this post was submitted on 28 Jul 2023
176 points (95.8% liked)
linuxmemes
21172 readers
932 users here now
Hint: :q!
Sister communities:
Community rules (click to expand)
1. Follow the site-wide rules
- Instance-wide TOS: https://legal.lemmy.world/tos/
- Lemmy code of conduct: https://join-lemmy.org/docs/code_of_conduct.html
2. Be civil
- Understand the difference between a joke and an insult.
- Do not harrass or attack members of the community for any reason.
- Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
- Bigotry will not be tolerated.
- These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
3. Post Linux-related content
- Including Unix and BSD.
- Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of
sudo
in Windows.
- No porn. Even if you watch it on a Linux machine.
4. No recent reposts
- Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.
Please report posts and comments that break these rules!
founded 1 year ago
MODERATORS
Material You is a privacy issue. It gives a reason for people to have a custom wallpaper.Because of the WallpaperColors API, any third party app can use the wallpaper to generate a unique ID based on that
You make this sound mich worse than it is:
Source: https://developer.android.com/reference/android/app/WallpaperColors
Android really needs a sandbox feature for apps you don't trust (or just any by Meta)
Or Google...
You can leverage the work profile with something like Shelter
https://gitea.angry.im/PeterCxy/Shelter
Can we have unlimited sandboxes for each app though?
Nope, one sandbox per device
Ah I see
Haven't tried Shelter but I am using Insular from F-Droid for just that and it works great.
Samsung has that in Secure Folder. Hardware-based isolation.
it's completely proprietary tho (Samsung knox stuff is reaching scary levels of obfuscation and proprietary-ness in general)
So it doesn't simply supply the generated palette from the system? (I never tried implementing Material You)
It does
Ah alright, so it is a problem because it can be used as another bit of information to construct a more refined fingerprint of the user?
Uhm.. yeah..., sure, could certainly be another data point for that. I think you can also set static colora thought.
Yes, though now that the option exists setting it to anything would discriminate you from the group that set it the other way, I assume that the OP also considered that as problematic
I didn't throw rocks at Material You for being an actual privacy leak but just thinking about the fact that it gives a reason for users to want to use a custom wallpaper instead of default or unicolor I woild have fell for it if I was not already aware of that WallpaperColors API
I'm pretty sure apps can just grab your phone's MAC address
You can for older devices (so your app has to target only those I think) but with added permissions that you will definitely question It seems it is more complex or impossible now: https://developer.android.com/training/articles/user-data-ids#mac-addresses
Wouldn't this ID change every time the user changes their wallpaper?
It does. But it also means that if you want to reset the tracking you would need (for every app) to also clear the storage of the app and logging off and log back in with a different account before starting to use the app again
True, but even without your wallpaper fingerprint, the app is still fingerprinting you and tracking you with cookies.
So that still always applies, material you just means you need to take the extra step of changing your wallpaper when you clean cache and change account.
Are you this insufferable always?