I'm at the point where I want a pop-up for every time my phone wants to use location/camera/mic/contacts. Or at least more options to require this for individual system services/apps.
Also, while we are at it, why can't I disable network access entirely for some apps? If I have a game that doesn't need the internet then it doesn't need the internet and I don't want it to have access to the internet, ever. I have been putting my phone in airplane mode just to use some of the apps and not have them phone home. This is a clearly missing (intentionally not added?) privacy feature.
> why can't I disable network access entirely for some apps
Agreed, the only reason we don’t have a streamlined version of Little Snitch (very flexible network monitor) built in to the OS is that it’d destroy billions of revenue for the advertising industry.
I avoid ad supported apps, so if those devs move to companies that I support, it might actually help me?
If it damages the the OS, that’s a problem for me on a Mac/ios but not so much with Ubuntu.
It’s not that long ago that I was paying for OS updates (that seems wild, I had to go and check). If it went back to that and I had no ads, it would be a straight win.
About 5 years ago I purged as many apps as I could. I still have some I need for my job, especially on my work-issued iPhone, but excluding those apps I have exactly 5 apps on my phone. Everything has a website.
I've heard that native apps are more secure than webapps, but in my experience Firefox is a more reliable steward of security, and App permissions are too obscure to really understand: it is harder to make a malicious webapp than it is to make a malicious native app. Is that a fair statement?
> Also, while we are at it, why can't I disable network access entirely for some apps?
This is possible in GrapheneOS and is super nice. I use a keyboard app that I like but disable network access to ensure that it doesn't send private data anywhere.
It's also possible in LineageOS and its derivatives.
But it's not very useful in practice: if an application doesn't need networking for its core functionality, then there usually is an open-source equivalent that does not use the network in the first place. The few applications that lack a good open-source equivalent (public transportation, proprietary messaging protocols, banking) don't do anything useful without network access.
Being able to block network access gives me peace of mind regardless if the app is proprietary or open source. Humans are fallible and life can get in the way (maybe the app has old dependecies with vulnerabilities, or any other random thing that I don't want). Being able to set the permissions I want only has upsides.
What would be more useful, however, would be the ability to selectively block network connections: for example, to allow the public transportation app to access its API endpoint, but not the advertising and tracking endpoints. I don't think LineageOS allows that, and I don't know if Graphene does.
> why can't I disable network access entirely for some apps
Apple kind of do this in China. Each app on Chinese iPhone needs to ask for permission when they access WiFi for the first time. Combine with cellular blocking, you can effectively block internet access for an app.
> I'm at the point where I want a pop-up for every time my phone wants to use
I’m in the EU on holiday. It’s amazing how quickly you get used to the damn cookie popup that appears on every single site. Having it for apps wouldn’t seem likely to be more intrusive.
FWIW: Me too. I want 100% transparency and I have no problem clicking a dialog every single time. My credit card company sends me a lot of alerts and I have no issue spending 5 seconds skimming an email if it means not getting scammed.
Also, while we are at it, why can't I disable network access entirely for some apps? If I have a game that doesn't need the internet then it doesn't need the internet and I don't want it to have access to the internet, ever. I have been putting my phone in airplane mode just to use some of the apps and not have them phone home. This is a clearly missing (intentionally not added?) privacy feature.