Disable Google remote access/ software removal?

[inte]

Hi
since Android is pretty much Open Source I really wonder if there is an App applicable that will allow users to either enable or disable Google's remote software removal mechanism.
I would prefer to control by myself which software is installed on my phone (or if I whish to allow Google to access my phone).
Thanks on any hints how to disable remote access to Android phones!

 

[Chroma]

custom rom is your only really option, or airplane mode & wifi off.

You do realize the only software Google removed were malicious programs, right? As for allowing Google access to your phone, almost all smartphones have this. (Android, Apple iOS, and WM7)

 

[inte]

custom rom is your only really option, or airplane mode & wifi off.

You do realize the only software Google removed were malicious programs, right? As for allowing Google access to your phone, almost all smartphones have this. (Android, Apple iOS, and WM7)

I'm currently using a Nokia N900 which does not seem to come with such an option, at least I'm not aware of that. But since its basically based on Debian, I hardly doubt that Nokia is able to remotely install or remove software. I haven't heard about such a feature in Symbian either, but I'm really sure that Apple is very accurately watching their iphones and I could imaging something similar to come for M$ as well (even though I never heard about that in WiMo 6 yet).
Your statement that allmost all smartphones have the security disadvantatge that the manufacturer can remotely remove or install software does NOT make this feature better or necessary, anyway.
I wouldn't mind having this feature activated deliberately, but not mandatory.
I've learned that Google's hidden remote software install/remove service is based on Google talk. Wouldn't it be enough to just disable Gtalk and maybe block the Gtalk ports with a firewall?
It would be definitely nicer if one could control this service through an official Google Android App, though.

 

[KlaymenDK]

custom rom is your only really option, or airplane mode & wifi off.
You do realize the only software Google removed were malicious programs, right?

It's the principle of it, which I can well and truly understand. Who are they to judge what I want on my phone?

Also, I have to say, airplane mode is not a solution (or perhaps too much of a solution). The ideal thing would be a firewall, but knowing what to block -- aye, there's the rub!

 

[inte]

It's the principle of it, which I can well and truly understand. Who are they to judge what I want on my phone?

Also, I have to say, airplane mode is not a solution (or perhaps too much of a solution). The ideal thing would be a firewall, but knowing what to block -- aye, there's the rub!

The thing is: If google is removing "malicious" software today, when will the next company (e.g. Apple) start to remove e.g. unlicensed MP3's?

 

[46and2]

I felt the need to comment on this thread now that remote software installs can be performed via the android market website.

I have found 2 ways to stop the remote installs.

First: If you download droidwall and deny access to the download manager it does appear to stop remote installs. The downside? you cannot install market place apps or even download files from the internet without allowing the download manager access.

Second: Turn off the Background data feature. Downside? cannot use the market or have gmail autosync and a whole bunch of other stuff i cant think of at the moment.

why do i say this on a thread about the app "kill switch"

well its simple. while i do not like the idea that google has so much control over removing applications i feel that remote installs represent a much greater threat.

i do not know of a simple way to stop the app kill switch. perhaps an iptables rule to block the gtalk connection? this might have ramifications i do not realize.

 

[DePhoegon]

The thing is: If google is removing "malicious" software today, when will the next company (e.g. Apple) start to remove e.g. unlicensed MP3's?

I don't see this happening with Devices that have android. Granted they could, but there isn't a real way to tell if an MP3 is not authorized, when android devices *tablets* can act as media centers and are designed to drop music/video right onto it. Google would have to up and change android completely for this to happen.

Though I could see apple doing this with iOS products, as the Ipod is already fully encrypted to the point where you can't even leave your own music on it, outside having Itunes drop it in, and it isn't to far stretched that their Iphones and Ipads * lazy ****ing names honestly* will be encrypted by default so only certain programs can open/view the file structure of the device, preventing the need to remove any file that wasn't placed in there by an apple program.

Besides, that's what gave the PSP, 3rd party MP3 players, & ealier android tablets/smartphones the edge on the market *despite the ipods being tech better* was the fact that they didn't allow anything on there that Itunes didn't put it self. It's hurting apple, and now there is android for iOS devices? really, as if apple is slowly becoming some hardware designer.

 

[DePhoegon]

I felt the need to comment on this thread now that remote software installs can be performed via the android market website.

I have found 2 ways to stop the remote installs.

First: If you download droidwall and deny access to the download manager it does appear to stop remote installs. The downside? you cannot install market place apps or even download files from the internet without allowing the download manager access.

Second: Turn off the Background data feature. Downside? cannot use the market or have gmail autosync and a whole bunch of other stuff i cant think of at the moment.

why do i say this on a thread about the app "kill switch"

well its simple. while i do not like the idea that google has so much control over removing applications i feel that remote installs represent a much greater threat.

i do not know of a simple way to stop the app kill switch. perhaps an iptables rule to block the gtalk connection? this might have ramifications i do not realize.

Do ya know of a way to stop Google Play from remote uninstalling. I don't mind the feature, but I'd like a password or pattern prompt if the device is secured with an applocker on it. I know they'd have to be logged in, but I'd prefer there wouldn't be an easy way to by-pass install/removal/app launching security.

I don't mind remote installs so much as I mind removals without checkinging if there is a security measure in place.

 

[350X]

if you got a back up program like titanium back up or root uninstaller, or for non root app tyrant or apk extractor , you always have a back up of your programs.

And Ive never had google add or remove anything, even things I got a refund on, I had to uninstall them. Google never did.

 

[Runningbear Rd]

Just to comment on an old issue to validate a real concern: Remote install is an insane concept. Case and point, ex girlfriend/ boyfriend or pissed off miscellaneous other figures out the password your Google or Apple account. They now have access to your devices to install creepy snoop.software that passes itself off as parental controls. Pissed off miscellaneous now can listen to your microphone, look through front and rear cameras, take screen shots, browse your text messages and call history, and keep track of your location at all times - at will. You wouldn't even know it was there. Remote install is insane. Yes, being able to install an app on more than one device at a time is a frivolous convenience, but it opens some really bad doors for someone else to abuse.

 

[Hadron]

Bear in mind that you do get a notification if an app is installed that way (though not everyone pays attention to notifications), and apps installed that way cannot actually do anything unless you open them yourself at least once. They used to be able to just run without any interaction on the phone, but that was stopped a long time ago. Indeed when Google stopped that it broke a couple of apps that were designed to help people secure phones they had lost or retrieve data from phones with broken screens, which is why I remember it changing.

But if you want to know what is insane, it's not securing your Google account properly, i.e. a strong password and 2 factor authentication. Do those and the ex or randomer cannot guess your password, and even if you told them it they can't use it without your approving the sign-in. As you say, these accounts are important because they can give access to a lot of things that you need to be secure, not all of which even involve the phone, so it is genuinely insane to use a guessable password and require no secondary authentication.

(Almost as stupid as answering those Facebook quizzes that used to go round - and maybe still do, though I've not seen one for years - asking people the name of their first pet or the street they grew up on or the model of their first car: yes, post the sort of information that banks ask as security questions from an account that can identify you personally, what could possibly go wrong?)