Health Status Data on Cloud Services

From the current News we hear that insurances offers humans to save the complete health status at a Cloud based App.
This is by DEFAULT insecure!

  • Smartphones get less OS Security Updates by Manufacter
  • Users do NOT know to handle Updates
  • Users can’t update Firmwares by default
  • Apps most located at App Stores (Google, Apple)
  • App Stores Analyse downloads and usage of Apps, with this getting personal Data to SELL!!
  • No Health Insurance knows to securing Data Pools especially Clouds !!
  • No one will help Humans if Cloud App Keys abused and Data stolen
  • Humans can be forces to offer own health Status for new Contracts and Services

NO i don’t support this!!

..if you are forced to use Apps for personal Health Data Management then CHANGE the Company or cancel the Contracts!

Android Hidden Location Tracker

If you use a Android device google can track you via scanned and known wifi Networks without any connection! Android scans your area, shops, stores for public wifi networks, via LTE / GSM the OS verify the Data online at Google. As Result Google Maps sends you Popups to VOTE the last visited Places at Google Maps.

That’s all WITHOUT GPS and WIFI connected only LTE/GSM !

Purge Google Account! (disconnect!) and disable all unwanted Google Apps especially Uploaders (Backups) then go Android Settings -> Wifi -> Advanced Wifi Settings!

Disable the “local wifi scan” option switch at Android!

android hidden location tracker wifi

Remark:

  • There’s no guarantee that google or other company’s can re activate it again or run the service as hidden tool!
  • No one knows which apps do run this tools at Standby Mode on Background!
  • To be safe remove the Battery of the Phones! or put it into a Metalbox (Copper Faraday Cage)

Openwrt dmesg human timestamp

To viel on busybox dmesg with human readable time for debug do:

$vi /root/dmesg.sh

insert:
base=$(cut -d '.' -f1 /proc/uptime);
seconds=$(date +%s); 
dmesg | sed 's/\]//;s/\[//;s/\([^.]\)\.\([^ ]*\)\(.*\)/\1\n\3/' | 
while read first; do 
read second; 
first=`date +"%d/%m/%Y %H:%M:%S" --date="@$(($seconds - $base + $first))"`;
printf "[%s] %s\n" "$first" "$second"; 
done 
exit 0

run it sh dmesg.sh..

System Echo:

...
[16/03/2018 14:55:18] br-lan: port 3(wlan1) entered blocking state
[16/03/2018 14:55:18] br-lan: port 3(wlan1) entered disabled state
[16/03/2018 14:55:18] device wlan1 entered promiscuous mode
[16/03/2018 14:55:18] br-lan: port 3(wlan1) entered blocking state
[16/03/2018 14:55:18] br-lan: port 3(wlan1) entered forwarding state
[16/03/2018 14:55:19] br-lan: port 2(wlan0) entered blocking state
[16/03/2018 14:55:19] br-lan: port 2(wlan0) entered forwarding state
[16/03/2018 15:34:17] device wlan1 left promiscuous mode
[16/03/2018 15:34:17] br-lan: port 3(wlan1) entered disabled state
[16/03/2018 15:34:17] device wlan0 left promiscuous mode
[16/03/2018 15:34:17] br-lan: port 2(wlan0) entered disabled state
[16/03/2018 15:34:24] br-lan: port 2(wlan0) entered blocking state
[16/03/2018 15:34:24] br-lan: port 2(wlan0) entered disabled state
[16/03/2018 15:34:24] device wlan0 entered promiscuous mode
[16/03/2018 15:34:24] br-lan: port 3(wlan1) entered blocking state
[16/03/2018 15:34:24] br-lan: port 3(wlan1) entered disabled state
[16/03/2018 15:34:24] device wlan1 entered promiscuous mode
[16/03/2018 15:34:24] br-lan: port 3(wlan1) entered blocking state
[16/03/2018 15:34:24] br-lan: port 3(wlan1) entered forwarding state
[16/03/2018 15:34:25] br-lan: port 2(wlan0) entered blocking state
[16/03/2018 15:34:25] br-lan: port 2(wlan0) entered forwarding state
...

Nextcloud Owncloud Calling Home

I did a deeper firewall test on my fresh installed OpenWRT Router and activated a “Ads Blacklist” after this my owncloud Share Login loops!

Result:

  • Seems that some IP’s of the “Update Check Tool” Servers, which is installed inside the PHP-Kit is blacklisted.
  • So it seems the Code calls home! ¬†With this option its possible to count and collect IPs of Setups! Perhaps checkout unpatched Versions!
  • I didn’t check deeper, but the behavior was clear without viewing the codes.

After publish this Info via Twitter:

 

nextcloud owncloud calling home

REMARKS:

  • No Company / Developer works for “free”
  • After Setup of PHP-Kits do a IP Firewall Traffic checkout
  • If you don’t need the PHP Kit reachable via Internet block the IP Device at your Router from Internet Access!
  • Prefer Standard Tools like SFTP/SCP with Key Auth to transfer Files, less unsecure cause only one application active!!
  • PHP Kits Logins can often be scanned by Search Indexes by “Search by Title” of the Login Webinterface!!

For me i decided to purge the package and use System Standard Tool “SFTP with SSH Key Auth” and on my Phone a Totalcommander with SFTP Plugin!

 

 

Android Browser Traffic Waste

If you use a Smartphone or Tablet be sure that the Browser like Firefox, Icecat Opera are not active at “minimize” mode, if the Website code uses a “auto” refresh code the Browser will endless load the sites on Background! This burns your Data Limit to zero..

Howto:

  • Swipe unused apps to Top of Screen!
  • Control by tapping onto the Square Button!
  • Use Data Traffic Control Apps default addon tool of Huawei

BIG DATA COMPANYS ABUSE POWER

If have read the latest News about the Big Data Collector and his for FREE shared Browser, you see that the big data Company’s abuses their power to block Websites from their Buisiness.

With the next upcoming Releases they prevent fast access to public News Sites or other Blogs and enforces the Website Owners to ACCEPT the NEW RULES.

You see that most FREE Software IS NOT REALLY FREE Software, cause it’s a Tool to take CONTROL over the normal USERS!

To PREVENT this POLITICS try to use ALTERNATE SOFTWARE like the ICECAT Browser, sometimes it’s more useful to have a CLOSER look at the SOFTWARE you use at you DAILY Office.

..get back the CONTROL over your SYSTEMS!!