[CLOSED][APP][XPOSED][6.0+] XPrivacyLua - Android privacy manager [UNSUPPORTED]

Status
Not open for further replies.
Search This thread

christantoan

Senior Member
Oct 9, 2015
255
108
OnePlus 3T
OnePlus 7 Pro
I am considering to terminate support on January 5th 2023 because:
  • Not many people use the module anymore
  • The support of the project is pretty limited
  • Android has become more privacy-friendly over time
  • The LSposed developers do not support the module (*)
  • The module is too often misused, for example to cheat in games, etc.
  • I have received enough hate mail
(*) They refuse to add an API to access scopes, resulting a too many questions and also loosing users.

This means that XPrivacyLua has been supported for exactly 5 years. XPrivacy was first released on June 12, 2013, so that's in total about 10 years of XPrivacy(Lua). I think that is a pretty long time.
A sad day but I can understand.
Thank you very much for supporting the project so far.

Sorry for maybe insensitive question but will the Pro companion app be open-sourced after the support is terminated? As I think both apps are important to be open-sourced just in case someone else want to continue the project.

Thank you once again.
 
  • Like
Reactions: kaefers

M66B

Recognized Developer
Aug 1, 2010
26,751
57,967
A sad day but I can understand.
Thank you very much for supporting the project so far.

Sorry for maybe insensitive question but will the Pro companion app be open-sourced after the support is terminated? As I think both apps are important to be open-sourced just in case someone else want to continue the project.

Thank you once again.

If somebody wants to continue this project, which needs to be proven with actually contributions, that somebody can contact me to get the source code of the pro companion app. With this, I am trying to prevent misusing the pro companion app. Check the Play Store for clones of NetGuard, and you'll understand.
 

beeshyams

Senior Member
Dec 29, 2014
1,669
604
Bangalore
First of all, does XprivacyLua work on Android 10? And if it does, is it possible to change the values in the pro version, or even the free version?

Like for Read account name, it gives fake name, mostly e-mail address. What is the fake name and email address it gives, and can I change the name and email address to the one I want it to give?
Yes, it does, even on Android 13
You can configure fake email address globally / on per app basis (though I haven't tried it but quoting from rusty memory) but then you need the pro version
 

Baymaeela

New member
Nov 26, 2022
4
1
Yes, it does, even on Android 13
You can configure fake email address globally / on per app basis (though I haven't tried it but quoting from rusty memory) but then you need the pro version
Good to hear.

I understand the following are all the restrictions...

  • Determine activity (fake unknown activity, see here)
  • Get applications (hide installed apps and widgets)
  • Get calendars (hide calendars)
  • Get call log (hide call log)
  • Get contacts (hide contacts with the pro option to allow (non) starred contacts, hide blocked numbers)
  • Get location (fake location, hide NMEA messages)
  • Get messages (hide MMS, SMS, SIM, voicemail)
  • Get sensors (hide all available sensors)
  • Read account name (fake name, mostly e-mail address)
  • Read clipboard (fake paste)
  • Read identifiers (fake build serial number, Android ID, advertising ID, GSF ID)
  • Read notifications (fake status bar notifications)
  • Read network data (hide cell info, Wi-Fi networks, fake Wi-Fi network name)
  • Read sync data (hide sync data)
  • Read telephony data (fake IMEI, MEI, SIM serial number, voicemail number, etc)
  • Record audio (prevent recording)
  • Record video (prevent recording)
  • Send messages (prevent sending MMS, SMS, data)
  • Use analytics (Fabric/Crashlytics, Facebook app events, Firebase Analytics, Google Analytic, Mixpanel, Segment)
  • Use camera (fake camera not available and/or hide cameras)
  • Use tracking (fake user agent for WebView only, Build properties, network/SIM country/operator)
21 in total.

How many of the above 21 can I manually configure in the pro version to be able to give personalized info?
 

beeshyams

Senior Member
Dec 29, 2014
1,669
604
Bangalore
Good to hear.

I understand the following are all the restrictions...

  • Determine activity (fake unknown activity, see here)
  • Get applications (hide installed apps and widgets)
  • Get calendars (hide calendars)
  • Get call log (hide call log)
  • Get contacts (hide contacts with the pro option to allow (non) starred contacts, hide blocked numbers)
  • Get location (fake location, hide NMEA messages)
  • Get messages (hide MMS, SMS, SIM, voicemail)
  • Get sensors (hide all available sensors)
  • Read account name (fake name, mostly e-mail address)
  • Read clipboard (fake paste)
  • Read identifiers (fake build serial number, Android ID, advertising ID, GSF ID)
  • Read notifications (fake status bar notifications)
  • Read network data (hide cell info, Wi-Fi networks, fake Wi-Fi network name)
  • Read sync data (hide sync data)
  • Read telephony data (fake IMEI, MEI, SIM serial number, voicemail number, etc)
  • Record audio (prevent recording)
  • Record video (prevent recording)
  • Send messages (prevent sending MMS, SMS, data)
  • Use analytics (Fabric/Crashlytics, Facebook app events, Firebase Analytics, Google Analytic, Mixpanel, Segment)
  • Use camera (fake camera not available and/or hide cameras)
  • Use tracking (fake user agent for WebView only, Build properties, network/SIM country/operator)
21 in total.

How many of the above 21 can I manually configure in the pro version to be able to give personalized info?
These ones with the app
If you enable hooks by @fif, you can probably achieve more

Screenshot_20221126-180657.png
 

mythos_

Senior Member
May 27, 2012
165
83
Bad news indeed. This is the only X(ls)posed module that I ever actually used since its early days. I hope it continues to work on future android versions. :(
 
  • Like
Reactions: kaefers

patrickdrd

Senior Member
Mar 24, 2015
744
152
I would suggest you release a version without checking for updates (finally..) since that check is useless now..
 

Baymaeela

New member
Nov 26, 2022
4
1
How do I test whether or not XprivacyLua is working as it should?

I installed device info app and selected and marked everything for the app on Xprivacylua yet it is showing me a list of all the apps I have installed. How is that possible when XprivacyLua is supposed to hide installed apps?

I am also able to copy and paste where in Android 7 it uses to paste 'private'. In on Andoris 10 now. What gives?
 
Last edited:
Mar 19, 2009
16
1
@M66B I have depended on Xprivacy -> XprivacyLua to protect my information for the past 9+ years. You are one of two developers that I have supported! The app has been invaluable, and it doesn't compare to anything else. I couldn't have used android without it. Thank You for developing and supporting this!

In the past couple years I have sought out privacy focused OS's like CalyxOS and GrapheneOS that aim to protect user data, but these projects emphasize keeping your phone unrooted and the bootloader locked to maintain a higher level of security with verified boot. (I wish there was a way to bake in the XprivacyLua code into these OS's without the need to keep the phone rooted and dependent on LSPosed.)

I have kept my phone rooted just to use XprivacyLua, but it has come at a cost. OTA doesn't work most of the time when the phone is rooted, and if it does it breaks root and deactivates XprivacyLua which leaves my data exposed. Then I have to manually back up all my data, sideload the update, then re-root to get XprivacyLua working again. Huge time suck.

For several months, I've been searching for a solution to this problem, and I've asked questions on both CalyxOS and GrapheneOS forums, but no one seems to know. Either they are not familiar with XprivacyLua or they don't really care if their data is leaked. I just haven't gotten good response from those communities.

My best solution I've considered is to switch from CalyxOS to GrapheneOS and put non open source apps in a separate user profile, but that may still leak some data.

Do you have any suggestions to accomplish what XprivacyLua does, but on a non-rooted phone with a locked bootloader?
Do you use any of these OS's?

I thought you would be the best person to answer this question...
 

Schroeder09

Senior Member
Nov 6, 2017
976
152
Google Pixel 7 Pro
Can anyone speak to whether or not they're using xprivacy Lua to block any aspect of carrier services, Google play services, or myVerizon? I thought these- especially the first 2- were the worst applications on a phone for tracking and spying. I haven't tried restricting anything under myVerizon, but *anything* I restrict under carrier services or Google play services causes the Android messages chat features to stop working. There may be other misbehavior too that I didn't detect because I didn't continue the experiment any longer.

I've asked this serval times in this thread, and I've received no answer. An explanation of why this stuff can't be restricted, an explanation of how to do it, or an explanation of the few restrictions that *can* be added to these applications and services would be very informative and helpful.
 

Amd4life

Senior Member
Dec 30, 2010
1,879
467
Google Pixel 6 Pro
Vivo X Fold
Can anyone speak to whether or not they're using xprivacy Lua to block any aspect of carrier services, Google play services, or myVerizon? I thought these- especially the first 2- were the worst applications on a phone for tracking and spying. I haven't tried restricting anything under myVerizon, but *anything* I restrict under carrier services or Google play services causes the Android messages chat features to stop working. There may be other misbehavior too that I didn't detect because I didn't continue the experiment any longer.

I've asked this serval times in this thread, and I've received no answer. An explanation of why this stuff can't be restricted, an explanation of how to do it, or an explanation of the few restrictions that *can* be added to these applications and services would be very informative and helpful.

I personally block analytics, tracking and identifiers for the apps you have listed. I also use all of the Fif hooks in the pro app. I block everything in the myverizon app and disable it, as it grabs all sorts of data. I just log into the website for account management.
 
Status
Not open for further replies.

Top Liked Posts

  • There are no posts matching your filters.
  • 316
    XPrivacyLua

    banner_play_store.png


    Really simple to use privacy manager for Android 6.0 Marshmallow and later (successor of XPrivacy).

    Revoking Android permissions from apps often let apps crash or malfunction. XPrivacyLua solves this by feeding apps fake data instead of real data.

    Features:

    • Simple to use
    • Manage any user or system app
    • Extensible
    • Multi-user support
    • Free and open source

    See here for all details, including installation instructions and download link.

    Please read the frequently asked questions before asking a question.

    This XDA thread is about using the latest version of XPrivacyLua. Off topic comments are allowed as long they are related to XPrivacyLua and are in the general interest of the followers of this thread, but anything not related to privacy is not allowed.

    If XPrivacyLua doesn't work and/or when "module not running or updated" is shown, this is almost always caused by an Xposed problem.

    Discussions about purchases are not allowed here, please contact me via here instead.

    XPrivacyLua is being maintained and community supported, but new features won't be added anymore.

    Custom hook definitions will always be part of XPrivacyLua, but there will be community support only. This means that I won't respond to questions about defining custom hooks anymore. See this thread for the reasons.

    If you value your privacy, please consider to support this project with a donation or by purchasing pro features.


    XPrivacyLua is not a permission manager, but a privacy manager. XPrivacyLua doesn't block things and doesn't revoke permissions, but does replace real data by fake data. This means you can grant Android permissions to an app and still let XPrivacyLua prevent the app from seeing privacy sensitive data. Revoking permissions can result in an app refusing to work and/or to crash. However, replacing real by fake data generally doesn't let an app crash.

    Currently restrictions are quite crude because they mostly replace real data by no data. For example restricting the contacts app from getting contacts will result in an empty contact list. In the near future it might be made possible to select the data an app may see, for example just one group of contacts.

    About feature requests and bug reports:

    The goal is to have a tool that can properly protect the privacy of many in the near future. However, it isn't paid work, so I do whatever I like whenever I like it.

    You can request features in this XDA forum. I will read them, but I will not respond to them and they might or might not be implemented. If I know for sure something will not be implemented, I will let you know.

    You can report any problem you have here. There will be no issue tracker on GitHub.

    For now I have decided to not implement restrictions that are useful to prevent tracking only. There are simply too many data items that can be used for tracking and it would take too much time to develop restrictions for all these data items.

    The basic idea is to restrict only things that 'define' you, so which contacts you have, where you are, which apps you use, etc.

    Maybe we can widen the definition of things that the core of XPL covers to "What defines you, and what can be used to spie on you"? This would include camera/audio, but not tracking.

    XPrivacyLua is pretty feature complete and will be maintained and supported and when there is a need new hook definitions will be added to better protect your privacy. For the rest this FAQ applies:

    https://github.com/M66B/XPrivacyLua/blob/master/FAQ.md#FAQ4

    As said before, development will also depend on Xposed development, which is just minimal unfortunately.

    XDA thanks and donations are appreciated.

    XPrivacyLua is supported with Xposed only. There is no support for VirtualXposed and TaiChi.
    68
    I have just released beta version 0.5 in the Xposed repository.

    The XPrivacyLua framework and user interface seems to be stable enough to call this a beta release.

    Besides several bug fixes and improvements two new restrictions were added:
    • Read account name, which mostly holds your e-mail address and will be replace by '[email protected]' when restricted
    • Read clipboard, which will be replaced by the text 'Private' when restricted

    Furthermore the ability to restrict Android system (be careful!) and to restrict system apps was added. It is possible to restrict all of these individually (XPrivacy could not do that).

    Be sure to take a look at the help page in the app again (use the ?-icon), since there were some useful hints added.

    If you appreciate what I am building here, please let me know by means of an XDA thanks and/or a donation, so that I don't get the feeling 'What am I doing this for?'.
    59
    I have just released alpha version 0.12 in the Xposed repository.

    This version has been redesigned for Android Oreo compatibility. The user interface and the restrictions work properly for me, but be aware that a lot has been changed on the inside ("it is bigger on the inside", lol), also for earlier Android versions. There is one thing I know of that needs improving and that is that the user interface might be updated too often with a lot of restrictions, which might cause delays and hangs. I will look into this tomorrow.

    This change was necessary, but it was a lot of work, so XDA thanks and donations are appreciated.
    56
    I have just released beta version 0.25 in the Xposed repository.

    Changelog:

    With this release XPrivacyLua restriction's can be compared with XPrivacy's. There are now over 100 restriction definitions!

    XDA thanks and donations are appreciated.
    53
    @CHEF-KOCH You have been given enough time to respond here. Now I just think it is pretty cowardly to write critical about XPrivacyLua, but not to tell what can actually be improved, especially because you were invited to do so.

    I still like to hear how XPrivacyLua can be improved, but I don't want to hear what is wrong with XPrivacyLua. You'll need to keep the scope of XPrivacyLua in mind (in short: privacy, not security), see the opening post and previous discussions about this for more information.

    Also, if you really know better, I like to see an original work from your hands to prove that. Actions speak louder than words.

    As it is now, you are discouraging one of the few people in the world who really did something substantial to improve privacy on Android. And don't go talking about VPNs, TOR, etc because your private information, like your contacts, will still leak.

    I also think you are pretty ungrateful for what I did so far.

    To others: if you see someone reference one of his blogs, please reference this comment in response.

    Edit: if you agree with this, please add an XDA thanks to this comment, so it will show up in the right column as a reference for others.