Privacy

789 readers

4 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
Don't promote proprietary software
Try to keep things on topic
If you have a question, please try searching for previous discussions, maybe it has already been answered
Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
Be nice :)

Related communities

Chat rooms

[Matrix/Element]Dead
Discord

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago

MODERATORS

Safest way of using WeChat on Android? (lemmy.ca)

submitted 7 months ago by bionicjoey@lemmy.ca to c/privacy@lemmy.ml

68 comments fedilink hide all child comments

I live in Canada. My girlfriend is Chinese (also living in Canada), and while we are able to communicate via SMS, her mobile carrier isn't the best, and so there have often been issues for us with regular texting. She expressed a strong preference to use WeChat, at least as a backup option for when texting fails us. While I have some pretty significant reservations, it's not the hill I want to die on. So my question is: what can be done to use WeChat without compromising my whole phone? I'm okay with it if our conversations aren't private, but I'd like to know that I'm not giving unfettered access to all of my phone's systems and data to the CCP. What can be done to limit the reach of this ubiquitous app on my device?

you are viewing a single comment's thread
view the rest of the comments

[–] viking@infosec.pub 31 points 7 months ago* (last edited 7 months ago) (3 children)

I'm in China and have to use that piece of crap. So here's how I locked it down:

Root your phone with Magisk. There's no way around it.
Install Storage Isolation (https://play.google.com/store/apps/details?id=moe.shizuku.redirectstorage) and deny access to all folders.
Install ApOps (https://play.google.com/store/apps/details?id=rikka.appops) and set pretty much everything to deny or ignore (ignore means the app receives the information "permission granted", but no data is provided, in case some permissions are "mandatory"). If you intend to use wechat to exchange voice messages or make video calls/send photos, the "use microphone" and "use camera" functions would be required. In a similar fashion the location access if you intend to use the location sharing feature.
Be acutely aware that wechat is not encrypting messages, neither end to end nor in the server communicaton. Everything you say can (and probably will) be read and archived. Don't say anything confidential or critical there.

And yeah really, try to convince your ~~wife~~ girlfriend to use signal instead. Or hell, even whatsapp is miles ahead.

My wife is Chinese as well, so even after we leave here she'll be using wechat to stay in touch with family, no way around it, but using messengers more commonplace in other countries is definitely better. Personally I will move wechat to another phone once we're out. For now that's not feasible as it's too much integrated into every function of life here.

[–] umbrella@lemmy.ml 4 points 7 months ago (2 children)

+1 for signal but i doubt whatsapp is ahead at all

[–] viking@infosec.pub 11 points 7 months ago (3 children)

Whatsapp uses end to end encryption and is far from as intrusive as wechat.

[–] umbrella@lemmy.ml 5 points 7 months ago (1 children)

whatsapp is certainly backdoored, its closed source and unverifiable.

[–] umami_wasbi@lemmy.ml 2 points 7 months ago (1 children)

then so does your claim, unverifiable

[–] umbrella@lemmy.ml 2 points 7 months ago* (last edited 7 months ago)

my claim is completely open, unlike whatsapp

load more comments (2 replies)

[–] umami_wasbi@lemmy.ml 4 points 7 months ago (1 children)

At least Whaysapp have the content encrypted

[–] umbrella@lemmy.ml 2 points 7 months ago

its certainly backdoored

[–] EngineerGaming@feddit.nl 3 points 7 months ago (2 children)

Can it be used without a smartphone, like in an Android VM?

[–] bionicjoey@lemmy.ca 3 points 7 months ago

Yeah I was considering Waydroid but then I lose the ability to connect outside of my PC

[–] viking@infosec.pub 2 points 7 months ago

I guess it could be, but that kills the use case of being contactable by his GF on the fly.

[–] ReversalHatchery 3 points 7 months ago

Don't forget that AppOps is not really standardized, and even the app admits that some phone's system does not implement a restriction properly (or at all).

That being said, it's very good to have, but you have to keep this in mind.
AFAIK lineage os has a more complete implementation.