[Hope123]

It's also impossible to run a custom ROM such as that on an Android BlackBerry, due to the fact that nobody has been able to root them.
Unless you happen to know something nobody else does then you are totally barking up the wrong tree.

bb10adopter111
Trusted Member
Originally Posted by dendron01
Well, I don't have a BBMo device at the moment but FWIW I do have the suite installed and use it daily, so I will follow this thread with interest. Thanks in advance for your efforts.
I would expect 90% of what I do will be applicable on any Android that isn't compromised by a poor implementation of Android by the OEM and/or carrier. So Samsungs, Pixels, LGs, and Sonys ought to be fine. I'm less sure when it comes to Huawei and the other Chinese OEMs. None of them have ever been submitted to a significant security audit of which I am aware.

Posted with my trusty Z10
03-16-19 04:57 PMLike

Fyi
Hes looking for options for his clients and fellow crackberians
Also.should.be noted pixels 2 and higher do have root of trust along with samsung s10 series

[Dunt Dunt Dunt]

I think this is a great idea....

Especially if it includes any "services" that can be uninstalled or disabled or somehow neutered. Most of the other sites that delve into this type of security... starts with root your phone and then install this and....

But there are lot's of ways to make your device more "private" and also more "secure" without going that route. We have touched on these from time to time here, but really isn't a sticky or a definitive post with this information consolidated. And kept current... as each OS brings changes.

[theunderdog]

Fyi
Hes looking for options for his clients and fellow crackberians
Also.should.be noted pixels 2 and higher do have root of trust along with samsung s10 series

The Pixel 2 and 3, along with the S10 series also do not have any official Lineage builds available.
Personally I'd rather have a device I can lock down myself, with great hardware security than have a second rate phone with an unofficial custom ROM installed.

[anon(10562251)]

So when does this start? Thread has been up for two months already.

Do I sound impatient? I don't even have the same phone since this started.

[Hope123]

The Pixel 2 and 3, along with the S10 series also do not have any official Lineage builds available.
Personally I'd rather have a device I can lock down myself, with great hardware security than have a second rate phone with an unofficial custom ROM installed.

Yes as I mentioned they have a hardware root of.trust from.blackberry which means it.cant be romed except for offical updates including from Samsung or google ota or beta it is in the owners manual and box

[oharamj]

Same here. Had my Pixel 2 a year now have Key2 Red on order from Amazon.

One thing bothers me - the talk here seems to expect that Key2 Red will never get Pie. Is that true? Isn't that a security issue? Even my Pixel 2 has Pie!

[Hope123]

Same here. Had my Pixel 2 a year now have Key2 Red on order from Amazon.

One thing bothers me - the talk here seems to expect that Key2 Red will never get Pie. Is that true? Isn't that a security issue? Even my Pixel 2 has Pie!

That's because it's made by Google and will be garenteed updates for the foreseeable future
Blackberry must update their android core which is hardenedand apply their skin and root of trust then send it to google once approved blackberry sends it to carriers for approval

[Ben xfg]

Posted with my trusty Z10

Pilot ejected?

Posted via CB10

[Dunt Dunt Dunt]

Same here. Had my Pixel 2 a year now have Key2 Red on order from Amazon.

One thing bothers me - the talk here seems to expect that Key2 Red will never get Pie. Is that true? Isn't that a security issue? Even my Pixel 2 has Pie!

Right now that's just talk.... Oreo came out mid summer last year. But then BBMo nor BlackBerry have yet shown signs of working on it. And it's not like there is a BBMo support page that outlines what devices get what updates when. Two months ago most here sworn the KEYone would get updates for three years.

You have a KEY2 RED on order? Have you got any updated shipping info?

[oharamj]

Right now that's just talk.... Oreo came out mid summer last year. But then BBMo nor BlackBerry have yet shown signs of working on it. And it's not like there is a BBMo support page that outlines what devices get what updates when. Two months ago most here sworn the KEYone would get updates for three years.

You have a KEY2 RED on order? Have you got any updated shipping info?

Nothing specific. Amazon USA continues to accept orders and simply says shipment expected between June and July.

[Dunt Dunt Dunt]

Nothing specific. Amazon USA continues to accept orders and simply says shipment expected between June and July.

Been that way for several weeks now... just taught that they might have updated any actual orders.

[oharamj]

I checked my order tonight and see they now specifically say "July 17", which was the outside date until now. Don't know what any of it means.

[Dunt Dunt Dunt]

I checked my order tonight and see they now specifically say "July 17", which was the outside date until now. Don't know what any of it means.

Think a date is better than a window.... or a canceled order.


But something is going on....

[jakeb1986]

So when does this start? Thread has been up for two months already.

Do I sound impatient? I don't even have the same phone since this started.

Any further updates?

[Invictus0]

OP asked for 100 votes to move ahead, we're only at 64 posts in this thread so there may not be enough interest.

[Linto988]

I think once started we will see more people joining

 BlackBerry Q10  BlackBerry Key2

[Gene Fells]

Following. Very interested in this.

[Molfus]

I'm interested, too

[jakeb1986]

So I guess this never really got off the ground?
That is a shame.

[jakeb1986]

Hi,
Did this ever end up progressing?

[chain13]

Since @bb10adopter111 just bought some iphone SEs. I really want to know more about his privacy setup especially for iOS.

[bb10adopter111]

Since @bb10adopter111 just bought some iphone SEs. I really want to know more about his privacy setup especially for iOS.

Thanks for the tag and question. I'm still learning, but here's a brief description of what I've done.

Basic principles, which apply to any platform:
1. I want my carrier to know as little about the user of each phone as possible.
2. I want to compartmentalize identities as much as possible
3. I want to avoid using free services where my data is the product that they sell.
4. I want to share as little data as possible with apps to accomplish my purposes.

CARRIER SET UP
I don't want my carrier to know the individual identities of each phone user. For this reason I prefer to open a business account if possible, rather than a personal account. But, in this case, I opened a personal account, in my real name, but assigned the phones to aliases in the carrier's database, so my five SE phones are assigned to the following individuals with my carrier:

• person1
• persona
• personalpha
• firstperson
• admin2

So, while my carrier knows that I'm the owner of the account, it does not know which phone I use personally, or even if I use any of them The same is true for all other users.

APPLE IDs
Just as I don't want my carrier to know who the user of each phone is, I don't want Apple to know either. I set up a "family sharing" account so that I could use one Apple ID as the "family organizer" for all devices, but that Apple ID is NOT used on any of the phones. My Family Organizer Apple ID, which is tied to an alias identity and private payment information through a Privacy.com virtual credit card is only used on a wifi-only iPad that I keep at home for the purpose. It always uses a VPN, and I keep location services and all other sharing permanently disabled.

The other phones each have a new, clean Apple ID, that is not tied to anyone's actual identity:

• Apple ID 0 (Family Organizer on Ipad) : Assigned Name: Admin111
• Apple ID 1 Apple ID 2 (my phone) : Assigned Name: Bot 0
• Apple ID 2 (family member 1 phone) : Assigned Name: Bot 1
• Apple ID 3 (family member 2 phone) : Assigned Name: Bot 2
• Apple ID 4 (guest and family iPad) : Assigned Name: Bot 3
• Apple ID 5 (shared work phone) : Assigned Name: Bot 4

This allows me to purchas, and all users to use, apps and subscriptions with an alias identity that can be used on all devices. But it allows each user to have a separate iCloud account for syncing data, backups, etc.

So, each phone has 2 Apple IDs configured in different parts of settings:
1) iCloud ID, unique to each phone
2) Family Sharing (Admin111) ID configured in Home Sharing, and in the iTunes and App Store

This means that neither my carrier, Apple, or any app developer know who is using which phone or app.

CORE PERSONAL INFORMATION MANAGER FUNCTIONS:
I am experimenting with this now. Microsoft Exchange is great for privacy, but Google (not surprisingly) is problematic):

MS Exchange:
Microsoft data can be synced at the app level, or at the OS level. Both seem to work well, so I'd say it's personal preference.
I am leaning towards syncing email, calendar, tasks, and notes at the app level, but contacts at the OS level, due to limitation in iOS that make two-way contact syncing impossible in the Outlook app.
Email (Outlook app)
Calendar (Outlook app)
Tasks (Microsoft To Do and Microsoft Planner apps)
Notes (Microsoft OneNote)
Contacts (Exchange ActiveSync in iOS 13 and later.)

Alternately, you could use iOS built-in apps and sync everything with Exchange ActiveSync. Microsoft has done an excellent job documenting all of this, though you may need account administrative support for some of the permissions. (I am the admin for my own Office 365 account, and I always approve all of my own exception requests!)

Google:
Naturally, Google wants you to enable a bunch of data-sharing to use your personal Google account on iOS. When you connect a google account, for example, it automatically logs you in to your Google account on Safari! As is typical with Google, it is possible to configure their services so that they are less obtrusive, but it's annoying and offensive that they make you dig for settings to opt out rather than opt in. While it is absolutely possible to manage this, it turned me off to the point where I won't do it for my personal Google account.

I did set up a GSuite account on my iPhone and went through all of the opt outs on the policy side in my Admin account. Google and Apple have great documentation on all of this.

PHONE
I don't use my carrier assigned phone number for anything, ever, except for 911 emergency calls. I don't even know it! I use a number of VOIP services instead.
MySudo: 9 custom, personal VOIP numbers which I use instead of my carrier assigned number
Microsoft Teams: Business VOIP calls and collaboration

MESSAGING
Signal
MySudo

WEB BROWSING, in order of preference
Firefox Focus for private browsing (95% of what I do)
MySudo Browser (using MySudo aliases when I need to log in to sites)
Firefox Browser
Safari

OTHER CRITICAL APPS
VPN (ProtonVPN for me)
ProtonMail: Used as my recovery email for all accounts
Microsoft Authenticator (backs up easily to iCloud, which is critical)
Password Manager of Choice

RIDE SHARE APPS
None, nada. I used to use Uber and Lyft, but am now convinced there is no way to do so privately due to aggressive use of cameras and machine vision to identify riders. I use taxis and pay with cash, use public transportation, bike or ride.

[ppeters914]

*speechless*

[conite]

*speechless*

I subscribe to the 80/20 rule.

I'm not prepared to overly encumber my life to maintain such a strict level of privacy that has no real benefit in my eyes.

I have Island running on Android to have two containers on my phone - one personal with Netguard running to block all trackers and ads; and one private where I use a VPN, a private browser like Tor and/or Brave, and a dummy Google account with the tightest privacy settings possible.

I generally use Telegram for messaging and instigate private chats for more sensitive conversations.

That's where I stop.

[bb10adopter111]

I subscribe to the 80/20 rule.

I'm not prepared to overly encumber my life to maintain such a strict level of privacy that has no real benefit in my eyes.

I have Island running on Android to have two containers on my phone - one personal with Netguard running to block all trackers and ads; and one private where I use a VPN, a private browser like Tor and/or Brave, and a dummy Google account with the tightest privacy settings possible.

I generally use Telegram for messaging and instigate private chats for more sensitive conversations.

That's where I stop.

I understand that you and I have very different threat models when it cones to corporate surveillance.

But please note that there is nothing in my configuration that "encumbers" me. I can install and use any app I need at any time, from official app stores. I just avoid providing my real identity to anyone who isn't entitled to it, either by virtue of being a real life contact I want in my life, or by law.

For example, when I travel I have to use my real identity, but there is nothing that compels me to provide the same email address and phone number that I use for other services. I have a service that allows me to create email addresses on the fly that all forward to my inbox, so I have a different email address for every travel company ([email protected], [email protected], etc.)

I get all the emails, and they do all the data analysis they like, but they can't correlate my information.

Z10 = BB10 + VKB > iOS + Android