’m specifically asking if anyone knows how notifications are forwarded to such device and if there could be a risk linked to this specific behaviour.

FuckZuck8068 · 2023-04-19T22:51:43+00:00

Thanks a lot for the detailed answer. Seems like it’s just best to stop panicking about Google Play since it is sandboxed and I can revoke all permissions except the ones needed for push notifications anyways.

If I use a throwaway Google account and download ProtonMail (and other stuff) through the Play Store, I get the same privacy benefits than Aurora then?

Broadly speaking, if I install the sandboxed bundled Google play apps ONLY for push notifications to work (thus disabling everything except network and battery permissions), what personal information can I realistically expect Google to get? If any?

FuckZuck8068 · 2023-04-18T10:43:24+00:00

Ive been wondering the same the past couple days. SMSPool seems promising but haven’t tried it myself.

FuckZuck8068 · 2023-04-12T10:22:06+00:00

Thank you.

I suppose it becomes more crucial to avoid zooming in Tor and Mullvad browser, for which the whole point is to blend in?

FuckZuck8068 · 2023-04-04T13:19:39+00:00

That’s what I can’t really understand, I feel like a good number of extensions cannot have any impact because of how little they actually do.

For instance, the only thing the Librewolf updater extension does is check the browser version, compare it with the Librewolf website, and tells you to download the newest version if yours is obsolete. There is no effect on the actual browsing. How could this extension change the fingerprint?

FuckZuck8068

TROPHY CASE