Re: Access to Android Data folder?

[Andy Burnelli]

flibbertigibbet wrote:

> Up until quite recently I've been using
> File Manager Plus https://bit.ly/3Vb0h31
> and or
> USB Media Explorer https://bit.ly/3EM2wEx
> to get around my Galaxy S22 Ultra, because the standard file explorer is
> pretty basic and had been giving me the runaround when trying to access my
> Data folder. Now, though, since updating to Android 13 these paid-for
> 3rd-party apps won't give me access to that folder. Can anyone here tell me
> how I can get these apps to cooperate with me, or maybe tell me which app
> bypasses Android's efforts to keep their customers out of this folder,
> please?

I just made these screenshots for you out of the goodness of my soul.

<https://i.postimg.cc/fT7MSr90/root01.jpg> Even with All Files Access=On
<https://i.postimg.cc/05wkPQ5n/root02.jpg> Half of file managers read root
<https://i.postimg.cc/R0hm8Cbc/root03.jpg> & half of file managers do not

I'm not sure if this is a troll or not, but if I assume it's a sincere
question, then I'm glad to pitch in to purposefully helpfully help out.

I've been successful reading almost the entire Android file system using
a variety of common methods (without being rooted) but some file managers
do _not_ read the root file system as shown by my screenshots below.

Even when you give the file manager "All Files Access = On" permission,
half of the free file managers still don't seem to show root files.

No = Simple Mobile Tools File Manager
<https://play.google.com/store/apps/details?id=com.simplemobiletools.filemanager>
Yes = X-plore File Manager App
<https://play.google.com/store/apps/details?id=com.lonelycatgames.Xplore>
No = Samsung My Files File Manager App
<https://play.google.com/store/apps/details?id=com.sec.android.app.myfiles>
No = Files File Manager App Shortcut
<https://play.google.com/store/apps/details?id=org.aospstudio.files>
Yes = MK Explorer File Manager App
<https://play.google.com/store/apps/details?id=pl.mkexplorer.kormateusz>
Yes = MiX File Manager App
Yes = FX File Manager App
<https://play.google.com/store/apps/details?id=nextapp.fx>
No = Amaze File Manager App
<https://play.google.com/store/apps/details?id=com.amaze.filemanager>

When I was researching this for you, I found there is also "Usage Data Access"
which needed to be granted for _some_ of the apps above.

I'm not sure if that's the reason half of the file managers could read
the root partition and the other half could not. Maybe others who know
far more about Android than I ever will know can tell us if it matters.

To be clear, my Android phone is still owned by T-Mobile & is not rooted.
Also note that adb on Windows can read the root partition over Wi-Fi too.
C:\> adb devices
That should report the devices that adb is connected to, for example:
List of devices attached
192.168.0.2:54321 device

C:\> adb shell netstat
That should list the phone's TCP/IP connectivity tables.

C:\> adb shell service list
That should list all the running services on the phone.

C:\> adb shell ps
That should list all the running processes on the phone.

C:\> adb shell ifconfig
That should provide your Android network interface information.

C:\> adb shell "cd /sdcard/Download && ls"
That should list files in your internal storage Download folder.

C:\> adb shell "cd /sdcard && mkdir temp"
That should create a "temp" directory in your internal
storage sdcard on your Android phone.

C:\> adb shell screencap -p /sdcard/temp/screenshot.png
That should snap a screenshot of your android phone & store it
in the newly created temp folder on the Android phone.

C:\> adb shell screenrecord /sdcard/temp/screenrecord.mp4
Do whatever on the Android phone & then press Ctrl+C to end.
That should create an MP4 recording of your Android screen.

C:\> adb install "C:\path-to\filename.apk"
That should install the APK from Windows over Wi-Fi onto Android.
(Note this is useful when you have hundreds of apps like I do!)
<https://i.postimg.cc/bN875p8b/apk01.jpg> Windows APK archive

C:\> adb push "C:\path-to\filename.apk" /sdcard/Download
That should copy the named file from Windows to Android &
(in this case) put it in your internal storage "Download" folder.

Note that each phone OEM "can" use a different filespec for
internal & external sdcards (e.g., /storage/emulated/0/Download).

C:\> adb push C:\path\apk_archive\ /sdcard/Download/apks
That should create a folder named "apks" in the Android phone's
internal storage "Download" folder and then copy all the files
from the Windows "apk_archive" folder into that new "apks" folder.

C:\> adb shell
$ /storage/emulated/0/DCIM
$ ls
$ exit
That should allow you to interactively manage the Android
filesystem from Windows over Wi-Fi. Note these are common:
/mnt/sdcard/DCIM
/sdcard/DCIM
/sdcard/DCIM

C:\> adb logcat
Use this if you're a glutton for punishment as it will forever
spit out a log of what's going on your phone (until you Ctrl+C).

C:\> adb logcat *:E
The values are:
V: Verbose (lowest priority)
D: Debug
I: Info
W: Warning
E: Error
F: Fatal
S: Silent (highest priority. Nothing is printed)
Note logcat has multiple options, e.g.,
adb logcat Tag1:I *:S
That will list output log messages with the tag "Tag1"
and priority level Info or higher.
The *:S at the end will exclude the log from other tags
with any priority.

C:\> adb shell getprop | FindStr /i "ro.build.version"
Get properties off the phone & grep for the given keyword.

C:\> adb shell getprop ro.build.version.security_patch
This will report the property of the security patch level.

C:\> adb shell getprop ro.build.fingerprint
This will report basic hardware information about your phone.

C:\> adb shell input swipe 500 1000 500 100
This will instantly swipe from center to the top of the screen.

You can add a time period, e.g., take 3 seconds to swipe that.
C:\> adb shell input swipe 500 1000 500 100 3000

C:\> adb shell input text "K-9\ Mail"
This will enter into the phone's search GUI a search for that app.

C:\> adb shell pm list packages
That should list all the packages installed on your Android phone.

C:\> adb shell pm list packages | findStr /i "facebook"
That should list all the packages with that string in their name.

C:\> adb shell pm path com.facebook.appmanager
That should list the path to the named package, e.g.,
package:/system/app/FBAppManager_NS/FBAppManager_NS.apk

C:\> adb pull /system/app/FBAppManager_NS/FBAppManager_NS.apk
That should copy the APK from Android over to Windows.

C:\> adb shell dumpsys package com.facebook.appmanager
This should list an app's components, activities & services, etc.

C:\> adb shell pm list permissions | FindStr facebook
This should list all permissions granted for that particular app.

C:\> adb shell pm revoke com.facebook.appmanager android.permission.READ_EXTERNAL_STORAGE
This should revoke the stated permissions from that app.

C:\> adb shell pm grant com.facebook.appmanager android.permission.READ_EXTERNAL_STORAGE
This should grant the stated permissions to that app.

C:\> adb shell pm clear com.facebook.appmanager
This should clear all the application data in that package.

C:\> adb shell pm uninstall -k --user 0 com.facebook.appmanager
That should uninstall the named package for the current user.
(You don't need root to uninstall system apps for the current user.)

Note this app will provide, by default, a list of all apps
you've installed, in the reverse order that you installed them.
*App Inspector* by UBQSoft
Free, ad free, gsf free, rated 4.3, 100K+ installs
<https://play.google.com/store/apps/details?id=com.ubqsoft.sec01>

C:\> adb shell pm install-existing com.facebook.appmanager
That should re-install that package that you had just uninstalled.
(This works because it was only uninstalled for the current user.)

C:\> adb shell pm disable-user --user 0 com.facebook.appmanager
That should disable the named package.

C:\> adb shell pm list packages -d | findStr /i "facebook"
That should find the disabled apps & then grep for "facebook".

C:\> adb shell pm enable com.facebook.appmanager
That should enable the named package.

C:\> adb shell pm uninstall com.facebook.appmanager
If you omit the "-k --user 0" part, it uninstalls for all users.

C:\> adb bugreport
That should create a zip file of your current bug-report data.

C:\> adb shell am start -n com.google.android.gms/.ads.settings.AdsSettingsActivity
That should pop up an Android "Reset Advertising ID" settings page.

C:\> adb shell input tap 500 400
If run after the command above, that will tap the button to
asking to "Opt out of Ads Personalization" in that Activity
if that button is like mine, at the X=500 & Y=400 location.

On my phone, this is the "Reset advertising ID" button location:
adb shell input tap 500 200
On my phone, this is the "OK" button on that GUI above.
adb shell input tap 700 1000

C:\> adb shell am force-stop com.google.android.gms
If run after bringing up the advertising-id reset Activity,
it will close the activity without doing anything else.

C:\> adb shell input keyevent KEYCODE_HOME
That should press the "Home" button.
C:\> adb shell input keyevent KEYCODE_CAMERA
That should press the "Camera" button.
C:\> adb shell input keyevent KEYCODE_BACK
That should press the "Back" button.
C:\> adb shell input keyevent KEYCODE_HEADSETHOOK
That should press the "Headset" button.
A list of hardcoded buttons is located in Android documentation:
<https://developer.android.com/reference/android/view/KeyEvent#constants_1>

C:\> adb pull /system/etc/hosts .\hosts.txt
[That should copy the hosts file over even if you're unrooted.]

C:\> adb shell dumpsys battery set level 4
That will _simulate_ (aka "spoof") a 4% battery level,
which may instantly cause a cascade of actions on your phone
as "if" your battery level really were low.

C:\> adb shell dumpsys battery set ac 1
That will _simulate_ (aka "spoof") that you just connected
an AC power adapter to your phone, so, for example, the phone
should show an icon and speak that you connected to AC power
if you've set this app to do that for you.
*Charging Indicator* by Jason A. Maderski
Free, ad free, gsf free, rated 4.2, 50K+ installs
<https://play.google.com/store/apps/details?id=maderski.chargingindicator>

Note that with adding notifications, I use text-to-speech to
clarify what the notification is telling me, instead of sounds.

Two text-to-speech free apps I use for notifications are:
*Tell Me - Text To Speech* by Simply Complex Apps
Free, ad free, +inapp $, rated 4.1, 100K+ installs
<https://play.google.com/store/apps/details?id=com.simplycomplexapps.ASTellme>

*NTM* Convert Text To Audio File by MEPROWORLD
Free, ad free, not rated, 10K+ installs
<https://play.google.com/store/apps/details?id=com.meproworld.ntm>

In the case of the battery indicators, I set notifications such as:
"Your battery just reached 100% charging"
"Your USB cable just disconnected"
etc.

C:\> adb shell dumpsys battery reset
This will turn off the battery-level simulation (aka spoofing).

C:\> adb shell dumpsys battery set ac 0
That will _simulate_ (aka "spoof") that you just dis-connected
an AC power adapter from your phone.

C:\> adb shell dumpsys battery set usb 1
That will _simulate_ (aka "spoof") that you just connected
a USB cable to your phone.
.
C:\> adb shell dumpsys battery set usb 0
That will _simulate_ (aka "spoof") that you just dis-connected
a USB cable to your phone.

C:\> adb shell pm list packages
That should list all installed packages.
C:\> adb shell pm list packages -s (list system packages only)
C:\> adb shell pm list packages -3 (list 3rd-party package names)
C:\> adb shell pm list packages -u (list uninstalled packages)
C:\> adb shell dumpsys package packages (list package information)
C:\> adb shell pm dump com.facebook.appmanager (info on one package)
C:\> adb shell pm path com.facebook.appmanager (package apk filespec)

C:\> adb shell pm list packages google | find /c /v ""
That should tell you the number of packages you have on Android
which have "google" in the package name.

C:\> adb shell am start -n com.android.settings/.Settings\$PowerUsageSummaryActivity
That should bring up a moving graph of your current battery usage.

C:\> adb shell am start -n com.google.android.gms/.location.settings.LocationAccuracyActivity
That should tell you if you have Google location spyware running.

C:\> adb shell am start -n com.google.android.gms/co.g.Space
That should allow you to clear your Google Play services storage.

C:\> adb shell am start -n com.google.android.gms/.update.SystemUpdateActivity
That should allow you to check for Android updates.

C:\> adb shell am start -n com.google.android.gms/.nearby.exposurenotification.settings.SettingsActivity
That will let you know your Covid exposure notification status.

C:\> adb shell am start -n com.google.android.gms/.app.settings.GoogleSettingsLink
That should bring up most of the Google privacy settings on Android.

C:\> adb shell am start -n com.android.settings/.Settings\$NotificationAppListActivity
That should bring up _all_ your extant notifications.

C:\> adb shell am start -n com.android.settings/.Settings\$AppMemoryUsageActivity
That should show you how much memory each app is using.

C:\> adb shell am start -n com.android.settings/.network.telephony.MobileNetworkActivity
That should tell you how much mobile data you've used up.

C:\> adb shell am start -n com.android.settings/.applications.ManageApplications
That should bring up the form to set your default Android apps.

C:\> adb shell am start -n com.google.android.gms/.gcm.GcmDiagnostics
That should scare the crap out of you when you see what it says!
mtalk.google.com is obtaining your private location information?

C:\> adb backup -all
Supposedly this will back up your entire device & app data to an
encrypted "backup.adb" file in your current Windows directory.

C:\> adb restore "C:\path-to\backup.adb"
Supposedly this will restore your backed up device & app data.
--
Posted out of the goodness of my heart to disseminate useful information
which, in this case, is to test which file managers can read root files.

[Andy Burnelli]

flibbertigibbet wrote:

> Sorted. FV File Pro does the job nicely.

I never see poorly written programs such as that "FV File Pro" program
for a few reasons, not the least of which is it includes Google spyware.

While I have eight file managers installed which do NOT incorporate
Google spyware into them, each of those eight was added because it
did something (long since forgotten by me) that the others didn't do.

But I'm always willing to learn about and use an app that does something
that others apps don't do as easily or as well or as fast, or whatever.

While these four file managers did NOT read my root partition just now.

No = Simple Mobile Tools File Manager
<https://play.google.com/store/apps/details?id=com.simplemobiletools.filemanager>

No = Samsung My Files File Manager App
<https://play.google.com/store/apps/details?id=com.sec.android.app.myfiles>
No = Files File Manager App Shortcut
<https://play.google.com/store/apps/details?id=org.aospstudio.files>

No = Amaze File Manager App
<https://play.google.com/store/apps/details?id=com.amaze.filemanager>

All of these read my root file system partition without issues.

Yes = X-plore File Manager App
<https://play.google.com/store/apps/details?id=com.lonelycatgames.Xplore>

Yes = MK Explorer File Manager App
<https://play.google.com/store/apps/details?id=pl.mkexplorer.kormateusz>

Yes = MiX File Manager App (the free version com.mixexplorer not on Google Play)
<https://mixplorer.com/>
<https://forum.xda-developers.com/t/app-2-2-mixplorer-v6-x-released-fully-featured-file-manager.1523691/#post-23109280>

Yes = FX File Manager App
<https://play.google.com/store/apps/details?id=nextapp.fx>

Any idea what FV File Manager does that those below don't do?
<https://play.google.com/store/apps/details?id=com.folderv.file>

If it doesn't do anything that the other file managers do, then I would
ask why you let Google spyware onto your phone without a good reason.

--
Posted out of the goodness of my heart to disseminate useful information

which, in this case, is to learn more about what FV File Manager can do.

[Andy Burnelli]

flibbertigibbet wrote:

>>If it doesn't do anything that the other file managers do, then I would
>>ask why you let Google spyware onto your phone without a good reason.
>

> I don't know what you mean by Google spyware, and I cannot see how what
> seems like a reputable file manager costing more than L5 can be malicious.
> If you think I'm better off not having it on my devices then I'll remove it
> and get my fiver back before my cooling off time runs out. Thanks.

There are many others who know far more than I do about GSF processes.
<https://i.postimg.cc/mk2CKQdn/gsfid09.jpg> GSF services on Android

But why do you think trusted developers go to the trouble to add a filter
to the replacement Google Play Store clients which expressly filters out
permanently any and all apps on the Google Play Store with GSF in them?
<https://i.postimg.cc/YStB48LH/gsfid03.jpg> Filter out GSF apps

Why do you think trusted developers go to the trouble to create methods for
a normal (non rooted) knowledgeable user to view the GSF ID at will?
<https://i.postimg.cc/G2Cz4GHz/gsfid04.jpg> Evozi Device ID reports GSF ID

And, why do you think they write tools to _change_ that unique GSF ID?
<https://i.postimg.cc/X7ZspnsG/gsfid01.jpg> You can change your GSF ID

Much like knowledgeable users can change & now delete their advertising ID.
<https://i.postimg.cc/nhNNQvNN/adid07.jpg> Check Advertising ID
<https://i.postimg.cc/q77fJVdR/adid05.jpg> Reset Advertising ID
<https://i.postimg.cc/XvqM5CSd/adid06.jpg> Delete Advertising ID

My main beef with mobile phone users is most are like sheep led to
slaughter, when it comes to THINKING for themselves about what they are
doing. Instead, I wish people would _think_ when they install Android apps.
<https://i.postimg.cc/G2QP0CFz/aurora15.jpg> FOSS Google Play Store client

MARKETING organizations made it easy to be led to slaughter by the nose.
It's our job to be wary when MARKETING hooks that ring into our noses.

The Google Play Store client is a nose ring MARKETING hooks into our noses.

Personally, from the moment I set up a phone, I disable the default Google
Play Store client & use FOSS replacement Google Play Store clients instead.
<https://i.postimg.cc/CL9GpzVc/aurora01.jpg> FOSS Google Play Store client

These FOSS Google Play Store clients have options MARKETING won't give you.
<https://i.postimg.cc/PrvDyT8Y/aurora03.jpg> Spoof hardware & geolocation

An example is they auto-save all APKs for you whenever you install apps!
<https://i.postimg.cc/Z5kdD2rg/aurora04.jpg> Choose where to download APKs

And, these Google Play Store clients work WITHOUT you needing an account.
<https://i.postimg.cc/NG5pHyBx/aurora10.jpg> No need for a Google Account

For some reason, Google MARKETING doesn't give you those options in the
default Google Play Store client; but the FOSS replacement clients do.

But better yet, they have options to help maintain your privacy from GSF.

In fact, if you use the Google Play Store client to the Google Play Store
repository, you can't easily see which apps contain the Google spyware.

But if you use the FOSS Google Play Store clients to the Google Play Store
repository, they make it VERY CLEAR which apps contain GSF Google spyware.
<https://i.postimg.cc/RF06HBB3/aurora05.jpg> Basic filters for software

Notice in that screenshot there are only
<https://i.postimg.cc/P5YYKT3H/aurora14.jpg> Filter out apps linked to GSF

In order of priority as shown in those Google Play Store client filters:
1. Filter out GSF dependent apps (usually apps with gsf are not allowed)
2. Filter out payware apps (usually payware apps are not allowed to show)
3. Filter out apps with ads (usually apps with ads are not allowed to show)
4. Filter based on ratings (usually 4+ and above is allowed to show)
5. Filter based on number of downloads (usually 1M+ is allowed to show)

Why do you think there are only five app filters with GSF being the first?
<https://i.postimg.cc/7PdGfdQ6/aurora08.jpg> Some filters are not common

Why do you think people go to trouble to change the unique Android GSF ID?
<https://i.postimg.cc/YStB48LH/gsfid03.jpg> Filter out GSF apps

Run a quick search for any of these keywords and let us know what you find.
A. com.google.android.gsf (package)
B. Google Services Framework (APK)
C. com.google.process.gapps (process)

In summary, I consider Google Services Framework to be Google spyware which
less reputable developers tend to link into their Android app source code.

Having said that, I'm sure there are many others (e.g., Andy Burns for one)
who know far more about this pernicious Google spyware than I do, so I
welcome people who know far more than I do to help answer your questions.

In short, if the app you found links in Google Services Framework, and if
it's the _only_ app on the planet that does what you need, then I'd use
that app (if I must); but, conversely, if there are plenty of well written
apps which do NOT link in Google GSF spyware, then I'd use them instead.

It's a simple decision for me, especially as my Google Play Store client
never shows me those poorly written apps in the first place when I search.
<https://i.postimg.cc/RF06HBB3/aurora05.jpg> Filters Google won't give you

--
Posted out of the goodness of my heart to disseminate useful information

which, in this case is to explain why I avoid apps with GSF linked in them.

[Andy Burnelli]

If it doesn't do anything that the other file managers do, then I would
ask why you let Google spyware onto your phone without a good reason.

--
Posted out of the goodness of my heart to disseminate useful information

[Andy Burnelli]

flibbertigibbet wrote:

> Up until quite recently I've been using
> File Manager Plus https://bit.ly/3Vb0h31
> and or
> USB Media Explorer https://bit.ly/3EM2wEx
> to get around my Galaxy S22 Ultra, because the standard file explorer is
> pretty basic and had been giving me the runaround when trying to access my
> Data folder. Now, though, since updating to Android 13 these paid-for
> 3rd-party apps won't give me access to that folder. Can anyone here tell me
> how I can get these apps to cooperate with me, or maybe tell me which app
> bypasses Android's efforts to keep their customers out of this folder,
> please?

I just made these screenshots for you out of the goodness of my soul.

<https://i.postimg.cc/fT7MSr90/root01.jpg> Even with All Files Access=On
<https://i.postimg.cc/05wkPQ5n/root02.jpg> Half of file managers read root
<https://i.postimg.cc/R0hm8Cbc/root03.jpg> & half of file managers do not

I'm not sure if this is a troll or not, but if I assume it's a sincere
question, then I'm glad to pitch in to purposefully helpfully help out.

I've been successful reading almost the entire Android file system using
a variety of common methods (without being rooted) but some file managers
do _not_ read the root file system as shown by my screenshots below.

Even when you give the file manager "All Files Access = On" permission,
half of the free file managers still don't seem to show root files.

No = Simple Mobile Tools File Manager
<https://play.google.com/store/apps/details?id=com.simplemobiletools.filemanager>

Yes = X-plore File Manager App
<https://play.google.com/store/apps/details?id=com.lonelycatgames.Xplore>

No = Samsung My Files File Manager App
<https://play.google.com/store/apps/details?id=com.sec.android.app.myfiles>
No = Files File Manager App Shortcut
<https://play.google.com/store/apps/details?id=org.aospstudio.files>

Yes = MK Explorer File Manager App
<https://play.google.com/store/apps/details?id=pl.mkexplorer.kormateusz>
Yes = MiX File Manager App

Yes = FX File Manager App
<https://play.google.com/store/apps/details?id=nextapp.fx>

No = Amaze File Manager App
<https://play.google.com/store/apps/details?id=com.amaze.filemanager>

--
Posted out of the goodness of my heart to disseminate useful information

[Lars Anders]

On 21 Nov 2022, Andy Burnelli <sp...@nospam.com> wrote :

> If it doesn't do anything that the other file managers do, then I would
> ask why you let Google spyware onto your phone without a good reason.

https://www.hybrid-analysis.com/sample/67ecb5dd42039cca5d7ceeeb5273d2f3c92700c910d58eb7b35e5bc46d049e1f?environmentId=200
Google Services Framework_com.google.android.gsf.apk

Has the ability to get the wifi MAC address (may be used to fingerprint
device)
Has the ability to identify network operator related data
Has the ability to read the device ID (e.g. IMEI or ESN)

IP, Domain, Hash...
suspicious
Threat Score: 66/100AV Detection: Marked as clean
Google Services Framework_com.google.android.gsf.apk
This report is generated from a file or URL submitted to this webservice on
November 21st 2022 02:28:40 (UTC)
Report generated by Falcon Sandbox v7.00 © Hybrid Analysis

Incident Response
Risk Assessment
Fingerprint
Has the ability to get the wifi MAC address (may be used to fingerprint
device)
Has the ability to identify network operator related data
Has the ability to read the device ID (e.g. IMEI or ESN)
Indicators
Not all malicious and suspicious indicators are displayed. Get your own
cloud service or the full version to view all details.

Malicious Indicators2
General
Has the ability to read the device ID (e.g. IMEI or ESN)
details
Found invoke in "com.google.android.gsf.checkin.CheckinService.smali" to
"android.telephony.TelephonyManager.getSimSerialNumber"
Found invoke in "com.google.android.gsf.checkin.CheckinService.smali" to
"android.telephony.TelephonyManager.getSubscriberId"
Found invoke in
"com.google.android.gsf.checkin.CheckinRequestBuilder.smali" to
"android.telephony.TelephonyManager.getDeviceId"
source
Static Parser
relevance
3/10
Installation/Persistance
Has the ability to execute code after reboot
details
Permission request for "android.permission.RECEIVE_BOOT_COMPLETED"
source
Static Parser
relevance
10/10
Suspicious Indicators6
General
Uses java reflection classes
Network Related
Has the ability to open an internet connection
details
Found invoke in "com.google.android.gsf.update.DownloadAttempt.smali" to
"java.net.URL.openConnection"
Found invoke in "com.google.android.pano.widget.BitmapWorkerTask.smali" to
"java.net.URL.openConnection"
source
Static Parser
relevance
3/10
Hiding 4 Suspicious Indicators
All indicators are available only in the private webservice or standalone
version
Informative7
External Systems
Sample was identified as clean by Antivirus engines
General
Contains SQL queries
Requires permissions only available to signed APKs
details
Found permission request for "android.permission.UPDATE_DEVICE_STATS"
source
Static Parser
relevance
7/10
Requires permissions only available to signed APKs part of the system
details
Found permission request for "android.permission.ACCESS_CACHE_FILESYSTEM"
Found permission request for "android.permission.BACKUP"
Found permission request for "android.permission.MASTER_CLEAR"
Found permission request for "android.permission.REBOOT"
Found permission request for "android.permission.SET_TIME"
Found permission request for "android.permission.STATUS_BAR"
Found permission request for "android.permission.WRITE_GSERVICES"
Found permission request for "android.permission.WRITE_SECURE_SETTINGS"
source
Static Parser
relevance
7/10
Tests the internet connectivity
details
Found invoke in
"com.google.android.gsf.update.SystemUpdateService$UpdateTask.smali" to
"android.net.NetworkInfo.isConnected"
Found invoke in
"com.google.android.gsf.update.SystemUpdateService$UpdateTask.smali" to
"android.net.ConnectivityManager.getActiveNetworkInfo"
Found invoke in "com.google.android.gsf.update.StateWatcher.smali" to
"android.net.ConnectivityManager.getActiveNetworkInfo"
Found invoke in "com.google.android.gsf.checkin.CheckinService.smali" to
"android.net.ConnectivityManager.getActiveNetworkInfo"
Found invoke in "com.google.android.gsf.checkin.CheckinService.smali" to
"android.net.NetworkInfo.isConnected"
Found invoke in
"com.google.android.gsf.checkin.CheckinRequestBuilder.smali" to
"android.net.ConnectivityManager.getNetworkInfo"
Found invoke in
"com.google.android.gsf.checkin.CheckinRequestBuilder.smali" to
"android.net.wifi.WifiManager.getConnectionInfo"

[Lars Anders]

On 21 Nov 2022, Andy Burnelli <sp...@nospam.com> wrote :

> <https://i.postimg.cc/fT7MSr90/root01.jpg> Even with All Files Access=On
> <https://i.postimg.cc/05wkPQ5n/root02.jpg> Half of file managers read root
> <https://i.postimg.cc/R0hm8Cbc/root03.jpg> & half of file managers do not

https://github.com/microg/GoogleServicesFramework/blob/master/src/com/google/android/gsf/gservices/GservicesProvider.java

package com.google.android.gsf.gservices;

import android.content.*;
import android.content.pm.PackageManager;
import android.content.pm.Signature;
import android.database.Cursor;
import android.database.MatrixCursor;
import android.database.sqlite.SQLiteDatabase;
import android.net.Uri;
import android.os.Binder;
import android.os.Build;
import android.os.Bundle;
import android.os.Process;
import android.util.Log;

import java.io.ByteArrayInputStream;
import java.math.BigInteger;
import java.security.MessageDigest;
import java.security.cert.CertificateFactory;
import java.security.cert.X509Certificate;
import java.util.ArrayList;
import java.util.Map.Entry;
import java.util.SortedMap;
import java.util.TreeMap;

public class GservicesProvider extends ContentProvider {

private static final BigInteger GOOGLE_SERIAL = new BigInteger("1228183678");
private static final char[] HEX_CHARS =
new char[]{'0', '1', '2', '3', '4', '3', '5', '6', '7', '8', '9', 'a', 'b', 'c', 'd', 'e', 'f'};
private static final int KEY_COLUMN = 0;
private static final String TAG = "GoogleServicesProvider";
public static final Uri UPDATE_MAIN_DIFF_URI = Uri.parse("content://com.google.android.gsf.gservices/main_diff");
public static final Uri UPDATE_MAIN_URI = Uri.parse("content://com.google.android.gsf.gservices/main");
public static final Uri UPDATE_OVERRIDE_URI = Uri.parse("content://com.google.android.gsf.gservices/override");
private static final int VALUE_COLUMN = 1;

private DatabaseHelper dbHelper;
private boolean pushToSecure = false;
private boolean pushToSystem = false;
private TreeMap<String, String> values;

private final Object valuesLock = new Object();
private MessageDigest md;

private boolean checkCallingPermission(final String permission) {
return getContext().checkCallingPermission(permission) == PackageManager.PERMISSION_GRANTED;
}

private boolean checkPermissionOrSignature(final String permission, final BigInteger... serials) {
if (checkCallingPermission(permission)) {
return true;
}
for (BigInteger serial : serials) {
if (checkSignature(serial)) {
return true;
}
}
return false;
}

private boolean checkReadPermission() {
return checkPermissionOrSignature("com.google.android.providers.gsf.permission.READ_GSERVICES",
getSignatureSerials("com.google.android.gsf", GOOGLE_SERIAL));
}

private BigInteger[] getSignatureSerials(String packageName, BigInteger additionalSerial) {
ArrayList<BigInteger> serials = new ArrayList<BigInteger>();
try {
final PackageManager pm = getContext().getPackageManager();
final Signature[] sigs = pm.getPackageInfo(packageName, PackageManager.GET_SIGNATURES).signatures;
final CertificateFactory factory = CertificateFactory.getInstance("X509");
for (final Signature sig : sigs) {
try {
final X509Certificate cert =
(X509Certificate) factory.generateCertificate(new ByteArrayInputStream(sig.toByteArray()));
if (cert.getSerialNumber() != null) {
serials.add(cert.getSerialNumber());
}
} catch (Exception e) {
// Try next
}
}
} catch (Exception e) {
// Ignore
}
if (additionalSerial == null) {
return serials.toArray(new BigInteger[serials.size()]);
} else {
BigInteger[] result = serials.toArray(new BigInteger[serials.size() + 1]);
result[serials.size()] = additionalSerial;
return result;
}
}

private boolean checkSignature(final BigInteger serial) {
try {
final PackageManager pm = getContext().getPackageManager();
final String packageName = pm.getNameForUid(Binder.getCallingUid());
final BigInteger[] serials = getSignatureSerials(packageName, null);
for (BigInteger s : serials) {
if (s.equals(serial)) {
return true;
}
}
} catch (final Throwable t) {
}
return false;
}

private boolean checkWritePermission() {
return checkPermissionOrSignature("com.google.android.providers.gsf.permission.WRITE_GSERVICES",
getSignatureSerials("com.google.android.gsf", GOOGLE_SERIAL));
}

private boolean computeLocalDigestAndUpdateValues() {
final SQLiteDatabase db = dbHelper.getWritableDatabase();
final TreeMap<String, String> map = new TreeMap<String, String>();
md.reset();
String oldDigest = null;
db.beginTransaction();
Cursor cursor = db.rawQuery("SELECT name, value FROM main ORDER BY name", null);
try {
while (cursor.moveToNext()) {
final String key = cursor.getString(KEY_COLUMN);
final String value = cursor.getString(VALUE_COLUMN);
if (!key.equals("digest")) {
md.update(key.getBytes());
md.update((byte) 0);
md.update(value.getBytes());
md.update((byte) 0);
} else {
oldDigest = value;
}
map.put(key, value);
}
} finally {
cursor.close();
}
final StringBuilder sb = new StringBuilder("1-");
final byte[] hash = md.digest();
for (final byte element : hash) {
sb.append(HEX_CHARS[0xf & element >> 4]);
sb.append(HEX_CHARS[element & 0xf]);
}
final String digest = sb.toString();
map.put("digest", digest);

if (!digest.equals(oldDigest)) {
ContentValues contentValues = new ContentValues();
contentValues.put("name", "digest");
contentValues.put("value", digest);
db.insertWithOnConflict("main", null, contentValues, SQLiteDatabase.CONFLICT_REPLACE);
}
cursor = db.rawQuery("SELECT name, value FROM overrides", null);
try {
while (cursor.moveToNext()) {
map.put(cursor.getString(KEY_COLUMN), cursor.getString(VALUE_COLUMN));
}
} finally {
cursor.close();
}
synchronized (valuesLock) {
values = map;
}
db.setTransactionSuccessful();
db.endTransaction();
return !digest.equals(oldDigest);
}

@Override
public int delete(final Uri arg0, final String arg1, final String[] arg2) {
throw new UnsupportedOperationException();
}

private String getPrefixLimit(final String string) {
for (int i = string.length() - 1; i > 0; i--) {
final char c = string.charAt(i);
if (c < '\uFFFF') {
return string.substring(0, i) + (char) (c + 1);
}
}
return null;
}

@Override
public String getType(final Uri uri) {
return null;
}

@Override
public Uri insert(final Uri uri, final ContentValues values) {
throw new UnsupportedOperationException();
}

@Override
public boolean onCreate() {
try {
md = MessageDigest.getInstance("SHA-1");
} catch (Exception e) {
Log.w(TAG, "Can't hash digest, this will cause problems!", e);
}
dbHelper = new DatabaseHelper(getContext());
final int pid = Process.myPid();
final int uid = Process.myUid();
if (getContext().checkPermission("android.permission.WRITE_SETTINGS", pid, uid) == PackageManager.PERMISSION_GRANTED) {
pushToSystem = true;
}
if (getContext().checkPermission("android.permission.WRITE_SECURE_SETTINGS", pid, uid) == PackageManager.PERMISSION_GRANTED) {
pushToSecure = true;
}
computeLocalDigestAndUpdateValues();
return true;
}

@Override
public Cursor query(final Uri uri, final String[] projection, final String selection, final String[] selectionArgs,
final String sortOrder) {
if (!checkReadPermission()) {
Log.d(TAG, "no permission to read during query(" + uri + ", " + projection + ", " + selection + ", " +
selectionArgs + ", " + sortOrder + ")");
throw new UnsupportedOperationException();
}
final MatrixCursor cursor = new MatrixCursor(new String[]{"key", "value"});
if (selectionArgs != null) {
final String lastSegment = uri.getLastPathSegment();
if (lastSegment == null) {
querySimple(cursor, selectionArgs);
} else if (lastSegment.equals("prefix")) {
queryPrefix(cursor, selectionArgs);
}
}
return cursor;
}

private void queryPrefix(final MatrixCursor cursor, final String... selectionArgs) {
for (final String arg : selectionArgs) {
final String limit = getPrefixLimit(arg);
SortedMap<String, String> sortedmap;
if (limit == null) {
sortedmap = values.tailMap(arg);
} else {
sortedmap = values.subMap(arg, limit);
}
for (final Entry<String, String> entry : sortedmap.entrySet()) {
cursor.addRow(new String[]{entry.getKey(), entry.getValue()});
}
}
}

private void querySimple(final MatrixCursor cursor, final String[] keys) {
synchronized (valuesLock) {
for (final String key : keys) {
cursor.addRow(new String[]{key, values.get(key)});
}
}
}

private void syncAllSettings() {
if (pushToSystem) {
syncSettings(android.provider.Settings.System.CONTENT_URI, "system:", "saved_system");
}
if (pushToSecure) {
syncSettings(android.provider.Settings.Secure.CONTENT_URI, "secure:", "saved_secure");
}
}

private void syncSettings(final Uri uri, final String prefix, final String table) {
final MatrixCursor cursor = new MatrixCursor(new String[]{"key", "value"});
queryPrefix(cursor, prefix);
// TODO Auto-generated method stub
Log.w(TAG, "Not yet implemented: GservicesProvider.syncSettings");
}

@Override
public int update(final Uri uri, final ContentValues values, final String selection, final String[] selectionArgs) {
if (!checkWritePermission()) {
Log.d(TAG, "no permission to write during update(" + uri + ", " + values + ", " + selection + ", " +
selectionArgs + ")");
throw new UnsupportedOperationException();
}
final String lastSegment = uri.getLastPathSegment();
if (lastSegment.equals("main") && updateMain(values) ||
lastSegment.equals("main_diff") && updateMainDiff(values) ||
lastSegment.equals("override") && updateOverride(values)) {
getContext().sendBroadcast(new Intent("com.google.gservices.intent.action.GSERVICES_CHANGED"));
return 1;
}
return 0;
}

private boolean updateMain(final ContentValues values) {
SQLiteDatabase db = dbHelper.getWritableDatabase();
db.insertWithOnConflict("main", null, values, SQLiteDatabase.CONFLICT_REPLACE);
db.close();
if (computeLocalDigestAndUpdateValues()) {
Log.d(TAG, "changed " + values.get("name") + " to " + values.get("value") + " and digest is now " + this.values.get("digest"));
return true;
}
return false;
}

private boolean updateMainDiff(final ContentValues values) {
Log.w(TAG, "Not yet implemented: GservicesProvider.updateMainDiff: " + values);
return false;
}

private boolean updateOverride(final ContentValues values) {
Log.w(TAG, "Not yet implemented: GservicesProvider.updateOverride: " + values);
return false;
}

public static class OverrideReceiver extends BroadcastReceiver {

@Override
public void onReceive(final Context context, final Intent intent) {
final Bundle bundle = intent.getExtras();
if (bundle != null) {
final ContentValues values = new ContentValues();
for (final String key : bundle.keySet()) {
values.put(key, bundle.getString(key));
}
context.getContentResolver().update(UPDATE_OVERRIDE_URI, values, null, null);
}
}

}
}

[Andy Burnelli]

flibbertigibbet wrote:

> On Mon, 21 Nov 2022 02:13:51 +0000, Andy Burnelli <sp...@nospam.com> wrote:
>
>>flibbertigibbet wrote:
>>
>>>>If it doesn't do anything that the other file managers do, then I would
>>>>ask why you let Google spyware onto your phone without a good reason.
>>>
>>> I don't know what you mean by Google spyware, and I cannot see how what
>>> seems like a reputable file manager costing more than L5 can be malicious.
>>> If you think I'm better off not having it on my devices then I'll remove it
>>> and get my fiver back before my cooling off time runs out. Thanks.
>>
>>There are many others who know far more than I do about GSF processes.
>> <https://i.postimg.cc/mk2CKQdn/gsfid09.jpg> GSF services on Android
>

> So GSF is an acronym for Google Services Framework.

I think of it as "Google Spyware Framework" since that appears to be the
purpose of the code which is _never_ needed in any app that I know of.

Personal hygiene and personal privacy are similar in that it's a never
ending series of "habits" that you practice - or you become disgusting.

Hence, perhaps a more appropriate way of thinking about what the "S" means
is to consider it the "Google Spit Framework (because spit is what it is).

> Is that a bad thing?

Is lack of personal hygiene a bad thing?

IMHO, people who don't practice personal hygiene become disgusting over
time, just as people who don't practice personal privacy become disgusting.

An example is people who allow precise location from Google maps are
disgusting people because they upload _your_ private details to Google.

Likewise, people who use Google's GMail app are disgusting people because
they upload the personal contact information of _your_ kids to Google.

>>But why do you think trusted developers go to the trouble to add a filter
>>to the replacement Google Play Store clients which expressly filters out
>>permanently any and all apps on the Google Play Store with GSF in them?
>> <https://i.postimg.cc/YStB48LH/gsfid03.jpg> Filter out GSF apps
>

> I have no idea why.

People need to "think" when they install and use apps on a mobile device.
They need to "think" why an app is asking for whatever it's asking for.

For example, I was looking for pedometer apps, and most of them required a
login, which is not needed for a pedometer app. Why are they asking for it?

Another example was I was looking for a pool chemistry app, and most of
them required a login. Again, why does pool chemistry need a login account?

It's the same with Apple or Google requiring a login to the mothership just
to download and install an app from their respective app stores.

You need to think _why_ they want you to log into their app store so that
Apple can insert tracking information into every app, and so that Google
can keep track of every app you install and on which device.

Luckily Android has privacy which is impossible on iOS in that regard, but
I suspect that iOS has privacy Google doesn't have in terms of GSF code.

If anyone on this ng knows whether GSF code is inserted into Apple IPAs,
that would be useful information to know as GSF is basically spyware, IMHO.

>>Why do you think trusted developers go to the trouble to create methods for
>>a normal (non rooted) knowledgeable user to view the GSF ID at will?
>> <https://i.postimg.cc/G2Cz4GHz/gsfid04.jpg> Evozi Device ID reports GSF ID
>

> As above: I don't know.

Let's put it this way, since I'm trying to help people "think" about GSF.

Can order food off a menu at a restaurant without a waiter spitting in it?
Hopefully the answer is "yes", right?

But the GSF is "spit" in your soup, simply because you can get the same
soup _without_ the GSF spit in that soup - which is why I filter it out.

That's why I asked you why you chose an app with GSF "spit" in the soup
when you could have gotten plenty of apps _without_ GSF "spit" in them.

Unfortunately, in the case of the Apple restaurant, they _always_ spit in
your soup in terms of adding tracking information to everything you order.

>>And, why do you think they write tools to _change_ that unique GSF ID?
>> <https://i.postimg.cc/X7ZspnsG/gsfid01.jpg> You can change your GSF ID
>

> I really haven't a clue.

The GSF_ID is a unique tracking ID that is on all Android phones (we're not
talking about rooted phones here) just as Apple tracks every user on iOS.

Both Apple & Google have a vested interest in tracking your every move.

They both track multiple ways, one of which is they insert unique numbers
into your phone (and in the case of Apple, into every single app you use).

What you need to do is practice personal hygiene when cleaning that stuff.

For example, on Android, I used to "wash my hands" of the advertising ID.
<https://i.postimg.cc/t4YpKqZ2/adid03.jpg> Resetting the advertising ID

But hygiene gets easier over time, where nowadays I just delete it instead.

<https://i.postimg.cc/XvqM5CSd/adid06.jpg> Delete Advertising ID

Also on Android I periodically change the GSF_ID to add some entropy.
<https://i.postimg.cc/pLPCKSb8/gsfid08.jpg> Android /user/serial/gsf IDs

Unfortunately, to my knowledge, on iOS you are stuck with your unique IDs.
<https://i.postimg.cc/nrFHSvby/appleid11.jpg> Apple requires a unique ID

>>Having said that, I'm sure there are many others (e.g., Andy Burns for one)
>>who know far more about this pernicious Google spyware than I do, so I
>>welcome people who know far more than I do to help answer your questions.
>

> I don't have any questions about GSF. I simply wanted to know if there is a
> way to continue viewing my Android Data file, either with a bypass Android's
> latest effort to keep customers out of things they don't think they should
> be interfering with or with a different file manager. FV File Pro seems to
> do just that. Should I dump and get my money back because it contains GSF?

Most people take the first app that works in the first search they run,
which, if you think about it, is almost never going to be the best app.

What I do, instead, is set my search filters to intelligent criteria first.
<https://i.postimg.cc/RF06HBB3/aurora05.jpg> Don't even see bad apps

In that case, I wouldn't even _see_ the badly written app that you found.
What I see are apps which do what your program does, but they do it right.

All of these read my (non-rooted) root file system partition for example.

X-plore File Manager App
<https://play.google.com/store/apps/details?id=com.lonelycatgames.Xplore>

MK Explorer File Manager App
<https://play.google.com/store/apps/details?id=pl.mkexplorer.kormateusz>

MiX File Manager App (the free version com.mixexplorer not on Google Play)
<https://mixplorer.com/>
<https://forum.xda-developers.com/t/app-2-2-mixplorer-v6-x-released-fully-featured-file-manager.1523691/#post-23109280>

FX File Manager App
<https://play.google.com/store/apps/details?id=nextapp.fx>

For you to use the FV File Manager over them requires knowledge that I do
not have which is what does it do that those above don't already do?
<https://play.google.com/store/apps/details?id=com.folderv.file>

Since I have a good heart and even better intent, all I can say to answer
your question is that half my file managers saw the root partition and half
did not - but all of my file managers are devoid of GSF "spit" in them.
<https://i.postimg.cc/fT7MSr90/root01.jpg> non-rooted, All Files Access=On

<https://i.postimg.cc/05wkPQ5n/root02.jpg> Half of file managers read root
<https://i.postimg.cc/R0hm8Cbc/root03.jpg> & half of file managers do not

>>In short, if the app you found links in Google Services Framework, and if
>>it's the _only_ app on the planet that does what you need, then I'd use
>>that app (if I must); but, conversely, if there are plenty of well written
>>apps which do NOT link in Google GSF spyware, then I'd use them instead.
>>
>>It's a simple decision for me, especially as my Google Play Store client
>>never shows me those poorly written apps in the first place when I search.
>> <https://i.postimg.cc/RF06HBB3/aurora05.jpg> Filters Google won't give you
>

> OK. Thanks.

In summary, personal privacy is no different in principle from personal
hygiene in that people who don't practice it become disgusting over time.

What you need to do is not throw everyone around you under the bus, and one
way of doing that is to practice personal privacy whenever you use a phone.

One way to practice that personal privacy is to shun mothership "spit" in
your soup, which, in this case, is to choose apps without GSF code in them.

As always, my goal is to learn, and teach, where certainly others know far
more than I do about what GSF code does so I ask others to help out more.

--
Posted out of the goodness of my heart to disseminate useful information

which, in this case, is to answer the questions posed by the thread OP.

[Bob Campbell]

flibbertigibbet <bl...@blah.blah> wrote:
> Are you trolling, or something? I don't want to be mean, but come on; no
> one's going to spit in your soup. It can happen, sure, but you've got to
> trust that nothing sinister is going on, right?

Of COURSE he is trolling. This person is a notorious, Apple-hating troll
boy. He uses multiple sock puppets to make it appear that people are
agreeing with him.

Nothing he says is true. He makes up the most absurd lies. Over and over
and over.

> [snip paranoid raving]

Good move.

> I think you're a nut and a hypocrite.

Correct and correct.

[Andy Burnelli]

flibbertigibbet wrote:

>>Likewise, people who use Google's GMail app are disgusting people because
>>they upload the personal contact information of _your_ kids to Google.
>

> You're crazy!

No. I use the word "disgusting" for very good reasons.

People who smoke in an elevator are the same kind of "disgusting" people.
You just don't like me calling you disgusting for what you do.

But it's no different than people who litter the sidewalk without thinking
about other people.

You just don't understand but then again, you probably smoke in an
elevator, right?

> My whole family have Google Location turned on all the time so
> that we know where each of us are at any given moment.

I don't doubt it, just as I don't doubt you smoke in an elevator and you
pee in the corner of small alleys when you can't find a bathroom.

People who don't care about other people don't care about other people.
I don't expect you to understand that concept.

But others reading this thread will understand, let's hope.
Uploading my kids' contacts to Google is disgusting behavior, IMHO.

> Also, on top of that,
> I have a Garmin watch, and whenever I go out for a run or even a long walk I
> send a link via WhatsApp to my wife so she can track my whereabouts and even
> my heartbeat on her phone. Modern tech like this allows us all to stay close
> even when we're far apart.

I never once said "modern tech" isn't convenient.
Police love it in fact.

> So, none of your family photos have data location metadata, I suppose.

If you're talking about EXIF location tags, they're all off.
There is a separate setting in most camera apps for exactly this reason.

You see... I'm not the only one who cares about privacy.

> That's sad man. Look, it's none of my business but I think your paranoia is
> stopping you and your family from benefiting in so many ways.

I wonder if you realize you're resorting to ad hominem attacks because I
explained to you patiently about personal privacy and you don't like that?

> Don't you have
> any cameras inside your home looking in and out so that your family can see
> you and communicate with you.

Um... no.
I don't live in the slums.

> What about Alexa devices?

Do I sound like someone who would be so stupid as to own an Alexa?
Do you have any idea how well educated I am?
Probably not.

Suffice to say I know too much about privacy to have an Alexa in my home.

> I have one in every
> room, even the attic and in the shed so that my family and friends can 'Drop
> in' and chat via video.

I'm sure you do.
As I said, I understand people like you rather well.

Do you know I have degrees in not only electrical engineering, but in the
life sciences, which is why I used the personal hygiene point of view.

Do you realize most people "think" you can sterilize things by boiling?
In electrical engineering, people "think" energy flows in wires.

A _lot_ of what people "think" is dead wrong.
They're just uneducated people. That's all.

They don't think.

> Are you trolling, or something? I don't want to be mean, but come on; no
> one's going to spit in your soup. It can happen, sure, but you've got to
> trust that nothing sinister is going on, right?

I use descriptive words. Spit is my descriptive word for the "S" in GSF.
Get over it.

Suffice to assume that my intent is honest and sincere and heart felt.

My question to you is _why_ are you using apps with GSF in them when you
could just as easily be using apps that do NOT incorporate GSF into them?

Don't call me demeaning names because you didn't think of why you do that.
Just think why.

> If it wasn't for targeted advertising I wouldn't have so many great things
> that enrich my life and make it so easy to get the things that matter to me
> while filtering out the crap that I'm not interested in. You agree with me.

I just wanted to help you _find_ an app that did what _you_ asked it to do.
Why must you call me names for helping you?

> If you didn't agree with the notion of spreading information to a targeted
> audience, an audience you feel might want to buy what you're trying to sell,
> you wouldn't have included those extra newsgroups in this discussion that I
> began to just comp.mobile.android. Are you feeling dirty?

I'm spreading the word about privacy.
Each of those newsgroups was related to the word that I was spreading.

Consider me a well meaning and quite knowledgeable evangelist for privacy.

> I think you're a nut and a hypocrite.

Why am I a nut and what did I say that was hypocritical?

a. Fundamentally, you asked for an app that did what you wanted it to do.
b. I gave you that app (four of them, in fact)
c. Then you said your app had GSF in it and I told you what I though of it

Why does _that_ purposefully helpful dialog, which took me quite a long
while to write for you (including a variety of well annotated screenshot),
all for free - make you consider me a nut and hypocrite?

How does answering _all_ your questions make me a nut and hypocrite?
You should be thanking me.

Not calling me names.

HINT: I know why you called me names - as I've been on Usenet for decades.
I'm well aware how people who have no adult response to facts act.

The good news is Usenet is water under the bridge.
If you act like an adult in your response, I'll treat you like an adult.

I teach in high school and that's how I treat the kids too.
Some kids have the capacity to learn; unfortunately, some don't.

Do you have the capacity to learn?
Up to you. Not me.

Good luck.
I wish you well.

--
Posted out of the goodness of my heart to disseminate useful information

which, in this case, is to answer all the questions posed by the OP today.

[Andy Burnelli]

flibbertigibbet wrote:

> On Mon, 21 Nov 2022 18:15:17 +0000, Bob Campbell <nu...@none.none> wrote:
>
>>flibbertigibbet <bl...@blah.blah> wrote:
>>> Are you trolling, or something? I don't want to be mean, but come on; no
>>> one's going to spit in your soup. It can happen, sure, but you've got to
>>> trust that nothing sinister is going on, right?
>>
>>Of COURSE he is trolling. This person is a notorious, Apple-hating troll
>>boy. He uses multiple sock puppets to make it appear that people are
>>agreeing with him.
>

> Oh crap. Thanks for the heads up. Would 'Andy Burns' be one of them? He blew
> quite a lot of smoke up his arse in his last post to me.

Oh Jeezus.... Bob Campbell, whom we _all_ have plonked for being an iKook
troll, tells you that everyone who answers your questions is an "apple
hating" troll...

And then...

You take that single datapoint, and then you say Andy Burns, who is one of
the most knowledgeable people on this newsgroup, blew smoke up your arse?

WTF?
When you agree with the likes of "Bob Campbell", that doesn't look good for
your ability to comprehend an adult discussion, "flibbertigibbet".

HINT: I explained what GSF was, and I provided four apps that did what you
wanted them to do, and what did this Apple iKook Campbell give you?

>>Correct and correct.
>
> Oh wow, I hate getting caught out like that. Thanks again.

For you to say that, when people gave you _hours_ of their valuable time
and four apps that did EXACTLY what you wanted them to do, it tells us that
it's you who is the troll here... not the well educated rest of us.

As I said in my last post, Usenet is water under the bridge. If you act
like an adult, we will treat you as an adult. But if you act like Alan
Baker or Bob Campbell or Dustin Cook or Snit et. al, then we plonk you.

Your choice.

Just remember these facts:
a. You asked a question
b. I gave you _hours_ of my times _answering_ that question.
c. And then you take a well-known iKook like Campbell at _his_ word?

What does that make you?
THINK before you respond please.

--
Posted out of the goodness of my heart to disseminate useful information

which, in this case, was to answer every question that the OP asked here.

[Bob Campbell]

flibbertigibbet <bl...@blah.blah> wrote:
> On Mon, 21 Nov 2022 18:15:17 +0000, Bob Campbell <nu...@none.none> wrote:
>

>> flibbertigibbet <bl...@blah.blah> wrote:
>>> Are you trolling, or something? I don't want to be mean, but come on; no
>>> one's going to spit in your soup. It can happen, sure, but you've got to
>>> trust that nothing sinister is going on, right?
>>
>> Of COURSE he is trolling. This person is a notorious, Apple-hating troll
>> boy. He uses multiple sock puppets to make it appear that people are
>> agreeing with him.
>

> Oh crap. Thanks for the heads up. Would 'Andy Burns' be one of them? He blew
> quite a lot of smoke up his arse in his last post to me.

Yes, Andy Burnelli. Before that he was Arlen Holder. SMS is another sock
puppet.

He is a simple minded troll boy. Lies and more lies.

[Alan]

To be fair, I don't think that SMS is a sockpuppet of the same person
who posts as "Arlen" or "Andy Burnelli".

[nospam]

In article <tlhmpi$1gsl$1...@dont-email.me>, Alan <nuh...@nope.com> wrote:

> >
> > Yes, Andy Burnelli. Before that he was Arlen Holder. SMS is another sock
> > puppet.
> >
> > He is a simple minded troll boy. Lies and more lies.
> >
>
> To be fair, I don't think that SMS is a sockpuppet of the same person
> who posts as "Arlen" or "Andy Burnelli".

they're different people, although they troll together.

[Bob Campbell]

flibbertigibbet <bl...@blah.blah> wrote:>
> Arlen Holder? Really? Yes, I think you're right. I came here years ago using
> my real name and my genuine email address asking questions, and this idiot
> Arlen Holder was all over me like a rash telling me, among many other
> unrelated things I didn't really want to know, that he was the most
> intelligent person I'd ever likely meet and tried to make me believe I ought
> to be thankful for all the hard work he'd put into answering my query. So
> yes, it has to be Arlen. I should have avoided him when he suggested right
> from our first encounter that I must live in a slum surrounded by slum
> people simply because I use biometrics to safeguard my devices. He takes
> this Usenet thing and himself too seriously. He needs to take a break. I
> plonked him in my bozo bin but I'm sure I'll bump into another of his
> sock-puppets again.
>

Yes, he is Arlen. Always bragging about being an “adult” and then proceeds
to act like a child with every post. I may be wrong about sms, but they
generally sing from the same songbook.

He calls me (and many others) a troll, based on calling out his lies. He
doesn’t even know what the word “troll” means.

He is a genuinely pathetic, attention-seeking nutbag.

[Andy Burnelli]

I think it's hilarious that almost everyone is accused of being me, which
happens when they state facts you iKooks can't form an adult response to.

It's hilarious Andy Burns is accused of being me & that badgolferman also
was recently accused of being me... *simply for stating facts you hate*.

What's really the issue is you invested all your ego into lies that Apple
advertises, and, it turns out that you _hate_ Apple brazenly lied to you.

*You iKooks are _desperate_ to deflect attention away from Apple lies.*

[Andy Burnelli]

flibbertigibbet wrote:

> Yes, I think you're right.

Here's the deal "flibbertigibbet" as I see it and rest assured, I see well.
1. You asked a question
2. I considered you a troll - but gave you the benefit of the doubt
3. I spent hours faithfully answering your questions, in technical detail
a. I provided programs
b. I tested every program
c. I provided screenshots, etc.

And... most importantly, I answered all your questions.
a. Free of charge
b. Out of my own good intentions
c. And honest behavior

Now, you come along and accuse me of acts based on what the iKooks Alan
Baker (IQ 40) and Bob Campbell (likely the same as Alan Baker) tell you?

It doesn't matter that you chose just about the worst app a human being can
choose to solve your problem because what matters is you call me an idiot.

You're right on that.
I'm an idiot for trying to help you, "flibbertigibbet"... that much I know.

Having said that, you've just joined Alan Baker in my killfile, and, while
I'm at it (since it's a PITA to administer), so has his Bob Campbell nym.

Good luck.

NOTE: This thread is not in vain though, as anyone searching for privacy
now and in the future will find the useful information I imparted - and -
in fact, I was able to create a new thread based on substantive tests.
*Why do some file managers read the root partition?*
<https://groups.google.com/g/comp.mobile.android/c/40arOFaEV9k>

<https://i.postimg.cc/fT7MSr90/root01.jpg> non-rooted, All Files Access=On
<https://i.postimg.cc/05wkPQ5n/root02.jpg> Half of file managers read root
<https://i.postimg.cc/R0hm8Cbc/root03.jpg> & half of file managers do not

and
*Android System Intelligence - Do you clear it periodically?*
<https://groups.google.com/g/comp.mobile.android/c/2YuJGy6gjG8>
<https://i.postimg.cc/V6k0sgfz/sysintel01.jpg> Android System Intelligence
<https://i.postimg.cc/Pr3LDYgz/sysintel02.jpg> Disable ASI on your phone
<https://i.postimg.cc/x8gXtzcQ/sysintel03.jpg> That stops many activities
<https://i.postimg.cc/VLPzf9Px/sysintel04.jpg> ASI no longer shows up
<https://i.postimg.cc/9FjntrgQ/sysintel05.jpg> Private Compute Services
<https://i.postimg.cc/Qt9yS5rH/sysintel06.jpg> Uploads to Google servers
<https://i.postimg.cc/QdfY3S8F/sysintel07.jpg> FOSS OpenBoard KB learning
<https://i.postimg.cc/s25ctzct/sysintel08.jpg> Summary of the steps taken

Since I'm all about learning, teaching, and helping others on Android,
I'm still actually glad I tried to help this person since I learned from
the effort, and since others will benefit greatly from that new knowledge.

--
Posted out of the goodness of my heart to disseminate useful information

which, in this case, is to explain that anyone who ignores helpful advice
from people who honestly tried to help them, and then who takes everything
that Alan Baker & Bob Campbell say as gospel, isn't even worth helping.

These people are a lost cause, mostly due to their extremely low IQ...
!delete-regex From "Dustin Cook"
!delete-regex From "Snit"
!delete-regex From "Good Guy"
!delete-regex From "Alan Baker"
!delete-regex From "Alan"
!delete-regex From "R.Wieser"
!delete-regex From "Ken Blake"
!delete-regex From "RocketSurgeon"
!delete-regex From "Peeler"
!delete-regex From "Joerg Lorenz"
!delete-regex From "Rod Speed"
!delete-regex From "philo"
!delete-regex From "Bob Campbell"
!delete-regex From "flibbertigibbet"

[Bob Martin]

Nothing better to do?

[Frank Slootweg]

Bob Campbell <nu...@none.none> wrote:
> flibbertigibbet <bl...@blah.blah> wrote:
> > On Mon, 21 Nov 2022 18:15:17 +0000, Bob Campbell <nu...@none.none> wrote:
> >
> >> flibbertigibbet <bl...@blah.blah> wrote:
> >>> Are you trolling, or something? I don't want to be mean, but come on; no
> >>> one's going to spit in your soup. It can happen, sure, but you've got to
> >>> trust that nothing sinister is going on, right?
> >>
> >> Of COURSE he is trolling. This person is a notorious, Apple-hating troll
> >> boy. He uses multiple sock puppets to make it appear that people are
> >> agreeing with him.
> >
> > Oh crap. Thanks for the heads up. Would 'Andy Burns' be one of them? He blew
> > quite a lot of smoke up his arse in his last post to me.

Not Andy Burns, who is one of the good guys, but 'Andy Burnelli', as
Bob points out below.

> Yes, Andy Burnelli. Before that he was Arlen Holder. SMS is another sock
> puppet.

sms is not a sock puppet. He uses a single screen name and his real
name. Maybe you don't like his posts, but that doesn't make him a sock

[Frank Slootweg]

They don't "troll together". They mostly disagree and one is often on
the receiving end of insults. Guess which one.

[Frank Slootweg]

flibbertigibbet <bl...@blah.blah> wrote:

> On Sun, 20 Nov 2022 16:56:41 +0000, flibbertigibbet <bl...@blah.blah> wrote:
>
> >Up until quite recently I've been using
> >File Manager Plus https://bit.ly/3Vb0h31
> >and or
> >USB Media Explorer https://bit.ly/3EM2wEx
> >to get around my Galaxy S22 Ultra, because the standard file explorer is
> >pretty basic and had been giving me the runaround when trying to access my
> >Data folder. Now, though, since updating to Android 13 these paid-for
> >3rd-party apps won't give me access to that folder. Can anyone here tell me
> >how I can get these apps to cooperate with me, or maybe tell me which app
> >bypasses Android's efforts to keep their customers out of this folder,
> >please?
>

> Sorted. FV File Pro does the job nicely.

You already have your solution, but in case you - or anyone else -
are/is also looking for alternative methods:

I have found that with a normal USB connection to a Windows system -
i.e. using MTP - one also gets access to the Android/data and
Android/obb folders. At least that's the case for my Samsung Galaxy A51
(currently Android 12) and my Windows 11 system.

BTW, you do realize that 'FV File Manager'/'FV File Pro' [1] are
developed in Hong Kong?

While Hong Kong might still be somewhat safe, previous file managers
such as ES File Explorer were developed in China, did rather nasty
things behind the scenes and were withdrawn from the Play Store / Google
Play.

Hope this helps.

[1]
'FV File Manager'
<https://play.google.com/store/apps/details?id=com.folderv.file>
'FV File Pro'
<https://play.google.com/store/apps/details?id=com.folderv.filepro>

[Andy Burns]

Frank Slootweg wrote:

> Bob Campbell wrote:
>
>> Would 'Andy Burns' be one of them?
>> He blew quite a lot of smoke up his arse in his last post to me.
>
> Not Andy Burns, who is one of the good guys

Thanks Frank.

> but 'Andy Burnelli', as Bob points out below.

I'm not sure I remember replying to Bob Campbell ...

[Frank Slootweg]

Andy Burns <use...@andyburns.uk> wrote:
> Frank Slootweg wrote:
>
> > Bob Campbell wrote:
> >
> >> Would 'Andy Burns' be one of them?
> >> He blew quite a lot of smoke up his arse in his last post to me.
> >
> > Not Andy Burns, who is one of the good guys
>
> Thanks Frank.

You're - *very* - welcome.

> > but 'Andy Burnelli', as Bob points out below.
> I'm not sure I remember replying to Bob Campbell ...

No, you did not reply to Bob Campbell, I did. I was referring to Bob's
"Yes, Andy Burnelli. Before that he was Arlen Holder.". See my full
post to which you replied. Or just don't bother, it's not important.

[Andy Burnelli]

Frank Slootweg wrote:

> You already have your solution, but in case you - or anyone else -
> are/is also looking for alternative methods:
>
> I have found that with a normal USB connection to a Windows system -
> i.e. using MTP - one also gets access to the Android/data and
> Android/obb folders. At least that's the case for my Samsung Galaxy A51
> (currently Android 12) and my Windows 11 system.
>
> BTW, you do realize that 'FV File Manager'/'FV File Pro' [1] are
> developed in Hong Kong?
>
> While Hong Kong might still be somewhat safe, previous file managers
> such as ES File Explorer were developed in China, did rather nasty
> things behind the scenes and were withdrawn from the Play Store / Google
> Play.
>
> Hope this helps.
>
> [1]
> 'FV File Manager'
> <https://play.google.com/store/apps/details?id=com.folderv.file>
> 'FV File Pro'
> <https://play.google.com/store/apps/details?id=com.folderv.filepro>

I think Frank's choice sucks so I want to let folks know _before_
they install it that it contains GSF (google spyware, IMHO).

However, as Frank partially noted, the OP came up with just about the worst program
he could have chosen, and like Frank, I provided multiple better solutions
(mine were free, ad free and gsf free, which I use as a matter of habit).
<https://i.postimg.cc/fT7MSr90/root01.jpg> Even with All Files Access=On

<https://i.postimg.cc/05wkPQ5n/root02.jpg> Half of file managers read root
<https://i.postimg.cc/R0hm8Cbc/root03.jpg> & half of file managers do not

All of these read my non-=rooted root file system partition without issues.

X-plore File Manager App
<https://play.google.com/store/apps/details?id=com.lonelycatgames.Xplore>
MK Explorer File Manager App
<https://play.google.com/store/apps/details?id=pl.mkexplorer.kormateusz>
MiX File Manager App (the free version com.mixexplorer not on Google Play)
<https://mixplorer.com/>
<https://forum.xda-developers.com/t/app-2-2-mixplorer-v6-x-released-fully-featured-file-manager.1523691/#post-23109280>
FX File Manager App
<https://play.google.com/store/apps/details?id=nextapp.fx>

The problem I have with Frank's suggestions is the GSF spyware in both of them.

I realize most people, perhaps even Frank, and certainly the OP, wouldn't
even know what it means to have GSF in them, but my logical argument is
why install an app with GSF in it when the same functionality exists without?

What's Frank's logic of suggesting a GSF app when non-GSF equivalents exist?

I suspect the reason if Frank might not know _how_ to figure out if an
app incorporates GSF, which is an Android skill everyone should have.

Certainly the OP doesn't know how.
But just as certainly people like Andy Burns knows how.

What about Frank?
Does he know how to find apps that do NOT incorporate GSF ink them?

Do you?

--
HINT: If you don't have _this_ Android skill, you don't know Android
as well as you probably should.

[Andy Burnelli]

Bob Martin wrote:

>> !delete-regex From "philo"
>> !delete-regex From "Bob Campbell"
>> !delete-regex From "flibbertigibbet"
>
> Nothing better to do?

Well, that reminds me I have one more "better" thing to do.

Change from:
!markread-regex From "Bob Martin"

Change to:
!delete-regex From "Bob Martin"

ciao
--
Only recently have I been making good use of killfiles which is making the
clutter for me & everyone much less in that I won't see people like you.

[Andy Burnelli]

I think it's funny how many nyms are attributed to me, so what I suggest,
moving forward is people list only nyms that they think are NOT me. OK?

BTW, if you can't figure out my messages in mere seconds, you're an idiot.

[Andy Burns]

Andy Burnelli wrote:

> it's funny how many nyms are attributed to me

You have to admit, you've had plenty over the years ...

[Frank Slootweg]

Andy Burnelli <sp...@nospam.com> wrote:
> Frank Slootweg wrote:
>
> > You already have your solution, but in case you - or anyone else -
> > are/is also looking for alternative methods:
> >
> > I have found that with a normal USB connection to a Windows system -
> > i.e. using MTP - one also gets access to the Android/data and
> > Android/obb folders. At least that's the case for my Samsung Galaxy A51
> > (currently Android 12) and my Windows 11 system.
> >
> > BTW, you do realize that 'FV File Manager'/'FV File Pro' [1] are
> > developed in Hong Kong?
> >
> > While Hong Kong might still be somewhat safe, previous file managers
> > such as ES File Explorer were developed in China, did rather nasty
> > things behind the scenes and were withdrawn from the Play Store / Google
> > Play.
> >
> > Hope this helps.
> >
> > [1]
> > 'FV File Manager'
> > <https://play.google.com/store/apps/details?id=com.folderv.file>
> > 'FV File Pro'
> > <https://play.google.com/store/apps/details?id=com.folderv.filepro>
>
> I think Frank's choice sucks so I want to let folks know _before_
> they install it that it contains GSF (google spyware, IMHO).

I didn't 'choose' anything, I just gave an alternative solution (MTP)
and expressed some concerns about the *OP*'s app.

[More of the same not-reading-for-comprehension failures deleted.]

[Andy Burnelli]

Hi Andy,

*I wonder how many people are intelligent enough to understand why?*

HINT: I provide _tremendous_ information in my posts, including
screenshots galore... thousands over the years... and photos of my
home and equipment and farm animals & vehicles (for other newsgroups
and web sites).

Nobody who knows my style will take more than ten seconds to figure
out a post from me. If it takes them more than that, they're idiots.

How long would it take you, Andy, to figure out these are my devices?
<https://i.postimg.cc/k5gv0yw8/vysor34.jpg> Apple iOS & Android mirroring

I don't change the screenshots, Andy.
I change the wrapping paper.

Nobody who knows my homescreen will take more than an instant to figure
out the screenshots are from me, whether on Windows, Linux, iOS or Android.

My pool, for example, like most pools, is unique, and, being on the
top of a mountain, wouldn't be difficult to geolocate by even a mere
novice with a general idea of the location (which I provide in a
general sense as it's necessary information).

Notice one thing, which is I provide the _necessary_ detailed information.
Extremely detailed.

I'm not going to give out my MAC address or my SSID (on purpose), but I'll
give out the signal strength and other nearby signals, geolocation, etc.,
as needed for the topic. (sometimes it accidentally spills, though.)

Which is also the point.
I wonder how many people are intelligent enough to realize these points?

Having said all that, I realize most people are here for _amusement_ and
that means they just bandy about not adding any value at all.

To those who are here merely for amusement, which is most people you must
admit, the headers _are_ important to them so they _easily_ know whom
they're dealing with.

But again, I have to say I don't hide who I am, and yet pretty much
everyone who posts has been accused, one by one, of being me.

As I see it, given my tremendous value, there are only two choices:
a. Obfuscate headers and keep providing tremendously detailed value,
or,
b. Keep the header and provide almost nothing of real value.

What would _you_ prefer?

Said more simply, I could put the value inside wrapping paper that changes,
or I could use the same wrapping paper but I'd have to remove the value.

The wrapping paper isn't the gift.
The gift is the intense amount of real data.

That comes at a price.

And rest assured I'm aware that harvesters deal with headers first.
Heuristics second.

As for heuristics, I'm well aware that photos can be geolocated
by a variety of hugely mechanized means, and I post plenty.

Even without photos, just a screenshot has telltale fingerprints,
which, Lord knows, I use methods to obfuscate, but you can't beat
fourier transforms no matter how hard you try with free PC tools.

Since I provide _immense_ detail in my posts, I try to provide
as close to zero identifiable detail in my headers.

It's wrapping paper which I change when needed.
I even change up news and web (for forums) and vpn and proxy servers
so that any one Internet server doesn't have that treasure trove of meta data.

I wonder who is intelligent enough to realize how simple this is for me
to understand, and yet, always so unfathomably incomprehensible to them?

But then, how many tutorials do _they_ write? (Yes, I know the answer.)
How many pool, car, building, plumbing, etc., tutorials do they write?

Without bragging, I'm famous on the BMW forum, where I autopsied a bimmer
a decade ago and they're _still_ trying to get me to snap more photos.

It's to the point that you can find my autopsy photos simply by
going to Google image search, and, Lord knows, if you find one,
you can easily collect the rest.

My point being I provide value that only one in a million provide.
Who is intelligent enough to understand something even that simple?

I'm not saying you don't provide value.
I'm not even saying that nospam doesn't provide value.

But I am saying my value is tremendous, and it's unique.
And the unique value is the part that requires the bland wrapping paper.

I'd wager a single tutorial by me of this kind of value contains value
that only one in a million (maybe one in ten million) people know, Andy.

Do you realize I can _write_ to the entire visible file system of iOS?
And I wrote the tutorial so that _anyone_ can do so, for free?

How many people know how to do that?
BTW, they always lie and say they do know how.

But then I ask them the trick.
And they don't know it.

Which means I _know_ they lied.
They can't do it.

Which is no big deal (but that's the point - they are not intelligent enough).

Only one person in millions knows this trick, Andy.
<http://img4.imagetitan.com/img.php?image=18_ios040.jpg> View iOS filesystem
<http://img4.imagetitan.com/img.php?image=18_ios050.jpg> Including DCIM folder
<http://img4.imagetitan.com/img.php?image=18_ios060.jpg> For both read & write
<http://img4.imagetitan.com/img.php?image=18_ios070.jpg> If you know a trick
<http://img4.imagetitan.com/img.php?image=18_ios080.jpg> This is the trick!
<http://img4.imagetitan.com/img.php?image=18_ios090.jpg> Which nobody knows!

The people who complain about the wrapping paper can't even _comprehend_ the gift inside.

Would you agree that the header doesn't contain the value.
The body does.

Would you agree that, for some of these people, a _single_ tutorial
of mine is more on-topic technical value than some of these people
(e.g., Joerg Lorenz, Alan Baker, Jolly Roger, etc. but not nospam)
have provided to Usenet in their _entire_ lives?

In summary, I'm content to provide immense detail inside my
content where the price I pay is I need to blur out the headers.

What's the alternative bearing in mind even a _single_ tutorial
from me is absolutely undoubtedly more added value than most of
these people have added to this forum in their entire lives.

If they doubt that, I simply ask them to point to the tutorials
they posted, where I've posted so many (hundreds, thousands? I
don't even know as I posted many thousands under a different
mechanism decades ago before cell phones & web forums).

Is this really difficult to understand for an intelligent person?
*Only a fool believes the value of a gift is in the wrapping paper*

[Andy Burnelli]

Frank Slootweg wrote:

>> I think Frank's choice sucks so I want to let folks know _before_
>> they install it that it contains GSF (google spyware, IMHO).
>
> I didn't 'choose' anything, I just gave an alternative solution (MTP)
> and expressed some concerns about the *OP*'s app.

Fair enough Frank.

I apologize for deprecating the app you posted.

You most likely ran an apk search just like most Android owners do.
Unfortunately, the approach you used didn't filter out GSF spyware.

Meanwhile, I had _already_ (long before you posted) provided
the OP (and by extension, everyone on this newsgroup) with
non-GSF-spyware (seemingly) equivalent free ad free similar apps.

1. I provided a solution that didn't contain GSF spyware
2. You provided a solution that did

The point isn't so much about that one app which contains GSF spyware,
but about a more intelligent overall approach to finding apps that don't.

That's the value of my response to you (and by extension, everyone).

[Andy Burnelli]

Andy Burnelli wrote:

> The point isn't so much about that one app which contains GSF spyware,
> but about a more intelligent overall approach to finding apps that don't.

BTW, I want to make it clear that I recognize that Frank and I were just
about the only people to provide the OP (and by extension, everyone else)
with apps that solved the problem that the OP was stating he had.

Which is important because seeing root is a common issue if you don't know
what Frank and I and Andy and only a few others know about how Android
works (where Andy knows more than I'll ever know about how Android works).

Both Frank and I agreed, for different reasons, that the OP's choice is,
in our opinions, a bad one - which we patiently explained to the OP why.

Nobody else, to my knowledge, even tried to help the OP (although someone
did suggest using Windows to see it so there may have been some others).

At one point, the OP started to become one of the trolls so he's gone
forever from my sight - but another suggestion I "would" have patiently
explained to him is as simple as adding a webdav server to his phone.
<https://i.postimg.cc/BvJdKWzt/webdav06.jpg> Both sdcards mounted

But I determined any more hours spent trying to help the OP is wasted.

Thankfully, with Frank's and my suggestions, anyone (not just the OP) who
wants to see the root file system can do so simply by installing these.

Here are, for example, the results of my first tests for the OP.
<https://i.postimg.cc/fT7MSr90/root01.jpg> non-rooted, All Files Access=On

[Frank Slootweg]

Andy Burnelli <sp...@nospam.com> wrote:
> Frank Slootweg wrote:
>
> >> I think Frank's choice sucks so I want to let folks know _before_
> >> they install it that it contains GSF (google spyware, IMHO).
> >
> > I didn't 'choose' anything, I just gave an alternative solution (MTP)
> > and expressed some concerns about the *OP*'s app.
>
> Fair enough Frank.
>
> I apologize for deprecating the app you posted.

Sigh! *I* didn't post any app. I posted some *additional* information
about the app which the *OP* uses. (See, there are these
emphasis-marking stars again! Trust me/us, they actually *do* mean
something.)

[And yet even more of the same not-reading-for-comprehension failures
deleted.]

[Andy Burnelli]

Frank Slootweg wrote:

> Sigh! *I* didn't post any app. I posted some *additional* information
> about the app which the *OP* uses.

I apologize if I misconstrued what you did, so I will, at this very moment,
stop and review what you did post as I never dispute facts (only a fool
does that - that's why they're fools).

a. You suggested an MTP alternative solution (which I agree with and which
I expounded upon with WebDAV knowing full well you are aware of FTPUse).

b. Then you mentioned FV File Manager & its Pro version were suspect upon
a basic inspection (which I also agree as your assessment is rational).

c. Then, I immediately responded that I think your choice sucks.

Aha! The smoking gun.

You're completely correct.
I was _wrong_.

Dead wrong, in fact.

I'm not sure why I "thought" (clearly erroneously so) you were _suggesting_
that sucky app, especially as it wasn't even unclear your wording.

You know a lot of Usenet disputes are merely the case of clarify, while the
others are a case of duplicity such as almost anything from nospam, while
others are cases of purposeful deceit (e.g., Verizon with Steve), etc.

This one, I can't even _explain_ why I thought what I had thought.
Clearly, I had _thought_ (wrongly so!) you had _suggested_ the app.
Yet, you didn't.

Nobody would think you did.
Not even me - when I re-read what you wrote.

Maybe I wasn't paying attention at the time, or maybe I was time sharing or
moving about from one task to another... dunno. It was an eternity ago so
to speak in terms of why I blitzed out on what you said.

I should have taken your denial more seriously also, in the subsequent
posts from you (which I didn't bother to doublecheck until this moment).

I'm sorry I railed on you for something you didn't even do!
I don't even know _why_ I did it (other than I thought you did).

But you didn't.
My fault.

100% my fault.
No fault of yours.

I appreciate your patience, and I apologize for _my_ miscommunication.
(My emphasis is for similar reasons as yours.)

I was wrong.
You are correct.

I honestly & openly admit I was wrong and I publicly apologize to you.

Adults don't disagree on facts.
We can disagree on assessments of the facts, but here that's clear.

You didn't suggest the app.
In fact, you and I both deprecated the app for similar (different) reasons.

Sorry.

I should update the canonical thread but Google hides message-IDs now.
*wrong* by badgolferman May 29, 2019, 8:22:16 PM
<https://groups.google.com/g/misc.phone.mobile.iphone/c/BjiM9DsVXj8/m/CiSykWPPBwAJ>

[Alan]

On 2022-11-30 08:50, Andy Burnelli wrote:
> Andy Burns wrote:
>
>> Andy Burnelli wrote:
>>
>>> it's funny how many nyms are attributed to me
>>
>> You have to admit, you've had plenty over the years ...
>
> Hi Andy,
>
>  *I wonder how many people are intelligent enough to understand why?*

Ooh!

You're a trolling little shit?

[Frank Slootweg]

Andy Burnelli <sp...@nospam.com> wrote:
> Frank Slootweg wrote:

[...]

> I honestly & openly admit I was wrong and I publicly apologize to you.

Thanks. No problem.

[...]

[Andy Burnelli]

Frank Slootweg wrote:

>> I honestly & openly admit I was wrong and I publicly apologize to you.
>
> Thanks. No problem.

</begin philosophical discussion on the origin of Usenet disputes>

Thank you for being gracious, as I made _multiple_ mistakes.
a. I was wrong from the start
b. When you said I was wrong, I didn't even bother to check
c. It's only when you were patient enough (to your credit) to
_repeat_ I was wrong, that I bothered to check (my second fault).

We've both been on Usenet since just about when it was created.

On Usenet, disputes are commonplace, most of which are merely a case of
clarity (e.g., when you and I discussed the ability to change nntp
headers), while others are strange cases of defending the undefendable
(such as how nospam defends Apple), while still others are even stranger
cases of apparently purposeful deceit (e.g., Verizon coverage compared to
T-Mobile with Steve), etc., and some are a result of belligerent ignorance
(e.g., almost anything out of Joerg Lorenz, Jolly Roger, Lewis, et al.),
and some are just plain old mistakes (like what I just did to you).
a. clarity
b. duplicity
c. deceit
d. ignorance
e. mistakes

We go way back, you and me, where I'm well aware you consider me a troll,
and yet I remember (fondly so, actually) how well you educated me on the
port issues with SMB when I was desperately trying to get an Android SMB
client to work with the Windows servers. It just can't be done (unrooted).

Then you turned me on to FTPUse, but by then I had already found WebDAV
which works so well I never looked back after that, especially now with adb
working seamlessly over Wi-FI without a USB cable since around Android 11.

On the point of clarity...

I don't know if you remember the nntp header example, but I understood only
years later _why_ you so strongly objected to what I had said to an iKook.

Taking into account no adult disputes facts - only fools do that...

I had initially been surprised you disputed what I had said about headers.
It was only _years later_ I realized _why_ you disputed what I had said.

It was a case of clarity...

The "clarity" part was I had been quite casually dismissively responding to
an ignorant iKook who was claiming (as I recall) that the User-Agent:
couldn't be spoofed - or maybe it was some other easily modified header -
and my glib response to that ignorant iKook was that any of the headers can
be spoofed - to which you objected.

At the time, I objected to your objection...

It was only years later that I realized what your objection was, which is
that you are correct that not every line in the nntp header is completely
under the control of the sender - which I would never dispute.

Keeping in mind the maxim - only a fool disputes facts...

My point on "clarity" is that my glib response to an iKook is at the proper
level for responding to that Kook - but you didn't know I had made that
determination. You took it at face value - which is a fair way to take it.

In my mind, in terms of clarity, clearly had I made that response to you,
an nntp server admin, then I'd have to get into the detail of the injected
headers, and even perhaps into the "partially injected" headers like PATH:.

You are well above others in this regard so I'd even have to get into the
fact the DATE and the TIMEZONE are 100% in the control of the user, while
most of the injected headers are only in control of the user to the point
that they can choose their nntp server (who chooses what to inject).

But most people don't know this and, as a result of their ignorance, they
put way too much value in their self-assessed ability to divine headers.

In fact even you have claimed, in the past, as I recall, that you can
divine _my_ headers, and once or twice you were right as you told me that
my timezone was showing up oddly (which it was) - but which I then fixed.

Another time, as I recall, you found a typo in one of my headers, which I
fixed, and then, after that I saw you say to someone you can _still_ tell
me from my header but you're not gonna publicly say what lest I see it. :)

At this point, I don't think you can tell me from my header alone, but of
course there are telltale bits of information in the injected lines I can't
control if you know what bits to look for (I do).

Other than in the injected bits, I do not think you can tell me from my
header but if you can, that's fine - but my argument has always been that
I've been posting the same detailed screenshots & tutorials for years,
where I _assume_ they can figure out my posts in seconds.

And yet, I've seen even Andy Burns recently being accused of being me, not
for his headers but for "blowing smoke" up the butt of this thread's OP.

Can you believe that?

Another person, I don't remember who (was it badgolferman?) was accused of
being me this week simply for having AIOE's IP address in the PATH:.

Yet another recent case in which you responded in the negative was sms
being accused of being me, which is a classic case since Steve, like I,
deprecates Apple when necessary and yet uses Apple & Android
interchangeably. As an aside, I wasn't sure why you claimed "one of us"
calls the other names, where it was clear whom you had in mind, but you
just need to keep in mind I call it like it is - and in the cases you're
likely referencing, its when I respond to Steve's "political" views (which,
in my pragmatic realpolitik, are far to the left... so far that he thinks
the middle is far to the right - so he & I will never agree on politics).

If you combine the fact Steve knows nothing about "Covid" in so much as he
knows what the hoi polloi knows, but he doesn't have my background in
virology, immunology, physiology, biochemistry, etc. that I have... if you
combine that with his leftist leanings of using the government to control
the population... and then you add his extremely strong (risk avoidance
that I simply don't have... the result is just as you accurately stated.

Nobody who is an adult with sufficient neuronal tissue to form a synapse
would confuse the two of us even if we used EXACTLY the same headers!

And yet... they did accuse sms of being me!

You can see why I smile every time this happen, since they're just guessing
or they're divining headers (which are "almost" meaningless for their
purposes) - and yes - I know the choice of nntp servers and the selection
on an _account_ on that nntp server - and the specific VPN IP address used
for sending messages to that nntp server - change the headers).

Anyway, apart from your field of experience with nntp headers, the source
of disagreements on Usenet seem, to me, to be of five origins.
A. Clarity
Our personal disagreement on headers turned out NOT to be based on
the facts, but to lack of "clarity" of my offhand discourse with iKooks.
B. Duplicity
Virtual any disagreement with nospam would provide an example of
his "duplicity" in virtually every response (for reasons unknown).
C. Deceit
Similarly for reasons unknown, Steve provides "deceitful" images
on Verizon/T-Mobile coverage which are knowingly doctored & erroneous.
d. Ignorance
Example abound of the hoi polloi iOS owner being "ignorant" of
how well and for how long Android now updates over iOS.
e. Mistakes
This case above is my "mistake" in that I thought you said something,
when, in fact, we had independently agreed on every point you made.

While some of our personal disagreements were the result of "clarity" and
"mistakes", the wonderful thing about our relationship (yes, I know you
dislike me intensely) is that NONE of our disagreements (to my knowledge)
have been the result of "duplicity", "deceit" or "ignorance".

Which is as it should be.
(no reciprocal response expected)
--
Posted in permanent Usenet archives noting I did update the "wrong" thread.
*Updating the "wrong - by badgolferman" thread from May 29, 2019*
<https://groups.google.com/g/misc.phone.mobile.iphone/c/Pg9fi_sV3CU>