Notices

Hi all,

I bought myself an N900 a while ago and love the fact that the whole platform is so open that anything seems possible. If I want my phone to send a text message containing the brightness of the room only when I flip it over three times and then shake it, it's possible. Simple even.

At the same time I'm getting a little worried too. It's also very easy to make an app that contains code or a script that mails the complete user contents of my phone to someone. Including all my passwords for social networks, mail, other logins. etc. The phone's a treasure trove for an identity thief.

So are apps in the ovi store checked for these kind of things? And are there any outbound firewalls available that can be installed, for instance to get an alert when an app tries to send mail?

I don't have much to hide, but the thought of trying to login to my mailbox one day and not being able to get in because someone has changed the password gives me shivers...

iptables + log/syslog + dbus.

It's workable.

Most things would be trivial to bypass. Lock down everything so only microb can make outgoing port 80 connections? To counter, bad person does this:

Only install apps from trusted sources - and you must define for yourself what is trusted, which may be nothing at all.

An inbound/outbound data indicator in the status area would be nice.
Blue dot when inbound data, red dot when outbound data, yellow dot on telephony (like SMS), grey when idle.

You can use Queen-Beecon to do this and pass `lsof -i` as a watched command.

I simply dedicate an xterm to it with `watch -n15 lsof -i` so all connections are shown and refreshed every 15 seconds.

An indicator would be nice for when data is passing.