Dutch Coronamelder app needs "current" G**gle Play Services

Hello.
Sorry, I also have a real life and sometimes need to sleep a lot between classes and choir rehearsals… It’s pretty difficult to find en. sources related to web and papers french articles that I have read since april… Quick response below.

Somes links (fr.):
vulnerability :
https://www.developpez.com/actu/308548/Covid-19-une-enorme-faille-decouverte-dans-l-API-de-contact-tracing-concue-par-Apple-et-Google-qui-permettrait-de-suivre-une-personne-a-la-trace/

https://www.laquadrature.net/2020/04/29/que-penser-du-protocole-de-tracage-des-gafam/ (29.04)

https://www.laquadrature.net/2020/06/02/crise-du-covid-19-la-technopolice-profite-de-la-strategie-du-choc/ (02.06)

Canard Enchaîné n°5195, 3 juin:

Short translation (DeppLT):
Numeric specialists call it a cat flap […] This “captcha” system […] retrieves the IP address.
“This means that gg knows -potentially- the identity of all the cell phones using the StopCovid application” (Arthur Messaud, La Quadrature du Net)

And so on…

============

Tech and en. deep analysis:

https://eprint.iacr.org/2020/399.pdf (en.)

============

Then I claim a ‘trial of intentions’: ggle and pple are not philanthropists. Their primary goal is profit, the means is the sale of fine, sorted and compiled personal data.
The API is autonomous, integrated in the lower layers, and can be modified by simple OTA update without asking for authorization: apart from our voluntary belief in their leniency, there is no guarantee that this system will not be used soon to increase the efficiency of personal and especially inter-personal tracking.
All that is then required is a unilateral law (e.g., the Patriot Act) for a well-intentioned or ill-intentioned State to be given the keys to all or part of this database, according to criteria beyond its control.
The precedents in terms of censorship and respect of rights, by the GAFAM, do not give me any confidence in their “declarations of honor”.

Short, their preoccupation with privacy is just a display, a communication operation, since they already have the tools to reduce it to nothing, and develop it further by pushing it deeper and deeper into the network as a whole. The Covid crisis is a good pretext to increase their situation of duopoly and to reduce even more the possibilities to escape their surveillance…

Last, I don’t trust in evil nor god. I’m still suspicious of the business means. Goals are well known and the disastrous consequences too.

3 Likes

@trefix thanks for taking some of your time to explain this so well!
Ggle is not evil because of their capitalist business model; rather, they are evil based on the product they sell.
They don’t waste their time developing products free, sorry, and tgey also don’t care about our personal health. (But it is in their intetest to say they do)
So yeah, one more ggle-inspired product? No thanks.

@trefix: Thanks for getting some substance to discuss.

@donut3: Nobody really questions the overall nature and motivation of Google. But what is severely lacking in society right now in many if not most topics is just evidence-based discussion and evaluation instead of just anybody crying “I LIKE/ DON’T LIKE THIS JUST BECAUSE!”.

A discussion will still be subjective, there will still be much spin-doctoring in any direction, but at least get something together which can be discussed and ideally proven right or wrong for the topic at hand, which in this case here is the API, not Google as a whole, and not some gut feeling that the end is nigh.

Just saying the API is probably bad without evidence is not much better than what people act on when they burn 5G masts to fight the corona virus. Fortunately for now it’s 5G masts and not witches, but we’ll be getting back there eventually if the overall level of an acceptable dicussion about stuff doesn’t get raised again.

3 Likes

I am concerned about the creeping suppression of any possibility of alternative, without any political counter-power, without democratic discussion, just because “it is the most common tool”.

More and more applications simply refuse to work without the 'gg plaie sevices’, including banking applications, health applications, applications for young students and even State’s services (taxes, civil status…).

There is an absolutely permanent technical ‘blackmail’ to access web, with no more workaround possibility (= captive market).

1 Like

Still isn’t here, tried the Belgian Coronalert App today


Failed, so added the MicroG repo in F-Droid https://microg.org/download.html and tried to update myself, but that failed too:

The update should have been in /e/ two weeks ago.

Coronalert - Belgium App

I tried the Belgian Coronalert App today also on my old Galaxy S5 ‘kltee-0.11-p and Nanodoird’ed microG Services Core v0.2.12.203315

(BE)coronalert
.
(BE)coronalert2
.
The Coronalert - Belgium App version 1.6.0.78 from 24.09.2020 works fine on my device configuration.

1 Like

Thank you for your kindness,
I am not well english speaker too, i don’t use the translator for each post i read or write, it is an error because the results is sometimes confuse.

Technology is not neutral.
Spectacle is not democratie.
Lies are not fair.

My problem is not the beer flu, but the purpose for which it is used and managed.
I am despite to see the /e/ project community polluted by this mainstream paranoïa.

Some likes learning, i prefer understanding,
some likes knowing, i prefer thinking.

1 Like

Just updated to version /e/OS 0.12- Pie. MicroG is still on version 0.2.10. MicroG 0.2.12 is needed. Sorry, but now I really have to leave until the App can be installed. Iḿ against all this track and trace stuff too, but it was decided in 2005, I’ll give a quote:
“Member States are obliged under the International Health Regulations to develop public health surveillance systems”
And the link:
https://apps.who.int/iris/bitstream/handle/10665/43883/9789241580410_eng.pdf?sequence=1
All there is to say about this is political. The first attempt failed in 2009 (swine flu, in some countries named Mexican flu), today we experience the surveillance state in full force. Goodbye, I want to remain a member of society, without the App I am not.
“Mom and dad, neighbors, friends and family”? They all want an easy install for this App and others like ID Apps and Payment Apps. So /e/ is really only for nerds and geeks.

1 Like

Where is the easy installer, the easy update for MicroG?

2 Likes

Hello.

[off topic]
Yes, but what society ? Who decided ?
No choice, no alternative, society of business created from scratch the society of tracking, with the political consent (?) of our (?) institutions (elected and especially non-elected administrations).
[/off]

" We don’t need no thought control " (PinkFloyd, 1979)

2 Likes

Am no longer using /e/, but do use Lineage 17.1 with Microg. Got the version with Exposure Notification API. Also have Coronamelder installed. Before the update with the Exposure Notification API I got the message that I needed to update Play Services. Currently, that is no longer the case. However, Coronamelder doesn’t work and given the following reply on this Github issue, it’s not likely it will work. See: https://github.com/minvws/nl-covid19-notification-app-android/issues/31

1 Like

It won’t work with MicroG indeed. Just tried on FP2 with Fairphone Open and MicroG, it doesn’t work, gives exacctly the same notifications as in /e/. Tried the Fairphone Stock ROM with Google, it works. I stop using smartphones until Governments an financial services allow Free Software. Screenshots taken in /e/:

Dutch Coronamelder

The ‘Dutch Coronamelder’ is probably extremely close to the system, i.e. it has been programmed to G’'gle Services & Co. The Dutch authorities are responsible for this in the first instance.

MicroG’s ‘Exposure Notification API’ replica in ‘microG Services Core version 0.2.12.203315’ is, according to my tests on various Android devices, not able to provide the desired compatibility.
.


.

The custom ROM from PixelExperience, known for its almost perfect replica of the G’’ Pixel Stock Android ROM with all G’'-components, is the only custom ROM I know of that the Dutch Coronamelder works with. (see screenshot above)

Tina’s fault, once again…

Thanks for your tests reports.

.
.
T.I.N.A. = There Is No Alternative.

1 Like

Do you mean a PixelExperience ROM with Microg or Google Play Services?

Unofficial port, but full googled.

This is kinda funny, a whole discussion about implementing or not, and now it does not work :joy:

The PixelExperience ROM is offered on the official website exclusively including G’'gle Play Services.

Right, but then I’m pretty sure it’s not the only ROM working with the Coronamelder. I’m guessing any rom on which the latest version of the Play Services is installed would have a working Coronamelder.

Well, yeah it’s ironic - and irony tends to be pretty funny (;
However, it doesn’t work with Coronamelder, but from what I’ve read on the forum Microg is compatible with the apps of the UK and Belgium. So some people may still benefit from implementation.