4
how bad are text expanders? (textpand) (lemmy.ml)
submitted 2 months ago* (last edited 2 months ago) by birdcat@lemmy.ml to c/privacy@lemmy.ml
8 comments fedilink hide all child comments

ive been using expandroid, but sadly it stoped working for the stuff i most need it for.

now i found texpandapp(.)com. its really nice cuz it works my browser and note taking app.

most home calling can be stopped via dns blocking i guess (?), but it still has those questionable permissions:

  • view network connections ๐Ÿ˜’
  • use fingerprint hardware ๐Ÿ‘Œ
  • run foreground service with the type "dataSync" ๐Ÿฅฑ
  • run at startup ๐Ÿ‘Œ -ask to ignore battery optimizations๐Ÿ‘Œ
  • have full network access ๐Ÿ˜ณ๐Ÿ˜ณ๐Ÿ˜ณ
  • prevent phone from sleeping๐Ÿค”
  • Advertising ID Permission ๐Ÿ™„
  • run foreground service ๐Ÿ‘Œ
  • Google Play billing service ๐Ÿ‘Œ
  • Play Install Referrer API ๐Ÿค”

how bad is all of that? keylogger-level bad?

(cannot block all internet access, bad phone and the vpn slot is occupied)

edit: turns out split tunnelling with "block all connections without vpn" does the job, nice.

top 8 comments
sorted by: hot top controversial new old
[-] Xanza@lemm.ee 14 points 2 months ago

These applications have to read everything you type to be able to see if the expansion trigger is being used. They are quite literally keyloggers.

They may be nice, but you're essentially letting the application read everything you type. Including passwords, social security numbers, anything...

Any type of network access here is unacceptable.

[-] birdcat@lemmy.ml 2 points 2 months ago

thanks, kinda thought so, gonna use netguard when using it, more important than the vpn

[-] Flagstaff@programming.dev 1 points 2 months ago

Rethink is better than NetGuard.

[-] freijon@lemmings.world 6 points 2 months ago

I know you're probably referring to mobile apps. However, I only use a text expander on Desktop, where I can recommend espanso. It's FOSS and doesn't connect anywhere (unless you tell it to). I wouldn't trust a non-open app that can read everything I type.

[-] Flagstaff@programming.dev 3 points 2 months ago

Ha, I just made !espanso@programming.dev recently!

[-] Flagstaff@programming.dev 4 points 2 months ago

Why do you use a separate Android app with all of those hostile permissions instead of the built-in personal dictionary and its shortcuts? I have thousands of shorthand lines in Android's personal dictionary, like wdyl = what do you like (type the first part and the second part appears in the autocorrect pane for you to touch if you want).

[-] birdcat@lemmy.ml 1 points 2 months ago

i dont seem to have that function. anyway cannot rly see the harm with that app and the vpn block solution.

[-] Flagstaff@programming.dev 4 points 2 months ago* (last edited 2 months ago)

Your Android device doesn't have a personal dictionary section in the Language & Input page? What phone do you have? Yeah, keeping it offline is probably fine, but I'm just surprised since this has been a thing for at least 7 Android versions now, as far as I know.

By the way, HeliBoard (an offline fork of the now-defunct OpenBoard) seems to have its own private, built-in personal dictionary; I migrated to that since finding out.

this post was submitted on 02 Mar 2025
4 points (66.7% liked)

Privacy

37690 readers
623 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS
k_o_t@lemmy.ml
tmpod@lemmy.pt
Yayannick@lemmy.ml
ranok@sopuli.xyz