Privacy @lemmy.ml Chaos @lemmy.world 1 yr. ago

How to secure a Samsung device?

I have just received a Samsung galaxy fold5 through the post, however I imagine it's full of bloatware and I'm inexperienced with this type of device. What is the first things that you would do to secure it? Thank you 😊

Edit: I mean to be more privacy focused

39 comments

I think you confuse security and privacy. Samsung are pretty secure from what I saw. They are not private at all however. You can debloat it with adb and maybe tools such as Universal Android Debloater.

There is a couple of guide such as this one: https://linustechtips.com/topic/1402380-ultimate-samsung-oneui-debloat-privacy-customization-guide/
- Hey that's me!
  
  One thing I noticed is I never updated the app icon customization section. You don't need Asapticons/Icon mixer. Themepark has an option to add custom icons now!
  
  I can also post my De-Bloater config (root only)/list of apps (that can be used to disable them via ADB) I've removed when I update the post in a bit.
  
  I'm still on Fold3/OneUI 5.1 but apps should be similar.
- Thank you very much. You're right there 👍
- Send it back and get a Pixel.
I use FOSS applications as much as I can and try to avoid all samsung and google apps. In addition to that I'm always on pi-hole network to block background network requests by Samsung/Google

Some apps I use:

k9-mail

Zulip

Nextcloud/Talk/Notes

tasks.org

Signal

F-Droid

Magic Earth

NewPipe

Keepass2Android

Brave

Collabora Office
- Don't think I'd actually recommend Brave to anyone, it's definitely not as privacy focused as they claim.
  
  Permanently Deleted
- Google play services constantly send information to google, the only functional and degoogled rom Ive found is Grapheneos.
  
  Samsung locks their bootloader, so flashing is neigh impossible on them as of late.
  
  Or LineageOS without GSF
- That's quite a list, thank you. I'll try to implement them 👌
I can't even find a custom or stock rom for it :/ You might not have picked the best phone for privacy my dude.
NetGuard is a good app to block internet access to apps you dont want connected to the web.
Use ADB to remove Google and Samsung bloatware and tracking. Ask around for help.

You should be able to use Heimdall to unlock the bootloader, but there isn't currently a build of LineageOS or DivestOS for this phone, so unfortunately you cannot yet flash a custom ROM (AFAIK). However, rooting should work if you need this (although it can hurt your security a bit).

I'd recommend removing Google Play Services and replacing it with microG, although this may be complicated.

The best solution, however, is probably to exchange the phone for a more versatile model, such as a Google Pixel or a Fairphone.
- While many devices don't have ROMs built for them, any recent device should work with a GSI.
  
  I just bought a tab s8, as I know Andy yan's LineageOS 20 works on it from other users' reports. I currently use it on my old tab 10.8 2019.
Factory reset

Setup but SKIP GOOGLE & SAMSUNG LOGIN

Install F-Droid/Droid-ify

Install Aurora Store

Uninstall or disable as much default apps as you can

Install Simple Mobile Tools or other opensource alternative from F-Droid

Install everything else you need

Use openaource apps from fdroid, or if you really have to then use Aurora store. For office use collabora office, for youtube newpipe, video vlc, etc. NEVER LOG IN TO GOOGLE/SAMSUNG ACCOUNT ON ANY APP except Aurora store. For any other recommendation/alternative just aak me.
- ~~these changes are going to decrease security overall. privacy and security are not one in the same~~. edit: I guess they edited the post🫠
  
  also, logging in to aurora is almost guaranteeing your account getting banned. use a throw away account if the default ones are rate limited
  
  logging in to aurora is almost guaranteeing your account getting banned
  
  Im using my main account on aurora store on 4 profiles for past month and everything is ok (for now).
- I usually don't give new phones any sort of internet access until i remove/disable the bloatware...
  
  Ok
@chaosppe speaking from my personal setup, I'd do all of these but personally my way to prevent as much data harvesting from Samsung phones I also installed Netguard and set only a handful of apps and exclude the rest (even system one) to stop all these Samsung apps from transmitting all types of data (Yes I know this may be somewhat extreme and I know the limitations of Netguard), but hey it's just my recommendation but maybe you can take this as a possible starting ground
Send it back and get a Pixel.
Return it. Who the f buys a fold to use it as a phone. Seriously bro, return it, get a pixel and then install graphene os.
- As a graphene user, let people use what they want
  
  I'm 95% sure this one is a troll. They call themselves a boomer and then act like a petulant child. It's gotta be a bit.
- I did, and I really like it.
  
  Imagine gatekeeping phones.
  
  Lol wtf. In your head phone must be like..

You've viewed 39 comments.