Google Play Limiting Android 11+ Apps From Seeing What's Installed on Devices This May

Google today announced a series of policy updates for apps distributed through the Play Store. The most impactful sees Google limit most developers from seeing which Android apps are installed on your device. From a report: As part of its ongoing work to restrict the use of high risk/sensitive permissions, Google is limiting what apps can use the QUERY_ALL_PACKAGES permission that "gives visibility into the inventory of installed apps on a given device." This applies to apps that target API 30+ on devices running Android 11 and newer. Enforcement was originally meant to occur earlier, but delayed in light of COVID-19.

How about limits on what Google can see ...

[Alain Williams]

on my device, like actually obeying the restrictions that it claims are in place.

My device, I do not want anyone taking data unless I explicitly agree to it. Maybe I am a dreamer, but that is what I want and what the GDPR says I can get.

Re:

[Alain Williams]

Are you using Google Play to get apps on your phone? If you are, then you're not really serious about protecting your information from Google.

No. I use it as a 'phone, I do not run my life on it. So just: 'phone calls, SMS, occasional photos, sometimes use it as a modem and tether my laptop to it. GPS switched off, Internet off 99+% of the time.

Are you running a firewall on your phone? If not then you don't really care what any random app on your phone is doing.

I do not install apps on it, let alone random ones. I do not regard it as secure; not having Google do 'telemetry' would please me a lot.

Re:

[CoolDiscoRex]

There's plenty that can be done on Android, if you make the effort.

Yeah, non-technical people can go fuck themselves. They deserve it for not sharing my interests.

Re:

[drinkypoo]

If you don't want Google to be in charge of your Android phone, buy one that has an unlockable bootloader. Someone will come along to distribute an alternate Android for it, probably LineageOS. Then you can use it without gapps and while you will be left with an extremely limited set of apps available by comparison, Google will have no power to spy on you whatsoever. The phone will not phone home to Google for anything.

I am doing this now, my browser is firefox with the usual privacy extensions, and I have

WTF?

[Randseed]

What in the ungodly name of fuck does COVID have to do with implementing a software policy change like this?

Re: WTF?

[SoonerSkeene]

Nothing, it just delayed the release as tons of employees started working remote and fewer hours, and release timing slipped.

Re:

[AlexHilbertRyan]

a bit like any time theres a hack or computer fuck up people blame chian or russia.

Re:

[Dynedain]

Corporate security/MFA apps that confirm your device doesn't have software that could risk the company's (or client's) data.

Re:

[arglebargle_xiv]

Everything, because COVID. Post late? COVID. Prices gone up? COVID. Roof leaking? COVID. Flat tire? COVID.

"IE Toolbars"

[stikves]

I remember the days of "IE Toolbars" and "splash screens". Everything on Windows used to run as Administrator, and every single free app wanted to inject something onto your desktop. Since all them them were "very important", they made sure you watched their two seconds startup animation, and in order not to lose them closing the program only "minimized to tray area" for you convenience.

Then after all those backlash, Microsoft had to take action, and basically banned all that behavior. Yes, there was too much complaints from program vendors, but fortunately running a desktop OS is no longer an ad show anymore (that is done my Microsoft in the Start Menu, instead).

Android, initially being a very open OS, slowly reached the same state, but with different set of problems. All apps wants to leave a notification item, in case you forgot to click on your farm for the 100th time that day. They want to upload your contact list to their servers, so that they can help infect^h^h^^h share with your friends, they absolutely need to install a root certificate and a VPN in the background so that they can track your traffic^h^h^h^h^h give you more relevant content.

Unfortunately this cycle happens too often. There is a (semi) open OS, and all kinds of shovel-ware think it is a field day with their users' systems.

Re:

[UnknownSoldier]

> running a desktop OS is no longer an ad show anymore

To bad MS never got the memo [howtogeek.com]

Comment removed

[account_deleted]

Comment removed based on user account deletion

Re:

[drinkypoo]

Not if you have a root helper, which you already need in order to install apps from F-Droid without confirmation that you want to install the apk. The root helper will possibly have to advance in order to permit F-Droid to see what's installed and manage updates.

You did buy a rootable phone, right?

i wont buy another android phone

[FudRucker]

when the android phone i have now needs to be replaced i will either get a cheap refurbished iphone or just a flip phone,

They won't stop until apps can only use the cloud

[TheNameOfNick]

Send data from one app to another? To the Google cloud and back. Considering how people use their phones, it's probably for the better, unfortunately.

Re:

[bill_mcgonigle]

IIRC they already broke OandBackupX with Android 11 by limiting background apps to running for 10 minutes. Like, less than a backup takes.

I presume Google has a service where you can send them all of your data instead, to be mined?

Re:

[drinkypoo]

I presume Google has a service where you can send them all of your data instead, to be mined?

Yes, Google asks you during first setup if you want to back up to Google's servers, from which point it will back up most but not all of the data on your phone automatically.

Re:

[bindlestiff]

> it will back up most but not all of the data on your phone automatically.

And count the transfer against your data limits/bill, no doubt.

What about Chrome's Software Reporter Tool?

[BladeMelbourne]

Maybe Google can also remove Chrome's Software Reporter Tool?

It randomly fires up, uses maximum CPU, causes the cooling fan on my laptop to fire up for minutes, ultimately draining the battery. Firefox is my default browser, but Google has no right to examine what software I have installed.

Microsoft Compatibility Telemetry process also randomly causes the fan to spin to 100%, the laptop to get hot and the battery to drain also.

Windows 10 and Google Chrome are disgraceful.

Re:

[wap911]

search for O&O Shutup10.
warning: be careful if you use the "do it all" you might have problems.
It does keep a file of changes so you can revert it.
Block all telemetry and many other chatty programs.

Why?

[Malifescent]

Why does Google allow Android apps to see what other apps are installed anyway? What use could there be for this except nefarious ones? I believe the capability was originally designed for Google's own spying apps, but it got popular with other apps too

No doubt Google will allow its own apps to continue querying the installed apps list.

Re:

[drinkypoo]

Why does Google allow Android apps to see what other apps are installed anyway? What use could there be for this except nefarious ones?

On my Android 10 (LineageOS 17.1) phone, F-Droid and FFUpdater use this functionality.

Re:

[q4Fry]

I have a firewall app that lets me block or restrict Internet data requests from other apps. I also have an app that scans the manifests of other apps to summarize their permissions.

Obviously, someone could do nefarious things with data like that, but there are also legitimate user-respecting uses.