I just saw on someone else's new device (I don't have gapps on my devices, and GMaps only works half decent in North-America anyway, and can't do offline navigation, and uses miserable sounding voices) that the new update of Google Maps needs permission now to view your contacts. So they have integrated latitude, that was killed some time ago, in Maps, so that they can trace everyone. Oh, but that's no problem, because you can set the phone in general settings not to reveal your position, right? Wrong, the person's phone was having less battery life, so she asked me to take a look at it, and the new Maps was overriding the general setting and locating the phone all the time. Don't believe me, uninstall the Maps updates, and see what happens (with the privacy setting set not to reveal your location)... you get an error that your location has been lost (and it was supposed to be off right, so even if it was off, the Maps update switched it on behind your back again)! So it does really override the privacy settings!
But that didn't solve the entire battery problem. The other nefarious google app seemed to be Google Music, which seemed to be actively scanning all over the phone all the time, even if the person did never even start the app, she had just updated it two days ago, she uses the standard Samsung music player.
After uninstalling the updates of Maps and Music, the battery life was normal again...
Hooray for closed source code and egregious obfuscation (yeah that's a paradox, it's intentional because it suits what's going on with Google).
So OK, it doesn't bring anything to rant without being part of the solution, and not everyone has a rooted phone and can actually configure it after rooting (like in no gapps at all and only open source apps, install busybox, configure iptables, and your security problems are gone, it's as simple as that), so here are my tips for protecting yourself in case you can't root your phone because you have a subsidized device or a carrier contract that makes it prohibited:
- Do not update GMaps and GMusic, obviously, the best is to block/disable them in settings, so that they just never start up. There are plenty of OSM-based navigation and map tools that also work offline. Do not install Google Navigation or Google Tracks or Google StreetView, it's as bad as the new GMaps, and you don't need it anyway, all the functionality thereof can be had for free, better, faster, and offline from open source based or open source apps that are safe to use and don't sell your soul to the devil behind your back;
- Do not share any pictures you make with G+ (the Google terms stipulate that they will use those pictures for face analysis and joining and linking content without any control on your part);
- Do NOT register your phone with your main account, register it with a new - unused - gmail account, that does nothing at all, install F-Droid from the web (download only with firefox or other open source browser), install K9Mail with the F-Droid app, configure K9Mail to handle all your real e-mail, it has exactly the same useful functionality as GMail but runs faster and runs secure, it doesn't use any Gapps services to run, but can still get all the info from the Google Mailserver if you want to use gmail, which means that Google will still read you e-mails on their server - unless you encrypt them with APG, which works seemlessly together with K9Mail - but at least Google won't be able to locate you or be able to link all your data in the several gapps together with your mail, because your gapps on your phone will report a different account that is not your mail account, and in the accounts section of your phone, your real mail account will not be there). So no loss of functionality, incredible gain in privacy and security, and battery life, because gapps use the bulk of the battery power in the apps department. You'll also notice that once you only have the Google TSRs running but don't use gapps that you can avoid anymore, you'll have about 150 MB of RAM more at your disposal, your phone will feel faster, and you'll have much less data traffic;
- Do not use the Google backup and restore function (if will only lead to Google selling your data, abusing your Wi-Fi connections to locate people and break into networks), use Samsung's or HTC's, because that way you can link it to your real mail account (that is not an account on your phone, just an account in K9Mail), which is not readable by Samsung or HTC, because they don't have your password and thus can't get to it. That also provides you with the means to wipe and block your phone in case of loss or theft, without sacrificing personal data for it;
- Uninstall the updates of Google Search, and block/disable it (there are two instances of google search that both have to be blocked on Google Now-capable devices). Uninstall the Android browser, and install Firefox for android, with ghostery, noscript, https everywhere, and incognito mode as default, and in firefox, uninstall all search engines except DuckDuckGo and Wikipedia. Then use Firefox instead of Google Search. If you want to have more functionality, install Wolfram Tools by side loading (do not get it from the PlayStore, it will only be linked to your account), which is much more powerful than Google Search, and also features voice search.
- Enjoy a faster, more secure android experience with longer battery life...
- Anyone have other tips to share?